580 likes | 604 Views
SENA. HelloDevice Super series SS100/110/400/800. One-Stop Solution in Device Networking. Oct, 2004. Contents. Overview Configuration Ways Text-based Interface Web-based Interface Features Operation Modes TCP/UDP Multiple Remote Hosts Security PC Card Support Data Logging
E N D
SENA HelloDevice Super series SS100/110/400/800 One-Stop Solution in Device Networking Oct, 2004
Contents • Overview • Configuration Ways • Text-based Interface • Web-based Interface • Features • Operation Modes • TCP/UDP Multiple Remote Hosts • Security • PC Card Support • Data Logging • Event Handling • SNMP • Dynamic Domain Name • Customization Support • Case Studies • Door Access Application (Customized) • Medical Application (Customized) • Bridge Monitoring System
Overview (1) • Linux-based Open platform (kernel 2.4.2) • Supports 1/4/8 serial port (RS232/422/485) • 1 PCMCIA slot • ATA flash memory, LAN/WLAN, PSTN/CDMA Modem • Flexible host mode mode • TCP/UDP single/multi-session support • Primary/Secondary host support • Powerful Security • Industry-standard encryption support • SSL v3, and TLS v1 • Encryption algorithm support • 3DES, and RC4 • Flexible customization • Linux CLI with development environment • Source file add/modify/compile/link in 1MB user space • Web customization
Overview (2) Connections Device Remote Host Host (SS) Any device with serial interface • RS-232 • RS-422 • RS-485 • LAN • Wireless (802.11b) • PSTN • Mobile (CDMA)
Configuration Ways Text-based Interface Web-based Interface
Text-based Interface • System Console • Telnet (port 23) or • SSH (port 22) • Privileges • Admin user can access and edit configuration parameters. • Root user can have full control on SS via CLI, in addition to access and configuration rights.
Web-based Interface Web-based interface using web browsers such as IE, Netscape and Opera
Features Operation Modes TCP/UDP Multiple Remote Hosts Security PC Card Support Data Logging and Event Handling SNMP Dynamic Domain Name Customization Support
Operation modes Various operation modes Remote host • TCP/UDP device TCP/UDP socket Remote host • modem emulation DTE TCP socket • Dial-in/out mode Remote host modem TCP socket modem DTE
TCP/UDP Multicasting Overview Configuration Connection Application Diagram Application Areas
Overview • SS supports an enhancement transmission method "TCP/UDP multicasting", which transmits serial device data to multiple hosts simultaneously. • Max. 32 hosts (incoming+outgoing) per one port allowed. • Max. 16 outgoing connections (registered remote hosts) per one port allowed • Each registered TCP host can have a backup host • UDP host mode does not support backup host since there is no way to check status of primary remote host. • Multicasting feature is very useful in application areas where user needs to transmit a message to several display signboard devices simultaneously.
Configuration • Access the SS web interface • Choose Serial port --> Configuration --> Port # --> Remote host configuration
Application Areas Applications which require Multiple data transmission include: • LED Signboard, • Electronic Metering, • Any customer requiring Multiple data transmission.
Security SSL Encryption: Overview SSL Encryption: Configuration SSL Encryption: Connection Other Security Features Application Areas
SSL Encryption: Overview • SSL creates a secure connection between a client and a server, over which any amount of data can be sent securely. • By setting the cryptography method as one of SSLv2, SSLv3, SSLv3 rollback to v2 or TLSv1, the Super Series can communicate with other device supporting SSL/TLS cryptography method in encrypted sessions. • SSL configuration settings are available only when the host mode is set to TCP or Modem Emulation mode. • SSL works by using a private key to encrypt data that's transferred over the SSL connection.
