Skywire TCP Socket Examples



Similar documents
Troubleshooting Tools

1:1 NAT in ZeroShell. Requirements. Overview. Network Setup

TECHNICAL NOTE. Technical Note P/N REV 03. EMC NetWorker Simplifying firewall port requirements with NSR tunnel Release 8.

Cisco QuickVPN Installation Tips for Windows Operating Systems

Lab Configure Cisco IOS Firewall CBAC

School of Information Science (IS 2935 Introduction to Computer Security, 2003)

Internet Firewall CSIS Internet Firewall. Spring 2012 CSIS net13 1. Firewalls. Stateless Packet Filtering

Chapter 7 Troubleshooting

Lab - Configure a Windows 7 Firewall

MilsVPN VPN Tunnel Port Translation. Table of Contents Introduction VPN Tunnel Settings...2

Guideline for setting up a functional VPN

Special Note Ethernet Connection Problems and Handling Methods (CS203 / CS468 / CS469)

Active Directory Group Policy. Administrator Reference

Digi Cellular Application Guide Using Digi Surelink

Accessing Remote Devices via the LAN-Cell 2

Install and configure a Debian based UniFi controller

+ iptables. packet filtering && firewall

Using Remote Desktop Software with the LAN-Cell

Using Remote Desktop Software with the LAN-Cell 3

Firewall Defaults, Public Server Rule, and Secondary WAN IP Address

Virtual Private Networks

How To Industrial Networking

Firewall VPN Router. Quick Installation Guide M73-APO09-380

IP Address and Pre-configuration Information

KAREL UCAP DNS AND DHCP CONCEPTS MANUAL MADE BY: KAREL ELEKTRONIK SANAYI ve TICARET A.S. Organize Sanayi Gazneliler Caddesi 10

CSE543 - Computer and Network Security Module: Firewalls

z/os V1R11 Communications Server system management and monitoring

How To Set Up Isonas Crystal Matrix On A Pc Or Mac Or Ipa (For A Mac) On A Network With A Network Switch (For An Ipa) On An Ip Address) On Your Ipa Or Ip Address On

1 PC to WX64 direction connection with crossover cable or hub/switch

Lab - Configure a Windows Vista Firewall

netkit lab MPLS VPNs with overlapping address spaces 1.0 S.Filippi, L.Ricci, F.Antonini Version Author(s)

Copyright

Homework 3 TCP/IP Network Monitoring and Management

Multi-Homing Dual WAN Firewall Router

Firewall Defaults and Some Basic Rules

Legal Disclaimers. For C-UL Listed applications, the unit shall be installed in accordance with Part 1 of the Canadian Electrical Code.

Windows Firewall Exceptions Configuring Windows Firewall Exceptions for Docusnap

Assignment 3 Firewalls

THE HONG KONG POLYTECHNIC UNIVERSITY Department of Electronic and Information Engineering

H3C Firewall and UTM Devices DNS and NAT Configuration Examples (Comware V5)

Firewalls. Pehr Söderman KTH-CSC

Biznet GIO Cloud Connecting VM via Windows Remote Desktop

Digi Connect WAN Application Helper Configuring and Testing the Digi Connect WAN GSM

CREATING AN IKE IPSEC TUNNEL BETWEEN AN INTERNET SECURITY ROUTER AND A WINDOWS 2000/XP PC

PktFilter A Win32 service to control the IPv4 filtering driver of Windows 2000/XP/Server

How To Set Up A Network Map In Linux On A Ubuntu 2.5 (Amd64) On A Raspberry Mobi) On An Ubuntu (Amd66) On Ubuntu 4.5 On A Windows Box

CSC574 - Computer and Network Security Module: Firewalls

Configuring the PIX Firewall with PDM

LOOK BEHIND THE SCENES: WINDOWS SERVER 2012 FIREWALL AT VOLKSWAGEN AG

Managing Windows XP Firewall Through Command-line

Creating a VPN with overlapping subnets

The SpeedTouch and Firewalling

Procedure: You can find the problem sheet on Drive D: of the lab PCs. 1. IP address for this host computer 2. Subnet mask 3. Default gateway address

Successful IP Video Conferencing White Paper

6421B: How to Install and Configure DirectAccess

Hands On Activities: TCP/IP Network Monitoring and Management

Firewall Firewall August, 2003

Configuring Static and Dynamic NAT Simultaneously

Firewall Examples. Using a firewall to control traffic in networks

Section 5 Configuring the Partition for Enterprise Output Manager (EOM)

EXPLORER. TFT Filter CONFIGURATION

SMC7004ABR Barricade Broadband Router Installation Instructions

VXOA AMI on Amazon Web Services

How to setup PPTP VPN connection with DI-804HV or DI-808HV using Windows PPTP client

his document discusses implementation of dynamic mobile network routing (DMNR) in the EN-4000.

