Difference between revisions of "RUT850 Administration"

From Teltonika Networks Wiki
Line 1: Line 1:
 +
<!--{{Template: Networking_rutxxx_manual_administration
 +
<!----------------------------DEVICE DETAILS---------------------------->
 +
| name                  = RUT240
 +
| fw_version            = RUT2XX_R_00.01.10
 +
| series                = RUT2xx
 +
<!----------------------------ADMINISTRATION---------------------------->
 +
| file_general          = Networking_rut240_manual_administration_general_v1.png
 +
| file_troubleshoot    = Networking_rut2xx_manual_administration_troubleshoot_v1.png
 +
| file_tcpdump          = Networking_rutxxx_manual_administration_troubleshoot_tcpdump_v1.png
 +
| file_backup          = Networking_rut2xx_manual_administration_backup_v1.png
 +
| file_access_ssh      = Networking_rutxxx_manual_administration_access_control_general_ssh_v1.png
 +
| file_access_webui    = Networking_rutxxx_manual_administration_access_control_general_webui_v1.png
 +
| file_access_cli      = Networking_rutxxx_manual_administration_access_control_general_cli_v1.png
 +
| file_access_unwanted  = Networking_rutxxx_manual_administration_access_control_safety_block_unwanted_access_v1.png
 +
| file_access_list      = Networking_rutxxx_manual_administration_access_control_safety_list_of_blocked_addresses_v2.png
 +
| file_diagnostics      = Networking_rutxxx_manual_administration_diagnostics_v1.png
 +
| file_mac_clone        = Networking_rutxxx_manual_administration_mac_clone_v2.png
 +
| file_overview        = Networking_rut240_manual_administration_overview_v1.png
 +
| file_rms_connected    = Networking_rutxxx_manual_administration_rms_connected_v1.png
 +
| file_rms_disconnected = Networking_rutxxx_manual_administration_rms_disconnected_v1.png
 +
| file_root_ca          = Networking_rutxxx_manual_administration_root_ca_v1.png
 +
| file_azure            = Networking_rutxxx_manual_administration_azure_v1.png
 +
}}-->
 
==Summary==
 
==Summary==
  
This chapter is an overview of RUT850 routers' '''System → Administration''' section.
+
This page is an overview of the <b>Administration</b> section of RUT850 routers.
 +
 
 +
{{Template: Networking_rutxxx_manual_fw_disclosure
 +
| fw_version = RUT850_R_00.01.03.4
 +
}}
  
 
==General==
 
==General==
  
The '''General''' section is used to change some of the most general configurations of the router (password, language, etc.)
+
The <b>General</b> section is used to set up some of the router's managerial parameters, such as password, name, language, etc. For more information on the General section, refer to figure and table below.
 
 
  
[[Image:System administration administration settings rut850.PNG]]
+
[[File:Networking_rut850_manual_administration_general_v1.png]]
  
 
<table class="nd-mantable">
 
<table class="nd-mantable">
 
     <tr>
 
     <tr>
         <th>field name</th>
+
         <th>Field</th>
       <th>value</th>
+
       <th>Value</th>
       <th>description</th>
+
       <th>Description</th>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
 
       <td>Router name</td>
 
       <td>Router name</td>
       <td>string; Default: '''RUT850'''</td>
+
       <td>string; default: <b>RUT850</b></td>
       <td>Router's name, used for easier management purposes</td>
+
       <td>The router's model name.</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
 
       <td>Host name</td>
 
       <td>Host name</td>
       <td>string; Default: '''Teltonika-RUT850.com'''</td>
+
       <td>string; default: <b>Teltonika-RUT850.com</b></td>
       <td>Router's host name, i.e., an address from which you can reach the router's WebUI</td>
+
       <td>The router's hostname. This can be used instead of the IP address to reach the router's WebUI from the local network.</td>
 +
    </tr>
 +
    <tr>
 +
  <td>New password</td>
 +
        <td>string; default: <b>none</b></td>
 +
        <td>A new password for the router. The password must be comprised of 8-32 characters, including at least one upper case letter, one lower case letter and one digit.</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
     <td>New password | Confirm new password</td>
+
     <td>Confirm new password</td>
         <td>string; Default: '''admin01'''</td>
+
         <td>string; default: <b>none</b></td>
         <td>Router's admin password</td>
+
         <td>Repeat the new password for confirmation. (Must match the password entered in the "New password" field.)</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
 