SSL Encryption: Configuration • Access the SS web interface • Choose Serial port --> Configuration --> Port # --> Host mode configuration • Choose Serial port --> Configuration --> Port # --> Cryptography configuration
SSL Encryption: Connection • Run SSL or TLS client application • openssl s_client –connect 192.168.0.2:6001 –ssl3
Other Security Features • Serial data encryption • 3DES, RC4 • Static Key encryption • Secured Web interface • HTTPS • IP filtering • serial port based IP filtering • box based IP filtering • Secured file uploading • SCP
Application Areas Applications which require more secure communications include: • Financial, • Retail/POS, • Government, • Medical, and • Any customer requiring enhanced security to protect sensitive information.
PC Card Support Overview CF Memory card configuration Modem card configuration LAN card configuration WLAN card configuration
Overview • PC card types that can be added to the SS include a serial modem, compact-flash card, wireless LAN card, and a network LAN card.
CF Memory card configuration • Access the SS web interface • Choose PC Card --> Configuration
Modem card configuration • Access the SS web interface • Choose PC Card --> Configuration
LAN card configuration • Access the SS web interface • Choose PC Card --> Configuration
WLAN card configuration • Access the SS web interface • Choose PC Card --> Configuration
Data Logging and Event Handling Overview Data Logging Configuration Data Event Handling Configuration Data Event Handling Test
Overview • The SS can capture all system and port data, and save it into a log file. This buffer can be viewed from the web, saved to memory, or saved to a Flash Card, syslog server or NFS server. • System logs track events such as logins, authentication failures, system configuration changes, and more. • Port logs document the data flow through the SS serial ports. • In addition, the SS can be configured for system alerts and notifications. It can send email messages when an alarm message is detected in the serial port data. • The SS uses SMTP for sending email notifications and SNMP for trap alerts.
Data Logging Configuration • Access the SS web interface • Choose Serial port --> Configuration --> Port # --> Port logging
Data Event Handling Configuration • Access the SS web interface • Choose Serial port --> Configuration --> Port # --> Port logging
Data Event Handling Test • Event Handling via SNMP browser and SMTP email
SNMP Overview Configuration Connection
Overview • SS supports SNMP that provides status and performance of connected serial devices through their Ethernet connections. • Applications such as NMS or an SNMP browser can exchange information with the SS. • The SS supports SNMP authentication, Login, and Link up traps. • The SS supports both versions 1 and 2 of the SNMP protocol and delivers the System and Port alerts as traps.
Configuration • Access the SS web interface • Choose Network --> SNMP configuration
Connection • Authentication, Login, and Link up traps in Kiwi SNMP browser
Dynamic Domain Name Overview Configuration and Connection
Overview • Dynamic DNS Protocol enables users to access the SS via a domain name for floating IP environments such as DSL line and DHCP. • To use this service, users must set-up an account in Dynamic DNS Network Services and add domain name, user name and password on the SS DDNS configuration page. • Whenever user reboots the SS in floating IP environments, it sends updated IP address to Dynamic DNS Network Services.
Configuration and Connection • Access the SS web interface • Choose Network --> Dynamic DNS configuration • Access the SS web interface and use domain name • For e.g., ismdemo.dyndns.biz
Customization Support Overview User Web Customization - HTML pages User Web Customization – CGI & Java pages Serial Filter Application
Overview • Web customization options • Plain HTML files • CGI written in C • User application implementation • Filter applications in C • Other applications in C or shell scripts • To quickly develop custom applications that run on the HelloDevice Super Series, SDK (Software Development Kit) is needed. • SS SDK is a 256MB CF card composed of executable binaries (including gcc), header files, and library files. • Executable binaries run on SS (MPC855T Linux) • Header files and Library files are compatible with SS platform • With SS SDK, users can compile their own C/C++ source code to run on SS without installing cross-compile utilities on their PC.
