• No results found

Talk2M Free+ Remote-Access Connectivity Solution for ewon COSY devices. Getting Started Guide

N/A
N/A
Protected

Academic year: 2021

Share "Talk2M Free+ Remote-Access Connectivity Solution for ewon COSY devices. Getting Started Guide"

Copied!
36
0
0

Loading.... (view fulltext now)

Full text

(1)

“Talk2M Free+”

Remote-Access Connectivity Solution

for eWON COSY devices

Getting Started Guide

(2)

INTRODUCTION ... 3

HARDWARE AND SOFTWARE REQUIREMENTS ... 5

1. CREATING YOUR TALK2MFREE+ ACCOUNT... 7

2. LOGGING INTO YOUR TALK2MFREE+ ACCOUNT ... 9

3. ADDING AN EWON TO YOUR TALK2MFREE+ ACCOUNT ... 10

5. CONFIGURING THE EWON COSY’S INTERNET CONNECTION ... 13

9. UTILISING THE TALK2MFREE+ REMOTE-ACCESS CONNECTION, TO YOUR EWON 20

11. REACHING ETHERNET DEVICES, BEHIND THE EWON ... 23

APPENDIX A. USING ECATCHER THROUGH A PROXY SERVER ... 25

APPENDIX B. TALK2MCONNECTIONCHECKER ERRORS, CAUSED BY SECURITY

ISSUES ON THE CUSTOMER’S NETWORK ... 27

APPENDIX C. INSTALLATION CHECKLIST FOR INTERNET CONNECTION: EWON COSY

MODELS ... 33

APPENDIX F. PORTS AND IP ADDRESSES USED BY THE TALK2MFREE+ SERVICE AND

TALK2MPRO SERVICE ... 35

(3)

Introduction

Purpose :

This document describes how to configure and use a remote-access connection to your eWON COSY, using the Talk2M Free+ connectivity service.

Pre-requisites :

This document is not a substitute for a sound understanding of the basics of networking.

The eWON COSY is a networking product.

To configure and install an eWON COSY, a user needs to have a sound understanding of the basic principles of networking.

These fundamental principles are not specific to a COSY device.

They are relevant to any network product, from any networking vendor, anywhere in the world.

This knowledge includes (but is not limited to) the following:-

 IP addresses

 Subnet Mask

 the purpose and functions of the Gateway address

 how to use the ‘PING’ and ‘ipconfig’ instructions in Windows

 how to change IP settings in Windows

 the functions of a DNS server

 how to change DNS server in Windows

 the differences between Class A, Class B & Class C networks

 the difference between TCP & UDP

 the functions of common network devices (switches, hubs & routers)

 the differences between Static and Dynamic (DHCP) addressing

 a basic understanding of the principles of a VPN

Note: Refer to ‘Simple Networking Guide’ for the basic understanding of networks. This is sent on request.

The steps required to set up a successful “eWON COSY + Talk2MFree+” remote-access connection are shown on the next page.

(4)

Steps 1 and 2 must be completed in order to use the Talk2MFree+ Service.

1. Create your Free+ account on Talk2M.

This step is only required once, when you begin to use the Talk2M Free+ service, for the first time.

2. Log into your Free+ account.

This step is required whenever you need to add/edit an eWON or connect to a remote site.

---

Steps 3 to 6 must be completed BEFORE an eWON COSY is installed, at the remote site.

3. Add an eWON COSY to your Free+ account.

4. Obtain the eWON COSY activation Key

5. Configure the Internet connection on your eWON COSY.

6. Configure the Talk2M connection on your eWON COSY.

The above 4 steps are required for each new COSY.

---

Steps 7 to 8 are completed at the remote site, during installation.

7. Modify the Internet connection settings, of the eWON COSY , to suit the remote site 8. Verify the eWON COSY connection to Talk2MFree+, from the remote site

---

Step 10 connects the User with the remote site, through the Talk2M Free+ service.

9. Utilise the remote connection to your eWON COSY This step is required to communicate with a remote site.

(5)

1. Hardware and software requirements

Hardware requirements

In order to follow this guide you will need:

 1 x eWON COSY

eWON COSY which has 4 x LAN Ethernet ports, plus a WAN Ethernet interface.