IP network tools & troubleshooting. AFCHIX 2010 Nairobi, Kenya October 2010

F-SECURE MESSAGING SECURITY GATEWAY

ADSL Router Quick Installation Guide Revised, edited and illustrated by Neo

Computer Networks/DV2 Lab

Module: Firewalls. Professor Patrick McDaniel Spring CMPSC443 - Introduction to Computer and Network Security

Device LinkUP + Desktop LP Guide RDP

Comodo MyDLP Software Version 2.0. Installation Guide Guide Version Comodo Security Solutions 1255 Broad Street Clifton, NJ 07013

CS Computer and Network Security: Firewalls

Volume SYSLOG JUNCTION. User s Guide. User s Guide

Computer Networks/DV2 Lab

allow all such packets? While outgoing communications request information from a

Packet filtering and other firewall functions

TechNote. Configuring SonicOS for MS Windows Azure

Configuring SonicOS for Microsoft Azure

Chapter 4 Virtual Private Networking

Appendix A: Configuring Firewalls for a VPN Server Running Windows Server 2003

Networking Test 4 Study Guide

Configuring PA Firewalls for a Layer 3 Deployment

Print Audit Facilities Manager Technical Overview

Quick Note 026. Using the firewall of a Digi TransPort to redirect HTTP Traffic to a proxy server. Digi International Technical Support December 2011

CS Computer and Network Security: Firewalls

Workflow Guide. Establish Site-to-Site VPN Connection using RSA Keys. For Customers with Sophos Firewall Document Date: November 2015

Connecting your Virtual Machine to the Internet. BT Cloud Compute. The power to build your own cloud solutions to serve your specific business needs

Smart Tips. Enabling WAN Load Balancing. Key Features. Network Diagram. Overview. Featured Products. WAN Failover. Enabling WAN Load Balancing Page 1

Home Phone Call Forward Guide

Digi Connect WAN Application Helper NAT, GRE, ESP and TCP/UPD Forwarding and IP Filtering

1.0 Basic Principles of TCP/IP Network Communications

Immotec Systems, Inc. SQL Server 2005 Installation Document

Monitoring Android Apps using the logcat and iperf tools. 22 May 2015

Dos & DDoS Attack Signatures (note supplied by Steve Tonkovich of CAPTUS NETWORKS)

Network Interface Failover using FONA

Personal Firewall Default Rules and Components

In this lab you will explore the Windows XP Firewall and configure some advanced settings.

Transcription:

Skywire TCP Socket Examples NimbeLink, LLC Published: April 2014 PN 30015 rev 1 NimbeLink, LLC All Rights Reserved. 1

1. TCP SOCKET OPERATIONS The following examples illustrate a few TCP socket operations performed with a Skywire EVDO modem using the Telit "Enhanced Easy GPRS(R) Extensions". The same AT command sequences apply to the 1XRTT version as well. The goal of this document is to highlight the minimum required AT commands that need to be issued to the modem to both configure it and perform the TCP socket or related operation discussed. Pseudo-code with real AT commands are provided so that the user can experiment with the commands using a terminal emulator connected to the modem before any software development has begun. 1.1 Outbound TCP Socket Connect We can initiate an outbound TCP socket connection from the modem to any internet host with the Socket Dial command. In this example we will connect to the NIST time server on TCP port 13 and receive a time-of-day string. #SGACT: "75.238.58.122" ; get on network, get IP address ; IP address returned on success AT#SKTD=0,13,"time.nist.gov",0 ; connect to time.nist.gov:13 CONNECT 56776 14-04-29 16:17:55 50 0 0 806.2 UTC(NIST) * NO CARRIER 1.2 Open Modem Firewall Telit modems have a built-in network firewall, that by default, blocks all incoming TCP connections. In order to allow a TCP connection to the modem from another Internet host, this firewall must be opened for the PN 30015 rev 1 NimbeLink, LLC All Rights Reserved. 2

