Transcript
Netop SecureM2M Software Gateway Installation and Configuration Guide Version 1.2.1 (Netop Host 12.11)
Netop develops and sells software solutions that enable swift, secure and seamless transfer of video, screens, sounds and data between two or more computers over the Internet. For more information, see www.netop.com.
Netop SecureM2M Software Gateway Installation and Configuration Guide
Contents 1.
Introduction......................................................................................................................... 2
2.
Installation .......................................................................................................................... 3
3.
Components ....................................................................................................................... 4 3.1. Start and Stop Netop Host Daemon ......................................................................... 4 3.2. Display and hide the Netop Host Window ................................................................. 4
4.
Configuration ...................................................................................................................... 6 4.1. Mandatory configuration ........................................................................................... 7 4.2. Optional configuration............................................................................................. 11
Copyright © Netop 2015. All rights reserved
1
Netop SecureM2M Software Gateway Installation and Configuration Guide
1. Introduction Netop SecureM2M software Gateway represents a group of applications that allows the creation of the tunnel between the Connector and the device where the software Gateway is installed. The tunnel is achieved so that applications on the Connector computer can communicate with applications installed on the Gateway device.
Technical Requirements Overall recommended minimum hardware
Pentium4 1.6Ghz/1GB RAM
Recommended software OS: RedHat Enterprise 5.x and 6.x, Ubuntu 12.04, CentOS 5.x and 6.x, SUSE Enterprise 11, OpenSUSE 11.4 and 12.1 Port requirements
No inbound port needs to be open.
Outbound TCP port needs to be open on port 6502 and 443.
Copyright © Netop 2015. All rights reserved
2
Netop SecureM2M Software Gateway Installation and Configuration Guide
2. Installation The software Gateway should be placed in the same network as the end points. 1. Extract the files on your device. 2. Run the following command: sudo ./install.pl -–autoinstall --host [software gateway license ] 3. The software Gateway is installed. Note: The software Gateway license is received by email.
Uninstall Gateway To uninstall the Netop Host, either use the default Operating System’s package manager or execute the following commands in a terminal window depending on the Operating System:
For RedHat, CentOS, SUSE: rpm -e NetopHost rm -rf /etc/NetopHost
For Ubuntu: apt-get remove netophost rm –rf /etc/netophost
When using the package manager to uninstall the Host, the above rm command should also be executed to remove the /etc/NetopHost folder and its contents. Please refer to the package manager specific to the distribution you are using for additional information on how to remove installed packages.
Copyright © Netop 2015. All rights reserved
3
Netop SecureM2M Software Gateway Installation and Configuration Guide
3. Components Netop SecureM2M software Gateway includes these applications:
Netop Host Daemon (netophostd). Netop Host Daemon on Linux will typically run when the computer operating system starts. A user with system user privileges can start and stop Netop Host Daemon.
Netop Host Program (netophost). Netop Host Program on Linux will load and typically start when Netop Host Daemon on Linux loads. If started, communication will be initialized enabling a Netop Guest to connect. A user can typically control the Netop Host Program from the Netop Host GUI.
Netop Host GUI (netophostgui). Netop Host GUI on Linux shows the Netop Host graphical user interface. It will not load automatically when the Netop Host Program loads. A user can load and unload the Netop Host GUI but only a user with system privileges can make changes to the Netop Host program options.
3.1. Start and Stop Netop Host Daemon Netop Host Daemon will start and stop with the Linux operating system. A user with system user privileges can start, stop, restart and report the status of the Netop Host Daemon with these terminal window commands: Function start
restart
status
stop
Command
Description
/etc/init.d/netophostd start
This command starts Netop Host Daemon on Linux and loads Netop Host Program on Linux.
/etc/init.d/netophostd restart
This command restarts Netop Host Daemon on Linux and loads Netop Host Program on Linux
/etc/init.d/netophostd status
This command returns a message of whether Netop Host Daemon on Linux is running or not.
/etc/init.d/netophostd stop
This command unloads Netop Host Program on Linux and stops Netop Host Daemon on Linux.
3.2. Display and hide the Netop Host Window The Netop Host GUI will not load automatically when the Netop Host Program loads.