Software requirements

These software tools can be downloaded from the Support section of www.ewon.biz eWON management software: eBuddy

eBuddy is used to discover an eWONs on a network, set its IP addresses, upgrade the firmware and create a Backup of the eWON configuration.

eWON configuration software:

The eWON COSY is configured through its web server interface.

All you need is a standard Web Browser e.g. I.E, Firefox, Opera or Chrome.

Talk2M VPN Client software: eCatcher v4

eCatcher V4.3.0 or higher must be installed on your PC, to establish the remote connection through the Talk2M system.

(6)

Talk2M Connectivity Checker software

This software is used to check the suitability and operation of an Internet connection, at the final, installation, remote site.

It can be downloaded from

http://ftp.ewon.biz/software/eCatcherpro/Talk2MConnectionChecker.exe

eWON Firmware Version

To be able to follow this guide your eWON COSY needs a firmware version 7.1s0

The best way to upgrade your eWON's firmware is to use the eBuddy software.

Before configuring each eWON device, download the latest version of firmware from the Internet, to your PC, using the ‘Update eBuddy’ option, in the eBuddy software.

(7)

1. Creating your Talk2MFree+ account

Before you can use the Talk2M Free+ service, for remote access to machines or systems, you will need to install the eCatcher software (version 4.3.0 or later) on your PC.

Connect your PC to the Internet.

Then download the eCatcher software from the Support section of the eWON website .www.ewon.biz.

Launch eCatcher: you will see the screen below, after installation.

Click on the "Create a Free+ account" link and enter the required values, as shown below.

(8)

Enter the Account name you want to create and specify the User name, Password and Email address for your account.

Typically, the Account name is the name of your company.

To check whether the Account name you wish to use is available, use the "check availability" link.

By default, "admin" is configured as the user name of the first created user account.

(it is possible to change this ‘admin’ name, if you wish).

This first User is the administrator for the account and creates all subsequent User names.

(The Free+ service allows you to create multiple users under the same account.)

Once all the fields are entered click on Next.

The next window will allow you to enter detailed information about your company.

Once you are finished, click on the Create button to create your account.

(9)

2. Logging into your Talk2MFree+ account

Once your Talk2M Free+ account has been created, you may log in to your account.

Launch the eCatcher software and specify the Username, Password and your Talk2M Account.

Select the Login button.

(Directly after creating your Account, the login information will already be filled in automatically)

Selecting ‘Remember me’ will cause these values to be remembered, each time eCatcher is launched.

The main interface of Talk2M Service will be displayed, as below:

Here you can manage all Users and eWONs to your account (Add, Delete, Edit, etc.)

(10)

3. Adding an eWON to your Talk2MFree+ account

.Here, you are declaring the details of a machine, or site, which will be connected via Talk2MFree+, and where you will install an eWON device.

(At this stage, your eWON unit is not yet configured.)

On the left side of the eCatcher interface, click on the eWONs button (default view).

To add a new eWON to your account, click on the

+

icon in the My eWONs list section, as below:

The following window will appear:

The eWON name and Description on the Talk2M server should be meaningful, in order to allow a User to uniquely identify the specific remote site/machine. (These can be edited at any time)

(11)

The Connection Type specifies how your eWON COSY will be connected to the Talk2M server, across the Internet:

EWON COSY models

Choose “Connection Type = Permanent (LAN / ADSL / 3G)”

After specifying the connection type, click on Next.

Here you can enter additional information concerning your remote connection.

Custom Fields provide a way of categorizing remote sites and / or Talk2M users.

E.g. by machine type, by PLC type, by country, by region, etc.

The Custom Fields are easily set-up in the Talk2M account, in the ‘Account’ area.

Click on Create to add the eWON to the eWON list of your Talk2M account.

The Talk2M Connectivity page opens:

(12)

When an eWON device is added to a Talk2MFree+ account, an unique set of VPN security keys and certificates are generated by Talk2MFree+ server, for that eWON.

The Talk2M system is very secure. So the VPN security keys and certificates are sophisticated and complex.

Obviously, the eWON needs to ‘know’ these unique VPN security keys and certificates, in order to make a successful, secure connection, to the Talk2M Free+ server.

