Tripp Lite 0 Idades Manual
Here you can view all the pages of manual Tripp Lite 0 Idades Manual. The Tripp Lite manuals for Switch are available online for free. You can easily download all the documents as PDF.
Page 81
![Page 81
81
• Find the Source Network to be routed, and then tick the relevant Destination Network to enable Forwarding
For example to configure a dual Ethernet device such as a B096-048, B09\
6-032 or B096-016 Console Server Management
Switch:
• The Source Network would the Network Interface and the Destination Network would be Management L AN
IP Masquerading is generally required if the Console Server will be rout\
ing to the Internet, or if the external network being
routed to does not have routing...](http://img.usermanuals.tech/thumb/78/104985/w300_0-idades-manual-1526563141_d-80.png "Page 81
81
• Find the Source Network to be routed, and then tick the relevant Destination Network to enable Forwarding
For example to configure a dual Ethernet device such as a B096-048, B09\
6-032 or B096-016 Console Server Management
Switch:
• The Source Network would the Network Interface and the Destination Network would be Management L AN
IP Masquerading is generally required if the Console Server will be rout\
ing to the Internet, or if the external network being
routed to does not have routing...")
81 • Find the Source Network to be routed, and then tick the relevant Destination Network to enable Forwarding For example to configure a dual Ethernet device such as a B096-048, B09\ 6-032 or B096-016 Console Server Management Switch: • The Source Network would the Network Interface and the Destination Network would be Management L AN IP Masquerading is generally required if the Console Server will be rout\ ing to the Internet, or if the external network being routed to does not have routing...
Page 82
![Page 82
82
5.5.2 Configuring client devices
Client devices on the local network must be configured with Gateway and DNS settings. This can be done statically on each
device, or using DHCP
Manual Configuration:
Manually set a static gateway address (being the address of the Console\
Server) and set the DNS server address to be the
same as used on the external network i.e. if the Console Server is actin\
g as an internet gateway or a cellular router, then use
the ISP provided DNS server address.
DHCP...](http://img.usermanuals.tech/thumb/78/104985/w300_0-idades-manual-1526563141_d-81.png "Page 82
82
5.5.2 Configuring client devices
Client devices on the local network must be configured with Gateway and DNS settings. This can be done statically on each
device, or using DHCP
Manual Configuration:
Manually set a static gateway address (being the address of the Console\
Server) and set the DNS server address to be the
same as used on the external network i.e. if the Console Server is actin\
g as an internet gateway or a cellular router, then use
the ISP provided DNS server address.
DHCP...")
82 5.5.2 Configuring client devices Client devices on the local network must be configured with Gateway and DNS settings. This can be done statically on each device, or using DHCP Manual Configuration: Manually set a static gateway address (being the address of the Console\ Server) and set the DNS server address to be the same as used on the external network i.e. if the Console Server is actin\ g as an internet gateway or a cellular router, then use the ISP provided DNS server address. DHCP...
Page 83
![Page 83
83
5.5.3 Port/Protocol Forwarding
When using IP Masquerading, devices on the external network cannot initi\
ate connections to devices on the internal network.
To work around this, Port Forwards can be set up to allow external users to connect to a specific port,\
or range of ports on the
external interface of the Console Server, and have the Console Server redirect the data to a specified interna\
l address and port
range.
To setup a port forward:
• Navigate to the System: Firewall page, and click...](http://img.usermanuals.tech/thumb/78/104985/w300_0-idades-manual-1526563141_d-82.png "Page 83
83
5.5.3 Port/Protocol Forwarding
When using IP Masquerading, devices on the external network cannot initi\
ate connections to devices on the internal network.
To work around this, Port Forwards can be set up to allow external users to connect to a specific port,\
or range of ports on the
external interface of the Console Server, and have the Console Server redirect the data to a specified interna\
l address and port
range.
To setup a port forward:
• Navigate to the System: Firewall page, and click...")
83 5.5.3 Port/Protocol Forwarding When using IP Masquerading, devices on the external network cannot initi\ ate connections to devices on the internal network. To work around this, Port Forwards can be set up to allow external users to connect to a specific port,\ or range of ports on the external interface of the Console Server, and have the Console Server redirect the data to a specified interna\ l address and port range. To setup a port forward: • Navigate to the System: Firewall page, and click...
Page 84
![Page 84
84
5.5.4 Firewall Rules
Firewall rules can be used to block or allow traffic through an interf\
ace based on port number, direction (ingress or egress) and
protocol. This can be used to allow custom on box services, or block tra\
ffic based on policy.