     <td>Language</td>
 
     <td>Language</td>
         <td>English | Deutsch | Français | Turkish; Default: '''English'''</td>
+
         <td>English | Deutsch | Français | Turkish; default: <b>English</b></td>
         <td>Selects the router's interface language</td>
+
         <td>Selects the router's WebUI language.</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
       <td>Enable sleep mode</td>
+
       <td>Enable sleep mode<span class="asterisk">*</span></td>
       <td>yes | no; Default: '''no'''</td>
+
       <td>yes | no; default: <b>no</b></td>
       <td>Toggles Sleep mode ON or OFF</td>
+
       <td>Turns sleep mode on or off.</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
 
       <td>Show mobile info at login page</td>
 
       <td>Show mobile info at login page</td>
       <td>yes | no; Default: '''no'''</td>
+
       <td>yes | no; default: <b>no</b></td>
       <td>Show mobile data connection information (signal strength, state, service mode) at login page</td>
+
       <td>Shows mobile data connection information (signal strength, state, service mode) at login page.</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
 
     <td>Show WAN IP at login page</td>
 
     <td>Show WAN IP at login page</td>
         <td>yes | no; Default: '''no'''</td>
+
         <td>yes | no; default: <b>no</b></td>
         <td>Show the router's WAN IP address at login page</td>
+
         <td>Shows the router's WAN IP address at login page.</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
 
     <td>LEDs Indication</td>
 
     <td>LEDs Indication</td>
         <td>yes | no; Default: '''yes'''</td>
+
         <td>yes | no; default: <b>yes</b></td>
         <td>Toggles LED indication ON or OFF</td>
+
         <td>Turns the router's LED indications on or off.</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
 
     <td>Restore to default</td>
 
     <td>Restore to default</td>
         <td>-</td>
+
         <td>-(interactive button)</td>
         <td>Restores the router to it's default state (factory settings)</td>
+
         <td>Restores the router to it's default state (factory settings).</td>
    </tr>
 
    <tr>
 
    <td></td>
 
        <td></td>
 
        <td></td>
 
 
     </tr>
 
     </tr>
 
</table>
 
</table>
 +
 +
<font size="-1"><span class="asterisk">*</span> more information on sleep mode in the [[#Sleep_mode|next section]].</font>
 +
 +
===Sleep mode===
 +
----
 +
 +
[[File:Networking_rut850_manual_administration_general_sleep_mode_v1.png]]
  
 
==Troubleshoot==
 
==Troubleshoot==
  
 +
The <b>Troubleshoot</b> section is used to download various files that contain information used for troubleshooting the router. Refer to the figure and table below for information on the Troubleshoot page.
  
[[Image:System administration troubleshoot.PNG]]
+
[[File:Networking_rut2xx_manual_administration_troubleshoot_v1]]
  
 
<table class="nd-mantable">
 
<table class="nd-mantable">
 
     <tr>
 
     <tr>
         <th>field name</th>
+
         <th>Field</th>
       <th>value</th>
+
       <th>Value</th>
       <th>description</th>
+
       <th>Description</th>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
 
       <td>System log level</td>
 
       <td>System log level</td>
       <td>Debug | Info | Notice | Warning | Error | Critical | Alert | Emergency; Default: '''Debug''' </td>
+
       <td>Debug | Info | Notice | Warning | Error | Critical | Alert | Emergency; default: <b>debug</b></td>
       <td>You can watch logs by choosing a group from the dropdown list and clicking  '''Show''' button</td>
+
       <td>Specifies the information output level of the system log.
 +
            <ul>
 +
                <li><b>Debug</b> - contains basic information that is diagnostically helpful to most people (i.e., not just engineers).</li>
 +
                <li><b>Info</b> - general useful information (e.g., configuration changes, starts and stops of services, etc.)</li>
 +
                <li><b>Notice</b> - conditions that are not error conditions, but that may require special handling.</li>
 +
                <li><b>Warning</b> - anything that can potentially cause application oddities, but for which the system is automatically recovering from (e.g., retrying an operation, missing secondary data, etc.)</li>
 +
                <li><b>Error</b> - errors that are fatal to the operation, but not the service or application (can't open a required file, missing data, etc.) Solving these types of errors will usually require user intervention.</li>
 +
                <li><b>Critical</b> - critical conditions, device errors.</li>
 +
                <li><b>Alert</b> - a condition that must be corrected immediately.</li>
 +
                <li><b>Emergency</b> - a panic condition, i.e., system is no longer usable.</li>
 +
            </ul>
 +
        </td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
 
       <td>Save log in</td>
 
       <td>Save log in</td>
       <td>RAM memory | Flash memory; Default: '''RAM memory'''</td>
+
       <td>RAM memory | Flash memory; default: <b>RAM memory</b></td>
       <td>Specifies where to save log information. The router needs to be rebooted in order for this effect to take place</td>
+
       <td>Specifies which type of memory to use for storing system logs.</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
 