To simplify the process of linking an eWON with the Talk2M Server, eWON have created a user-friendly method, by which the Talk2MFree+ server can configure the VPN keys and certificates, into an eWON, using an unique eWON “Activation Code”.

Under the Configure via Activation Key section you will find the Activation Key needed for the eWON.

Click on the Copy to Clipboard icon to copy the activation key into the clipboard of your PC.

Note:

The activation Key method is the recommended method and is most widely used method.

However, you will see that also 2 other configuration methods:

Configure via eWON Name: During the eWON Talk2M wizard, instead of using the Activation Key you can also specify the eWON Name and use the user name and password of your Free+

account.

Click Back to eWON list.

The new eWON is now being displayed in My eWONs list section in the central part of the window.

(13)

5. Configuring the eWON COSY’s Internet

connection (WAN)

Next, the eWON needs to be configured to connect to the Internet.

Disconnect your PC from the Internet and connect your PC to any LAN port of the eWON COSY.

The LAN ports of the eWON COSY are where machine devices (e.g. PLC, HMI, servo, etc) are connected, as illustrated below, using a COSY 141 eWON model

Device name LAN IP address Subnet mask Gateway

eWON 192.168.100.254 255.255.255.0 n/a

PLC 192.168.100.1 255.255.255.0 192.168.100.254 (IP of eWON)

HMI 192.168.100.2 255.255.255.0 192.168.100.254 (IP of eWON)

Inverter drive 192.168.100.3 255.255.255.0 192.168.100.254 (IP of eWON) Programming laptop 192.168.100.4 255.255.255.0 192.168.100.254 (IP of eWON) etc…..

Note: The IP addresses in the above table are only for reference and not a requirement.

These network settings are configured into each device (e.g. PLC, HMI, servo, etc), using the appropriate device configuration software.

(14)

IMPORTANT:-

The eWON COSY functions as a VPN Router.

Therefore the IP address used on the WAN port of the eWON COSY must be in a different network range from the IP addresses used on the LAN ports of the eWON COSY.

E.g. If the LAN port = 192.168.100.xxx, then the WAN IP cannot = 192.168.100.xxx

Note:

If you are configuring an eWON COSY for the first time, we will need to download the eBuddy v3 software, from the download section of www.ewon.biz .

---

Connect the machine devices (e.g. PLC, HMI, servo, etc) to any of the LAN ports of the eWON COSY.

Connect your PC to any of the LAN ports of the eWON COSY.

Set the eWON COSY’s LAN IP address, using eBuddy, to suit the IP addresses to be used on the machine LAN.

Check that the PC can ‘PING’ the eWON COSY and ‘PING’ the other devices on the machine LAN.

Using eBuddy, sign into the web-config pages of the eWON COSY.

Default Username = adm Default Password = adm

---

The easiest way to configure the Internet connection of your eWON COSY is to use the Internet Connection wizard.

(15)

Click on the icon under ‘Quick Launch Wizard’.

Following window will be displayed:

Select the eWON name and Password for login.

(16)

After clicking on ‘next’, the following screen will be displayed

The Internet connection will be set to Ethernet as a default.

At all times, the eWON COSY will make and hold a VPN a VPN to the Talk2M Server, if it can reach the Internet.

If you wish to control the connection to Talk2M through the use of the COSY’s in-built digital input, then change the ‘Physical protection’ drop down box option, as shown above.

Only tick the ‘initialize configuration first’ box, if you wish to erase the existing Talk2M configuration in the eWON COSY.

Click, next.

You will need the following information, before you can configure the WAN port settings:- o IP address

o Subnet mask

Please also see appendix C, for an Installation Checklist

NOTE 1:

Initially, you should set up the eWON COSY in your office / workshop / assembly area.

So, these WAN network settings will be settings related to your workshop Ethernet network.

When the eWON is installed on site, these WAN network settings will be related to the Ethernet network at the installation site (i.e. the final customer’s network).

(17)

Follow the steps, to complete the Internet connection wizard.

Once the wizard has completed, eWON should display a message like in the screen shot displayed below:

The Internet Connection “tick” means that the eWON is correctly configured for an Internet connection.

The Online IP Check “tick” means that the eWON was actually able to reach an IP address on Internet.

