1
Dualmax
Dual SIM ethernet router
User manual v1.01
2
Contents Dualmax .................................................................................................................................................. 1
Dual SIM ethernet router ........................................................................................................................ 1
User manual v1.01 .................................................................................................................................. 1
Disclaimers .............................................................................................................................................. 6
RF Exposure and Electrical Safety ........................................................................................................... 7
Cautions .............................................................................................................................................. 7
General Safety ..................................................................................................................................... 8
Vehicle Safety ...................................................................................................................................... 8
Potentially Unsafe Areas ..................................................................................................................... 9
Contact Information .............................................................................................................................. 10
Technical ........................................................................................................................................... 10
Sales .................................................................................................................................................. 10
Website ............................................................................................................................................. 10
Address ............................................................................................................................................. 10
Postal Address: .................................................................................................................................. 10
Revision History ............................................................................................................................... 11
Introduction .......................................................................................................................................... 12
Features and Benefits ....................................................................................................................... 12
Specification ...................................................................................................................................... 12
Installation Introduction ....................................................................................................................... 15
Important .......................................................................................................................................... 15
Package Contents .............................................................................................................................. 15
SIM and SD Card Installation ............................................................................................................. 15
Antenna Installation .......................................................................................................................... 16
Serial Interface .................................................................................................................................. 16
Power ................................................................................................................................................ 17
Indicator Lights Introduction ............................................................................................................ 17
Reset button ..................................................................................................................................... 18
Configuration and Management ........................................................................................................... 19
Connection steps .............................................................................................................................. 19
Status ................................................................................................................................................ 21
Overview ....................................................................................................................................... 21
Cellular .......................................................................................................................................... 21
3
Network ........................................................................................................................................ 23
VPN ................................................................................................................................................ 24
Routing .......................................................................................................................................... 25
Host List ......................................................................................................................................... 26
Network ................................................................................................................................................ 27
Interface ............................................................................................................................................ 27
Port ................................................................................................................................................ 27
WAN .............................................................................................................................................. 27
Bridge ............................................................................................................................................ 27
Switch ............................................................................................................................................ 28
Cellular .......................................................................................................................................... 29
Loopback ....................................................................................................................................... 33
Firewall .............................................................................................................................................. 34
Security ......................................................................................................................................... 34
ACL ................................................................................................................................................ 36
DMZ ............................................................................................................................................... 38
IP Passthrough .............................................................................................................................. 39
Port Mapping ................................................................................................................................ 40
MAC Binding .................................................................................................................................. 41
SPI .................................................................................................................................................. 42
QoS .................................................................................................................................................... 43
QoS(Download) / (Upload) ........................................................................................................... 43
DHCP ................................................................................................................................................. 45
DHCP Server .................................................................................................................................. 45
DHCP Relay .................................................................................................................................... 47
DDNS ................................................................................................................................................. 48
Link Failover ...................................................................................................................................... 50
SLA ................................................................................................................................................. 50
Track .............................................................................................................................................. 52
VRRP .............................................................................................................................................. 53
WAN Failover ................................................................................................................................ 55
Routing .............................................................................................................................................. 56
Static routing ................................................................................................................................. 56
RIP ................................................................................................................................................. 57
OSPF .............................................................................................................................................. 60
4
Routing Filtering ............................................................................................................................ 67
VPN.................................................................................................................................................... 68
DMVPN .......................................................................................................................................... 68
IPsec Server ................................................................................................................................... 70
IPsec .............................................................................................................................................. 73
GRE ................................................................................................................................................ 76
L2TP ............................................................................................................................................... 78
PPTP .............................................................................................................................................. 80
OpenVPN Client............................................................................................................................. 82
OpenVPN Server ........................................................................................................................... 84
Certifications ................................................................................................................................. 87
System ................................................................................................................................................... 90
General Settings ................................................................................................................................ 90
General .......................................................................................................................................... 90
System Time .................................................................................................................................. 92
SMTP ............................................................................................................................................. 94
Phone ............................................................................................................................................ 95
SMS ............................................................................................................................................... 96
Email .............................................................................................................................................. 97
Storage .......................................................................................................................................... 98
User Management ............................................................................................................................ 99
Account ......................................................................................................................................... 99
User Management ...................................................................................................................... 100
SNMP ............................................................................................................................................... 101
SNMP ........................................................................................................................................... 101
MIB View ..................................................................................................................................... 102
VACM .......................................................................................................................................... 103
Trap ............................................................................................................................................. 105
MIB .............................................................................................................................................. 106
AAA.................................................................................................................................................. 107
Radius .......................................................................................................................................... 107
Tacacs+ ........................................................................................................................................ 108
LDAP ............................................................................................................................................ 109
Authentication ............................................................................................................................ 110
Events .............................................................................................................................................. 111
5
Events settings ............................................................................................................................ 112
Industrial ............................................................................................................................................. 114
IO ..................................................................................................................................................... 114
DI ................................................................................................................................................. 114
DO ............................................................................................................................................... 116
Serial ............................................................................................................................................... 117
Modbus Slave .................................................................................................................................. 121
Modbus TCP ................................................................................................................................ 121
Modbus RTU ................................................................................................................................ 122
Modbus RTU over TCP ................................................................................................................ 123
Modbus Master ............................................................................................................................... 124
Modbus Master ........................................................................................................................... 124
Channel ....................................................................................................................................... 125
Maintenance ....................................................................................................................................... 128
Tools ................................................................................................................................................ 128
Ping.............................................................................................................................................. 128
Traceroute ................................................................................................................................... 129
Packet Analyser ........................................................................................................................... 130
Qxdmlog ...................................................................................................................................... 131
Schedule .......................................................................................................................................... 132
Log ................................................................................................................................................... 133
System Log .................................................................................................................................. 133
Log Settings ................................................................................................................................. 134
Upgrade........................................................................................................................................... 135
Backup and Restore ........................................................................................................................ 136
Reboot ............................................................................................................................................. 137
App ...................................................................................................................................................... 137
6
Disclaimers
All data and information contained in or disclosed by this document are confidential and proprietary
information of RF Industries, and all rights therein are expressly reserved. By accepting this material,
the recipient agrees that this material and the information contained therein are held in confidence
and in trust and will not be used, copied, reproduced in whole or in part, nor its contents revealed in
any manner to others without the express written permission of RF industries. The information
provided in this document is provided on as “as is” basis.
In no event will RF Industries be liable for any damages arising directly or indirectly from any use of
information contained in this document. Information in this document is subject to change without
any notice.
Life Support – This product is not designed for use in life support appliances or systems where
malfunction of these products can reasonable be expected to result in personal injury.
RF Industries customers using or selling these products for use in such applications do so at their
own risk and agree to fully indemnify RF Industries for any damages resulting from such application.
Right to make changes – RF Industries reserves the right to make changes, without notice, in the
products, including circuits and software, describes or contained herein in order to improve design
and / or performance.
Some Features outlined in this manual may require an updated firmware and/ or GUI to work.
Please contact RF Industries for more information.
7
RF Exposure and Electrical Safety
The use of this modem in any other type of host configuration that may not comply with the RF
exposure requirements should be avoided. During operation, a minimum of 20 cm should be
maintained between the antennas, whether extended or retracted, and the user’s / bystander’s
body (excluding hands, wrists, feet and ankles) to ensure RD exposure compliance in accordance
with ARPANSA guidelines. The modem is not designed, nor intended, for use in applications within
20 com of the body of the user. Continued operational compliance of the modem relies upon it
being used with a AS/NZS 60950.1 approved SELV power supply.
Cautions This modem has been tested and found to comply with the limits pursuant to relevant ACMA
standard. These limits are designed to provide reasonable protections against harmful interference
in an appropriate installation. This modem generates, uses, and can radiate radio frequency energy
and, if not used in accordance with instructions, can cause detrimental interference to other radio
communications networks and e only the supplied or approved antenna. Unauthorised antennas,
modification, or attachments could impair performance, damage the modem, or result I violation of
RF exposure regulations.
There is no guarantee that electromagnetic interference will not occur in a particular installation. If
the modem does cause detrimental interference in radio and television reception, which can be
verified by turning the modem on and off, the user is encouraged to try to correct the interference
by one or more of the following measures:
▪ Re-orient or relocate the receiving radio or TV antenna
▪ Increase the separation between the modem and the receiver
▪ Contact RF Industries Maxon Technical Support for assistance.
Changes or modifications to the modem that are implemented without the express consent of RF
Industries Pty. Ltd. void the product warranty and terminate the user’s authority to use the
modem.
8
General Safety RF Interference Issues: Avoid possible radio frequency (RF) interference by carefully following safety
guidelines below:
Switch OFF the modem when in an aircraft. The use of cellular devices in an aircraft is illegal. It may
endanger the operation of the aircraft and/or disrupt the cellular network. Failure to observe this
instruction may lead to suspension or denial of cellular services to the offender, legal action, or both.
Switch OFF the modem in the vicinity of gasoline or diesel fuel pumps or before filling a vehicle with
fuel.
Switch OFF the modem in hospitals and any other places where medical equipment may be in use.
Respect restrictions on the use of radio equipment in fuel depots, chemical plants, or in areas of
blasting operations.
There may be hazards associated with the operation of your modem in the vicinity of inadequately
protected personal medical devices such as hearing aids and pacemakers. Please consult the
manufacturers of the medical device to determine if it is adequately protected.
Operation of the modem in the vicinity of other electronic equipment may cause interference to the
equipment if it is inadequately protected. Observe any warning signs and manufacturers’
recommendations.
The modem contains sensitive electronic circuitry. Do not expose the modem to any liquids, high
temperatures or shock. The modem is not waterproof. Please keep it dry and store it in a cool, dry
place.
Only use original accessories or accessories that are authorized by the manufacturer. Using
unauthorized accessories may affect your modem’s performance, damage your modem and violate
related national regulations.
Always handle the modem with care. There are no user serviceable parts inside the modem.
Unauthorised dismantling or repair of the modem will void the warranty.
NOTE:
Vehicle Safety • Do not use the modem whilst driving.
• Respect national regulations on the use of cellular devices in vehicles. Road safety always
comes first.
The product needs to be powered via a suitably rated power source or the power
supply provided. Otherwise, the safety-of-use of the modem cannot be guaranteed.
Do not affix the modem in an area exposed to the elements where it may be
susceptible to a lightning-strike hazard.
9
• If incorrectly installed in a vehicle, the operation of the modem could interfere with the
correct functioning of vehicle electronics. To avoid such problems, ensure that the
installation has been carried out by qualified personnel.
• Verification of the protection and interference-free performance of vehicle electronics
should be a part of the installation procedure
Potentially Unsafe Areas Posted Facilities: Turn off the modem in any facility or area when posted notices require you to do
so.
Blasting Areas: Turn off the modem where blasting is in progress. Observe restrictions and follow
any regulations or rules.
Potentially Explosive Atmospheres: Turn off the modem when you are in any area with a potentially
explosive atmosphere. Obey all signs and instructions. Sparks in such areas could cause an explosion
or fire, resulting in bodily injury or death.
Areas with a potentially explosive atmosphere are often but not always clearly marked. They
include:
• Fuelling areas such as gas or petrol stations
• Below deck on boats
• Transfer or storage facilities for fuel or chemicals
• Vehicles using liquefied petroleum gas, such as propane or butane
• Areas when the air contains chemicals or particles such as grain, dust or metal powders
• Any other area where you would normally be advised to turn off machinery of any kind
Concentrated Electromagnetic Activity: Avoid using the modem within areas of high
electromagnetic wave activity or within enclosed metallic structures e.g. lifts.
10
Contact Information
In keeping with Maxon's dedicated customer support policy, we encourage you to
contact us.