Copyright © Netop 2015. All rights reserved
4
Netop SecureM2M Software Gateway Installation and Configuration Guide
If the Netop Host Program on Linux is loaded, execute this command in a terminal window: netophostgui This will display the Netop Host interface:
Note: The netophostgui command assumes that the Netop Host GUI program file resides in the /usr/bin directory or is in a directory included in the global PATH. If the Netop Host GUI resides in another directory, precede the command by the full directory path.
To unload the Netop Host GUI, click Exit on the File menu.
Copyright © Netop 2015. All rights reserved
5
Netop SecureM2M Software Gateway Installation and Configuration Guide
4. Configuration To change the setup options of the software Gateway, click the Options button on the toolbar or click Options on the Tools menu:
User name
Type a valid Linux logon name To change the setup options of the Netop Host, the user must have the privileges to edit the /etc/NetopHost/host.xml file.
Password
Type the matching Linux logon password.
Click OK to and the Netop Host Manager displays:
Copyright © Netop 2015. All rights reserved
6
Netop SecureM2M Software Gateway Installation and Configuration Guide
All the configuration is done under the branch NetopHost > Configuration > Local configuration, therefore all references to the locations will start from next layer down. To ensure that changes have been applied, restart Netop Host after clicking OK.
4.1.
Mandatory configuration
Configure cloud based connectivity In order to securely connect through the Cloud, you need to configure WebConnect connectivity from Host computer > Communication > Network listen > WebConnect. Fill in the credentials as provided by e-mail.
Copyright © Netop 2015. All rights reserved
7
Netop SecureM2M Software Gateway Installation and Configuration Guide
Define end points and remote ports Go to Host computer > Tunnel Configuration and define the remote ports (Allowed ports) which will be used to send/receive information externally to/from the SecureM2M Connector: 1. Right-click on Allowed Tunnels and click New > Endpoint. An entry is added below.
2. Click the new entry and then double click the Address attribute in the Attribute-Value section. The Edit string attribute window displays.
Copyright © Netop 2015. All rights reserved
8
Netop SecureM2M Software Gateway Installation and Configuration Guide
3. Enter the endpoint IP address and click OK. The new item previously added under the Allowed Tunnels changes its name into the endpoint IP address.
4. Under Allowed Tunnels, right-click on the end point IP address and select New > Port.
5. Click on the new entry and then double click the Range attribute in the Attribute-Value section. The Edit string attribute window displays.
Copyright © Netop 2015. All rights reserved
9
Netop SecureM2M Software Gateway Installation and Configuration Guide
6. Enter the remote port and click OK. The new item previously added under the endpoint IP address changes its name into the allowed remote port.
In order to assign several remote ports to the same endpoint IP address, repeat steps 4 and 5. Note: If you want to remove a port or an IP, right click on the corresponding entry and click Delete.
Authentication In order to add Users who are allowed to tunnel to the Software Gateway, add a user to the underlying operating system. In order to not allow a User to connect to the software Gateway, either remove or disable the User on the underlying operating system.
Copyright © Netop 2015. All rights reserved
10
Netop SecureM2M Software Gateway Installation and Configuration Guide
4.2. Optional configuration Note: In the following tables, the default value is marked with an asterisk (*)
Configure Gateway Naming You can choose how the Gateway name displays on the Connector’s side by setting the Naming attributes from Host computer > Hostname > Naming: Attribute
Value
Naming Mode
Computer name*/Enter or leave blank
Host Name
(*)
Computer name will identify the software Gateway by its computer name (generally recommended). Enter or leave blank will identify the software Gateway by the Host Name attribute value.
Maintenance password You can protect the software Gateway with a maintenance password, so that no unauthorized people can make changes to the Gateway setup. In order to enable maintenance password protection, go to Host computer > Host security > Maintenance and enter a value in the Password attribute. If enabled, Gateway or Netop Host Manager will request the Password attribute value to execute a maintenance password protected action including changing the Password attribute value. Attribute
Value
Old password
(*) The field will show dots or asterisks.
Password
(*) The field will show dots or asterisks.
Guest access security
Enabled*/Disabled
All other configuration
Enabled*/Disabled
Program exit and “Stop Host”
Enabled*/Disabled
To change the maintenance password, specify the current maintenance password as the Old Password attribute value and the new maintenance password as the Password attribute value.
Copyright © Netop 2015. All rights reserved
11