(NOTE: Sometimes online IP check fails. This may not be important, so continue to the next Wizard anyway).

Click, next.

Paste the Activation Key, as created earlier in eCatcher, into the web interface setup of the COSY.

(18)

Proxy Settings

The next window of the wizard will ask you if you need to connect through a Proxy server.

Only check this option if you need to specify a Proxy server for the Internet connection.

If a Proxy Server is used, there will be 4 values to enter:

o Proxy Server Address & Port Number o Proxy Username & Password

Otherwise leave this option unchecked and click on Next.

The eWON will then connect to the Talk2M server, using its unique Activation Key and retrieve the VPN keys and certificates.

Your eWON is now configured to connect to the Talk2M server.

You may also need the proxy Settings for the site, if a Proxy Server is used on the site :- o Proxy Server Address

o Proxy Server Port o Proxy Username o Proxy Username

NOTE 1:

The eWON functions as a VPN Router.

The IP address used on the WAN port (customer’s network) must be in a different network range to the the IP addresses used on the LAN (machine network)

(19)

NOTE 2:

The final customer will provide an Ethernet cable, to connect the WAN port of the eWON to the site- network.

Before connecting this cable to the eWON’s WAN port, do the following:

 connect the cable to the netwok port of a laptop (PC)

 change the network settings of the network port to the same settings given to you, for the eWON (i.e. those mentioned above)

 run the “Talk2MconnectionChecker” software (see below)

The “Talk2MconnectionChecker” software is used to check that the network settings you have been given, by the end customer, are correct and that, using these settings, it is possible to reach the Talk2M server, through the customer’s network.

The “Talk2MconnectionChecker” software can be downloaded from the support section of www.ewon.biz

If all is OK, then the software should give you a display like that shown below.

If all is OK, then the eWON can be given these network settings and should be able to reach the Talk2M server, through the customer’s network

If any errors occur, then these errors are caused by security restrictions on the customer’s network.

Red errors must be resolved, before the eWON can be connected.

Orange warnings can be ignored, so long as the final message contains “VPN Connection possible”.

Please see Appendix B for details of these errors and what they mean.

(20)

9. Utilising the Talk2MFree+ remote-access

connection, to your eWON

Now that the eWON is configured to connect to Talk2M, we can utilise the remote connection to the eWON.

Establish the remote connection

Log into your eCatcher Free+ account and display the Device Window (default view).

Any eWON unit which have been correctly configured and are connected to the Internet should now be displayed as “Online”, with a green tick in the status column.

This means that the eWON has established a VPN connection with the Talk2M server.

In the eWON list, identify the eWON, to which you want to make a remote connection.

To establish the remote connection using this eWON, double-click the online icon or select the eWON device from the list and click on the Connect button displayed in the eWON list menu.

(21)

Once the VPN connection to the eWON is established, the eWON will be displayed in the "Active connection" section on the top of the window.

The PC is now connected to the eWON using the VPN tunnel.

You can start to use the remote connection, e.g.

 Launch your programming software, associated with the site devices (e.g. PLC software)

 Display the eWON’s web-pages

To display the eWON Web page, click on the eWON’s name link in the Active Connection section, as displayed in the following picture.

Your Web Browser should show up displaying the eWON Web pages using the VPN IP address of the eWON.

(22)

Terminate the remote connection

Once you finished your remote connection, click on the disconnect button in the Active connection section. This will close the VPN connection with the eWON.

(23)

11. Reaching Ethernet devices, behind the eWON

Probably the primary purpose of using an eWON is connect to some ‘target’ device(s), located behind the eWON, at the remote site.

There are 2 methods to achieve this:

 Configure the IP address of the eWON as the Gateway IP in the target Ethernet device(s) (this is the preferred method, since it follows the standard rules of networking)

 Use the eWON ‘Plug-n-Route’ facility

Ethernet device configuration

For new machines, it is good practice to configure all IP settings of the Ethernet devices behind the eWON:-

 IP address

 Subnet mask

 Gateway address.

For the eWON to act as the gateway for the network behind it, the devices on the network must know the IP address of the gateway.

i.e. IP address of eWON = Gateway IP address configured in each network device

Manual configuration of Talk2M device settings

The LAN IP address in the eWON and the LAN IP address, for the eWON, in the Talk2MFree+ server must match.