Technical
Hours of Operation: Monday to Thursday 8.30am to 5.00pm* & Friday from 8:30am
to 4:30pm
Telephone: 1300 000 734
Facsimile: +61 2 96300844
Email: [email protected] * Public holidays excluded
Sales
Hours of Operation: Monday to Thursday 8.30am to 5.00pm* & Friday from 8:30am
to 4:30pm
Telephone: 1300 000 734
Facsimile: +61 2 96300844
Email: [email protected] * Public holidays excluded
Website: www.rfi.com.au
Address: RF Industries, 99 Station Road, Seven Hills NSW 2147
Australia
Postal Address: RF Industries, Locked Bag 2007, Seven Hills NSW 1730
Australia
11
Revision History
Product Dualmax Dual SIM Ethernet Router
Model MA-2055
Document Type PDF
Current Version Number 1.0
Status of the Document Release
Revision Date 29/5/2020
Total Number of Pages 137
Level Date History
1.0
12
Introduction
The MA-2055 is an LTE Ethernet modem router for providing data communications via the public
network.
The MA-2055 utilises an industrial 32-bit CPU with an embedded operating system. The device has
two Ethernet ports, I/O, and a terminal block serial port to conveniently connect devices to a cellular
network, allowing you to connect your existing serial and Ethernet devices with minimal
configuration.
The MA-2055 is suited towards M2M applications such as smart grid, digital media installations,
telemetry equipment, digital factory, finance, payment device, environment protection, water
conservancy and so on.
Features and Benefits
• Rugged design for Industrial grade connectivity and stability
• Dual SIM for back up and redundancy between carriers
• Automated failover/failback between Ethernet and Cellular
• Variety of VPN tunnelling schemes including IPSec, L2TP, PPTP, OpenVPN and GRE to secure
your data
• Support rich protocols like SNMP, Modbus bridging, RIP, OSPF
Specification
Hardware System
CPU 528 MHz, ARM Cortex A7
Memory 128 MB Flash, 128 MB DDR3 RAM
Storage 1 × Micro SD
Ethernet Interface
Ports 2 × RJ-45
Property 1 × WAN + 1 × LAN or 2 × LAN (PoE PSE Optional)
13
Physical Layer 10/100 Base-T (IEEE 802.3)
Data Rate 10/100 Mbps (Auto-Sensing)
Interface Auto MDI/MDIX
Mode Full or half duplex (Auto-Sensing)
Cellular Interfaces
Connectors 2 × 50 Ω SMA (Center PIN: SMA Female)
SIM Slots 2
Serial Interface
Ports 1 × RS232
Connector Terminal block
Baud Rate 300bps to 230400bps
IO
Connector Terminal block
Digital 1 × DI + 1 × DO
Software
Network Protocols PPP, PPPoE, SNMP v1/v2c/v3, TCP, UDP, DHCP, RIPv1/v2, OSPF, DDNS,
VRRP, HTTP, HTTPS, DNS, ARP, QoS, SNTP, Telnet, VLAN, SSH, etc.
VPN Tunnel DMVPN/IPsec/OpenVPN/PPTP/L2TP/GRE
Access Authentication CHAP/PAP/MS-CHAP/MS-CHAPV2
Firewall ACL/DMZ/Port Mapping/MAC Binding/SPI/URL Filter
Management Web, CLI, SMS, On-demand dial up
AAA RADIUS, TACACS+, LDAP, Local Authentication
Multilevel Authority Multiple Levels of User Authority
Reliability VRRP, WAN Failover, Dual SIM Backup
Serial Port Transparent (TCP Client/Server, UDP), Modbus Gateway (Modbus RTU to
Modbus TCP)
Power Supply and Consumption
Power Input Connector 2-pin with 5.08 mm terminal block
Input Voltage 9-48 VDC
Power Consumption Typical 1.9 W, Max 2.4 W
Physical Characteristics
14
Ingress Protection IP30
Housing & Weight Metal, 271 g
Dimensions 108 x 90 x 26 mm (4.25 x 3.54 x 1.02 in)
Mounting Desktop, Wall or DIN Rail Mounting
Others
Reset Button 1 × RESET
LED Indicators 1 × POWER, 1 × SYSTEM, 1 × SIM, 3 × Signal strength
Environmental
Operating Temperature
-40°C to +70°C (-40℉ to +158℉) Reduced Cellular Performance Above
60°C
Storage Temperature -40°C to +85°C (-40℉ to +185℉)
Ethernet Isolation 1.5 kV RMS
Relative Humidity 0% to 95% (non-condensing) at 25°C/77℉
Ethernet, serial and power interfaces on the bottom of the modem.
Antenna ports can be found at the top of the modem.
15
Installation Introduction
Important
You should check the router configuration immediately after installation to ensure all settings are as
desired. Failure to do so may result in unauthorised access to your equipment.
Package Contents
SIM and SD Card Installation
Power off the router and unscrew the top cover, Slide the SIM card into the desired slot ensuring the
SIM card is correctly inserted as per the images in the tray. Replace the top cover and screw back
into place.
For SD card installation unscrew the top cover, locate the SD slot under the SIM2 slot and insert the
SD card. Replace cover and screw back into place.
Name Qty
Router 1
Cellular Antenna 2
Ethernet Cable 1
Power Pack 1
6-Pin Terminal Connector 1
DIN Mount Bracket 1
Setscrews 4
SIM card slots
16
Antenna Installation Screw the SMA male connector of the cellular antenna(s) to the female SMA connector(s) of the
Router with labels “MAIN” and “AUX”.
Warning: Please ensure that the correct antennas are fitted to the correct place – there will be
significant degradation of signal quality and it may cause internal damage to the modem/router if
incorrect antennas are used. You should ensure the screw connections are corrected seated – lose
antennas connections can cause RSSI issues, including intermittent signal loss.
Serial Interface
The MA-2055 supports serial connection through a terminal RS232 connection.
Pin outs are as follows:
PIN RS232 Description
3 GND Ground
5 RXD Receive Data
6 TXD Transmit Data
SC card slot
17
Power
The input supply voltage range is 9-48 VDC. We recommend using the standard DC power adaptor
from the box.
Indicator Lights Introduction
The router provides following indicator lights: POWER, SYSTEM, SIM, SIGNAL STRENGTH
Status indication of these lights is summarised below:
LED Indication LED Displayed Description
POWER Power Status Off The power is off
SOLID GREEN The power is on
SYSTEM System Status SOLID GREEN Modem is in start up
BLINKING GREEN System is running
ON RED System Error
SIM SIM Card/s Status OFF Neither SIM is registered to the Network / No SIM is registering to the modem
Slow BLINK GREEN SIM 1 is registered and ready for Communication
RAPID BLINK GREEN SIM 1 is registered and actively dialled up
SOLID GREEN SIM 1 is registered to the network and has successfully dialled up
SLOW BLINK ORANGE SIM 2 is registered and ready for Communication
RAPID BLINK ORANGE SIM 2 is registered and actively dialled up
STATIC ORANGE SIM 2 is registered to the network and has successfully dialled up
SIGNAL STRENGTH x3 LEDs
Signal Strength ALL OFF No Signal
1 GREEN / OFF / OFF Weak signal with 1-10 ASU
GREEN / GREEN / OFF Acceptable signal with 11-20 ASU
ALL GREEN Strong signal with 21-31 ASU
Ethernet port
Port Status STATIC ORANGE Connected
BLINKING ORANGE Transmitting data
OFF Disconnected
18
Reset button
The modems “Reset” button is used to restore the modem to its original factory default settings. To
restore the router to factory default settings, the user needs to press the “Reset” button for more
than 5 seconds. The SYSTEM LED will then rapidly blink green once button is released. The SYSTEM
light will then turn off and then come back on to green blinking. The router will now be reset to
factory default.
NB. The reset button is located under the SIM cover under SIM2 to avoid accidental reset.
N.B Reset to Factory default can also be done via the web GUI see section xxxxxxxx for details.
19
Configuration and Management
The MA-2055 is configured via a web interface (Guided user interface – GUI). To access the MA-2055
GUI a computer with a spare ethernet LAN port is required. The LAN card configuration should have
the Internet Protocol v4 enabled and set to obtain an IP Address and DNS server address
automatically (“DHCP” or “Automatic”).
To check these settings, users need to go to LAN adaptor properties and check their Internet
Protocol v4 TCP/IP settings. For Windows users, it should look as follows:
Connection steps 1. Connect the ethernet cable to the MA-2055 router through one of the ethernet ports and
the other end to the ethernet LAN port on your computer
2. The computer should obtain the IP address from the MA-2055 DCHP range automatically
3. In a web browser type 192.168.0.1 in the URL field (this is the default IP Address of the
router’s ports), below login page should prompt for password and username, use Username:
admin Password: password for first login
20
4. Upon first login modem will prompt to change the username and password
RFI strongly advised to change the password and username to a secure set of login details
in order to assist with the security of the device.
21
Status
Overview
This page shows basic information of Router including hardware, firmware and network information.
Model – Model number of the modem
Serial Number – Serial number of this modem
Firmware version – The current firmware running on the modem
Hardware version – The current hardware running on the modem
Local Time – Current time as per the modem time settings (AEST by default)
Uptime – The amount of time since the router last (re)booted.
CPU load – current CPU utilisation of the modem
RAM – shows the RAM capacity and current utilisation of the modem
Flash - shows the Flash capacity and current utilisation of the modem
Cellular
Shows Modem and network details for the Cellular connection
22
Status – Shows detection status of the module and SIM card
Model – Cellular module model
Current SIM – Current SIM card being utilised
Signal Level - Cellular Signal level in ASU and dBm
Register Status – Shows the register status of the SIM card
IMEI – IMEI of the device
IMSI – IMSI of the SIM currently in use
ICCID – ICCID of the SIM currently in use
ISP – Shows the network provider which the SIM card is registered on
Network Type – Shows the network connection type, LTE, 3G etc
PLMN ID - Shows the current PLMN ID, including MCC, MNC, LAC and Cell ID
LAC - Shows the location area code of the SIM card
Cell ID - Shows the cell ID of the SIM card location
Status - Shows the connection status of cellular network
IP Address - Shows the IP address of cellular network
Netmask - Shows the netmask of cellular network
23
Gateway - Shows the gateway of cellular network
DNS - Shows the DNS of cellular network
Connection Duration - Shows information on how long the cellular network has been connected
Network
This shows the LAN and WAN status of the router
Port - Shows the name of WAN port
Status – Shows the status of WAN port, "up" indicates WAN is enabled and Ethernet cable is
connected. "down" indicates WAN function is disabled or there is no Ethernet cable connected
Type - Shows type of WAN port used during the dial-up connection
IP Address - Shows the IPv4 or IPv6 address of WAN port
Netmask- Show the IPv4 netmask of WAN port
Prefix-length- Shows the IPv6 Prefix-length of WAN port
Gateway - Shows the gateway of WAN port
DNS - Shows the DNS of WAN port
24
Connection Duration - Shows information on how long the Ethernet connection has been active on
the WAN port when WAN is enabled. Once WAN is disabled or the Ethernet connection is
disconnected, the duration will stop.