     <td>Include GSMD information</td>
 
     <td>Include GSMD information</td>
         <td>yes | no; Default: '''yes'''</td>
+
         <td>yes | no; default: <b>yes</b></td>
         <td>Inlcludes GSMD information in the router's logs</td>
+
         <td>When checked, includes the router's GSMD information in the log file.</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
 
     <td>Include PPPD information</td>
 
     <td>Include PPPD information</td>
         <td>yes | no; Default: '''no'''</td>
+
         <td>yes | no; default: <b>no</b></td>
         <td>Inlcludes PPPD information in the router's logs</td>
+
         <td>When checked, includes the router's PPPD information in the log file.</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
     <td>Include Chat script information</td>
+
     <td>Include chat script information</td>
         <td>yes | no; Default: '''yes'''</td>
+
         <td>yes | no; default: <b>yes</b></td>
         <td>Inlcludes Chat script information in the router's logs</td>
+
         <td>When checked, includes the router's chat script information in log file.</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
 
     <td>Include network topology information</td>
 
     <td>Include network topology information</td>
         <td>yes | no; Default: '''no'''</td>
+
         <td>yes | no; default: <b>no</b></td>
         <td>Inlcludes network topology information in the router's logs</td>
+
         <td>When checked, includes the router's network topology information in the log file.</td>
 +
    </tr>
 +
    <tr>
 +
        <td>System log</td>
 +
        <td>- (interactive button)</td>
 +
        <td>Displays the contents of the router's system log file. The system log contains records of various system related events, such as starts/stops of various services, errors, reboots, etc.</td>
 +
    </tr>
 +
    <tr>
 +
        <td>Kernel log</td>
 +
        <td>- (interactive button)</td>
 +
        <td>Displays the contents of the router's kernel log file. The kernel log contains records of various events related to the processes of the operating system (OS).</td>
 +
    </tr>
 +
    <tr>
 +
        <td>Troubleshoot file</td>
 +
        <td>- (interactive button)</td>
 +
        <td>Downloads the router's Troubleshoot file. It contains the router's configuration information, logs and some other files. When requesting support, it is recommended to always provide the router's Troubleshoot file to Teltonika engineers for analysis.</td>
 
     </tr>
 
     </tr>
 
</table>
 
</table>
  
'''System log''' - Provides on-screen System logging information. It does not, however, substitute troubleshooting file.
+
==Backup==
 +
 
 +
The <b>Backup</b> page is used to download or upload configuration backup files to the router. Backup files can be uploaded only from identical devices with identical. Once a backup file is uploaded to a router, that router will have identical configuration as the router from which the backup file originated (was downloaded from).
  
'''Kernel log''' - Provides on-screen Kernel logging information. It does not, however, substitute the troubleshooting file.
+
[[File:Networking_rut850_manual_administration_backup_v1.png]]
  
'''Troubleshoot file''' - Downloadable archive, that contains full router configuration and all System log files.
+
<ul>
 +
    <li><b>Backup Configuration</b> - generates and downloads the router's backup file based on the current configuration.
 +
    <li><b>Restore Configuration</b> - uploads a configuration backup file to the router. This can be done in two ways:
 +
        <ul>
 +
            <li><b>Upgrade from file</b> - uploads a configuration file from your computer.</li>
 +
            <li><b>Upgrade from FOTA</b> - uploads a configuration file assigned to the device in FOTA.</li>
 +
        </ul>
 +
    </li>
 +
</ul>
  
In addition, you can also download the router's troubleshoot file at any time and the TCP dump file if the '''Enable TCP dump''' field is checked.
+
<b>Important</b>: backup files can be uploaded only when taken from a device with an identical <b>Product code</b> (can be checked in <b>Status → [[{{{name}}} Device|Device]]</b>) and identical firmware.
  
==Backup==
 
{{Template:rut manual system administration backup}}
 
 
==Access Control==
 
==Access Control==
 +
 +
The <b>Access Control</b> page is used to manage remote and local access to the router.
 +
 +
<b>Important</b>: turning on remote access leaves the router vulnerable to external attackers. Make sure you use a strong password.
  
 
===General===
 
===General===
 
----
 
----
The '''Access Control General''' window is used the Enable or Disable SSH, HTTP or HTTPS remote or local access to the RUT device.
+
The <b>General</b> section is used to manage SSH, HTTP(S) and CLI access to the router.
 +
<br><br>
 +
<b>SSH</b>
 +
----
 +
[[File:Networking_rutxxx_manual_administration_access_control_general_ssh_v1.png]]
  
