Modifying the Server Port Settings | AMX NI-3101-SIG specification

NetLinx Security within the Web Server

Modifying the Server Port Settings

1.From within the Server submenu, press the Port Settings button to open the Server Port Settings dialog seen above in FIG. 47.

2.Uncheck any services (and corresponding ports) to disable their functionality.

3.Modify any preset service port value by first enabling that service with a checkmark within the Enabled checkbox and then entering a value within the Port Number field.

Server Port Settings

Feature	Description

Telnet Port:	The port value used for Telnet communication to the target Master.
	• The default port value is 23.
	• Enabling this feature allows future communication with the Master via a
	separate Telnet application (such as HyperTerminal).
	• Refer to the NetLinx Security with a Terminal Connection section for more
	information on the related procedures.

ICSP Port:	The port value used for ICSP data communication among the different AMX
	software and hardware products.
	• The default port value is 1319.
	• This type of communication is used by the various AMX product for
	communication amongst themselves. Some examples would be: NetLinx
	Studio communicating with a Master (for firmware or file information updates)
	and TPDesign4 communicating with a touch panel (for panel page and
	firmware updates).
	Note: To further ensure a secure connection within this type of
	communication, a user can enable the Require Encryption option which
	requires additional processor cycles. Enabling of the encryption feature
	is determined by the user.

HTTP Port:	The port value used for unsecure HTTP Internet communication between the
	web browser’s UI and the target Master.
	• The default port value is 80.
	• By default, the Master does not have security enabled and must use http:// in
	the Address field for communication.
	• One method of adding security to HTTP communication would be to change
	the port value.
	- If the port value is changed, any consecutive session to the target Master
	has to add the port value at the end of the address (within the Address field).
	For example, if the port were changed to 99, the new address information
	would be: http://192.192.192.192:99.
	• By disabling this port, the administrator (or other authorized user) can require
	that any consecutive sessions between the UI and the target Master are
	done over a more secure HTTPS connection.

76	NI-3101-SIG Signature Series NetLinx Integrated Controller

Image 82

AMX NI-3101-SIG manual Modifying the Server Port Settings, Is determined by the user