VPN
The VPN status can be viewed on this page
Clients
Name - Shows the name of the enabled VPN client
Status - Shows the status of client. Will display "Connected" when client is connected to the server
and "Disconnected" when client is disconnected to the server
Local IP - Shows the local IP address of the tunnel
Remote IP - Shows the real remote IP address of the tunnel
Server
Server Name - Shows the name of the enabled VPN Server
Status - Show the status of Server
Connected List
25
Server Type - Shows the type of the server
Client IP - Shows the IP address of the client which connected to the server
Duration - Shows the information about how long the client has been connected to this server when
the server is enabled. Once the server is disabled or connection is disconnected, the duration will
cease
Routing
This page will show the routing status of the routing table and the ARP cache
Routing table
Destination – Shows the IP address of destination host or destination network
Netmask - Shows the netmask of destination host or destination network
Gateway - Shows the IP address of the gateway
Interface - Shows the outbound interface of the route
Metric - Show the metric of the route
ARP Cache
IP- Shows the IP address of ARP pool
MAC - Shows the IP address's corresponding MAC address
Interface - Shows the binding interface of ARP
26
Host List
This page shows the host information
DHCP Lease
IP Address - Shows IP address of DHCP client
MAC - Shows MAC address of DHCP client
Lease Time Remaining - Shows the remaining lease time of DHCP client
MAC Binding
IP Address – Shows the IP address set in the Static IP list of DHCP service
MAC - Shows the MAC address set in the Static IP list of DHCP service
27
Network
Interface
Port
This section goes through how to configure the Ethernet ports
The ports can be set up depending on how they are being used.
Status – Status can be selected as either "up" to enable and "down" to disable
Property – Allows the ethernet port to be set as either a LAN or a WAN port
Speed – Allows the ethernet speed to be set as: "auto", "100 Mbps", and "10 Mbps"
Duplex – Allows the Ethernet port to be set as: "auto", "full", and "half"
WAN
The WAN port can be used to gain get Internet access via an Ethernet cable. There are 3 connection
types.
Bridge
Bridge settings can be used for managing local area network devices connected to LAN ports of the
MA-2055, allowing each device to access the Internet.
28
Name – The name of the Bridge. “Bridge0” is set by default and cannot be changed
STP – Allows the STP to be enabled/ disabled. Default is disabled (unticked) by default
IP Address – The IP address that is set by the bridge. Default is 192.168.0.1
Netmask – Set the netmask of the bridge. The default is 255.255.255.0
MTU – Allows the maximum transmission unit to be set. Range: 68-1500, default is 1500
Multiple IP Addresses – Allows multiple IP addresses to be set for the bridge. Default is Null
Switch
This allows the LAN and VLAN settings to be set. This works through logically dividing the LAN device
into network segments.
LAN Settings
29
Name – Set the interface name of the VLAN
VLAN ID – Set the VLAN ID of the interface
IP address – Set the IP address of the LAN port
Netmask – Set the netmask of the LAN port
MTU – Set the maximum transmission unit of the LAN port, range: 68 – 1500
VLAN settings
VLAN ID - Set the ID of the VLAN, range: 1-4094
LAN1, LAN2 – Make the VLAN bind with the corresponding ports, setting can be “Tagged”,
“Untagged”, and “Close” for Ethernet frame on trunk link.
CPU – Control communication between the VLAN link and other networks
Cellular
This page allows the setting of parameters for the cellular network. There are two cellular interfaces
in the MA-2055, these are referred to as SIM 1 and SIM2.
Only one interface is active and transmitting data at a time. The second interface becomes active if
the first one fails causing the device to fail back to the second interface. By default SIM 1 will take
precedence over SIM 2.
30
Cellular settings
Enable – Allows each SIM slot to be manually enabled or disabled
Network Type –Allows the connection type to be set to “Auto” (connects to the strongest signal
automatically), “4G only” (only allows 4G connections) “3G only” (only allows 3G connections),
default is Auto
APN – Allows the entry of the Access Point Name of the dial up connection provided by local ISP,
default is telstra.internet
Username – Allows entry of the Username for cellular dial-up connection as provided by the local
ISP, default is Null
Password – Allows entry of the password for cellular dial- up connection for the local ISP, default is
Null
Access Number – Allows entry of the dial-up centre NO. For cellular dial-up connection provided by
local ISP. Default is Null
PIN code – Allows entry of a 4-8 character PIN code to unlock the SIM, default is Null
Authentication type – Can be set to "Auto", "PAP", "CHAP", "MS-CHAP", and "MS-CHAPv2", default is
“Auto”
Roaming – Disable or enable roaming (roaming may also need to be set on SIM via provider) default
is Disabled (unticked)
SMS Centre – Allows entry of the local SMS centre number for storing, forwarding, converting and
delivering SMS message, default is Null
31
Connection settings and dual SIM strategy allow the back-up settings for the modem to be set.
These can be accessed by hitting the drop-down icon to access the options.
Connection Setting
Connection Mode –Set to “Always Online” or “Connect on Demand”, default is “Always Online”. If
“Connect on Demand” is selected this will bring up one of three choices for connection: “Triggered
by Call”, “Triggered by SMS”, and “Triggered by IO”
Triggered by Call – The modem will switch from offline mode to cellular network mode
automatically when it receives a call from the specific phone number/s . For this option a call group
will need to be selected from the below drop down. For directions on setting up call groups see
section xxxxxxxxxxxxxxxxxxxx .
Triggered by SMS - The router will switch from offline mode to cellular network mode
automatically when it receives a specific SMS from specific mobile number/s. For this option a SMS
group will need to be selected from the below drop down, and the text will need to be added to the
open text box. For directions on setting up SMS groups see section xxxxxxxxxxxxxxxxxxxx .
Redial Intervals –Allows the setting of the amount of time between attempts to redial, range
between 0-3600
32
Dual SIM strategy
Primary SIM Card – Set the default SIM preference, Default is SIM1
Switch to backup SIM card when ICMP detection fails – When the packet loss during IMCP detection
exceeds the pre-set value the modem switches to the backup SIM, Default is Enabled
Switch to the backup SIM when the connection fails – The modem will switch to the backup SIM
when the connection to the network fails, default is enabled
Switch to backup SIM card when roaming is detected - The modem will switch to the backup SIM
card when the primary one is roaming, Default is Disabled
Data Traffic Limit Strategy - Enable/disable Data Traffic Limit Strategy. Data Allowance, Default is
Disabled
Data Allowance – Set the data allowance for the month (in MB). The modem will switch to the
backup SIM if the used data traffic exceeds this allowance.
Billing Day – Set the monthly billing date the cellular usage will reset and restart to count on this day,
Range: 1-28
33
Enable NAT – Disable or enable, default is Enabled
Re-start up when Dial-up Fails – Forces the modem into an automatic restart when the number of
failed dial-ups reaches a certain limit, default is Disabled
ICMP Server – IP address of the ICMP detection server, Default is 8.8.8.8
Secondary ICMP Server –IP address of the secondary CIMP server, Default is 114.114.114.114
ICMP Detection Max Retries – Number of retires to the ICMP server before SIM switch over, Default
3
ICMP Detection Timeout – Time allowed for each target’s ICMP detection attempt, Default 5s
ICMP Detection Interval – Interval between attempts to Ping the target ICMP, Default 15s
SMS Settings
SMS Mode – Allows selection of the SMS mode, choose between “TEXT” and “PDU, Default PDU
SMS Remote Control –Allows SMS remote control to be Enabled or Disabled, Default Disabled
Authentication Type (for SMS Remote control enabled) - Options are: “phone number” (Use phone
number for authentication) or ”password + phone number” (Use both ""Password"" and ""Phone
number"" for authentication)
Password (for SMS Remote control enabled) - Set password for authentication
Phone Group Password (for SMS Remote control enabled) - Select the Phone group which used for
remote control. User can click the Phone Group and set phone number
Loopback
The loopback interface is used for replacing the modem’s ID while it is activated. If the interface is
DOWN the ID of the modem has to be reselected, this can lead to long convergence time of the
OSPF. Therefore it is recommended to have the Loopback interface as the ID of the modem.
This is a logic and virtual interface. The default is to have no loopback set.
34
Loopback Address
IP Address – The set IP address for the modem loopback Default is 127.0.0.1
Netmask – The set Netmask for the modem loopback Default is 255.0.0.0
Multiple IP addresses – Allows the user to add IP addresses as needed, by default this is Null
Firewall
This section details how to set the firewall parameters of the modem.
Security
35
Prevent Attack
DoS / DDoS protection – Allows the DoS / DDoS Protection to be enabled or Disabled, Default is
Disabled
Access Service Control
Port – Allows the port number for the service to be selected Range: 1-65535
Local – Allows access to the router locally, default is Enable
Remote – Allows the modem to be accessed remotely Default is Disable
HTTP – Allows users to log into the device locally via HTTP in order to access and control it through
the Web, default is Disabled
HTTPS - Allows users to log into the device locally via HTTPS in order to access and control it through
the Web, default is Disabled
TELNET – Allows local and remote access to the device via TELNET when enabled, Default is Disabled
SSH - Allows local and remote access to the device via SSH when enabled, Default is Disabled
FTP - Allows local and remote access to the device via FTP when enabled, Default is Disabled
URL Blocking – Allows the user to enter URL /s that can be blocked
Keyword Blocking – Specific websites can be blocked by entering keywords. Max character limit is 64
36
ACL
This section allows the user to configure the Access Control List.
ACL Setting
Default Filter Policy – Can be set as “Accept” or “Deny”, this determines how the packets which are
not included in the access control list will be processed by the default filter policy
Access Control List
Type – Can be set as either "Extended" or "Standard"
ID – Allows the user to defined the ACL number. Range: 1-199
Action – Can be set to "Permit" or "Deny"
Protocol – Allows the protocol to be set, options are "ip", "icmp", "tcp", "udp", and "1-255"
Source IP – Allows the source network address to be set (leaving it blank means all)
Source Wildcard Mask – Allows the wildcard mask of the source network address to be set
Destination IP – Allows the Destination network address to be set (0.0.0.0 means all)
Destination Wildcard Mask – Allows the wildcard mask of destination address to be set. Description
Fill in a description for the groups with the same ID
ICMP Type - The type of ICMP packet. Range: 0-255
ICMP Code - The code of ICMP packet. Range: 0-255
Source Port Type - Allows the source port type to be selected, such as specified port, port range, etc
37
Source Port – Allows the source port number to be set. Range: 1-65535
Start Source Port – Allows the start source port number to be set Range: 1-65535
End Source Port – Allows the end source port number to be set. Range: 1-65535
Destination Port Type – Allows selection of the destination port type, such as specified port, port
range, etc.
Destination Port – Allows the destination port number to be set. Range: 1-65535
Start Destination Port – Allows the start destination port number to be set. Range: 1-65535
End Destination Port – Allows the end destination port number to be set. Range: 1-65535
More Details – Displays the information about the port
Interface List
Interface – Allows the network interface for access control to be selected
In ACL – Allows the user to set a rule for incoming traffic from ACL ID
Out ACL – Allows the user to set a rule for outgoing traffic from ACL ID
38
DMZ
The DMZ (Demilitarized Zone) hosting feature allows one local user to be exposed to the Internet for
use of a special-purpose service such as Internet gaming or videoconferencing. DMZ hosting
forwards all the ports at the same time to one PC. The Port Forwarding feature is more secure
because it only opens the ports you want to have opened, while DMZ hosting opens all the ports of
one computer, exposing the computer so the Internet can see it.
Enable – Allows the user to enable or disable DMZ Default is Disabled
DMZ Host – Allows the user to enter the IP address of the DMZ host on the internal network
Source Address – Allows the user to Set the source IP address which can access to DMZ host.
"0.0.0.0/0" allows any address any address
39
IP Passthrough
IP Passthrough mode shares or "passes" the Internet providers assigned IP address to a single LAN
client device connected to the router
Enable – Allows the user to enable or disable IP Passthrough
Passthrough Mode – allows the user to select passthrough mode, options are “DHCPS-Fixed” or
“DHCPS-Dynamic”
MAC – allows the user to set the MAC address
40
Port Mapping
Allows the redirection of communication through the combination of an address and a port number
while the packets are traversing a network gateway.