User Web Customization - HTML pages (1/3) Preparation • If you are using Windows, using SCP (secure copy protocol) client tools for Windows will be handy for file transfer from/to SS • Winscp (GUI) • Download @ http://winscp.sourceforge.net/eng/ • Install as other applications • Pscp (command line interface) • Download pscp.exe @ http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html • Copy pscp.exe into C:\Windows directory
Prepare index.html file and other related files (e.g. index.html and webtest.swf) Just copy the files to SS, /usr2/usrweb directory using SCP tools (e.g. winscp) and it will work! User Web Customization - HTML pages (2/3) Running User HTML file
User Web Customization - HTML pages (3/3) Browsing SS User Web Pages
User Web Customization – CGI & Java pages (1/3) Preparation: Recognizing SDK Card • After recognition, SDK is mounted on /mnt/flash/ directory root@192.168.0.15:~# editconf ------------------------------------------------------------------------------ Welcome to SS-110 configuration page … IP mode: DHCP IP address: 192.168.0.15 ------------------------------------------------------------------------------ Select menu: 1. Network configuration … <Enter> Refresh ---> 3 ------------------------------------------------------------------------------ PC Card configuration ------------------------------------------------------------------------------ Currently configured PC card: (none) Select menu: 1. Change card configuration 2. Stop the card service to disable or remove card 3. Probe a new card <ESC> Back, <Enter> Refresh ---> 3 Do you want to probe a new pc card? (y/n): y A new PC card is discovered. ------------------------------------------------------------------------------ PC Card configuration ------------------------------------------------------------------------------ Currently configured PC card: ATA/IDE fixed disk card Model: SanDisk SDP 5/3 0.6 Size: 257 MB File system: ext2 … ---> ------------------------------------------------------------------------------ Welcome to SS-110 configuration page … ------------------------------------------------------------------------------ Select menu: 1. Network configuration … 6. Exit without saving 7. Exit and apply changes 8. Exit and reboot <Enter> Refresh ---> 7 Are you sure to save changes? (y/n): y Saving.. Configuration is saved successfully Are you sure to apply changes? (y/n): y Applying........ Configuration is applied successfully
User Web Customization – CGI & Java pages (2/3) Compiling and Copying files • Make working directory such as /mnt/flash/work • Copy cgi source file (e.g. ex.c) into the working directory • Compile *.c file with the option of “–L/mnt/flash/lib” (Library path) • Copy *.cgi binary file to /usr2/cgi-bin/ directory • Copy index.html that has CGI link in it to /usr2/usrweb/ directory
User Web Customization – CGI & Java pages (3/3) Sample CGI Source file and Output root@192.168.0.15:/mnt/flash/work# cat ex.c #include <stdio.h> #include <stdlib.h> #include <string.h> main(int argc, int *argv[]) { printf("Content-type: text/html\n\n"); printf("<html>"); printf("<body bgcolor=\"#0000C0\">"); printf("<b><font color=\"#FF0000\">This is a sample CGI page</font></b>\ n"); printf("</body>"); printf("</html>\n"); fflush(stdout); } root@192.168.0.15:/mnt/flash/work# gcc -o ex.cgi ex.c -L/mnt/flash/lib root@192.168.0.15:/mnt/flash/work# cp ex.cgi /usr2/cgi-bin/ root@192.168.0.15:/mnt/flash/work#
Users just need to write filter application only to customize serial port application rather than writing whole source code Typical situation for serial application customization: Add/remove protocol header Periodically check serial device Serial Filter Application (1/4) SS Serial Filter Structure
Serial Filter Application (2/4) Sample file • Location = /mnt/flash/sample/filter • periodic_filter.c • Periodic query of the serial device application might start from here • empty_filter.c • Do nothing. Adding/removing header application might start from here
Serial Filter Application (3/4) How to • Log into the SS (Telnet or SSH) • Copy sample file from SDK to working directory (e.g. /mnt/flash/work) • Compile source file (Be careful with compile options)gcc -o myfilter myfilter.c -L/mnt/flash/lib –lpthread • Copy compiled binary to /usr2 directory • Specify filter application and arguments using configuration web or menu configuration