 +
<table class="nd-mantable">
 +
    <tr>
 +
        <th>Field</th>
 +
      <th>Value</th>
 +
      <th>Description</th>
 +
    </tr>
 +
    <tr>
 +
        <td>Enable SSH access</td>
 +
        <td>yes | no; default: <b>yes</b></td>
 +
        <td>Turns SSH access from the local network (LAN) on or off.</td>
 +
    </tr>
 +
    <tr>
 +
        <td>Remote SSH access</td>
 +
        <td>yes | no; default: <b>no</b></td>
 +
        <td>Turns SSH access from remote networks (WAN) on or off.</td>
 +
    </tr>
 +
    <tr>
 +
        <td>Port</td>
 +
        <td>integer [0..65535]; default: <b>22</b></td>
 +
        <td>Selects which port to use for SSH access.</td>
 +
    </tr>
 +
</table>
 +
<br>
 +
<b>WebUI</b>
 +
----
 +
[[File:Networking_rutxxx_manual_administration_access_control_general_webui_v1.png]]
  
[[Image:System administration access control.PNG]]
+
<table class="nd-mantable">
 +
    <tr>
 +
        <th>Field</th>
 +
      <th>Value</th>
 +
      <th>Description</th>
 +
    </tr>
 +
    <tr>
 +
        <td>Enable HTTP access</td>
 +
        <td>yes | no; default: <b>yes</b></td>
 +
        <td>Turns HTTP access from the local network (LAN) to the router's WebUI on or off.</td>
 +
    </tr>
 +
    <tr>
 +
        <td>Redirect to HTTPS</td>
 +
        <td>yes | no; default: <b>no</b></td>
 +
        <td>Redirects connection attempts from HTTP to HTTPS.</td>
 +
    </tr>
 +
    <tr>
 +
        <td>Enable remote HTTP access</td>
 +
        <td>yes | no; default: <b>no</b></td>
 +
        <td>Turns HTTP access from remote networks (WAN) to the router's WebUI on or off.</td>
 +
    </tr>
 +
    <tr>
 +
        <td>Port</td>
 +
        <td>integer [0..65535]; default: <b>80</b></td>
 +
        <td>Selects which port to use for HTTP access.</td>
 +
    </tr>
 +
    <tr>
 +
        <td>Enable remote HTTPS access</td>
 +
        <td>yes | no; default: <b>no</b></td>
 +
        <td>Turns HTTPS access from remote networks (WAN) to the router's WebUI on or off.</td>
 +
    </tr>
 +
    <tr>
 +
        <td>Port</td>
 +
        <td>integer [0..65535]; default: <b>443</b></td>
 +
        <td>Selects which port to use for HTTPS access.</td>
 +
    </tr>
 +
    <tr>
 +
        <td>Enable JSON RPC</td>
 +
        <td>yes | no; default: <b>yes</b></td>
 +
        <td>Turns JSON-RPC access via ubus on or off.</td>
 +
    </tr>
 +
    <tr>
 +
        <td>RFC1918 Filter</td>
 +
        <td>yes | no; default: <b>yes</b></td>
 +
        <td>Turns Address Allocation for Private Internets on or off.</td>
 +
    </tr>
 +
</table>
 +
<br>
 +
<b>CLI</b>
 +
----
 +
[[File:Networking_rutxxx_manual_administration_access_control_general_cli_v1.png]]
 +
 
 +
<table class="nd-mantable">
 +
    <tr>
 +
        <th>Field</th>
 +
      <th>Value</th>
 +
      <th>Description</th>
 +
    </tr>
 +
    <tr>
 +
        <td>Enable CLI</td>
 +
        <td>yes | no; default: <b>yes</b></td>
 +
        <td>Turns CLI access from the local network (LAN) on or off.</td>
 +
    </tr>
 +
    <tr>
 +
        <td>Enable remote CLI</td>
 +
        <td>yes | no; default: <b>no</b></td>
 +
        <td>Turns CLI access from remote networks (WAN) on or off.</td>
 +
    </tr>
 +
    <tr>
 +
        <td>Port range</td>
 +
        <td>range of integers [0..65534]-[1..65535]; default: <b>4200-4220</b></td>
 +
        <td>Selects which ports to use for CLI access.</td>
 +
    </tr>
 +
    <tr>
 +
        <td>Shell limit</td>
 +
        <td>integer [1..10]; default: <b>5</b></td>
 +
        <td>Maximum number of active CLI connections.</td>
 +
    </tr>
 +
</table>
  
 
===Safety===
 
===Safety===
 
----
 
----
 
+
The <b>Safety</b> section is used to manage the <i>List Of Blocked Addresses</i>. After a user attempts to login to this devices via SSH/HTTP, he will have a limited amount of retries in case of unsuccessful login attempts. This limit is called <i>Fail count</i> and is set in this page. After the user exhausts the maximum number of attempts, his IP address will be blocked from making more attempts and added to the <i>List Of Blocked Addresses</i>.
[[Image:System administration access control safety.PNG]]
+
<br><br>
 +
<b>Block Unwanted Access</b>
 +
----
 +
[[File:Networking_rutxxx_manual_administration_access_control_safety_block_unwanted_access_v1.png]]
  