Source IP – Allows the user to specify the host or network which can access local IP address.
0.0.0.0/0 allows all
Source Port – Allows the user to specify the TCP or UDP port from which incoming packets are
forwarded. Range: 1-65535
Destination IP – Allows the user to enter the IP address that packets are forwarded to after being
received at the incoming interface
Destination Port – Allows the user to enter the TCP or UDP port that packets are forwarded to after
being received on the incoming port(s). Range: 1-65535
Protocol – Allows the user to specify either "TCP" or "UDP"
Description - Description of the rule
41
MAC Binding
Allows the user to specify hosts by binding the MAC address to an IP address that is listed in the ACL.
MAC Address – The MAC address for binding
IP Address – The IP address to bind to
Description - Description of the binding rule for each piece of MAC-IP
42
SPI
Firewall enhance network security and use SPI to check the packets into the network.
Enable – Allows the user to enable/disable SPI firewall, default is disabled
Filter Proxy – Allows the user to block HTTP requests containing "Host": string
Filter Cookies - Identifies HTTP requests that contain "Cookie": String and mangles the cookie
Filter ActiveX- Blocks HTTP requests of the URL that ends in ".ocx" or ".cab"
Filter Java Applets - Blocks HTTP requests of the URL that ends in ".js" or ".class"
Filter Multicast - Prevents multicast packets from reaching the LAN
Filter IDENT(port 113) - Prevents WAN access to Port 113
Block WAN SNMP access - Blocks SNMP requests from the WAN
Filter WAN NAT Redirection - Prevents hosts on LAN from using WAN address of router to connect
servers on the LAN (which have been configured using port redirection)
Block Anonymous WAN Requests - Stops the router from responding to "pings" from the WAN
43
QoS Quality of Service (QoS) determines the traffic prioritisation and resource control mechanisms
utilised by the modem. QoS can be utilised to set the priority for different applications, it can set the
priority for different uses, data flows, or to guarantee a certain level of performance to a data flow.
Setting can be set independently for download or upload, with the same options for either.
QoS(Download) / (Upload)
Service Category
Enable – Allows the user to enable or disable QoS Default is disabled
Default Category – Allows selection of default category from options as set by the user in the Service
Category system
Download/Upload Bandwidth Capacity – Set the download/upload bandwidth capacity of the
network that the router is connected with, in kbps. Range: 1-8000000
Service Category
Name – Set the name of the category, digits, letters and "-" can be used
Percent (%) - Set percent for the service category. Range: 0-100
44
Max BW(kbps) – Set the maximum bandwidth that this category is allowed to consume, in kbps. The
value should be less than the "Download/Upload Bandwidth Capacity" when the traffic is blocked
Min BW(kbps) - Set the minimum bandwidth that can be achieved for the category, in kbps. The
value must be less than the "MAX BW" value
Service Category Rules
Name – User defined name for the rule
Source IP – The source address of flow control (blank defines any)
Source Port – Set the source port of flow control. Range: 0-65535 (blank defines any)
Destination IP - Set destination address of flow control (blank defines any)
Destination Port – Set the destination port of flow control. Range: 0-65535 (blank defines any)
Protocol – Set the protocol options are :"ANY", "TCP", "UDP", "ICMP", and "GRE"
Service Category - Set service category for the rule, select from the user defined categories
45
DHCP DHCP assigns IP addresses to user’s local devices. This allows the user to achieve dynamic
configuration of IP addresses and other information.
DHCP Server
Sets the MA-2055 as a DHCP server to distribute IP addresses when a host logs on, and ensures that
IP address are unique for all connected devices.
DHCP Server
Enable – User can enable or disable DHCP server. Default is Enabled
Interface – Allows user to select interface. Default is Bridge0
Start Address – Define the beginning of the pool of IP addresses which will be leased to DHCP clients.
Default is 192.168.1.100
End Address - Define the end of the pool of IP addresses which will be leased to DHCP clients.
Default is 192.168.1.199
Netmask - Define the subnet mask of IP address obtained by DHCP clients from DHCP server. Default
is 255.255.255.0
Lease Time (Min) – Allows the user to set the lease time on which the client can use the IP address
obtained from DHCP server. Range: 1-10080. 1440
46
Primary DNS Server – Allows the user to set the primary DNS server. Default is 114.114.114.114
Secondary DNS Server - Set the secondary DNS server. Null
Windows Name Server – Allows the user to define the Windows Internet Naming Service obtained
by DHCP clients from DHCP sever. Default is Null (normally this is blank)
Static IP
MAC Address – Allows the user to set a static and specific MAC address for the DHCP client (sho9uld
be unique within the server to avoid conflicts). Default is Null
IP Address – Allows the user to set a static and specific IP address for the DHCP client (must be
outside of the DHCP range). Default is Null
47
DHCP Relay
For when the DNCP client and Server are not in the same subnet the MA-2055 can also act as a DHCP
Relay
Enable – Allows the DHCP relay to be Enabled or disabled. Default is Disabled
DHCP Server - Allows the user to set the DHCP server, there can be up to 10 servers configured;
separate them by blank space or ","
48
DDNS
For users that have a dynamically assigned IP address, a DNS server that supports dynamic DNS
updates will allow you to refer to your devices by name and have them continue to connect correctly
even when the IP address of the device changes.
The DDNS client tool must be coordinated with the DDNS server. Ensure that prior to configuration
registration for domain name has been completed.
49
Enable - Enable/disable DDNS. Default is Disabled
Name - Descriptive name for the DDNS
Interface – The interface bundled with the DDNS
Service Type - The DDNS service provider
Username - The username for DDNS register
User ID - User ID of the custom DDNS server
Password - The password for DDNS register
Server - The name of DDNS server
Server Path - By default the hostname is appended to the path
Hostname - The hostname for DDNS
Append IP - Append the current IP to the DDNS server
50
Link Failover
Link failover allows for configuration of the failover strategies including VRRP strategies and WAN
failover strategies between Ethernet WAN and cellular.
Configuration Steps
1. Define one or more SLA operations (ICMP probe).
2. Define one or more track objects to track the status of SLA operation.
3. Define applications associated with track objects, such as VRRP, WAN failover or static routing
SLA
SLA allows for the configuring the link probe method. The default probe type is ICMP.
ID – The SLA index. Up to 10 SLA settings can be added. Range: 1-10
Type - ICMP-ECHO is the default type to detect if the link is alive. Default is icmp-echo
Destination Address - Detected IP address. Default is 114.114.114.114
Secondary Destination Address - Secondary detected IP address. Default is 8.8.8.8
Data Size - Data size as defined by the user. Range: 0-1000. Default is 56
Interval (s) - Detection interval as defined by the user. Range: 1-608400. Default is 30
Timeout (ms) - Timeout for response to determine ICMP detection failure. Range: 1-300000. Default
is 5000
PING Times - Define PING packet numbers in each SLA probe. Range: 1-1000. Default is 5
51
Packet Loss Rate - The packet loss rate in each SLA probe. SLA probe fails when the preset packet
loss rate is exceeded. Default is 20
Start Time Detection - Start time; select from "Now" and blank character. Blank for SLA detection to
not begin. Default is now
52
Track
Track allows for the linkage among the SLA modules Track module and Application module. Track
setting is located between application module and SLA module with main function of shielding the
differences of various SLA modules and providing unified interfaces for application module.
Linkage between Track Module and SLA module
Configuring the linkage relationship between the Track Module and the SLA module allows the
linkage between the two. The SLA module allows for the monitoring of the link status, network
performance and notifications on the Track Module. Successful detection notified by Positive. Failed
detection is notified by Negative.
Linkage between Track Module and Application Module
Configuring the linkage relationship between the Track module and the application module allows
linkage between the two. This triggers notifications when there are changes in the Track Module
that cause changes in the application module.
Application Modules that can receive linkage notifications include: VRRP, WAN failover and static
routing.
As communication can be interrupted the user can set a period of time to delay notifying the
application setting.
Index - Track index. Up to 10 track settings can be configured. Range: 1-10. Default is 1
Type – Can be set as "SLA" or "Interface". Default is SLA
SLA ID - Set SLA ID. Default is1
Interface - The interface of which status will be detected. Default is cellular0
Negative Delay (s) – Wait time before status changes to Down when interface is down or SLA
probing fails, Range: 0-180 (0 refers to immediate switching). Default is 0
Positive Delay (s) - Wait time before status changes to UP when failure recovery occurs Range: 0-180
(0 refers to immediate switching). Default is 1
53
VRRP
Virtual Router Redundancy Protocol provides a method for automatic assignment of Internet
Protocol (IP) routers for participating hosts. As increasing the number of exit gateways is a common
way of improving reliability, the VRRP allows greater reliability of these automatic routing pathways
as you add gateway selections in an IP subnetwork. A virtual router is formed as the VRRP adds the
gateway routers to a virtual group. The VRRP selects which routers undertake which tasks within the
group. “Alive” announcements are then sent out as multicast messages to ensure there are no
failures.
The master router is determined as the router with the highest number, this is normally set as 255
(100 is normally set as the backup). Should a router within the group display a higher priority
number the router with the higher number will then take the position as the virtual master router.
The router priority will be lowered when the connected interface has an uplink state of DOWN or
REMOVED. This ensures the router with the highest priority becomes the gateway for the
transmission task.
54
Enable - Enable or disable VRRP Default is Disable
Interface - The interface of Virtual Router. Default is None
Virtual Router ID - Virtual Router ID. Range: 1-255. Default is None
Virtual IP - The IP address of Virtual Router. Default is None
Priority - VRRP priority range is 1-254 (larger number indicates higher priority). The router with
higher priority should become the gateway router. Default is 100
Advertisement Interval (s) – Time interval between heartbeat package transmission within the
virtual IP group. Range: 1-255. Default is 1
Preemption Mode - In the preemption mode, once a router finds that its own priority is higher than
that of the current gateway router, it will send VRRP notification package, this results in re-election
of the gateway router and the eventual replacement of the router. The original gateway router will
now be a Backup router. Default is Disable
Track ID – Type of trace detection, select the defined track ID or blank character. Default is NULL
55
WAN Failover
The MA-2055 allows for failover between the Ethernet WAN interface and the cellular interface.
Failover occurs when transmission cannot be carried out, or a lack of bandwidth causes data flow
issues.
Switching to the backup failover will occur when the main interface has switched from up to down,
and the set delay period has been reached with no change of state from down status.
Main Interface - Select the main interface link Default is Cellular0
Backup Interface – Select the backup interface link. Default is LAN1/WAN
Startup Delay (s)- Wait interval for the startup tracking detection policy to take effect. Range: 0-300.
Default is 3
Up Delay (s) – Time until the primary interface switches from failed detection to successful
detection, switching can be delayed based on the set time. Range: 0-180 (0 refers to immediate
switching). Default is 0
Down Delay (s) – Time until the primary interface switches from successful detection to failed
detection, switching can be delayed based on the set time. Range: 0-180 (0 refers to immediate
switching). Default is 0
Track ID - Select the defined track ID. Default is 1
56
Routing
Static routing
Setting manually configured routing
Destination - The destination IP address.
Netmask - The subnet mask of destination address.
Interface - Interface through which the data can reach the destination address
Gateway - The IP address of the next router that will be passed through before the input data
reaches the destination address
Distance – Define the priority, smaller value defines higher priority. Range: 1-255.
Track ID – For track detection, select the defined track ID. Can be blank
57
RIP
RIP uses the Hop Count to determine the Metric (distance to the destination address), where the
hop count from the router to the directly connected network is 0, hop count to reached through a
router is 1 and so on so forth. The value of the hop count will be an integer value between 0-15, with
any value higher being represented as infinity, indicating an unreachable network. Due to this
limitation is it recommended to only use RIP for small networks.