Since firmware version 6.2s0, the eWONs LAN IP address is automatically transferred to the Talk2M Free+ server, when the eWON Talk2M wizard is run.

If the LAN settings in the eWON subsequently change on site, you must manually change the settings for the eWON, in the Talk2M Free+ server, using the eCatcher software.

Select the eWON from the eWON list and click on the Properties button.

In the eWON Properties window, you will see the eWON Name, Description, Custom Fields, plus the eWON’s LAN (Remote Connection) settings.

The IP address displayed here must correspond with the LAN IP address of your eWON on site.

(24)

To change the Remote Connection settings, click on the Modify button on the top of the page.

Once the modification is finished, click on the OK button which is displayed on the bottom of the window when in edit mode.

(25)

Appendix A. Using eCatcher through a Proxy Server

If your computer connects to the Internet, through a Proxy server, you will need to enter the Proxy settings, in the eCatcher software.

Before logging in, click on the Settings menu, displayed on the bottom of the eCatcher login window.

As seen in the page below:

The following page will be displayed:

Click on the Modify... button on the right of the zone to edit the connection type.

(26)

Select for the Connection "TCP through proxy server" and enter your Proxy settings.

To save the settings, click on OK.

(27)

Appendix B. Talk2MconnectionChecker errors,

caused by security issues on the customer’s

network

The “Talk2MconnectionChecker” software is used to check that the network settings you have been given, by the end customer, are correct and that, using these settings, it is possible to reach the Talk2M server, through the customer’s network.

The “Talk2MconnectionChecker” software can be downloaded from the support section of www.ewon.biz

If any errors occur, then these errors are caused by security restrictions on the customer’s network.

Red errors must be resolved, before the eWON can be connected.

Orange warnings can (generally) be ignored.

The ports used by an eWON, and the Talk2MconnectionChecker software, are :-

 TCP port 443 or

 TCP port 443 & UDP port 1194

These ports need to be open, in an outbound direction, through the customer’s network / firewall.

See Appendix F, for full details of ports and IP addresses used by the Talk2M Free+ solution.

Please see the screen grabs on the following pages.

These show the effects upon a Talk2MconnectionChecker test, when various ports are blocked, in an outbound direction.

No ports are required to be open, in an inbound direction (i.e from the Internet, to the network)

(28)

UDP 1194 = Open TCP port 443 = Open

Errors = None

Warnings = None

Result = PASS. (Talk2M connection possible via UDP and/or TCP)

(29)

UDP 1194 = Closed TCP port 443 = Open

Errors

= UDP connection not possible Warnings = None

Result = PASS. (Talk2M connection possible via TCP)

NOTE: UDP is blocked, but this will not stop a healthy Talk2M connection

(30)

UDP 1194 = Open TCP port 443 = Open

PING (ICMP protocol) = Closed

Errors = None

Warnings

= PING timeouts to Talk2M Servers

Result = PASS. (Talk2M connection possible via UDP & TCP)

NOTE: PING packets do not get through, but this will not stop a healthy Talk2M connection

(31)

UDP 1194 = Closed TCP port 443 = Open

PING (ICMP protocol) = Closed

Errors

= UDP connection not possible.

Warnings

= PING timeouts to Talk2M Servers

Result = PASS. (Talk2M connection possible via TCP)

NOTE: UDP is blocked, but this will not stop a healthy Talk2M connection

NOTE: PING packets do not get through, but this will not stop a healthy Talk2M connection

(32)

UDP 1194 = Open or Closed TCP port 443 = Closed

Errors

= TCP connection exception : Network is unreachable or

= TCP connection exception : as.pro.talk2m.com Warnings = None

Result = FAIL. (Talk2M connection not possible)

NOTE: TCP 443 is blocked. No Talk2M connection will be possible

(33)

Appendix C. Installation checklist for Internet

connection: eWON COSY models

eWON LAN settings

The LAN ports of the eWON are where machine devices (e.g. PLC, HMI, servo, etc) are connected, as illustrated below, using a eWON COSY

Use the table below to plan and record the network settings of your LAN devices

Device name/ type LAN IP address Subnet mask Gateway

eWON N / A

Installation laptop eWON LAN IP address

PLC eWON LAN IP address

HMI eWON LAN IP address

>Other device 1< eWON LAN IP address

>Other device 2< eWON LAN IP address

eWON LAN IP address eWON LAN IP address

(34)

eWON COSY WAN settings

These settings will be given to you by the IT / network engineers at the installation site

You will need the following information, before you can configure the WAN port settings:- o IP address

o Subnet mask o Gateway address o DNS address 1 o DNS address 2

Use the table below to record the WAN port settings for your eWON device.