Chapter 5: Firewall, Failover and Out-of-Band
To setup a firewall rule:
• Navigate to the System: Firewall page, and click on the Firewall Rules tab
• Click Add New Firewall Rule
• Fill in the following fields:
Name: Name the firewall rule. This name...](http://img.usermanuals.tech/thumb/78/104985/w300_0-idades-manual-1526563141_d-83.png "Page 84
84
5.5.4 Firewall Rules
Firewall rules can be used to block or allow traffic through an interf\
ace based on port number, direction (ingress or egress) and
protocol. This can be used to allow custom on box services, or block tra\
ffic based on policy.
Chapter 5: Firewall, Failover and Out-of-Band
To setup a firewall rule:
• Navigate to the System: Firewall page, and click on the Firewall Rules tab
• Click Add New Firewall Rule
• Fill in the following fields:
Name: Name the firewall rule. This name...")
84 5.5.4 Firewall Rules Firewall rules can be used to block or allow traffic through an interf\ ace based on port number, direction (ingress or egress) and protocol. This can be used to allow custom on box services, or block tra\ ffic based on policy. Chapter 5: Firewall, Failover and Out-of-Band To setup a firewall rule: • Navigate to the System: Firewall page, and click on the Firewall Rules tab • Click Add New Firewall Rule • Fill in the following fields: Name: Name the firewall rule. This name...
Page 85
85 Chapter 5: Firewall, Failover and Out-of-Band The firewall rules are processed in a set order- from top to bottom. So rule placement is important. For example with the following rules, all traffic coming in over the Network Interface is blocked except when it comes from two nominated IP addresses (SysAdmin and Tony): To allow all incoming traffic on all interfaces from the SysAdmin: To allow all incoming traffic from Tony: To block all incoming traffic from the Network Interface:...
Page 86
![Page 86
86
Chapter 5: Firewall, Failover and Out-of-Band
Note: Your 4G LTE carrier may have provided you with details for configuring the conn\
ection, including APN (Access Point
Name), PIN code (optional PIN code that may be required to unlock the \
SIM card), Username/Password, etc. In most cases,
you will only need to enter your cellular provider’s APN, leaving the\
other fields blank.
• Enter the carrier’s APN.
• If the SIM card is configured with a PIN code, you will be required to\
enter a PIN code...](http://img.usermanuals.tech/thumb/78/104985/w300_0-idades-manual-1526563141_d-85.png "Page 86
86
Chapter 5: Firewall, Failover and Out-of-Band
Note: Your 4G LTE carrier may have provided you with details for configuring the conn\
ection, including APN (Access Point
Name), PIN code (optional PIN code that may be required to unlock the \
SIM card), Username/Password, etc. In most cases,
you will only need to enter your cellular provider’s APN, leaving the\
other fields blank.
• Enter the carrier’s APN.
• If the SIM card is configured with a PIN code, you will be required to\
enter a PIN code...")
86 Chapter 5: Firewall, Failover and Out-of-Band Note: Your 4G LTE carrier may have provided you with details for configuring the conn\ ection, including APN (Access Point Name), PIN code (optional PIN code that may be required to unlock the \ SIM card), Username/Password, etc. In most cases, you will only need to enter your cellular provider’s APN, leaving the\ other fields blank. • Enter the carrier’s APN. • If the SIM card is configured with a PIN code, you will be required to\ enter a PIN code...
Page 87
![Page 87
87
Chapter 5: Firewall, Failover and Out-of-Band
• You can measure the received signal strength from the Cellular Statistics\
page on the Status: Statistics screen. This will
display the current state of the cellular modem, including the Received \
Signal Strength Indicator (RSSI)
Note: Received Signal Strength Indicator (RSSI) is a measurement of the Radio Frequency (RF) power present in a r\
eceived
radio signal on a mobile device. It is expressed in Decibel-milliwatts (\
dBm). The best throughput...](http://img.usermanuals.tech/thumb/78/104985/w300_0-idades-manual-1526563141_d-86.png "Page 87
87
Chapter 5: Firewall, Failover and Out-of-Band
• You can measure the received signal strength from the Cellular Statistics\
page on the Status: Statistics screen. This will
display the current state of the cellular modem, including the Received \
Signal Strength Indicator (RSSI)
Note: Received Signal Strength Indicator (RSSI) is a measurement of the Radio Frequency (RF) power present in a r\
eceived
radio signal on a mobile device. It is expressed in Decibel-milliwatts (\
dBm). The best throughput...")
87 Chapter 5: Firewall, Failover and Out-of-Band • You can measure the received signal strength from the Cellular Statistics\ page on the Status: Statistics screen. This will display the current state of the cellular modem, including the Received \ Signal Strength Indicator (RSSI) Note: Received Signal Strength Indicator (RSSI) is a measurement of the Radio Frequency (RF) power present in a r\ eceived radio signal on a mobile device. It is expressed in Decibel-milliwatts (\ dBm). The best throughput...