RIP operates with a split horizon function and introduces routing from other routing protocols in
order to improve performance and prevent routing loops. Every routers that is running RIP will
contain a routing table with the routing entries to ensure all destinations can be reached.
RIP
Enable - Enable or disable RIP
Update Timer - Define the interval at which to send routing updates. Range: 5-2147483647, seconds.
Timeout Timer - Defines the routing aging time. If no update package on a routing is received within
the aging time, the routing's Routing Cost in the routing table will be set to 16. Range: 5-
2147483647, in seconds
Garbage Collection Timer - Defines the period from when the routing cost of a routing becomes 16
to it is deleted from the routing table. For the duration of the Garbage-Collection Timer, RIP uses 16
as the routing cost for sending routing updates. If Garbage Collection times out and the routing still
has not been updated, the routing will be completely removed from the routing table. Range: 5-
2147483647, seconds
Version - RIP version. Choose from v1 and v2
58
Advanced Settings
Default Information Originate - Default information will be released when this function is enabled
Default Metric - Default cost for the router to reach destination. Range: 0-16
Redistribute Connected – Enable or disable
Metric - Metric after "Redistribute Connected" is enabled. Range: 0-16
Redistribute Static – Enable or disable
Metric - Metric after "Redistribute Static" is enabled. Range: 0-16
Redistribute OSPF – Enable or disable
Metric - Metric after "Redistribute OSPF" is enabled. Range: 0-16
Distance/Metric Management
Distance - The administrative distance that a RIP route learns. Range: 1-255
IP Address - The IP address of RIP route
Netmask - The netmask of RIP route
ACL Name - ACL name of RIP route
Metric - Metric of received route or sent route from the interface. Range: 0-16
59
Policy in/out – Set as "in" or "out"
Interface - Interface of the route
ACL Name - Access control list name of the route strategy
Filter Policy - Policy Type Select can be "access-list" or "prefix-list"
Policy Name – Define the prefix-list name
Policy in/out – Set as from "in" or "out"
Interface - Set interface as "cellular0", or "LAN1/WAN" or "Bridge0"
Passive Interface
Passive Interface - Set interface as "cellular0" or "LAN1/WAN" or "Bridge0"
Interface
Interface Select - Set interface as "cellular0" or "LAN1/WAN" or "Bridge0"
Send Version – Set as "default", or "v1" or "v2"
Receive Version – Set as "default", or "v1" or "v2"
Split-Horizon - "enable" or "disable"
Authentication Mode – Set as "text" or "md5"
Authentication String - Authentication key for package interaction in RIPV2
Authentication Key-chain - Authentication key-chain for package interaction in RIPV2
Neighbour
IP Address - RIP neighbour’s IP address entered manually
Network IP Address - IP address of interface for RIP publishing
Netmask - Netmask of interface for RIP publishing
60
OSPF
Open Shortest Path First provides a link status based on interior gateway protocols. For OSPF it is
advised to manually configure a router ID, if not manually set the system will set an IP address of the
interface and use this as the Router ID. If loopback interface is configured then the last configured IP
address of the Loopback interface will be used, if no Loopback interface is configured the interface
with the largest IP address will be used as the Router ID.
There are five packet types associated with OSPF:
- Hello packet
- DD packet (Database Description Packet)
- LSR packet (Link-State Request Packet)
- LSU packet (Link-State Update Packet)
- LSAck packet (Link-Sate Acknowledgment
Achieving a Neighbour relationship
After router OSPF start up the Hello Packet will be sent though the OSPF interface. On receipt the
parameters of the packet will be checked by the OSPF router. If accepted this will form a “Neighbour
relationship”. If both sides can exchange DD packets and LSDB synchronization is achieved the
adjacency relationship can be formed. LSA describes the network topology around a router, LSDB
describes entire network topology.
61
OSPF
Enable - Enable or disable OSPF
Router ID - Router ID (IP address) of the originating LSA
ABR Type - Select from cisco, ibm, standard and shortcut
RFC1583 Compatibility - Enable/Disable.
OSPF Opaque-LSA - Enable/Disable LSA: a basic communication means of the OSPF routing protocol
for the Internet Protocol (IP)
SPF Delay Time - Set the delay time for OSPF SPF calculations. Range: 0-6000000, in milliseconds
SPF Initial-holdtime - Set the initialization time of OSPF SPF. Range: 0-6000000, in milliseconds
SPF Max-holdtime - Set the maximum time of OSPF SPF. Range: 0-6000000, in milliseconds.
Reference Bandwidth Range: 1-4294967, in Mbit
62
Interface
Interface – Set interface as "cellular0", or ”LAN1/WAN”or "Bridge0"
Hello Interval (s) - Interval of Hello packet. The Hello interval must be the same between adjacent
routers for the neighbour relationship to be established. Range: 1-65535
Dead Interval (s) - If no Hello packet is received from the neighbours within the dead time, then the
neighbour is considered failed. The Dead interval must be the same between adjacent routers for
the neighbour relationship to be established
Retransmit Interval (s) - When the router notifies an LSA to its neighbour, it is required to make
acknowledgement. If no acknowledgement packet is received within the retransmission interval, this
LSA will be retransmitted to the neighbour. Range: 3-65535
Transmit Delay (s) - OSPF packets transmissions can take time, a certain delay time should be
increased before considering the transmission of the LSA aged. This configuration needs to be
further considered on the low-speed link. Range: 1-65535
Interface Advanced Options
Interface - Set interface type
Network - Set OSPF network type
Cost - Set the cost of running OSPF on an interface. Range: 1-65535
Priority - Set the OSPF priority of interface. Range: 0-255
Authentication – User defined authentication mode that will be used by the OSPF area.
Options are:
- Simple: a simple authentication password should be configured and confirmed
- MD5: MD5 key & password should be configured and confirmed
-
Key ID – Set when MD5 is selected for authentication. Range 1-255
Key - Authentication key for OSPF packet interaction
63
Passive Interface
Passive Interface - Interface can be "cellular0", or "LAN1/WAN" or "Bridge0"
Network IP Address - IP address of local network
Netmask - Netmask of local network
Area ID - Area ID of original LSA's router
Area
Area ID - The ID of the OSPF area (IP address)
Area – Can be "Stub" or "NSSA". The backbone area (area ID 0.0.0.0) cannot be set as "Stub" or
"NSSA".
No Summary - Forbid route summarization
Authentication – User defined authentication mode that will be used by the OSPF area.
Options are:
- Simple: a simple authentication password should be configured and confirmed
- MD5: MD5 key & password should be configured and confirmed
64
Area Advanced Options
Area Range
Area ID - Area ID of the interface when it runs OSPF (IP address)
IP Address - The IP address
Netmask - The netmask
No Advertise - Forbid the route information to be advertised among different areas
Cost - Range: 0-16777215
Area Filter
Area ID - Area ID for Area Filter
Filter Type - From "import", "export", "filter-in", and "filter-out"
ACL Name –ACL name which is set on "Routing > Routing Filtering" webpage
Area Virtual Link
Area ID - ID number of OSPF area
ABR Address - ABR is the router connected to multiple outer areas
Authentication – User defined authentication mode that will be used by the OSPF area.
Options are:
- Simple: a simple authentication password should be configured and confirmed
- MD5: MD5 key & password should be configured and confirmed
65
Key ID – Set when MD5 is selected for authentication. Range 1-15
Key - Authentication key for OSPF packet interaction
Hello Interval - The interval time for sending Hello packets through the interface. Range: 1-6553
Dead Interval - Dead interval time for sending Hello packets through the interface. Range: 1-65535
Retransmit Interval - Retransmission interval time for re-sending LSA. Range: 1-65535.
Transmit Delay - Delay time for LSA transmission. Range: 1-65535.
Redistribution
Redistribution Type – Can be "connected", or "static" or "rip"
Metric - Metric of redistribution router. Range: 0-16777214
Metric Type - Metric type can be "1" or "2"
Route Map - Manage route for redistribution
Redistribution Advanced Options
Always Redistribute Default Route - Send redistribution default route after starting up
Redistribute Default Route Metric - Send redistribution default route metric. Range: 0-16777214.
Redistribute Default Route Metric Type – Can be "0" or, "1" or "2".
66
Distance Management
Area Type – Can be "intra-area", or "inter-area" or "external"
Distance - The OSPF routing distance for area learning. Range: 1-255
67
Routing Filtering
Routing Filtering
Access Control List Name - User-defined name, need to start with a letter. Only letters, digits and
underline (_) are allowed
Action - "permit" or "deny"
Match Any – IP and Netmask do not need to be set
IP Address – User defined
Netmask - User defined
IP Prefix-List
Name – Name of filter, must start with a letter. Allowed Characters: letters, digits and underline (_)
are allowed
Sequence Number - Prefix name list can be matched with multiple rules. One rule is matched with
one sequence number. Range: 1-4294967295
Action - "permit" or "deny"
Match Any - IP address, subnet mask, FE Length, and LE Length do not need to be set
IP Address – Set IP address
Netmask – Set Netmask
FE Length - Specify the minimum number of mask bits that must be matched. Range: 0-32.
LE Length - Specify the maximum number of mask bits that must be matched. Range: 0-3
68
VPN Virtual Private Networks (VPNs) allow secure connection between two private networks so that
devices can be connected.
DMVPN
Dynamic multi-point virtual private network (DMVPN) combines mGRE and IPsec to provide a
secure network that can exchange data between sites without the need to pass traffic through a
headquarter VPN server or router.
69
DMVPN
Enable - Enable or disable DMVPN
Hub Address - IP address or domain name of DMVPN Hub
Local IP Address - DMVPN local tunnel IP address
GRE Hub IP Address -GRE Hub tunnel IP address
GRE Local IP Address - GRE local tunnel IP address
GRE Netmask - GRE local tunnel netmask
GRE Key - GRE tunnel key
Negotiation Mode – Set as "Main" or "Aggressive"
Authentication Algorithm – Set as "DES", or "3DES", or "AES128", or "AES192" or "AES256"
Encryption Algorithm - Set as "MD5" or "SHA1"
DH Group – Set as "MODP768_1", or "MODP1024_2" or "MODP1536_5"
Key - The preshared key
Local ID Type – Set as "Default", or "ID", or "FQDN", or "User FQDN"
IKE Life Time (s) - The lifetime in IKE negotiation. Range: 60-86400
SA Algorithm - Set as "DES_MD5", or "DES_SHA1", or "3DES_MD5", or "3DES_SHA1", or
"AES128_MD5", or "AES128_SHA1", or "AES192_MD5", or "AES192_SHA1", or "AES256_MD5" or
"AES256_SHA1"
PFS Group – Set as "NULL", or "MODP768_1", or "MODP1024_2" or "MODP1536-5"
Life Time (s) - The lifetime of IPsec SA. Range: 60-86400
DPD Interval Time (s) - DPD interval time
DPD Timeout (s) - DPD timeout
Cisco Secret - Cisco Nhrp key
NHRP Holdtime (s) - Holdtime of NHRP protocol
70
IPsec Server
IPsec is useful for implementing virtual private networks and for remote user access through dial-up
connection to private networks.