 
<table class="nd-mantable">
 
<table class="nd-mantable">
 
     <tr>
 
     <tr>
         <th>field name</th>
+
         <th>Field</th>
       <th>value</th>
+
       <th>Value</th>
       <th>description</th>
+
       <th>Description</th>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
 
       <td>Enable</td>
 
       <td>Enable</td>
       <td>yes | no; Default: '''yes'''</td>
+
       <td>yes | no; default: <b>yes</b></td>
       <td>Toggles secure SSH/WebUI access ON or OFF. If this is checked, devices logging in have a limited amount of tries specified in the '''Fail count''' field to log in to the router</td>
+
       <td>Turns secure SSH/HTTP access on or off. If this is checked, devices logging in have a limited amount of tries specified in the <i>Fail count</i> field to log in to the router via SSH/HTTP.</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
 
       <td>Clean after reboot</td>
 
       <td>Clean after reboot</td>
       <td>yes | no; Default: '''no'''</td>
+
       <td>yes | no; default: <b>no</b></td>
       <td>If this field is checked, blocked addresses are removed after every reboot</td>
+
       <td>If this field is checked, addresses are removed from the <i>List Of Blocked Addresses</i> after every router reboot.</td>
 
     </tr>
 
     </tr>
 
     <tr>
 
     <tr>
 
     <td>Fail count</td>
 
     <td>Fail count</td>
         <td>integer; Default: '''5'''</td>
+
         <td>integer; default: <b>5</b></td>
         <td>Maximal login fail count after which the devices's address is blocked and appears in the '''List Of Blocked Addresses''' section</td>
+
         <td>Maximum login fail count after which the device's address is blocked and addedd to the <i>List Of Blocked Addresses</i>.</td>
 
     </tr>
 
     </tr>
 
</table>
 
</table>
 +
<br>
 +
<b>List Of Blocked Addresses</b>
 +
----
 +
[[File:Networking_rutxxx_manual_administration_access_control_safety_list_of_blocked_addresses_v2.png]]
 +
 +
The screenshot above is of a list that contains one blocked address. If you or someone you know gets blocked accidentally, you can unblock users from this section by deleting their IP address from the list.
 +
 +
<b>Note</b>: the list gets cleared after a factory reset.
  
 
==Diagnostics==
 
==Diagnostics==
  
The '''Diagnostics''' page is used to diagnose whether you have an internet connection, trace routes of specified addresses and to perform NSlookups by sending ICMP ping packets to a specified host or IP address.
+
The <b>Diagnostics</b> section is used to execute simple network diagnostic tests, including <i>ping</i>, <i>traceroute</i> and <i>nslookup</i>.
  
 +
[[File:Networking_rutxxx_manual_administration_diagnostics_v1.png]]
  
[[Image:System administration diagnostics.PNG]]
+
Enter an address in the <i>Host</i> field and execute one of the following actions:
  
==MAC Clone==
+
<ul>
 +
    <li><b>Ping</b> - sends ICMP requests to the specified address.</li>
 +
    <li><b>Traceroute</b> - displays the path that packets have to take in order to reach the specified address.</li>
 +
    <li><b>Nslookup</b> - obtains domain name address and IP address mapping information.</li>
 +
</ul>
  
[[Image:System administration mac clone.PNG]]
+
==Overview==
  
==Overview==
+
The <b>Overview</b> section is used to select which widgets should be visible in the Status → [[RUT850 Overview|Overview]] page.
  
The '''Administration->Overview''' section is used to configure which widgets should be shown in the Overview page.
+
[[File:Networking_rut850_manual_administration_overview_v1.png]]
  
[[Image:System administration overview rut850.PNG]]
+
Simply select the widgets that you would like to view in the Overview page and click the 'Save' button.
  
 
==RMS==
 
==RMS==
{{Template:rut manual system administration rms}}
+
 
 +
<b>RMS</b> (<b>Remote Management System</b>) is a cloud system designed by Teltonika and intended for remote monitoring and management of Teltonika's [[Network products|networking products]].
 +
 
 +
In order to add a device(s) to RMS, get yourself acquainted by watching [https://www.youtube.com/watch?v=bZeqdrAcdVU this instructional video] and register an account by [https://rms.teltonika.lt/ clicking here]. <b>Each unique device receives a free month-long RMS license</b> when added to RMS for the first time.
 +
----
 +
The figure below is a screenshot of the RMS section taken from a device which has been connected to RMS:
 +
 
