9,305
edits
Changes
Template:Networking rutos manual administration (view source)
Revision as of 14:31, 1 September 2022
, 14:31, 1 September 2022no edit summary
<!--- {{{series}}}, {{{name}}} --->
<!--- {{{series}}}, {{{name}}} --->
{{Template: Networking_rutos_manual_fw_disclosure
{{Template: Networking_rutos_manual_fw_disclosure
| fw_version = {{{series}}}_R_00.02.06.1
| fw_version ={{Template: Networking_rutos_manual_latest_fw
| series = {{{series}}}
| series = {{{series}}}
| name = {{{name}}}
}}
}}
}}
{{#ifeq: {{{legacy}}} | 1 |<br><i><b>Note</b>: <b>[[{{{name}}} Administration (legacy WebUI)|click here]]</b> for the old style WebUI (FW version RUT9XX_R_00.06.08.2 and earlier) user manual page.</i>|}}
{{#ifeq: {{{series}}} | RUT9 |<br><i><b>Note</b>: <b>[[{{{name}}} Administration (legacy WebUI)|click here]]</b> for the old style WebUI (FW version {{Template: Networking_rutos_manual_latest_fw | series = RUT9XX}} and earlier) user manual page.</i>|}}
{{#ifeq: {{{series}}} | RUT2 |<br><i><b>Note</b>: <b>[[{{{name}}} Administration (legacy WebUI)|click here]]</b> for the old style WebUI (FW version {{Template: Networking_rutos_manual_latest_fw | series = RUT2XX}} and earlier) user manual page.</i>|}}
==Summary==
==Summary==
The <b>General</b> section is used to set up some of device managerial parameters, such as changing device name. For more information on the General section, refer to figure and table below.
The <b>General</b> section is used to set up some of device managerial parameters, such as changing device name. For more information on the General section, refer to figure and table below.
{{#switch:{{{series}}}
{{#ifeq:{{{series}}}|RUTX|[[File:Networking_{{lc:{{{name}}}}}_manual_administration_general_v2.png|border|class=tlt-border]]
| TCR1=[[File:Networking_rutos_manual_administration_general_tcr_v1.png|border|class=tlt-border]]
|[[File:Networking_{{lc:{{{name}}}}}_manual_administration_general.png|border|class=tlt-border]]}}
| TRB1|TRB2|TRB5=[[File:Networking_rutos_manual_administration_general_trb_v1.png|border|class=tlt-border]]
| #default=[[File:Networking_rutos_manual_administration_general_rut_v1.png|border|class=tlt-border]]
}}
<table class="nd-mantable">
<table class="nd-mantable">
<tr>
<tr>
<th>Value</th>
<th>Value</th>
<th>Description</th>
<th>Description</th>
</tr>
<tr>
<th>General Settings</th>
<th></th>
<th></th>
</tr>
<tr>
<td>Configuration Mode</td>
<td>Basic {{!}} Advanced; default: <b>Basic</b></td>
<td>Mode determines what options and configurations are shown. In Basic mode only the essential configurations are shown. In Advanced mode there is greater freedom to configure and access more options.</td>
</tr>
<tr>
<th>Device name and hostname</th>
<th></th>
<th></th>
</tr>
</tr>
<tr>
<tr>
</tr>
</tr>
<tr>
<tr>
<td>Mode</td>
<th>LED Indication</th>
<th></th>
<th></th>
</tr>
<tr>
<td>Enable</td>
<td>off {{!}} on; default: <b>on</b></td>
<td>Manages signal strength{{#ifeq:{{{series}}}|RUTX||, LAN}} and connection status indication LEDs.</td>
</tr>
<tr>
<th>Reset Button Configuration</th>
<th></th>
<th></th>
</tr>
</tr>
<tr>
<tr>
<b>SSH</b>
<b>SSH</b>
----
----
[[File:Networking_rutos_manual_administration_access_control_general_ssh.png|border|class=tlt-border]]
[[File:Networking_rutos_manual_administration_access_control_general_ssh_v1.png|border|class=tlt-border]]
<table class="nd-mantable">
<table class="nd-mantable">
<td>integer [0..65535]; default: <b>22</b></td>
