To Next Page

To Previous Page

Page 83 of 237

Version: 5.1.6 – June 4

, 2018

14. Creating certificates and revocation lists using XCA.

Certificates overview

Any subscriber communicating over a VPN connection needs 2 certificates. One certificate must

be signed by a CA (Certificate Authority). Each subscriber must have the CA certificate plus a

“server” or “client” certificate. In our case:

 The server may be the mbNET or a separate server.

 The client is either a computer or another mbNET.

The certificates are required to set up a secure VPN tunnel and are used to authenticate the VPN

subscriber. If the subscriber has no certificate, or an invalid certificate, no VPN tunnel can be es-

tablished between the two devices if the authentication setting on the mbNET is “X.509”.

To understand how to create certificates, please read the following pages.

1 Table of Contents3
2 Gerneral8
- Purpose of this Documentation8
- Validity of this Documentation8
- Brief Description8
- Features8
- Prerequisites/Components8
- Releas Notes9
3 Safety Instructions (English and France)10
4 Using Open Source Software12
- General Information12
- Special Liability Regulations12
- Used Open-Source Software12
5 Technical Specification13
- Dimensional Drawing13
- Datasheet14
- General Approvals16
6 What Is Included in the Package17
7 Displays, Controls and Connections18
- Front Panel View18
- Top, Bottom and Back Panel Views19
8 Interfaces20
- Pinout of Top Panel Terminal Blocks X1 and X220
- Pinout of Bottom Panel RJ11 Jack20
- Pinout of Front Panel Serial Interfaces COM1 and COM220
- Pinout of Front Panel LAN / WAN Ports21
- Pinout Front Panel USB Port21
9 First Time Operation22
- Router Installation22
  - Mounting Position / Minimum Distances22
  - DIN Rail Mounting22
- Connecting the Router to the Power Supply and Switching on23
- Connecting the Router to a Configuration PC24
10 Router Configuration Prerequisites24
- How to Set Computer Address (IP Address) and Subnet Mask in Windows 725
- How to Set Computer Address (IP Address) and Subnet Mask in XP26
11 Access the Web Interface of the Router27
- Cloudserver28
- Classic Router34
- Configuration Screen of the Mbnet35
12 Basic Configuration of the Router Using the Web Interface36
- Web Interface Home Page36
- Icons, Buttons and Fields37
- System > CTM (Configuration Transfer Manager)38
- System > Settings39
- System > WEB41
- WLAN Configuration43
13 Description of Different Connection Scenarios46
- General46
- Configuring the Industrial Router for Connection over the Telephone Network48
- Configuring the Industrial Router for Connection Via the Internet56
- Configuring the Industrial Router for Connection to the Internet Using a DSL Modem63
- Configuring the Industrial Router for Connection to the Internet Via an Existing Router67
  - Connecting the Router67
  - Configuring the Router Using the Web Interface67
- Configuring the Industrial Router for VPN Connection to a Client71
- Configuring a Connection between Two Routers Via VPN PPTP78
  - Settings for Connecting Two Industrial Routers - PPTP - Server79
  - Settings for Connecting Two Industrial Routers - PPTP-Client81
14 Creating Certificates and Revocation Lists Using XCA83
- Certificates Overview83
- Creating Certificates84
  - Creating a Root Certificate85
- Generating CRL-Files (Certificate Revocation Lists)98
15 Importing Certificates in Windows XP100
16 System Settings102
- System - Users102
- System - Certificates105
- System - USB110
- System - Logging111
- System - Configuration112
- System - Firmware113
  - Upgrade Via USB113
  - Upgrade Via Network114
17 Network115
- Network - LAN115
- Network - WAN116
- Network - Modem118
- Network - Internet127
- Network - DHCP133
- Network - DNS Server134
- Network - Hosts135
- Network - Dyndns135
  - General135
  - How to Set up Dyndns Configuration135
18 Serial Interfaces137
- General137
  - RS232/485 Serial Interfaces137
  - MPI/PROFIBUS Interface139
- Redirecting Serial Interfaces to Your PC (VCOM LAN2)141
  - Settings for Simatic Manager142
- Enabling RFC1006 on the Mbnet142
- Connecting to S7 Using the Mbnet S7 Driver152
19 Security154
- Firewall General154
- Wan > Lan156
- Lan > Wan158
- Forwarding160
- Nat162
  - Simplenat162
  - 1:1 Nat163
20 Vpn164
- VPN-Ipsec164
  - Configuring a VPN-Ipsec Connection with Two Routers164
- Vpn - Pptp170
  - Server Settings170
  - Client Settings171
- VPN Openvpn172
21 I/O Manager196
- Configuring the Connection197
  - Creating the PLC Connection198
    - Creating the Tags199
- Configuring the Logging Function200
- Diagnostic201
- Tag Status201
22 Alarm Management202
- General202
- Digital Inputs202
  - Multiplex Inputs203
- Digital Outputs205
23 Status Messages207
- General207
- Status - Interfaces207
- Status - Network208
  - Firewall209
    - In / out / Forward209
    - Nat210
- Status - Modem211
- Status - Internet214
- Status - DHCP215
- Status - DNS Server216
- Status - Dyndns216
- Status - NTP217
24 Extras224
- Lua224
- Toolbox225
25 Firmware Update Directly Via USB226
26 Importing the Portal Configuration into an Mbnet Via USB227
27 Factory Settings on Delivery228
- Username and Password228
- IP Address of the Router228
28 Loading the Factory Settings228
29 Restart the Mbnet Router229
- Via Webinterface229
- Via Reset Button229
30 Initializing the Modem230
- General Information on the at Commands230
- Analog Modem Commands230
- ISDN Terminal Adapter (TA) Commands232
31 Appendix233
Country Codes for Analog Devices233

Brand	MB Connect Line
Model	mbNET Series
Category	Network Router
Language	English

MB Connect Line mbNET Series User Manual

Table of Contents

Other manuals for MB Connect Line mbNET Series

Questions and Answers:

MB Connect Line mbNET Series Specifications

Related product manuals