 +
[[File:Networking_rutxxx_manual_administration_rms_connected_v1.png]]
 +
 
 +
<table class="nd-mantable">
 +
    <tr>
 +
        <th>Field</th>
 +
      <th>Value</th>
 +
      <th>Description</th>
 +
    </tr>
 +
    <tr>
 +
        <td>Connection type</td>
 +
        <td>Enabled | Standby | Disabled; default: <b>Enabled</b></td>
 +
        <td>Defines how the device will connect to RMS:
 +
            <ul>
 +
                <li><b>Enabled</b> - the device attempts to connect to RMS every 2-5 minutes (every 2 minutes the first hour; then every 5 minutes). If it cannot connect for 14 days, it will enter Standby mode.</li>
 +
                <li><b>Standby</b> - the device attempts to connect to RMS every 6 hours.</li>
 +
                <li><b>Disabled</b> - RMS functionality is disabled.</li>
 +
            </ul>
 +
        </td>
 +
    </tr>
 +
    <tr>
 +
        <td>Hostname</td>
 +
        <td>host | ip; default: <b>rms.teltonika.lt</b></td>
 +
        <td>Address of the RMS server. If you're using regular RMS, just leave the default address (<i><nowiki>rms.teltonika.lt</nowiki></i>).</td>
 +
    </tr>
 +
    <tr>
 +
        <td>Port</td>
 +
        <td>integer [0..65535]; default: <b>15009</b></td>
 +
        <td>Port number for connecting to RMS. If you're using regular RMS, just leave the default port (<i>15009</i>).</td>
 +
    </tr>
 +
</table>
 +
<br>
 +
----
 +
 
 +
The RMS server waits for incoming connections. Since the device attempts to connect at a fixed interval, it may not connect instantly after you add it to RMS. While it is disconnected, you can check how much time is left until the next connection attempt in the Status section:
 +
 
 +
[[File:Networking_rutxxx_manual_administration_rms_disconnected_v1.png]]
 +
 
 +
To speed up the process by initiating an immediate connection attempt, click the 'Connect' button.
 +
 
 +
For more information on Teltonika's Remote Management System (RMS) refer to the <b>[[RMS Manual]]</b> or <b>[[RMS FAQ]]</b> pages.
 +
 
 +
==Root CA==
 +
 
 +
The <b>Root CA</b> section is used to add a root CA certificate file to the router. There is a default file already preloaded on the device which will be overwritten by any uploaded file. The certificates must be in .pem format, maximum file size is 300 KB. These certificates are only needed if you want to use HTTPS for your services and the default file should be sufficient in most cases.
 +
 
 +
[[File:Networking_rutxxx_manual_administration_root_ca_v1.png]]
  
 
[[Category:RUT850 WebUI]]
 
[[Category:RUT850 WebUI]]

Revision as of 12:31, 22 July 2019

Main Page > RUT Routers > RUT850 > RUT850 Manual > RUT850 WebUI > RUT850 Services section > RUT850 Administration

| name = RUT240 | fw_version = RUT2XX_R_00.01.10 | series = RUT2xx | file_general = Networking_rut240_manual_administration_general_v1.png | file_troubleshoot = Networking_rut2xx_manual_administration_troubleshoot_v1.png | file_tcpdump = Networking_rutxxx_manual_administration_troubleshoot_tcpdump_v1.png | file_backup = Networking_rut2xx_manual_administration_backup_v1.png | file_access_ssh = Networking_rutxxx_manual_administration_access_control_general_ssh_v1.png | file_access_webui = Networking_rutxxx_manual_administration_access_control_general_webui_v1.png | file_access_cli = Networking_rutxxx_manual_administration_access_control_general_cli_v1.png | file_access_unwanted = Networking_rutxxx_manual_administration_access_control_safety_block_unwanted_access_v1.png | file_access_list = Networking_rutxxx_manual_administration_access_control_safety_list_of_blocked_addresses_v2.png | file_diagnostics = Networking_rutxxx_manual_administration_diagnostics_v1.png | file_mac_clone = Networking_rutxxx_manual_administration_mac_clone_v2.png | file_overview = Networking_rut240_manual_administration_overview_v1.png | file_rms_connected = Networking_rutxxx_manual_administration_rms_connected_v1.png | file_rms_disconnected = Networking_rutxxx_manual_administration_rms_disconnected_v1.png | file_root_ca = Networking_rutxxx_manual_administration_root_ca_v1.png | file_azure = Networking_rutxxx_manual_administration_azure_v1.png }}-->

Summary

This page is an overview of the Administration section of RUT850 routers.

The information in this page is updated in accordance with the RUT850_R_00.01.03.4 firmware version.

General

The General section is used to set up some of the router's managerial parameters, such as password, name, language, etc. For more information on the General section, refer to figure and table below.

