Manuals / Perle Systems / Computer Equipment / Network Router

Perle Systems MDC, SDS Options authentication-method, Data Options, Boot-action, Local-device

Models: SDS MDC

1 162
Download 162 pages 36.71 Kb
Page 115
Image 115

IPsec Commands

Options authentication-method

Specify the authentication method that will be used between VPN peers to authenticate the VPN tunnel.

Data Options:

zShared Secret—A text-based secret that is used to authenticate the IPsec tunnel (case sensitive).

zRSA Signature—RSA signatures are used to authenticate the IPsec tunnel. When using this authentication method, you must download the IPsec RSA public key to the IOLAN and upload the IPsec RSA public key from the IOLAN to the VPN gateway.

zX.509 Certificate—X.509 certificates are used to authenticate the IPsec tunnel. When using this authentication method, you must include the signing authority’s certificate information in the SSL/TLS CA list and download it to the IOLAN.

The default is shared secret.

boot-action

Determines the state of the VPN network when the IOLAN is booted.

zStart—Starts the VPN network, initiating communication to the remote VPN.

zAdd—Adds the VPN network, but doesn’t initiate a connection to the remote VPN.

zIgnore—Maintains the VPN network configuration, but the VPN network is not started and cannot be started through the IPsec command option.

When defining peer VPN gateways, one side should be defined as Start (initiate) and the other as Add (listen). It is invalid to define both gateways as Add. VPN connection time can take longer when both gateways are set to Start, as both sides will attempt to initiate the same VPN connection.

The default is start.

local-device

When the VPN tunnel is established, one side of the tunnel is designated as Right and the other as Left. You are configuring the IOLAN-side of the VPN tunnel. The default is left.

local-external-ip-address

When NAT Traversal (NAT_T) is enabled, this is IOLAN’s external IPv4 or IPv6 address or FQDN. When the IOLAN is behind a NAT router, this will be its public IP address.

local-host-nextwork

The IPv4 or IPv6 address of a specific host, or the network address that the IOLAN will provide a VPN connection to.

local-ip-address

The IPv4 or IPv6 address or FQDN of the IOLAN. You can specify %defaultroute when the IP address of the IOLAN is not always known (for example, when it gets its IP address from DHCP). When %defaultroute is used, a default gateway must be configured in the route table.

local-next-hop

The IPv4 or IPv6 address of the router/gateway that will forward data packets to the remote VPN (if required). The router/gateway must reside on the same subnet at the IOLAN. Leave this parameter blank if you want to use the Default Gateway configured in the IOLAN.

Network Commands 115

Page 114 Page 116
Page 115
Image 115
Perle Systems MDC, SDS Options authentication-method, Data Options, Boot-action, Local-device, Local-external-ip-address
Page 114 Page 116

SDS, MDC specifications

Perle Systems is a leading provider of connectivity solutions, renowned for its robustness and reliability in networking hardware. Among its expansive product offerings, the MDC (Multiport Device Converter) and SDS (Serial Device Server) stand out as pivotal solutions for industries requiring seamless data communication and device management.

The Perle MDC serves as a powerful multi-port device converter, providing the ability to connect multiple serial devices to a computer network without needing a separate connection for each device. This is particularly useful in environments with limited computing resources or high device density, such as railways, manufacturing plants, or remote field operations. It is designed to convert serial communication, which is commonly used in legacy devices, into Ethernet/IP or TCP/IP protocols, ensuring that older devices can integrate into modern networks.

Main features of the MDC include its robust design for industrial environments, support for a variety of serial protocols, and multiple device connections. It supports data rates of up to 115200 bps and provides easy monitoring and configuration via a web-based interface. Additionally, the MDC incorporates advanced security features including SSL and SSH encryption, ensuring data integrity and protection against unauthorized access.

On the other hand, the Perle SDS model exemplifies advanced serial device hosting capabilities, allowing users to connect Ethernet networks to serial devices. It acts as a bridge, enabling remote devices to be configured and managed over IP networks. The SDS series is known for its versatility, supporting a range of serial communication protocols, including RS-232, RS-422, and RS-485, making it suitable for various applications such as point-of-sale systems, industrial automation, and remote monitoring.

The SDS boasts several characteristics that enhance its functionality, such as automatic device discovery, real-time monitoring, and local or cloud-based management options. Its feature set also includes traffic management capabilities, allowing the optimization of device communication by controlling the flow of data, which is critical for applications requiring high reliability and low latency.

Both the MDC and SDS benefit from a strong emphasis on ease of deployment and management. They support a range of network topologies, facilitating seamless integration into existing infrastructures. Furthermore, these devices are backed by Perle Systems' reputation for customer support and a commitment to ongoing innovation, ensuring that organizations can rely on these solutions for future growth and technological advancement.