IPsec Server
Enable - Enable IPsec tunnel. A maximum of 3 tunnels is allowed
IPsec Mode – Set as "Tunnel" or "Transport"
IPsec Protocol – Set as "ESP" or "AH"
Local Subnet - The local subnet IP address that IPsec protects
Local Subnet Netmask - The local netmask that IPsec protects
Local ID Type -Set as "Default", or "ID", or "FQDN", or "User FQDN"
Remote Subnet - The remote subnet IP address that IPsec protects
Remote Subnet Mask - The remote netmask that IPsec protects
Remote ID type – Set as "Default", or "ID", or "FQDN", or "User FQDN"
71
IKE Parameter
IKE Version –Set as "IKEv1" or "IKEv2"
Negotiation Mode - Set as "Main" or "Aggressive"
Encryption Algorithm – Set as "DES",or "3DES", or "AES128", or "AES192" or "AES256"
Authentication Algorithm – Set as "MD5" or " SHA1"
DH Group – Set as "MODP768_1", or "MODP1024_2" or "MODP1536_5"
Local Authentication – Set as "PSK" or "CA"
XAUTH - Enter XAUTH username and password after XAUTH is enabled
72
Lifetime (s) - The lifetime in IKE negotiation. Range: 60-86400.
XAUTH List
Username - The username used for the xauth authentication
Password - The password used for the xauth authentication
PSK List
Selector - The corresponding identification number for PSK authentication
PSK - The pre-shared key
SA Parameter
SA Algorithm – Set as DES_MD5", or "DES_SHA1", or "3DES_MD5", or "3DES_SHA1", or
"AES128_MD5", or "AES128_SHA1", or "AES192_MD5", or "AES192_SHA1", or "AES256_MD5" or
"AES256_SHA1"
PFS Group – Set as "NULL", or "MODP768_1" , or "MODP1024_2" or "MODP1536_5"
Lifetime (s) - The lifetime of IPsec SA. Range: 60-86400
DPD Interval Time(s) - DPD interval time to detect if the remote side fails
DPD Timeout(s) - DPD timeout. Range: 10-3600
IPsec Advanced
Enable Compression - Head of IP packet will be compressed after it's enabled
VPN Over IPsec Type – Set as "NONE", or "GRE" or "L2TP" to enable VPN over IPsec function
73
IPsec
Up to three IPsec tunnels can be set.
IPsec
Enable - Enable IPsec tunnel. A maximum of 3 tunnels is allowed
IPsec Gateway Address - The IP address or domain name of remote IPsec server
IPsec Mode – Set as “Tunnel"or "Transport”
IPsec Protocol - Set as "ESP" or "AH"
Local Subnet - The local subnet IP address that IPsec protects
Local Subnet Netmask - The local netmask that IPsec protects
Local ID Type – Set as "Default", or "ID", or "FQDN", or "User FQDN"
Remote Subnet - The remote subnet IP address that IPsec protects
Remote Subnet Mask - The remote netmask that IPsec protects
Remote ID type – Set as "Default", or "ID", or "FQDN", or "User FQDN"
74
IKE Parameter
IKE Version – Set as "IKEv1" or "IKEv2"
Negotiation Mode – Set as "Main" or "Aggressive"
Encryption Algorithm – Set as "DES", or "3DES", or "AES128", or "AES192" or "AES256"
Authentication Algorithm – Set as "MD5" or " SHA1"
DH Group – Set as "MODP768_1", or "MODP1024_2" or "MODP1536_5"
Local Authentication – Set as "PSK" or "CA”
Local Secrets - The pre-shared key
75
XAUTH - XAUTH username and password after XAUTH is enabled
Lifetime (s) - The lifetime in IKE negotiation. Range: 60-86400
SA Parameter
SA Algorithm – Set as "DES_MD5", or "DES_SHA1", or "3DES_MD5", or "3DES_SHA1", or
"AES128_MD5", or "AES128_SHA1", or "AES192_MD5", or "AES192_SHA1", or "AES256_MD5" or
"AES256_SHA1"
PFS Group - Set as "NULL", or "MODP768_1" , or "MODP1024_2" or "MODP1536_5"
Lifetime (s) - The lifetime of IPsec SA. Range: 60-86400
DPD Interval Time(s) - DPD interval time to detect if the remote side fails
DPD Timeout(s) - DPD timeout. Range: 10-3600
IPsec Advanced
Enable Compression - Head of IP packet will be compressed after it's enabled
VPN Over IPsec Type – Set as "NONE", or "GRE" or "L2TP" to enable VPN over IPsec function
76
GRE
Generic routing encapsulation allows other protocols to be routed through the encapsulation of the
packet. GRE protocol can be used in situations where multicast data packets are being transmitted
as if they were through a true network, where certain protocols used cannot normally be routed, ow
when a network of different IP addresses is required to connect to two other similar networks.
GRE
Enable - Enable GRE function
Remote IP Address - Real remote IP address of GRE tunnel
Local IP Address - The local IP address
Local Virtual IP Address - Local tunnel IP address of GRE tunnel
Netmask - Local netmask
Peer Virtual IP Address - Remote tunnel IP address of GRE tunnel
Global Traffic Forwarding - Data traffic will be sent out via GRE tunnel when this function is enabled
Remote Subnet - Remote subnet IP address of GRE tunnel
Remote Netmask - Remote netmask of GRE tunnel
MTU - The maximum transmission unit. Range: 64-1500
77
Key - GRE tunnel key
Enable NAT - NAT traversal function
78
L2TP
Layer two Tunnelling protocol is an extension of the point to point Tunnelling protocol to allow the
operation of a VPN over the internet.
L2TP
Enable - Enable L2TP function
Remote IP Address - Public IP address or domain name of L2TP server
Username - Username that L2TP server provides
Password - Password that L2TP server provides
Authentication – Set as "Auto", or "PAP", or "CHAP", or "MS-CHAPv1" or "MS-CHAPv2"
Global Traffic Forwarding - Data traffic will be sent out via L2TP tunnel after this function is enabled
Remote Subnet - Remote IP address that L2TP protects
Remote Subnet Mask - Remote netmask that L2TP protects
Key - Password of L2TP tunnel
79
Advanced Settings
Local IP Address - Tunnel IP address of L2TP client. Client will obtain tunnel IP address automatically
from the server when it's null
Peer IP Address - Tunnel IP address of L2TP server
Enable NAT - NAT traversal function
Enable MPPE - MPPE encryption
Address/Control Compression - PPP initialization. User can keep the default option
Protocol Field Compression – PPP initialization. User can keep the default option
Asyncmap Value - One of the PPP protocol initialization strings. User can keep the default value.
Range: 0-ffffffff
MRU - The maximum receive unit. Range: 64-1500
MTU - The maximum transmission unit. Range: 64-1500
Link Detection Interval (s) - The link detection interval time to ensure tunnel connection. Range: 0-
600
Max Retries - The maximum times of retry to detect the L2TP connection failure. Range: 0-10
Expert Options - Enter some other PPP initialization strings in this field and separate the strings with
blank spaces
80
PPTP
Point-to-Point Tunnelling Protocol (PPTP) allows an extension of a network through private tunnels
over the public internet.
PPTP
Enable - Enable PPTP client. A maximum of 3 tunnels is allowed
Remote IP Address - Public IP address or domain name of PPTP server
Username - Username that PPTP server provides
Password - Password that PPTP server provides
Authentication – Set as "Auto", or "PAP", or "CHAP", or "MS-CHAPv1", or "MS-CHAPv2"
Global Traffic Forwarding - Data traffic will be sent out via PPTP tunnel once enable this function
Remote Subnet - The peer subnet of PPTP
Remote Subnet Mask - The netmask of peer PPTP server
81
PPTP Advanced Settings
Local IP Address - IP address of PPTP client
Peer IP Address - Tunnel IP address of PPTP server
Enable NAT - NAT faction of PPTP
Enable MPPE - Enable MPPE encryption
Address/Control Compression - PPP initialization. User can keep the default option
Protocol Field Compression - PPP initialization. User can keep the default option
Asyncmap Value - PPP protocol initialization strings. User can keep the default value. Range: 0-fffffff
MRU - The maximum receive unit. Range: 0-1500
MTU - The maximum transmission unit. Range: 0-1500
Link Detection Interval (s) - the link detection interval time to ensure tunnel connection. Range: 0-
600
Max Retries - The maximum times of retrying to detect the PPTP connection failure. Range: 0-10
Expert Options - Other PPP initialization strings in this field and separate the strings with blank space
82
OpenVPN Client
An open source VPN option.
OpenVPN Client
Enable - Enable OpenVPN client. A maximum of 3 tunnels is allowed.
Protocol – Set as "UDP" or "TCP".
Remote IP Address - Remote OpenVPN server's IP address or domain name
Port - The listening port number of remote OpenVPN server. Range: 1-65535.
Interface – Set as "tun" or "tap"
Authentication – Set as "None", or "Pre-shared", or "Username/Password", or "X.509 cert", or
"X.509 cert+user"
Local Tunnel IP - Local tunnel address
Remote Tunnel IP - Remote tunnel address
Global Traffic Forwarding - Data traffic will be sent out via OpenVPN tunnel when this function is
enabled
Enable TLS Authentication - Enable TLS authentication
83
Username - Username provided by OpenVPN server
Password - Password provided by OpenVPN server
Enable NAT - Enable NAT traversal function
Compression - LZO to compress data
Link Detection Interval (s) - Link detection interval time to ensure tunnel connection. Range: 10-
1800
Link Detection Timeout (s) - Link detection timeout. OpenVPN will be re-established after timeout.
Range: 60-3600
Cipher – Set as "NONE", or "BF-CBC", or "DE-CBC", or "DES-EDE3-CBC", or "AES-128-CBC", or "AES-
192-CBC" or "AES-256-CBC"
MTU - Maximum transmission unit. Range: 128-1500
Max Frame Size - Maximum frame size. Range: 128-1500
Verbose Level – Set as "ERROR", or "WARNING", or "NOTICE" or "DEBUG"
Expert Options User can enter some other PPP initialization strings in this field and separate the
strings with blank space
Local Route
Subnet - The local route's IP address
Subnet Mask - The local route's netmask
84
OpenVPN Server
OpenVPN server creates secure point-to-point or site-to-site connections in routed or bridged
configurations and remote access facilities.
85
OpenVPN Server
Enable - Enable/disable OpenVPN server
Protocol – Set as TCP or UDP
Port – Listening port number. Range: 1-65535
Listening IP - WAN IP address or LAN IP address. Leaving it blank refers to all active WAN IP and LAN
IP address
Interface – Set as" tun" or "tap"
Authentication – Set as "None", or "Pre-shared", or "Username/Password", or "X.509 cert" or "X.
509 cert +user"
Local Virtual IP - Local tunnel address of OpenVPN's tunnel
Remote Virtual IP - Remote tunnel address of OpenVPN's tunnel
Client Subnet Local - Subnet IP address of OpenVPN client
Client Netmask Local - Netmask of OpenVPN client
Renegotiation Interval(s) - Interval for renegotiation. Range: 0-86400
Max Clients - Maximum OpenVPN client number. Range: 1-128
Enable CRL - CRL Enable Client to Client Allow access between different OpenVPN clients
Enable Dup Client - Multiple users can use the same certification
Enable NAT - Check to enable the NAT traversal function
Compression - "LZO" to compress data
Link Detection Interval - Link detection interval time to ensure tunnel connection. Range: 10-1800
86
Cipher – Set as "NONE", or "BF-CBC", or "DES-CBC", or "DES-EDE3-CBC", or "AES-128-CBC", or "AES-
192-CBC" or "AES-256-CBC"
MTU - The maximum transmission unit. Range: 64-1500
Max Frame Size - The maximum frame size. Range: 64-1500
Verbose Level – Set as "ERROR", or "WARNING", or "NOTICE" or "DEBUG".
Expert Options - Other PPP initialization strings in this field and separate the strings with blank space
Local Route
Subnet - Real local IP address of OpenVPN client
Netmask - Real local netmask of OpenVPN client
Account
Username & Password Set username and password for OpenVPN client
87
Certifications
Import/export of certificate and key files for OpenVPN and IPsec.