Networking rut850 manual administration general v1.png

Field Value Description
Router name string; default: RUT850 The router's model name.
Host name string; default: Teltonika-RUT850.com The router's hostname. This can be used instead of the IP address to reach the router's WebUI from the local network.
New password string; default: none A new password for the router. The password must be comprised of 8-32 characters, including at least one upper case letter, one lower case letter and one digit.
Confirm new password string; default: none Repeat the new password for confirmation. (Must match the password entered in the "New password" field.)
Language English | Deutsch | Français | Turkish; default: English Selects the router's WebUI language.
Enable sleep mode* yes | no; default: no Turns sleep mode on or off.
Show mobile info at login page yes | no; default: no Shows mobile data connection information (signal strength, state, service mode) at login page.
Show WAN IP at login page yes | no; default: no Shows the router's WAN IP address at login page.
LEDs Indication yes | no; default: yes Turns the router's LED indications on or off.
Restore to default -(interactive button) Restores the router to it's default state (factory settings).

* more information on sleep mode in the next section.

Sleep mode


Networking rut850 manual administration general sleep mode v1.png

Troubleshoot

The Troubleshoot section is used to download various files that contain information used for troubleshooting the router. Refer to the figure and table below for information on the Troubleshoot page.

File:Networking rut2xx manual administration troubleshoot v1

Field Value Description
System log level Debug | Info | Notice | Warning | Error | Critical | Alert | Emergency; default: debug Specifies the information output level of the system log.
  • Debug - contains basic information that is diagnostically helpful to most people (i.e., not just engineers).
  • Info - general useful information (e.g., configuration changes, starts and stops of services, etc.)
  • Notice - conditions that are not error conditions, but that may require special handling.
  • Warning - anything that can potentially cause application oddities, but for which the system is automatically recovering from (e.g., retrying an operation, missing secondary data, etc.)
  • Error - errors that are fatal to the operation, but not the service or application (can't open a required file, missing data, etc.) Solving these types of errors will usually require user intervention.
  • Critical - critical conditions, device errors.
  • Alert - a condition that must be corrected immediately.
  • Emergency - a panic condition, i.e., system is no longer usable.
Save log in RAM memory | Flash memory; default: RAM memory Specifies which type of memory to use for storing system logs.
Include GSMD information yes | no; default: yes When checked, includes the router's GSMD information in the log file.
Include PPPD information yes | no; default: no When checked, includes the router's PPPD information in the log file.
Include chat script information yes | no; default: yes When checked, includes the router's chat script information in log file.
Include network topology information yes | no; default: no When checked, includes the router's network topology information in the log file.
System log - (interactive button) Displays the contents of the router's system log file. The system log contains records of various system related events, such as starts/stops of various services, errors, reboots, etc.
Kernel log - (interactive button) Displays the contents of the router's kernel log file. The kernel log contains records of various events related to the processes of the operating system (OS).
Troubleshoot file - (interactive button) Downloads the router's Troubleshoot file. It contains the router's configuration information, logs and some other files. When requesting support, it is recommended to always provide the router's Troubleshoot file to Teltonika engineers for analysis.

Backup

The Backup page is used to download or upload configuration backup files to the router. Backup files can be uploaded only from identical devices with identical. Once a backup file is uploaded to a router, that router will have identical configuration as the router from which the backup file originated (was downloaded from).

Networking rut850 manual administration backup v1.png

  • Backup Configuration - generates and downloads the router's backup file based on the current configuration.
  • Restore Configuration - uploads a configuration backup file to the router. This can be done in two ways:
    • Upgrade from file - uploads a configuration file from your computer.
    • Upgrade from FOTA - uploads a configuration file assigned to the device in FOTA.

Important: backup files can be uploaded only when taken from a device with an identical Product code (can be checked in Status → [[{{{name}}} Device|Device]]) and identical firmware.

Access Control

The Access Control page is used to manage remote and local access to the router.

Important: turning on remote access leaves the router vulnerable to external attackers. Make sure you use a strong password.

General


The General section is used to manage SSH, HTTP(S) and CLI access to the router.

SSH


Networking rutxxx manual administration access control general ssh v1.png

Field Value Description
Enable SSH access yes | no; default: yes Turns SSH access from the local network (LAN) on or off.
Remote SSH access yes | no; default: no Turns SSH access from remote networks (WAN) on or off.
Port integer [0..65535]; default: 22 Selects which port to use for SSH access.