Contents

NI-3101-SIG AMX Limited Warranty and Disclaimer Introduction NetLinx Security within the Web Server NetLinx Security with a Terminal Connection 117 Troubleshooting 167 NetLinx Integrated Master Controller Features NI-3101-SIG FG2105-08 Blue LED bar lights when powered up NI-3101-SIG SpecificationsNI-3101-SIG Specifications MB Flash RS-232/422/485 Ports 1 Distances IR ports support data mode at limited baud rates and wiringD notation is used to represent a device number NI-3101-SIG Specifications Page Structure DEV DevicePortSystem DPSWhere Numberportsystem Installation into an Equipment Rack PRD Mode Settings Program Run Disable PRD modeWorking with the Configuration DIP switch PRD Mode Modes and Front Panel LED Blink Patterns Configuration Port Connections and WiringMode Description Blue White Modes and LED Blink Patterns AXlink Port and LED Off No power, or the controller is not functioning properlyPort Assignments and Functionality Rear Port Assignments are as follows Preparing captive wires Wiring GuidelinesWiring length guidelines Wiring Guidelines NI-3101 @ 900 mA Wiring a power connection Using the 4-pin mini-Phoenix connector for data and power GND AXP/TX AXM/RX RS-232/422/485 Device Port Wiring Specifications DB9 Device Port Connections and WiringRelay Port Connections and Wiring Pin Relay connections Input/Output I/O Port Connections and WiringPort +12V 6 5 4 3 2 IR/Serial Connector Wiring Specifications per Port IR/Serial Port Connections and WiringPort Wiring Specifications NI-3101-SIG Signal Function Ethernet RJ-45 Pinouts and Signals Ethernet/RJ-45 Port Connections and WiringSignals Connection Pairing Color Port type Description Standard Port Ethernet ports used by the Integrated ControllersEthernet Ports Used by the NetLinx Integrated Controllers On-board Master has a built-in FTP server 21/20 TCP Replacing the Timekeeper Battery Configuration and Firmware Update Master Communication Settings dialog box Communicating with the Master via the Program Port Setting the System Value COM1 Using multiple NetLinx Masters Changing the Device Address of a NetLinx Device Device Addressing dialog changing the device value Axcess Devices use Axcess standards Using the ID Button to Change the Controller’s Device ValueRecommended NetLinx Device numbers 301 Resetting the Factory Default System and Device Values Obtaining the Master’s IP Address using Dhcp Network Addresses dialog for a Dhcp IP Address Configuration and Firmware Update Assigning a Static IP to the NetLinx Master Communications Settings dialog box Communicating with the NI Device via an IP TCP/IP Settings dialog box Master Controller User Name and Password dialog box Verifying the current version of NetLinx Master Firmware Sample NetLinx Workspace window showing OnLine Tree tab Upgrading the On-board Master Firmware via an IP Firmware Kit File usage for NI Controllers After the last component fails to install, click Done Select the NI Master’s Kit file from the Files section FIG Upgrading the NI Controller Firmware via IP Configuration and Firmware Update Configuration and Firmware Update Page NetLinx Security within the Web Server Username and profile NetLinx Security Terms NetLinx Security TermsCase sensitive Accessing an Unsecured Master via an Http Address Default Security Configuration Browser Application Frames Default Security Configuration case-sensitive Account Group Master Firmware Security Access Parameters Telnet Security Web Control Managing WebControl Connections Feature Description Compatible Devices Field Security FeaturesManage WebControl Connection Page Features Internet Security System Level Security Security FeaturesFeature Description System Level Group Level System Level Security Master must provide a valid username and password Configuration/Reset, URL list settings, MasterCommunication settings, and security parameters And/or SSH Ports. SSH version 2 is only supported Setting the system security options for a NetLinx Master Section on page 49 for more detailed field descriptions Administrator group account cannot be deleted or modified Security Group Level Security Icsp AuthenticationYou are logged in as a user with Configuration Access Manage Group IP configuration/Reset, URL list settings, Master Configure Group PropertiesCommunication settings, and file transfers Adding a new Group Modifying the properties of an existing Group Deleting an existing Group Security User Level Security Feature Description Manage UsersManage Users To this Configure User PropertiesFeature Description Configure User Properties User Security Details Adding a new User Configure Users PropertiesFeature Description User Security Details Sensitive and must be unique Click the Back button to return to the Manage User Modifying the properties of an existing User System Settings Deleting an existing User Manage System Page Components System Settings Manage SystemFeature Description Online Tree menu Online Tree This button is available from within all Management Feature Description Management menu optionsSystem menu buttons Menus Feature Description Device menu buttons Port menu buttons Manage System System Menu Buttons System Menu Modifying the Date/Time System Menu Changing the System Number System Menu Rebooting the MasterSystem Menu Controlling/Emulating Devices on the Master Select either the Control or Emulate option Control/Emulate dialog Valid Level Data Types and Ranges Minimum Value Maximum Value Manage System Diagnostics Diagnostics dialog showing modify popup Diagnostic Configuration Dialog Setting up and removing a Diagnostic FilterFeature Update Remove Description New Preset. Refer to of this section for more information Feature Description PresetsSystem/Device/Port NetLinx Security within the Web Server Manage System Server Setting the Master’s Port ConfigurationsDefault port for each service is listed to the right Server Submenu Options SSH FTP Server Port Settings Modifying the Server Port SettingsIs determined by the user SSH Port FeatureDescriptionEnabled but the value can not be changed Address field of the SSH Client application SSL Server Certificate Creation Procedures Certificate consists of two different Keys From an external source Server Certificate EntriesContained in the certificate on the target Master Desired Server Display SSL Server Certificate Information Server Creating a self-generated SSL Certificate Server Regenerating an SSL Server Certificate Request Server Creating a Request for an SSL Certificate State/province name must be