EWON WAN port setting Value

IP address =

Subnet mask =

Gateway =

DNS1 =

DNS2 =

eWON Proxy settings

You may also need the proxy Settings for the site, if a Proxy Server is used on the installation site :-

o Proxy Server Address o Proxy Server Port o Proxy Username o Proxy Password

Use the table below to record the Proxy settings for your eWON device.

EWON Proxy setting Value

Proxy Server Address =

Proxy Server Port =

Proxy Username =

(35)

Appendix F. Ports and IP addresses used by the

Talk2MFree+ service and Talk2Mpro service

eCatcher connection to Talk2M

The eCatcher will need to connect to the following servers:

1) Access Server:

Address: as.pro.talk2m.com (92.52.111.210) Protocol and port: HTTPS (port 443)

2) VPN servers:

Protocol and port:

- Either UDP port 1194 - Either TCP port 443

VPN Server 1 (European server) Addresses:

92.52.111.211 87.98.142.151 188.165.49.240 46.105.61.41 87.98.174.164 92.52.111.208

VPN Server 2 (American server)

Addresses: 50.56.154.220, 208.43.241.76 VPN Server 3 (Australian server)

Address: 101.0.90.58

VPN Server 4 (Japanese server) Address: 133.242.13.198

If the Internet connection is established through a Proxy server, then eCatcher will use the TCP protocol.

Important: Since eCatcher 4.1, when eCatcher connects through a Proxy server, it will use the hostname (and not the IP address) to connect to the VPN server.

The Proxy should allow outbound connections on Port TCP 443 to hostname: *.talk2m.com.

(36)

eWON connection to Talk2M

The eWON will need to connect to the following servers:

1) Access Server:

Address: as.pro.talk2m.com (92.52.111.210) Protocol and port: HTTPS (port 443)

2) VPN servers:

Protocol and port:

- Either UDP port 1194 - Either TCP port 443

VPN Server 1 (European server) Addresses:

94.236.12.2 92.52.111.213 92.52.111.214 87.98.142.168 188.165.49.241 46.105.61.42 87.98.174.179 94.236.12.0

VPN Server 2 (American server)

Addresses: 50.56.154.221, 208.43.241.77 VPN Server 3 (Australian server)

Address: 101.0.90.59

VPN Server 4 (Japanese server) Address: 133.242.197.233

If the Internet connection is established through a Proxy server, then eCatcher will use the TCP protocol.

Important: Since firmware 6.4s6, when eWON connects through a Proxy server, it will use the hostname (and not the IP address) to connect to the VPN server.

So the Proxy on local site should allow outbound connections on Port TCP 443 to hostname:

References

Related documents

People: The contact persons of the HMS distributor linked to the Talk2M account Description: Back-office contacts used by HMS BU Ewon... Forget

Diluted EPS assumes that all potential ordinary shares – arising from either convertible bonds, convertible preference shares, or share options and warrants – are all converted

The Precision Group has over 30 years' experience providing thermal insulation solutions within the construction industry and offers a complete range of insulation services

From these efforts, several trends are emerging, including use of taxpayer feedback / involvement, increased focus on the use of technology, and analyzing root cause of

for less than the full amount owed. Generally, if a taxpayer cannot pay the full tax liability, or doing so creates a financial hardship the debt may be reduced after the

Regarding its impact on labour demand elasticity trade might induce an increase in this elasticity via a scale effect due to the increased competition on the output market and/or

Search terms included: hypertension, shift work, night shift, rotating shift, stress, psychological stress, self-reported stress, overtime, job strain.. Results were limited to

From the results of research conducted at the Community Health Center Bestari, it can be concluded that the Assurance Service Quality Dimension which includes three