WebUI


Networking rutxxx manual administration access control general webui v1.png

Field Value Description
Enable HTTP access yes | no; default: yes Turns HTTP access from the local network (LAN) to the router's WebUI on or off.
Redirect to HTTPS yes | no; default: no Redirects connection attempts from HTTP to HTTPS.
Enable remote HTTP access yes | no; default: no Turns HTTP access from remote networks (WAN) to the router's WebUI on or off.
Port integer [0..65535]; default: 80 Selects which port to use for HTTP access.
Enable remote HTTPS access yes | no; default: no Turns HTTPS access from remote networks (WAN) to the router's WebUI on or off.
Port integer [0..65535]; default: 443 Selects which port to use for HTTPS access.
Enable JSON RPC yes | no; default: yes Turns JSON-RPC access via ubus on or off.
RFC1918 Filter yes | no; default: yes Turns Address Allocation for Private Internets on or off.


CLI


Networking rutxxx manual administration access control general cli v1.png

Field Value Description
Enable CLI yes | no; default: yes Turns CLI access from the local network (LAN) on or off.
Enable remote CLI yes | no; default: no Turns CLI access from remote networks (WAN) on or off.
Port range range of integers [0..65534]-[1..65535]; default: 4200-4220 Selects which ports to use for CLI access.
Shell limit integer [1..10]; default: 5 Maximum number of active CLI connections.

Safety


The Safety section is used to manage the List Of Blocked Addresses. After a user attempts to login to this devices via SSH/HTTP, he will have a limited amount of retries in case of unsuccessful login attempts. This limit is called Fail count and is set in this page. After the user exhausts the maximum number of attempts, his IP address will be blocked from making more attempts and added to the List Of Blocked Addresses.

Block Unwanted Access


Networking rutxxx manual administration access control safety block unwanted access v1.png

Field Value Description
Enable yes | no; default: yes Turns secure SSH/HTTP access on or off. If this is checked, devices logging in have a limited amount of tries specified in the Fail count field to log in to the router via SSH/HTTP.
Clean after reboot yes | no; default: no If this field is checked, addresses are removed from the List Of Blocked Addresses after every router reboot.
Fail count integer; default: 5 Maximum login fail count after which the device's address is blocked and addedd to the List Of Blocked Addresses.


List Of Blocked Addresses


Networking rutxxx manual administration access control safety list of blocked addresses v2.png

The screenshot above is of a list that contains one blocked address. If you or someone you know gets blocked accidentally, you can unblock users from this section by deleting their IP address from the list.

Note: the list gets cleared after a factory reset.

Diagnostics

The Diagnostics section is used to execute simple network diagnostic tests, including ping, traceroute and nslookup.

Networking rutxxx manual administration diagnostics v1.png

Enter an address in the Host field and execute one of the following actions:

  • Ping - sends ICMP requests to the specified address.
  • Traceroute - displays the path that packets have to take in order to reach the specified address.
  • Nslookup - obtains domain name address and IP address mapping information.

Overview

The Overview section is used to select which widgets should be visible in the Status → Overview page.

Networking rut850 manual administration overview v1.png

Simply select the widgets that you would like to view in the Overview page and click the 'Save' button.

RMS

RMS (Remote Management System) is a cloud system designed by Teltonika and intended for remote monitoring and management of Teltonika's networking products.

In order to add a device(s) to RMS, get yourself acquainted by watching this instructional video and register an account by clicking here. Each unique device receives a free month-long RMS license when added to RMS for the first time.


The figure below is a screenshot of the RMS section taken from a device which has been connected to RMS:

Networking rutxxx manual administration rms connected v1.png

Field Value Description
Connection type Enabled | Standby | Disabled; default: Enabled Defines how the device will connect to RMS:
  • Enabled - the device attempts to connect to RMS every 2-5 minutes (every 2 minutes the first hour; then every 5 minutes). If it cannot connect for 14 days, it will enter Standby mode.
  • Standby - the device attempts to connect to RMS every 6 hours.
  • Disabled - RMS functionality is disabled.
Hostname host | ip; default: rms.teltonika.lt Address of the RMS server. If you're using regular RMS, just leave the default address (rms.teltonika.lt).
Port integer [0..65535]; default: 15009 Port number for connecting to RMS. If you're using regular RMS, just leave the default port (15009).



The RMS server waits for incoming connections. Since the device attempts to connect at a fixed interval, it may not connect instantly after you add it to RMS. While it is disconnected, you can check how much time is left until the next connection attempt in the Status section:

Networking rutxxx manual administration rms disconnected v1.png

To speed up the process by initiating an immediate connection attempt, click the 'Connect' button.

For more information on Teltonika's Remote Management System (RMS) refer to the RMS Manual or RMS FAQ pages.

Root CA

The Root CA section is used to add a root CA certificate file to the router. There is a default file already preloaded on the device which will be overwritten by any uploaded file. The certificates must be in .pem format, maximum file size is 300 KB. These certificates are only needed if you want to use HTTPS for your services and the default file should be sufficient in most cases.

Networking rutxxx manual administration root ca v1.png