OpenVPN Client
CA - Import/Export CA certificate file
Public Key - Import/Export public key file
Private Key - Import/Export private key file
TA -- Import/Export TA key file
Preshared Key - Import/Export static key file
PKCS12 - Import/Export PKCS12 certificate file
88
OpenVPN Server
CA - Import/Export CA certificate file
Public - Key Import/Export public key file
Private Key - Import/Export private key file
DH - Import/Export DH key file
TA - Import/Export TA key file
CRL - Import/Export CRL
Preshared Key - Import/Export static key file
IPsec
CA - Import/Export CA certificate.
Client Key - Import/Export client key.
Server Key - Import/Export server key.
Private Key - Import/Export private key.
CRL - Import/Export certificate recovery list.
89
IPsec Server
CA - Import/Export CA certificate
Local Certificate - Import/Export Local Certificate file
Private Key - Import/Export private key
CRL - Import/Export certificate recovery list
90
System
General Settings
General
General settings of the modem
General
Default System
Hostname – Allocate device name, must start with a letter
Web Login Timeout (s) - Need to log in again if it times out. Range: 100-3600. Deafult is 1800
Encrypting Cleartext Passwords - Cleartext passwords will be encrypted into ciphertext passwords.
Default Enable
HTTPS Certificates
Certificate Click "Browse" button, choose certificate file on the PC, and then click "Import" button to
upload the file into router. Click "Export" button will export the file to the PC. Click "Delete" button
will delete the file.
91
Key Click "Browse" button, choose key file on the PC, and then click "Import" button to upload the
file into router. Click "Export" button will export file to the PC. Click "Delete" button will delete the
file
92
System Time
It is recommended to set the system time when configuring your router to ensure correct time
keeping.
System Time
Current Time - The current system time
93
Time Zone - Use the drop down list to select the time zone you are in. Default is 10 Australia
(Sydney, Melbourne, Canberra)
Sync Type - Use the drop down list to select the time synchronization type.
Sync with Browser Synchronize time with browser.
Browser Time –The current time of browser.
Set up Manually - Manually configure the system time.
Date – Set the date
Time – Set the time
Sync with NTP Server
Primary NTP Server Enter primary NTP Server's IP address or domain name.
NTP Server
Enable NTP Server - NTP client on the network can achieve time synchronization with router after
"Enable NTP Server"
94
SMTP
Simple Mail Transfer Protocol, is a TCP/IP protocol used in sending and receiving e-mail.
SMTP Client Settings
Enable - Enable or disable SMTP client function
Email Address - The sender's email account
Password - The sender's email password
SMTP Server Address - SMTP server's domain name
Port - SMTP server port. Range: 1-65535
Encryption - Select from: None, TLS/SSL, STARTTLS. None: No encryption. The default port is 25.
STARTTLS: STARTTLS is a way to take an existing insecure connection and upgrade it to a secure
connection by using SSL/TLS. The default port is 587. TLS/SSL: SSL and TLS both provide a way to
encrypt a communication channel between two computers (e.g. your computer and our server). TLS
is the successor to SSL and the terms SSL and TLS are used interchangeably unless you're referring to
a specific version of the protocol.The default port is 465.
95
Phone
Phone triggers.
Phone
Phone Number List
Number - The telephone number. Digits, "+" and "-" are allowed
Description - Description of the telephone number
Phone Group
List Group ID - Number for phone group. Range: 1-100
Description - Description of the phone group
List - The phone list.
Selected - The selected phone number
96
SMS
Send SMS
Phone Number – The phone number
Content – The content of the SMS
Send – Sends the SMS
Inbox/ outbox
From – start date
To – End date
Sender – Sender of SMS
Recipient – SMS recipient MA-2055 sent to
97
SMTP must be set up to enable the email settings.
Email List
Email Address - The Email address
Description - Description of the Email address
Email Group List
Group ID - Number for email group. Range: 1-100
Description - Description of the Email group
List - The Email address list
Selected - The selected Email address
98
Storage
A micro SD card must be inserted to configure the storage.
Storage
Status Show - Status of Micro SD card, will be “Available” or “Not Inserted”
Storage (Capacity/Available) - Capacity of the Micro SD Card
Format - Format the Micro SD card
99
User Management
Account
Login details of the administrator
Account
Username - New username. characters such as a-z, 0-9, "_", "-", "$" may be used and the first
character can't be a digit
Old Password - Old password
New Password - New password
Confirm New Password - New password again
100
User Management
How to create user accounts and set permissions.
User Management
Username - New username. a-z, 0-9, "_", "-", "$" can be used and the first character can't be a digit.
Password - Set password
Permission – Set user permission as “Read-Only” or “Read-Write”
- Read-Only: users can only view the configuration of router in this level
- Read-Write: users can view and set the configuration of router in this level
101
SNMP
SNMP
MA-2055 supports SNMPv1, SNMPv2c and SNMPv3 version. SNMPv1 and SNMPv2c employ
community name authentication. SNMPv3 employs authentication encryption by username and
password.
SNMP Settings
Enable - Enable or disable SNMP function
Port - SNMP listened port. Range: 1-65535. The default port is 161
SNMP Version - Select SNMP version
Location Information - The location information
Contact Information – The contact information
102
MIB View
MIB View
View Name - MIB view's name
View Filter – Set as "Included" or "Excluded"
View OID - OID number
Included - All nodes within the specified MIB node can be queried
Excluded - All nodes except for the specified MIB node can be queried
103
VACM
VACM
SNMP v1 & v2 User List
Community - The community name
Permission - "Read-Only" or "Read-Write"
MIB View - MIB view to set permissions from the MIB view list
Network - IP address and bits of the external network accessing the MIB view
Read-Write - Permission of the specified MIB node is read and write
Read-Only - Permission of the specified MIB node is read only
SNMP v3 User Group
Group Name - The name of SNMPv3 group
Security Level - "NoAuth/NoPriv", or "Auth/NoPriv", or " Auth/Priv"
Read-Only View - MIB view to set permission as "Read-only" from the MIB view list
Read-Write View - MIB view to set permission as "Read-write" from the MIB view list
Inform View - MIB view to set permission as "Inform" from the MIB view list
SNMP v3 User List
Username - The name of SNMPv3 user
Group Name - User group to be configured from the user group
Authentication – Set as "MD5", or "SHA", or "None"
104
Authentication Password - Password should be filled in if authentication is "MD5" or "SHA"
Encryption - "AES", or "DES", or "None"
105
Trap
SNMP Trap
Enable - Enable or disable SNMP Trap function
SNMP Version - Select SNMP version; options: SNMP v1/v2c/v3
Server Address - Fill in NMS's IP address or domain name
Port - UDP port. Port range is 1-65535. The default port is 162
Name - Group name when using SNMP v1/v2c; username when using SNMP v3
Auth/Priv Mode – Options: "NoAuth & No Priv", "Auth & NoPriv", and "Auth & Priv"
106
MIB
MIB
MIB File - Select the MIB file you need
Click "Download" button to download the MIB file to PC
107
AAA AAA access allows the user to control access from visitors and servers once access control is granted.
It is based around setting authentication, authorisation and charging settings.
Radius
Radius settings
Enable - Enable or disable Radius.
Server IP Address - The Radius server IP address/domain name.
Server Port - The Radius server port. Range: 1-65535.
Key - Key consistent with that of Radius server to allow connection with Radius server
108
Tacacs+
TACACS+ Settings
Enable - Enable or disable TACACS+.
Server IP Address - TACACS+ server IP address/domain name.
Server Port - TACACS+ server port. Range: 1-65535.
Key - Key consistent with that of TACACS+ server in order to get connected with TACACS+ server.
109
LDAP
LDAP Settings
Enable - Enable or Disable LDAP
Server IP Address - LDAP server's IP address/domain name. The maximum count is 10
Server Port - LDAP server's port. Range: 1-65535
Base DN - Top of LDAP directory tre
Security – Select secure method from "None", "StartTLS" and "SSL"
Username - Username to access the server
Password - Password to access the server
110
Authentication
Allows setting of authentication methods by AAA.
While “None” can be set, it is advised to have some form of authentication when using AAA. This can
be done via “Local” setting, using a local database for authentication, or via “Remote” setting, using
an authentication server.
Authentication Settings
Console - Authentication for Console access
Web - Authentication for Web access
Telnet - Authentication for Telnet access
SSH - Authentication for SSH access
111
Events
Events
Alarm messages from the modem.
Events
Mark as Read - Mark the selected event alarm as read
Delete - Delete the selected event alarm
Mark All as Read - Mark all event alarms as read
Delete All Alarms - Delete all event alarms
Status - Reading status of the event alarms, such as “Read” and “Unread”
Type - Event type of the alarm
Time - Alarm time
Message - Alarm content
112
Events settings
Allows configuration of the events, their recording and how alerts are being sent out.
Event Settings
Enable - Check to enable "Events Settings"
113
Phone Group List - Select phone group to receive SMS alarm
Email Group List - Select email group to receive alarm
Record - The relevant content of event alarm will be recorded on "Event" page if this option is
checked
Email - Relevant content of event alarm will be sent out via email if this option is checked.
Email Setting – Hyperlink to the "Email" configuration page
SMS - Relevant content of event alarm will be sent out via SMS if this option is checked.
SMS Setting - Hyperlink to the "SMS" configuration page
VPN Up - VPN is connected
VPN Down - VPN is disconnected
WAN Up - Ethernet cable is connected to WAN port
WAN Down - Ethernet cable is disconnected to WAN port
Link Switch - Switch to use other interface for Internet access
Weak Signal - The signal level of cellular is low
Cellular Up - Cellular network is connected
Cellular Down - Cellular network is disconnected
Cellular Data Stats Clear - Zero out the data usage of the main SIM card
Cellular Data Traffic is running out - The main SIM card is reaching the data usage limit
Cellular Data Traffic Over Flow - The main SIM card has exceeded the data usage plan
WLAN Up(AP) - The WLAN(AP) is enabled
WLAN Down(AP) - The WLAN(AP) has stopped working
WLAN Up(Client) - The WLAN(Client) is enabled
WLAN Down(Client) - The WLAN(Client) has stopped working
114
Industrial
The MA-2055 allows for the connection of terminals through the interface for wireless
communications.
THE MA-2055 supports serial communication by RS232 through the terminal interface and Digital
input for logical variable or switch variable input.
When using the IO functionality “)” refers to low level and “1” refers to high level.
IO
DI
Control of the digital input.
DI
Enable - Enable or disable DI.
Mode - Select "High Level", or "Low Level", or "Counter".
Duration (ms) - The duration of high/low level in digital input. Range: 1-10000.
Condition - Set as "Low->High", or "High-> Low"
115
Low->High - Counter value will increase by 1 if digital input's status changes from low level to high
level.
High->Low - Counter value will increase by 1 if digital input's status changes from high level to low
level.
Counter - System will take actions accordingly when the counter value reach the preset one, and
then reset the counter value to 0. Range: 1-100.
Action - The corresponding actions that the system will take when digital input mode meets the
preset condition or duration.
SMS - Enables SMS alarm.
Phone Group - Phone group to receive SMS alarm
SMS Content - The content of SMS alarm
Email Check - Enable Email alarm.
Email Group - Phone group to receive email alarm
Email Content - The content of email alarm.
DO - Control output status of DO.
Cellular UP - Trigger the router to switch from offline mode to cellular network mode
116
DO
Digital output settings.