<td>integer [0..65535]; default: <b>22</b></td>
<td>Selects which port to use for SSH access.</td>
<td>Selects which port to use for SSH access.</td>
</tr>
<tr>
<td>Enable key-based authentication</td>
<td>off | on; default: <b>off</b></td>
<td>Use public keys for authentication.</td>
</tr>
</tr>
</table>
</table>
<b>WebUI</b>
<b>WebUI</b>
----
----
[[File:Networking_rutos_manual_administration_access_control_general_webui.png|border|class=tlt-border]]
[[File:Networking_rutos_manual_administration_access_control_general_webui_v1.png|border|class=tlt-border]]
<table class="nd-mantable">
<table class="nd-mantable">
<td>integer [0..65535]; default: <b>443</b></td>
<td>integer [0..65535]; default: <b>443</b></td>
<td>Selects which port to use for HTTPS access.</td>
<td>Selects which port to use for HTTPS access.</td>
</tr>
<tr>
<td>Ignore private IPs on public interface</td>
<td>off | on; default: <b>on</b></td>
<td>Prevent access from private (RFC1918) IPs on an interface if it has an public IP address.</td>
</tr>
<tr>
<td>Certificate files from device</td>
<td>off | on; default: <b>on</b></td>
<td>Choose this option if you want to select certificate files from device. Certificate files can be generated in [[{{{name}}} Administration#Certificates|Certificates]] section.</td>
</tr>
<tr>
<td>Server certificate</td>
<td>.crt; default: <b>uhttpd.crt</b></td>
<td>Server certificate file.</td>
</tr>
<tr>
<td>Server key</td>
<td>.key; default: <b>uhttpd.key</b></td>
<td>Server key file.</td>
</tr>
</tr>
</table>
</table>
</tr>
</tr>
</table>
</table>
<br>
<b>Telnet</b>
----
----
[[File:Networking_rutos_manual_administration_access_control_security.png|border|class=tlt-border]]
[[File:Networking_rutos_manual_administration_access_control_general_telnet.png|border|class=tlt-border]]
<table class="nd-mantable">
<table class="nd-mantable">
</tr>
</tr>
<tr>
<tr>
<td>Fail count</td>
<td>Enable Telnet access</td>
<td>integer; default: <b>10</b></td>
<td>off | on; default: <b>on</b></td>
<td>An amount of times IP address can try to access SSH or WebUI before being blocked.</td>
<td>Turns Telnet access from the local network (LAN) on or off.</td>
</tr>
</tr>
<tr>
<tr>
<td>Blocked address</td>
<td>Enable remote Telnet access</td>
<td>ip</td>
<td>off | on; default: <b>off</b></td>
<td>IP address which was blocked due to reaching fail count limit.</td>
<td>Turns Telnet access from remote networks (WAN) on or off.</td>
</tr>
</tr>
<tr>
<tr>
<td>Failed attempts</td>
<td>Port range</td>
<td>integer</td>
<td>integer [0..65535]; default: <b>23</b></td>
<td>Amount of times IP address tried to access SSH or WebUI after getting blocked.</td>
<td>Selects which port to use for Telnet access.</td>
</tr>
</tr>
</table>
</table>
===Root CA===
===Security===
----
----
[[File:Networking_rutos_manual_administration_access_control_security_v1.png|border|class=tlt-border]]
<table class="nd-mantable">
<tr>
<th>Field</th>
<th>Value</th>
<th>Description</th>
</tr>
<tr>
<td>Enable</td>
<td>off | on; default: <b>on</b></td>
<td>Enable or disable blocking IP's if they have reached the set amount of failed times.</td>
</tr>
<tr>
<td>Fail count</td>
<td>integer; default: <b>10</b></td>
<td>An amount of times IP address can try to access SSH or WebUI before being blocked.</td>
</tr>
</table>
==Recipients==
==Recipients==
After clicking 'Edit' you should be redirected to that email account's settings page where you can start configuring the account.
