Settings: Difference between revisions

Jump to navigation Jump to search

Settings (view source)

Revision as of 09:20, 6 April 2020

67 bytes added ,  6 April 2020
no edit summary
No edit summary
No edit summary
Line 356: Line 356:
* Manage own network: In this mode, the device will setup an own access point so that you can connect your laptop or smartphone directly to the device and access the management interface.
* Manage own network: In this mode, the device will setup an own access point so that you can connect your laptop or smartphone directly to the device and access the management interface.
In this mode, the web interface can be accessed by entering the URL “https://allegro/” into your web browser.
In this mode, the web interface can be accessed by entering the URL “https://allegro/” into your web browser.


Additionally, two other options are available in this mode:
Additionally, two other options are available in this mode:
Line 368: Line 369:


<big>''' LAN management interface'''</big>
<big>''' LAN management interface'''</big>
For wired connection there are three operation modes:
For wired connection there are three operation modes:


Line 383: Line 385:
You can leave them empty if you want directly connect the device to another computer with no router involved.
You can leave them empty if you want directly connect the device to another computer with no router involved.
In this mode, the web interface can be reached by the static IP you have configured.
In this mode, the web interface can be reached by the static IP you have configured.


<big>''' Secondary management interface'''</big>
<big>''' Secondary management interface'''</big>
You can attach an USB ethernet adapter to any USB port of the Allegro Network Multimeter and use this as an additional management interface.
You can attach an USB ethernet adapter to any USB port of the Allegro Network Multimeter and use this as an additional management interface.
This management interface can be operated with a static IP address only. In the address input field please enter the IP address followed by a slash and the subnet size.
This management interface can be operated with a static IP address only. In the address input field please enter the IP address followed by a slash and the subnet size.
Line 390: Line 394:
You can leave them empty if you want directly connect the device to another computer with no router involved.
You can leave them empty if you want directly connect the device to another computer with no router involved.
This feature is not supported by the Allegro 200.
This feature is not supported by the Allegro 200.


<big>''' Host name'''</big>
<big>''' Host name'''</big>
By default, the host name is in the format “allegro-mm-xxxx” where the last four characters depend on the actual device.  
By default, the host name is in the format “allegro-mm-xxxx” where the last four characters depend on the actual device.  
Because of this multiple multimeters can be used in the same network.  
Because of this multiple multimeters can be used in the same network.  
Line 399: Line 405:


<big>''' LLDP'''</big>
<big>''' LLDP'''</big>
If enabled, the Allegro Network Multimeter will transmit LLDP (Link Layer Discovery Protocol) information for the management MAC and IP addresses on the management interface.
If enabled, the Allegro Network Multimeter will transmit LLDP (Link Layer Discovery Protocol) information for the management MAC and IP addresses on the management interface.
The LLDP system name will contain the hostname of the Allegro Network Multimeter and the LLDP system description will contain the platform type (e.g. Allegro-200-rev1) and the currently installed firmware version.
The LLDP system name will contain the hostname of the Allegro Network Multimeter and the LLDP system description will contain the platform type (e.g. Allegro-200-rev1) and the currently installed firmware version.
Line 406: Line 413:


==''' Administration'''==
==''' Administration'''==
The administration page allows following actions:
The administration page allows following actions:
* Power: Reboot or power off the Allegro Network Multimeter. After clicking on the buttons a confirmation dialog will appear.
* Power: Reboot or power off the Allegro Network Multimeter. After clicking on the buttons a confirmation dialog will appear.
Line 421: Line 429:


''' SSL certificate'''
''' SSL certificate'''
The device comes with a pre-installed generic SSL certificate but an own certificate can be installed:
The device comes with a pre-installed generic SSL certificate but an own certificate can be installed:


Line 426: Line 435:


The “Reset to default SSL certificate” button will remove any user-provided SSL certificate and the user interface will be served using the default SSL certificate.
The “Reset to default SSL certificate” button will remove any user-provided SSL certificate and the user interface will be served using the default SSL certificate.
It is currently not possible to issue a signing request procedure. To use a certificate which needs to be signed by a company CA, the user has to create that certificate on a separate machine, create the signing request, and deploy the final certificate to the device using the option above.
It is currently not possible to issue a signing request procedure. To use a certificate which needs to be signed by a company CA, the user has to create that certificate on a separate machine, create the signing request, and deploy the final certificate to the device using the option above.




==''' Filter'''==
==''' Filter'''==
The filter page allows setting a processing filter for live traffic. The traffic may be filtered before it is processed.
The filter page allows setting a processing filter for live traffic. The traffic may be filtered before it is processed.