DO
Enable - Enable or disable DO
Mode – Set as "High Level", or "Low Level", or "Pulse" and “Custom”
Duration (*10ms) - Duration of high/low level on digital output. Range: 1-10000
Initial Status - High level or low level as the initial status of the pulse
Duration of High Level (*10ms) - The duration of pulse's high level. Range: 1-10000
Duration of Low Level (*10ms) - The duration of pulse's low level. Range: 1-10000
The Number of Pulse - The quantity of pulse. Range: 1-100
Phone Group - Phone group which will be used for I/O configuration. User can click the Phone Group
and set phone number
117
Serial
Settings for configuring the RS232 serial communications.
Serial Settings
Enable- Enable or disable serial port function. Default is Disable
Serial Type - RS232 port
Baud Rate - Range is 300-230400. Configure to match pair device. Default is 9600
Data Bits – Set as “8” or “7”. Configure to match pair device. Default is 8
Stop Bits – Set as “1” or two “2”. Configure to match pair device. Default is 1
118
Parity – Set as “None”, or “Odd” or “Even”. Configure to match pair device. Default is None
Software Flow Control - Enable or disable software flow control. Default is Disable
Serial Mode - Work mode of the serial port. Set as "DTU Mode" , or “Modbus Master”, or “Modbus
Slave” or "GPS". Default is Disable
DTU Mode - In DTU mode, the serial port can establish communication with the remote server/client
Modbus Master - “Industrial > Modbus Master” to configure basic parameters and channels
Modbus Slave - “Industrial > Modbus to configure basic parameters
DTU Mode
Default DTU Protocol – Set as "None", or "Transparent", or "Modbus", or “UDP server” or "TCP”
Transparent: the routed is used as TCP client/UDP and transmits data transparently
TCP server: the router is used as TCP server and transmits data transparently
UDP server: the router is used as UDP server and transmits data transparently
Modbus: the router will be used as TCP server with modbus gateway function, which can
achieve conversion between Modbus RTU and Modbus TCP.
TCP/UDP Server
Listening Port - Router listening port. Range: 1-65535. 502
Keepalive Interval (s) - Once TCP connection is established, client will send heartbeat packet
regularly by TCP to keep alive. The interval range is 1-3600 in seconds. Default is 75
Keepalive Retry Times - When TCP heartbeat times out, router will resend heartbeat. After it reaches
the preset retry times, TCP connection will be re-established. The retry times range is 1-16. 9
Packet Size - Size of the serial data frame. Packet will be sent out when preset frame size is reached.
The size range is 1-1024 in bytes. Default is 1024
Serial Frame Interval - Interval that the router sends out real serial data stored in the buffer area to
public network. The range is 10-65535, in milliseconds. Note: data will be sent out to public network
when real serial data size reaches the pre-set packet size, even though it's within the serial frame
interval.
119
Transparent
Protocol – Set as "TCP" or "UDP" protocol
TCP Keepalive Interval (s) - Once TCP client is connected with TCP server, the client will send
heartbeat packet by TCP regularly to keep alive. The interval range is 1-3600, in seconds. Default is
75
Keepalive Retry Times - Once TCP heartbeat times out, the router will resend heartbeat. Once the
preset retry attempts have been reached router will reconnect to TCP server. The range is 1-16.
Default is 9
Packet Size - The size of the serial data frame. Packet will be sent out when preset frame size is
reached. The range is 1-1024. The unit is byte. Default is 1024
Serial Frame Interval - Interval that the router sends out real serial data stored in the buffer area to
public network. The range is 10-65535, in milliseconds. Note: data will be sent out to public network
when real serial data size reaches the preset packet size, even though it's within the serial frame
interval. Default is 100
Reconnect Interval – When the connection fails, router will reconnect to the server at the preset
interval, in seconds. The range is 10-60. Default is 10
Specific Protocol – Allows connection to the TCP2COM software.
Heartbeat Interval - Specific Protocol, the router will send heartbeat packet to the server regularly to
keep alive. The interval range is 1-3600, in seconds. Default is 30
ID - Unique ID of each router. Maximum 63 characters , no space character
Register String - Register string for connection with the server. Default is Null
Server Address - The TCP or UDP server address (IP/domain name). Default is Null
Server Port - The TCP or UDP server port. Range: 1-65535. Default is Null
Status - The connection status between the router and the server.
Modbus
Local Port - The router listening port. Range: 1-65535. Default is 502
Maximum TCP Clients - The maximum number of TCP clients allowed to connect the router which
act as a TCP server. Default is 32
120
Connection Timeout – When the TCP server does not receive any data from the slave device within
the connection timeout period, the TCP connection will be dropped. Default is 60
Reading Interval - The interval for reading remote channels. When a read cycle ends, the new read
cycle begins until this interval expires. If it is set to 0, the device will restart the new read cycle after
all channels have been read. Default is 100
Response Timeout - Maximum response time that the router waits for command response. If not
response is received within time it's determined that the command has timed out. Default is 3000
Maximum Retries - The maximum retry times after it fails to read. Default is 3
121
Modbus Slave
Configuring the IO status for Modbus functions.
Modbus TCP
Modbus TCP
Enable - Enable/disable Modbus TCP. Default is Disabled
Port - The router listening port. Range: 1-65535. Default is 502
DI Address - The address of DI, range: 0-255. Default is 0
DO Address - The address of DO, range: 0-255. Default is 0
122
Modbus RTU
Modbus RTU
Enable - Enable/disable Modbus RTU. Default is Disable
Serial Port - The corresponding serial port. Default is Serial
Slave ID - Slave ID distinguishes different devices on the same link. Default is 1
DI Address - The address of DI, range: 0-255. Default is 0
DO Address - The address of DO, range: 0-255. Default is 0
Server List
IP - The IP address of the server.
Port - The port of the server. Range: 0-65535.
Status - The connection status between the router and the server
123
Modbus RTU over TCP
Modbus RTU Over TCP
Enable - Enable/disable Modbus RTU over TCP function. Default is Disable
Slave ID - Slave ID is used for distinguishing different devices on the same link. Default is 1
Device ID – Set device ID. This allows the server to identify via the sevice ID to allow for the
management for multiple devices on the server.
Reconnection Interval - Reconnection interval when the device and the server fails to establish
connection. Default is 10
DI Address - The address of DI, range: 0-255. Default is 0
DO Address - Define the address of DO, range: 0-255. Default is 0
Server List
IP - The IP address of the server.
Port - The port of the server. Range: 0-65535.
Status - The connection status between the router and the server
124
Modbus Master
Modbus Master
Allows the MA-2055 to poll the modbus slave, and send alarms according to the response.
Modbus Master
Enable - Enable/disable Modbus master
Read Interval/s - The interval for reading remote channels. Any commands that have not been sent
out during the read cycle will be discarded. To set the device to allow the read cycle to end when all
commands have been read set value to “0”. Range: 0-600. Default is 0
Max. Retries - The maximum retry times after read failure, range: 0-5. Default 3
Max. Response Time/ms - The maximum response time that the router waits for command
response. If the device does not get a response after the maximum response time, the command has
timed out. Range: 10-1000. Default is 500
Execution - Execution interval between each command. Range: 50
Interval/ms - 10-1000
Channel Name – set a readable channel form the channel list
125
Channel
Configuration of channels and alarms.
Channel Setting
Name - The name to identify the remote channel. Must be populated.
Slave ID - Modbus slave ID.
Address - Starting address for reading.
Number - Address number for reading.
Type - Read command, set as "Coil", or "Discrete", or "Holding Register (INT16)", or "Input Register
(INT16)", or "Holding Register (INT32)" or "Holding Register (Float)".
Link - TCP for transportation.
IP address - The IP address of the remote Modbus device.
Port - The port of the remote Modbus device.
Sign – Identifies if this channel is signed. Default is Unsigned.
Decimal Place – Indicates placemnt of the decimal in the channel value. E.g. read the channel value
is 1234, and Decimal Place is equal to 3, then the actual value is 1.234.
126
Alarm Setting
Name - The same name with the channel name to identify the remote channel.
Condition - Condition that triggers the alert.
Min. Threshold - The minimum value to trigger the alert. When the actual value is less than this
value, the alarm will be triggered.
Max. Threshold - The maximum value to trigger the alert. When the actual value is more than this
value, the alarm will be triggered.
Alarm - Alarm method
SMS - Pre-set alarm content to be sent to the specified phone number.
Phone Group - The phone group to receive the alarm SMS
Email Group - The Email group to receive the alarm Email.
Normal Content - Once the actual value is returns to the normal value after deviating past the
threshold value, the router will automatically cancel the abnormal alarm and send the preset normal
content to the specified phone group.
Abnormal Content - When the actual value deviates past the preset threshold, the router will
automatically trigger the alarm and send the preset abnormal content to the specified phone group.
Continuous Alarm – When enabled, the same alarm will be continuously reported. Otherwise, the
same alarm will be reported only one time.
127
TCP Forwarding
Name - Name of Modbus Master's channel
IP - IP address of the server which the packets are forwarded to.
Port - Port of the server's which the packets are forwarded to
128
Maintenance
Tools for the Maintenance and management of the router.
Tools
Troubleshooting tools.
Ping
Allows the user to ping IP addresses or FQDN’s to determine connectivity.
PING
Host – Enter the IP address or FQDN to Ping outer network from the router
Ping – Press Ping to start ping
Stop – Press stop to stop ping operation
129
Traceroute
Allows the user to troubleshoot network routing issues.
Traceroute
Host - Address of the destination host to be detected.
Trace – Press trace to start trace
Stop – Press stop to stop trace operation
130
Packet Analyser
Allows the user to capture the packets from different interfaces.
Packet Analyzer
Ethernet Interface - The interface. Select from:
ANY/LAN/WAN/Cellular/gre0/gretap0/Looplack/tepl0/tun l0/WLAN1 (default is ANY).
IP Address - The IP address that the router will capture.
Port - The port that the router will capture.
Advanced - The rules for sniffer. The format is tcpdump
131
Qxdmlog
Allows the user to capture diagnostic logs via QXDM tool.
Start – Initiate log collection
Stop – Stop point for the log
Download - Download the log Note. The log will be cleared on restart.
132
Schedule Allows the user to schedule modem reboots.
Schedule – Option for modem reboot
Frequency- Frequency to reboot
Hour – Hours to reboot
Minutes - Minutes to reboot
133
Log Allows user to download logs from the modem which contains the record of information, include
relevant information for troubleshooting.
System Log
Recent system log that can be downloaded.
System Log
Download – Download the system log displayed
View recent (lines) – Specify the number of lines to view lines of system log.
Clear Log - Clear the current system log.
134
Log Settings
Configure the log.
Log Settings
Remote Log Server
Enable - When “Remote Log Server” is enabled, router will send all system logs to the remote server.
Syslog Server Address - The remote system log server address (IP/domain name).
Port - The remote system log server port.
Local Log File Storage - The log file can be stored locally in memory or on TF card.
Size - The size of the log file to be stored.
Log Severity - List of severities follows the syslog protocol.
135
Upgrade
Allows the user to upgrade the firmware version of the modem.
Note: any operation on web page is not allowed during firmware upgrade, otherwise the upgrade
will be interrupted, or even the device will break down.
Upgrade
Firmware Version - The current firmware version.
Reset Configuration to Factory Default - When this option is checked, the router will be reset to
factory defaults after upgrade.
Upgrade Firmware - Click "Browse" button to select the firmware, click “Upgrade” to start the
upgrade process.
136
Backup and Restore
Allows the user to make a backup of the router firmware.
Backup and Restore
Config File - "Browse" button to select configuration file, and then click "Import" button to upload
the configuration file to the router.
Backup - "Backup" to export the current configuration file to the PC.
Reset - "Reset" button to reset factory default settings. Router will restart after reset process is
done.
137
Reboot
Reboot – Click the “Reboot” button to reboot the modem via the GUI.
App
Refer to SDK documents for further details.