After clicking 'Edit' you should be redirected to that email account's settings page where you can start configuring the account.
[[File:Networking_rutos_manual_administration_recipients_email_accounts_modify_email_account.png|border|class=tlt-border]]
[[File:Networking_rutos_manual_administration_recipients_email_accounts_modify_email_account_v1.png|border|class=tlt-border]]
<table class="nd-mantable">
<table class="nd-mantable">
</tr>
</tr>
<tr>
<tr>
<td>User name</td>
<td>Credentials</td>
<td>off {{!}} on; default: <b>off</b></td>
<td>This options allows you to set username and password of email account.</td>
</tr>
<tr>
<td>Username</td>
<td>string; default: <b>none</b></td>
<td>string; default: <b>none</b></td>
<td>Username used to authenticate to the email service.</td>
<td>Username used to authenticate to the email service.</td>
The <b>Certificate Signing</b> section is used to validate (sign) unsigned certificates.
The <b>Certificate Signing</b> section is used to validate (sign) unsigned certificates.
[[File:Networking_rutos_manual_administartion_certificates_certificates_generation_certificate_signing_v1.png|border|class=tlt-border]]
[[File:Networking_rutos_manual_administartion_certificates_certificates_generation_certificate_signing_v2.png|border|class=tlt-border]]
<table class="nd-mantable">
<table class="nd-mantable">
<tr>
<tr>
<td>Signed Certificate Name</td>
<td>Signed Certificate Name</td>
<td>string; default: <b>cert</b></td>
<td>string; default: <b>none</b></td>
<td>Name of the signed certificate.</td>
<td>Name of the signed certificate.</td>
</tr>
</tr>
<tr>
<tr>
<td>Days Valid</td>
<td>Days Valid</td>
<td>integer; default: <b>3650</b></td>
<td>integer; default: <b>none</b></td>
<td>Length of the signature's validity.</td>
<td>Length of the signature's validity.</td>
</tr>
</tr>
====Certificate Import====
====Certificate Import====
----
----
The <b>Certificate Import</b> section provides the possibility to import certificates and files generated on another machine. To upload such a file simply click 'Browse', locate the file on your computer and click 'Import'
The <b>Certificate Import</b> section provides the possibility to import certificates and files generated on another machine. To upload such a file simply click 'Browse' and locate the file on your computer, it should then start uploading automatically.
[[File:Networking_rutos_manual_administartion_certificates_certificates_manager_certificate_import_v1.png|border|class=tlt-border]]
[[File:Networking_rutos_manual_administartion_certificates_certificates_manager_certificate_import_v2.png|border|class=tlt-border]]
====Certificates, Keys & Requests====
====Certificates, Keys & Requests====
The 'Export' buttons are used to download the files from the device onto your local machine. The 'X' buttons located to the right of each entry are used to delete related files.
The 'Export' buttons are used to download the files from the device onto your local machine. The 'X' buttons located to the right of each entry are used to delete related files.
===Root CA===
----
The <b>Root CA</b> section is used to add a root CA certificate file to the device. There is a default file already preloaded on the device which will be overwritten by any uploaded file. The certificates must be in .pem format, maximum file size is 300 KB. These certificates are only needed if you want to use HTTPS for your services and the default file should be sufficient in most cases.
[[File:Networking_rutos_manual_administration_access_control_root_ca_v1.png|border|class=tlt-border]]
==Troubleshoot==
==Troubleshoot==
The <b>Logging Settings</b> section is used to configure how and where the device stores system log data. The system log is a file that contains information on various system related events and is useful to engineers for troubleshooting the device.
The <b>Logging Settings</b> section is used to configure how and where the device stores system log data. The system log is a file that contains information on various system related events and is useful to engineers for troubleshooting the device.
