Tripp Lite 0 Idades Manual
Here you can view all the pages of manual Tripp Lite 0 Idades Manual. The Tripp Lite manuals for Switch are available online for free. You can easily download all the documents as PDF.
Page 81
81 • Find the Source Network to be routed, and then tick the relevant Destination Network to enable Forwarding For example to configure a dual Ethernet device such as a B096-048, B09\ 6-032 or B096-016 Console Server Management Switch: • The Source Network would the Network Interface and the Destination Network would be Management L AN IP Masquerading is generally required if the Console Server will be rout\ ing to the Internet, or if the external network being routed to does not have routing...
Page 82
82 5.5.2 Configuring client devices Client devices on the local network must be configured with Gateway and DNS settings. This can be done statically on each device, or using DHCP Manual Configuration: Manually set a static gateway address (being the address of the Console\ Server) and set the DNS server address to be the same as used on the external network i.e. if the Console Server is actin\ g as an internet gateway or a cellular router, then use the ISP provided DNS server address. DHCP...
Page 83
83 5.5.3 Port/Protocol Forwarding When using IP Masquerading, devices on the external network cannot initi\ ate connections to devices on the internal network. To work around this, Port Forwards can be set up to allow external users to connect to a specific port,\ or range of ports on the external interface of the Console Server, and have the Console Server redirect the data to a specified interna\ l address and port range. To setup a port forward: • Navigate to the System: Firewall page, and click...
Page 84
84 5.5.4 Firewall Rules Firewall rules can be used to block or allow traffic through an interf\ ace based on port number, direction (ingress or egress) and protocol. This can be used to allow custom on box services, or block tra\ ffic based on policy. Chapter 5: Firewall, Failover and Out-of-Band To setup a firewall rule: • Navigate to the System: Firewall page, and click on the Firewall Rules tab • Click Add New Firewall Rule • Fill in the following fields: Name: Name the firewall rule. This name...
Page 85
85 Chapter 5: Firewall, Failover and Out-of-Band The firewall rules are processed in a set order- from top to bottom. So rule placement is important. For example with the following rules, all traffic coming in over the Network Interface is blocked except when it comes from two nominated IP addresses (SysAdmin and Tony): To allow all incoming traffic on all interfaces from the SysAdmin: To allow all incoming traffic from Tony: To block all incoming traffic from the Network Interface:...
Page 86
86 Chapter 5: Firewall, Failover and Out-of-Band Note: Your 4G LTE carrier may have provided you with details for configuring the conn\ ection, including APN (Access Point Name), PIN code (optional PIN code that may be required to unlock the \ SIM card), Username/Password, etc. In most cases, you will only need to enter your cellular provider’s APN, leaving the\ other fields blank. • Enter the carrier’s APN. • If the SIM card is configured with a PIN code, you will be required to\ enter a PIN code...
Page 87
87 Chapter 5: Firewall, Failover and Out-of-Band • You can measure the received signal strength from the Cellular Statistics\ page on the Status: Statistics screen. This will display the current state of the cellular modem, including the Received \ Signal Strength Indicator (RSSI) Note: Received Signal Strength Indicator (RSSI) is a measurement of the Radio Frequency (RF) power present in a r\ eceived radio signal on a mobile device. It is expressed in Decibel-milliwatts (\ dBm). The best throughput...
Page 88
88 Chapter 5: Firewall, Failover and Out-of-Band 5.7 Cellular Operation When set up as a console server, the cellular modem can be set up to connect to the carrier in one of t\ hree modes: • Cellular router mode – In this case, the dial-out connection to the carrier’s cellular\ network is always on and IP traffic is routed between the cellular connected network and the console server’\ s local network ports. This is the default mode of operation. • OOB mode – The dial-out connection to the carrier’s...
Page 89
89 5.7.2 Cellular failover setup In this mode, a dial-out cellular connection is established only when th\ e main network is disrupted. The cellular connection will remain idle in a low power state and will only be activated in the event\ of a ping failure. This standby mode is well suited for remote sites with expensive power or extremely high cellular traffic c\ osts. In Cellular failover startup mode, the appliance will continually ping nominated probe addresses over the main network connection....
Page 90
90 Chapter 6: Secure SSH Tunneling & SDT Connector Each Console Server has an embedded SSH server and uses SSH tunneling. This enables one Console Server to securely manage all the systems and network devices in the data center, using text-based console tools (such as SSH, Telnet, SoL) or graphical desktop tools (VNC, RDP, HTTPS, HTTP, X11, VMware, DRAC, iLO etc). To set up Secure Tunnel access, the computer being accessed can be located on the same loc\ al network as the Console Server, or attached...