Line 454: Line 465:
| #A line with a comment
| #A line with a comment
1.2.3.1
1.2.3.1
1.2.3.2
1.2.3.2
1.2.3.3
1.2.3.3
|}
|}
Line 480: Line 493:


'''Sample Node.js server'''
'''Sample Node.js server'''
The following script is a basic Node.js server (with minimal error handling) which reads all POST requests and stores them to a file:
The following script is a basic Node.js server (with minimal error handling) which reads all POST requests and stores them to a file:


Line 485: Line 499:
|-
|-
|const http = require('http');
|const http = require('http');
const fs = require('fs');
const fs = require('fs');
const listenAddress = '0.0.0.0';
const listenAddress = '0.0.0.0';
const port = 3000;
const port = 3000;
let fileCount = 1;
let fileCount = 1;
const server = http.createServer((req, res) => {
const server = http.createServer((req, res) => {
if (req.method != 'POST') {
if (req.method != 'POST') {
res.statusCode = 405;
res.statusCode = 405;
res.end();
res.end();
return;
return;
}
}
let id = fileCount++;
let id = fileCount++;
let outputFilename = `${req.url.substring(1).replace(/\//g, '_')}_${id}.json`;
let outputFilename = `${req.url.substring(1).replace(/\//g, '_')}_${id}.json`;
console.log(`${id}: ${req.method} ${req.url} => ${outputFilename}`);
console.log(`${id}: ${req.method} ${req.url} => ${outputFilename}`);
let data = [];
let data = [];
req.on('data', chunk => data.push(chunk));
req.on('data', chunk => data.push(chunk));
req.on('end', () => {
req.on('end', () => {
fs.writeFile(outputFilename, data, (err) => {
fs.writeFile(outputFilename, data, (err) => {
if (err != null) {
if (err != null) {
console.log(err);
console.log(err);
res.statusCode = 500;
res.statusCode = 500;
} else {
} else {
res.statusCode = 200;
res.statusCode = 200;
}
}
res.end();
res.end();
});
});
});
});
});
});
server.listen(port, listenAddress, () => {
server.listen(port, listenAddress, () => {
console.log(`Server running at http://${listenAddress}:${port}/`);
console.log(`Server running at http://${listenAddress}:${port}/`);
});
});
|}
|}
Line 519: Line 563:


<big>''' SSH Port Forwarding'''</big>
<big>''' SSH Port Forwarding'''</big>
The Allegro Network Multimeter can be configured to to use SSH Port Forwarding to allow remote access to the device behind a NAT.  
The Allegro Network Multimeter can be configured to to use SSH Port Forwarding to allow remote access to the device behind a NAT.  
The multimeter will create a tunnel to an SSH endpoint and will open a listening port on this SSH server.  
The multimeter will create a tunnel to an SSH endpoint and will open a listening port on this SSH server.  
Line 527: Line 572:


'''Create a user'''
'''Create a user'''
The user on the SSH server does not need any special rights and does not need a login shell. Example:
The user on the SSH server does not need any special rights and does not need a login shell. Example:


Line 535: Line 581:


'''Allow SSH access via public key'''
'''Allow SSH access via public key'''
The Allegro Network Multimeter uses SSH public key authentication to log in on the SSH server.  
The Allegro Network Multimeter uses SSH public key authentication to log in on the SSH server.  
The public key can be found in the '''SSH public key''' field in the '''SSH Port Forwarding''' settings dialog.
The public key can be found in the '''SSH public key''' field in the '''SSH Port Forwarding''' settings dialog.
Line 541: Line 588:
|-
|-
| $> mkdir /home/mmremote/.ssh
| $> mkdir /home/mmremote/.ssh
$> chown mmremote: /home/mmremote/.ssh
$> chown mmremote: /home/mmremote/.ssh
$> nano /etc/mmremote/.ssh/authorized_keys
$> nano /etc/mmremote/.ssh/authorized_keys
|}
|}
Line 549: Line 598:


'''Option 1: No proxy'''
'''Option 1: No proxy'''
Advantage:
Advantage:
* no additional software required
* no additional software required
Line 568: Line 618:


'''Option 2: With HTTPS proxy'''
'''Option 2: With HTTPS proxy'''
Advantage:
Advantage:
* use default HTTPS port 443
* use default HTTPS port 443
Line 608: Line 659:


'''Configuration of the multimeter'''
'''Configuration of the multimeter'''
In the configuration dialog, insert the parameters to access the SSH server. For example:
In the configuration dialog, insert the parameters to access the SSH server. For example:
* SSH Host: '''mm-remote.company.com'''
* SSH Host: '''mm-remote.company.com'''
Line 618: Line 670:


<big>'''Allegro Remote Service'''</big>
<big>'''Allegro Remote Service'''</big>
The Allegro Remote Service is similar to the SSH Port Forwarding feature, but is an Out-of-the-box solution.
The Allegro Remote Service is similar to the SSH Port Forwarding feature, but is an Out-of-the-box solution.
The Allegro Remote Service is a transparent proxy which does not terminate the SSL connection. The certificate presented to your browser is the same that is configured on the multimeter (like with Option 1 of the SSH Port Forwarding configuration).
The Allegro Remote Service is a transparent proxy which does not terminate the SSL connection. The certificate presented to your browser is the same that is configured on the multimeter (like with Option 1 of the SSH Port Forwarding configuration).
Line 624: Line 677:


<big>''' SNMP'''</big>
<big>''' SNMP'''</big>
If enabled, it is possible to access the Allegro Network Multimeter using SNMPv1.
If enabled, it is possible to access the Allegro Network Multimeter using SNMPv1.
The community used is “public.
The community used is “public.
Line 633: Line 687:


<big>''' User Management'''</big>
<big>''' User Management'''</big>
The user management page allows managing users which can use the Allegro Network Multimeter.
The user management page allows managing users which can use the Allegro Network Multimeter.
It is possible to:
It is possible to:
Line 649: Line 704:


<big>''' Roles'''</big>
<big>''' Roles'''</big>
The only role currently defined is the “admin” role.
The only role currently defined is the “admin” role.
Only users with the “admin” role can:
Only users with the “admin” role can:
Line 658: Line 714:


<big>''' LDAP users'''</big>
<big>''' LDAP users'''</big>
In the LDAP users tab, it is possible to define an LDAP or Active Directory source for user management.  
In the LDAP users tab, it is possible to define an LDAP or Active Directory source for user management.  
The LDAP users are only an addition to the locally defined users.  
The LDAP users are only an addition to the locally defined users.  
Line 671: Line 728:
|-
|-
| User filter : (uid=%s)
| User filter : (uid=%s)
Group filter : (memberUid=%s)
Group filter : (memberUid=%s)
Users group : allegro-mm-users
Users group : allegro-mm-users
Admins group :  allegro-mm-admins
Admins group :  allegro-mm-admins
|}
|}
Line 681: Line 741:
|-
|-
| User filter : (&(sAMAccountName=%s)(objectCategory=person)(objectClass=user)(!sAMAccountType=805306370)(!userAccountControl:1.2.840.113556.1.4.803:=2))
| User filter : (&(sAMAccountName=%s)(objectCategory=person)(objectClass=user)(!sAMAccountType=805306370)(!userAccountControl:1.2.840.113556.1.4.803:=2))
Group filter : (&(member=${DN})(objectClass=group)(|(cn=allegro-mm-users)(cn=allegro-mm-admins)))
Group filter : (&(member=${DN})(objectClass=group)(|(cn=allegro-mm-users)(cn=allegro-mm-admins)))
Users group : allegro-mm-users
Users group : allegro-mm-users
Admins group : allegro-mm-admins
Admins group : allegro-mm-admins
|}
|}
Line 690: Line 753:
{| class="wikitable"
{| class="wikitable"
|-
|-
|Group filter : (&(member:1.2.840.113556.1.4.1941:=${DN})(objectClass=group)(|(cn=allegro-mm-users)(cn=allegro-mm-admins)))
| Group filter : (&(member:1.2.840.113556.1.4.1941:=${DN})(objectClass=group)(|(cn=allegro-mm-users)(cn=allegro-mm-admins)))
|}
|}


Line 698: Line 761:
{| class="wikitable"
{| class="wikitable"
|-
|-
|Group filter : (&(member:1.2.840.113556.1.4.1941:=${DN})(objectClass=group)(|(distinguishedName:=CN=allegro-mm-users,OU=Groups,DC=example,DC=com)(distinguishedName:=CN=allegro-mm admins,OU=Groups,DC=example,DC=com)))
| Group filter : (&(member:1.2.840.113556.1.4.1941:=${DN})(objectClass=group)(|(distinguishedName:=CN=allegro-mm-users,OU=Groups,DC=example,DC=com)(distinguishedName:=CN=allegro-mm admins,OU=Groups,DC=example,DC=com)))
|}
|}




<big>=='''Firmware update'''==</big>
<big>=='''Firmware update'''==</big>
This sub-page allows for uploading and activating new firmware version.  
This sub-page allows for uploading and activating new firmware version.  
When a new firmware is available from Allegro Packets, you can upload the file by clicking on the upload button and select the file from your hard disc.
When a new firmware is available from Allegro Packets, you can upload the file by clicking on the upload button and select the file from your hard disc.
Line 712: Line 776:


<big>==''' License upload'''==</big>
<big>==''' License upload'''==</big>
The Allegro Network Multimeter comes with an installed license which may have some limitations according to the support contract details. New license can be uploaded by clicking on the upload button and selecting the file from your hard disc. Valid license take immediate effect.
The Allegro Network Multimeter comes with an installed license which may have some limitations according to the support contract details. New license can be uploaded by clicking on the upload button and selecting the file from your hard disc. Valid license take immediate effect.
The shown system serial needs to be sent to Allegro Packets in order to generate a new license if required.
The shown system serial needs to be sent to Allegro Packets in order to generate a new license if required.
In case of an invalid or expired license, the device will stop analyzing traffic, but instead it will bypass all packets in bridge mode so that the network connection is still functioning.
In case of an invalid or expired license, the device will stop analyzing traffic, but instead it will bypass all packets in bridge mode so that the network connection is still functioning.
Soumar
1,775

edits

Retrieved from "https://allegro-packets.com/wiki/Special:MobileDiff/935"

Navigation menu