specific hosts or networks from which connections to the modem will be made. As of device software revision 15.00.024, all of the TCP/IP operations with the modem are IPV4. The firewall is very simple with ACCEPT rules (an opening) for specific hosts or network ranges added or removed from the filter chain. The AT command for controlling the firewall is, AT#FRWL refer to section 3.5.6.5.18 in the Telit DE910 AT Commands Reference Guide (rev 4) The command has three forms, AT#FRWL=0,<ip_address>,<net_mask> ; remove a firewall opening AT#FRWL=1,<ip_address>,<net_mask> ; add a firewall opening AT#FRWL=2 ; remove ALL firewall openings For an understanding of network numbering, subnetting and netmasks, refer to this Wikipedia entry: http://en.wikipedia.org/wiki/subnetwork Open the firewall so that any host from the network range 197.158.1.1 to 197.158.255.255 can connect, AT#FRWL=1,"197.158.1.1","255.255.0.0" Add another firewall opening for the single host 71.195.57.16, AT#FRWL=1,"71.195.57.16","255.255.255.255" Remove the network range that was added in the first example, AT#FRWL=0,"197.158.1.1","255.255.0.0" Open the firewall to the world, AT#FRWL=1,"1.1.1.1","0.0.0.0" ** WARNING ** This allows ANY Internet host to connect to this modem! PN 30015 rev 1 NimbeLink, LLC All Rights Reserved. 3

However, in a number of applications, this may be a desired configuration. When the Skywire modems are used on the Verizon network, they may be provisioned into a VPN within Verizon's cloud. This VPN prevents the wide-open Internet from accessing the modems while still allowing other modems and hosts within that VPN to connect. By opening the firewall to all hosts still while residing in a VPN, the modem can accept connections for any of its peers without having to know the actual IP address range the VPN occupies and can rely on that VPN configuration within the cellular cloud to prevent the wide-open Internet from gaining access and to provide security. 1.3 Inbound TCP Socket Listen In this example we will open the firewall on the modem, get on the Verizon network to obtain an IP address, then we will wait for a TCP socket connection on port 2000, injest a few lines of text sent from a remote host to this modem via that socket connection and then loop after the peer closes the connection. With a loop around the socket instantiation, we can repeatedly accept connections on the socket. AT#FRWL=1,"1.1.1.1","0.0.0.0" ; open firewall to the world ; get an IP address #SGACT: "75.238.58.122" ; IP address returned on success while (1) { ; loop, repeatedly opening socket ; and accepting connections AT#SKTL=1,0,2000,0 ; start tcp listener on port 2000 +CONN FROM: 71.195.57.16 CONNECT line 1 from peer line 2 from peer line 3 from peer NO CARRIER } ; connection comes in ; additional connection message ; peer sends a line ; again ; and again ; peer closes socket 1.4 ICMP Ping Support PN 30015 rev 1 NimbeLink, LLC All Rights Reserved. 4

This example configures the modem so that it can be ping'd (ICMP echo) from any Internet host. AT#FRWL=1,"1.1.1.1","0.0.0.0" ; open firewall to the world AT#ICMP=1 ; enable ICMP Ping support ; get an IP address #SGACT: "75.235.54.207" A Linux host on the internet pings the modem, % ping 75.235.54.207 ; ping Skywire from another internet host PING 75.235.54.207 (75.235.54.207) 56(84) bytes of data. 64 bytes from 75.235.54.207: icmp_seq=1 ttl=234 time=1812 ms 64 bytes from 75.235.54.207: icmp_seq=2 ttl=234 time=889 ms 64 bytes from 75.235.54.207: icmp_seq=3 ttl=234 time=242 ms 64 bytes from 75.235.54.207: icmp_seq=4 ttl=234 time=221 ms 64 bytes from 75.235.54.207: icmp_seq=5 ttl=234 time=193 ms PN 30015 rev 1 NimbeLink, LLC All Rights Reserved. 5

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information