Page 88
![Page 88
88
Chapter 5: Firewall, Failover and Out-of-Band
5.7 Cellular Operation
When set up as a console server, the cellular modem can be set up to connect to the carrier in one of t\
hree modes:
• Cellular router mode – In this case, the dial-out connection to the carrier’s cellular\
network is always on and IP traffic is
routed between the cellular connected network and the console server’\
s local network ports. This is the default mode of
operation.
• OOB mode – The dial-out connection to the carrier’s...](http://img.usermanuals.tech/thumb/78/104985/w300_0-idades-manual-1526563141_d-87.png "Page 88
88
Chapter 5: Firewall, Failover and Out-of-Band
5.7 Cellular Operation
When set up as a console server, the cellular modem can be set up to connect to the carrier in one of t\
hree modes:
• Cellular router mode – In this case, the dial-out connection to the carrier’s cellular\
network is always on and IP traffic is
routed between the cellular connected network and the console server’\
s local network ports. This is the default mode of
operation.
• OOB mode – The dial-out connection to the carrier’s...")
88 Chapter 5: Firewall, Failover and Out-of-Band 5.7 Cellular Operation When set up as a console server, the cellular modem can be set up to connect to the carrier in one of t\ hree modes: • Cellular router mode – In this case, the dial-out connection to the carrier’s cellular\ network is always on and IP traffic is routed between the cellular connected network and the console server’\ s local network ports. This is the default mode of operation. • OOB mode – The dial-out connection to the carrier’s...
Page 89
![Page 89
89
5.7.2 Cellular failover setup
In this mode, a dial-out cellular connection is established only when th\
e main network is disrupted. The cellular connection will
remain idle in a low power state and will only be activated in the event\
of a ping failure. This standby mode is well suited for
remote sites with expensive power or extremely high cellular traffic c\
osts.
In Cellular failover startup mode, the appliance will continually ping nominated probe addresses over the main network
connection....](http://img.usermanuals.tech/thumb/78/104985/w300_0-idades-manual-1526563141_d-88.png "Page 89
89
5.7.2 Cellular failover setup
In this mode, a dial-out cellular connection is established only when th\
e main network is disrupted. The cellular connection will
remain idle in a low power state and will only be activated in the event\
of a ping failure. This standby mode is well suited for
remote sites with expensive power or extremely high cellular traffic c\
osts.
In Cellular failover startup mode, the appliance will continually ping nominated probe addresses over the main network
connection....")
89 5.7.2 Cellular failover setup In this mode, a dial-out cellular connection is established only when th\ e main network is disrupted. The cellular connection will remain idle in a low power state and will only be activated in the event\ of a ping failure. This standby mode is well suited for remote sites with expensive power or extremely high cellular traffic c\ osts. In Cellular failover startup mode, the appliance will continually ping nominated probe addresses over the main network connection....
Page 90
![Page 90
90
Chapter 6: Secure SSH Tunneling & SDT Connector
Each Console Server has an embedded SSH server and uses SSH tunneling. This enables one Console Server to securely
manage all the systems and network devices in the data center, using text-based console tools (such as SSH, Telnet, SoL) or
graphical desktop tools (VNC, RDP, HTTPS, HTTP, X11, VMware, DRAC, iLO etc).
To set up Secure Tunnel access, the computer being accessed can be located on the same loc\
al network as the Console
Server, or attached...](http://img.usermanuals.tech/thumb/78/104985/w300_0-idades-manual-1526563141_d-89.png "Page 90
90
Chapter 6: Secure SSH Tunneling & SDT Connector
Each Console Server has an embedded SSH server and uses SSH tunneling. This enables one Console Server to securely
manage all the systems and network devices in the data center, using text-based console tools (such as SSH, Telnet, SoL) or
graphical desktop tools (VNC, RDP, HTTPS, HTTP, X11, VMware, DRAC, iLO etc).
To set up Secure Tunnel access, the computer being accessed can be located on the same loc\
al network as the Console
Server, or attached...")
90 Chapter 6: Secure SSH Tunneling & SDT Connector Each Console Server has an embedded SSH server and uses SSH tunneling. This enables one Console Server to securely manage all the systems and network devices in the data center, using text-based console tools (such as SSH, Telnet, SoL) or graphical desktop tools (VNC, RDP, HTTPS, HTTP, X11, VMware, DRAC, iLO etc). To set up Secure Tunnel access, the computer being accessed can be located on the same loc\ al network as the Console Server, or attached...