[[File:Networking_rutos_manual_administration_troubleshoot_logging_settings.png|border|class=tlt-border]]
[[File:Networking_rutos_manual_administration_troubleshoot_logging_settings_v1.png|border|class=tlt-border]]
<table class="nd-mantable">
<table class="nd-mantable">
<td>RAM memory | Flash memory; default: <b>RAM memory</b></td>
<td>RAM memory | Flash memory; default: <b>RAM memory</b></td>
<td>Specifies which type of memory to use for storing system logs.</td>
<td>Specifies which type of memory to use for storing system logs.</td>
</tr>
<tr>
<td>Show hostname</td>
<td>off | on; default: <b>off</b></td>
<td>Show hostname instead of IP address in syslog.</td>
</tr>
</tr>
</table>
</table>
</tr>
</tr>
<tr>
<tr>
<td>TCP dump file<span class="asterisk">*</span></td>
<td>TCP dump file{{#ifeq:{{{series}}}|RUTX||<span class="asterisk">*</span>}}</td>
<td>- (interactive button)</td>
<td>- (interactive button)</td>
<td>Downloads the device TCP dump file. TCP dump is a program used to capture packets moving through network interfaces. By default, the device does not store TCP dump information. You must enable TCP dump and save the changes before you can download the file.</td>
<td>Downloads the device TCP dump file. TCP dump is a program used to capture packets moving through network interfaces. By default, the device does not store TCP dump information. You must enable TCP dump and save the changes before you can download the file.</td>
</tr>
</tr>
<tr>
<tr>
<td>Enable TCP dump<span class="asterisk">*</span></td>
<td>Enable TCP dump{{#ifeq:{{{series}}}|RUTX||<span class="asterisk">*</span>}}</td>
<td>off | on; default: <b>off</b></td>
<td>off | on; default: <b>off</b></td>
<td>Turns TCP dump packets capture on or off.</td>
<td>Turns TCP dump packets capture on or off.</td>
</tr>
</tr>
</table>
</table>
{{#switch:{{{series}}}| RUT2M|RUT9M|TCR1=
<font size="-1"><span class="asterisk">*</span> As of {{{fw_version}}}, TCPdump is not part of core functionality anymore. To see these options, the TCPdump package must be downloaded from [[{{{name}}}_Package_Manager|Package Manager]].</font>
| #default={{#ifeq:{{{series}}}|RUTX||<font size="-1"><span class="asterisk">*</span> As of {{{series}}}_R_00.07.00, TCPdump is not part of core functionality anymore. To see these options, the TCPdump package must be downloaded from [[{{{name}}}_Package_Manager|Package Manager]].</font>}}
}}
====TCP dump====
====TCP dump====
----
----
<b>TCP dump</b> is an <i>optional</i> downloadable functionality<span class="asterisk">*</span> used to capture packets moving through network interfaces. By default, the device does not store TCP dump information. You must enable TCP dump and save the changes before you can download the file.
<b>TCP dump</b> is {{#ifeq:{{{series}}}|RUTX||an <i>optional</i> downloadable functionality<span class="asterisk">*</span>}} used to capture packets moving through network interfaces. By default, the device does not store TCP dump information. You must enable TCP dump and save the changes before you can download the file.
If you enable TCP dump, you will notice additional configuration fields appear. Refer to the figure and table below for realted information.
If you enable TCP dump, you will notice additional configuration fields appear. Refer to the figure and table below for realted information.
<font size="-1"><span class="asterisk">*</span> You can download the TCPdump package from [[{{{name}}}_Package_Manager|Package Manager]].</font>
{{#ifeq:{{{series}}}|RUTX||<font size="-1"><span class="asterisk">*</span> You can download the TCPdump package from [[{{{name}}}_Package_Manager|Package Manager]].</font>}}
[[File:Networking_rutos_manual_administration_troubleshoot_tcp_dump.png|border|class=tlt-border]]
[[File:Networking_rutos_manual_administration_troubleshoot_tcp_dump.png|border|class=tlt-border]]