fully spelled out Common Steps for Requesting a Certificate from a CA Communicating with the CA Server Exporting an SSL Certificate Request Export SSL Certificate dialog Server Importing a CA created SSL Certificate Before importing a CA server certificate Device Menu Configuring the Network Settings Manage System Device Menu Buttons Feature Description IP Address Network Settings DialogDNS Address Device Menu Developing a URL List Click the Back button to return to the main URL List dialog Device Menu Changing the Device Number URL List dialog with entries Master section on page 67 for more information Device Menu Running a Diagnostic FilterDevice Menu Controlling or Emulating a device Device Menu Viewing the Log System Settings Manage License Adding a new license Removing a license Feature Clear List Refresh List Description System Settings Manage NetLinx DevicesManage NetLinx Devices Feature Description Device Listings After a period of time, unable to establish communication Click the icon to collapse the particular Master’s listing Manage NetLinx Devices Displaying NDP-capable devicesManage NetLinx Devices Binding/Unbinding Explained Manage NetLinx Devices Obtaining NetLinx Device information MAC Address of the Master in FIG System Settings Manage Other Devices Manage Other Devices Feature Description Dynamic Device Discovery linksConfigure Binding Options Must always be User-Defined devices Reboot, the selection is cleared This selection is a one-time occurrence. Upon the next Deleted via the Purge Bound Modules on Reset selection What is Dynamic Device Discovery? Dynamic Device Discovery Concepts Manage Other Devices Manage Device Bindings PROGRAMNAME=DDD Configuring application-defined devicesWhat are Application Devices and their association status? Defineconstant Definetype Definevariable Manage Device Bindings NetLinx Security within the Web Server Manage Other Devices Menu Viewing Discovered Devices View Discovered Devices Module Properties displayed via a mouse-over popup dialog SDK-Class Types SwitcherAmplifier DocumentCamera SlideProjector AudioConferencer To configure a Static application interface How do I write a program that uses Dynamic Device Discovery How do I configure a Run-time installation Accessing an SSL-Enabled Master via an IP Address Security Alert and Certificate popups Certificate Import Wizard Using your NetLinx Master to control the G4 panel WebControl VNC installation and Password entry screens What to do when a Certificate Expires Connection Details dialog NetLinx Security Features NetLinx Security FeaturesUser has access to the Icsp communication functionality Setup security Access Initial Setup via a Terminal ConnectionAccessing the Security configuration options Logout Close NetLinx Security with a Terminal Connection Select to change current security option EnabledOr Enter to return to previous menu Security Options Option 2 Display system security options for NetLinx Master CommandItems in the Security Options Menu are described below Option 3 Add user Option 4 Edit User Edit User Menu Select to change current access right Command DescriptionPassword from that point forward Edit User Menu Access Rights Menu Option 5 Delete user Option 7 Add Group Option 6 Show the list of authorized usersPress Enter to display the following Edit Group menu User1 Press Enter to return to the Edit Group menuPath Results.txt Option 8 Edit Group Select from the following list Administrator GroupOr Enter to return to previous menu Set Rights Option 9 Delete Group Option 11 Set Telnet Timeout in secondsSpecify Telnet Timeout in seconds Option 10 Show List of Authorized Groups Telnet Timeout is 10 seconds Option 12 Display Telnet Timeout in secondsOption 13 Make changes permanent by saving to flash Main Security Menu Main Security MenuMain Security menu is described below Set system security options for Group Group administrator Rights All Reset DatabaseAdministrator only function Security Options FTP Security Enabled Help menu Help Menu Options NAME,STRING SET Date NAME,COMMANDSET Icsp TCP Timeout SET DNS DPS Logging Into a Session Logout Setup SecurityHelp Security Page Converting Axcess Code to NetLinx Code Master SendCommandsMaster SendCommands Clock G4WC ClockcommandsSendcommand 010,~IGNOREEXTERNALCLOCKCOMMANDS Used to determine each unique listing Master IP Local Port SendCommands Master IP Local Port SendCommandsUsing the ID Button Udpsendto DevicePortSystem DPS Configuration Port CommandsPC COM Port Communication Settings NI-2x00 Port Assignments Echo OFF Configuration Port CommandsDate Echo on Port GET Ethernet ModeMSG on or MSG OFF On DPS, NAME, Chan OFF DPS, or NameChan Ping IP Address PWD Name,CommandPulse DPS, or Name Name,String Master-to-Master systems Entering N no cancels the operationPrompts you to enter the new date for the Master Rent Java memory heap size as measured in Megabytes. This Subnet Mask, and Gateway IP Address Enter Y yes to approve/store the information into the Master Set queue size Use caution when adjusting these valuesSET Queue Size Set Queue Size Menu SET UPD BC Rate Displays a list of any combined devices Example Show BuffersEach queue Example Displays a list of all devices present on the bus Example Master logs all internal messages and keeps the most recent Show LOGDisplays the log of messages stored in the Masters memory If end is not entered, the last 20 messages will be shown Show MAX Buffers Lists all active TCP/IP connections Example Show SystemSystems listed are in numerical order Example Displays the current time on the Master Example Linux Telnet client ESC Pass CodesWindowsTM client programs Escape Pass Codes RS232/422/485 Ports Channels LED Disable/Enable SendCommandsLED SendCommands RS232/422/485 ports are Ports RS-232/422/485 SendCommands RS-232/422/485 SendCommandsThese examples DEV = device Hson GET BaudHsoff Rxclr Txclr SET BaudTset Baud Xoff RS-232/422/485 SendString Escape Sequences RS-232/422/485 SendString Escape SequencesXON IR / Serial Ports Channels Command Description 27,20,1IR / Serial Ports Channels Sendstring DEV,27,20,1 Caroff IR/Serial SendCommandsIR/Serial SendCommands Caron Cton GET ModeCtof Iroff POF PODPON Meters for the IR Ports PtofPton SET IO Link Sendcommand IR1, SP,25 SET ModeSendcommand IR1,SET Mode IR Short cable length 10 feet Sendcommand IR1,XCH Sendcommand DEV,XCHM extended channel modeSendcommand IR1,XCHM Xchm GET Input Input/Output SendCommandsSendCommands SET Input Troubleshooting Information TCP/IP Page It’s Your World Take Control