Netop SecureM2M Software Gateway Installation and Configuration

Netop SecureM2M Software Gateway
Installation and Configuration Guide
Version 1.2.1
(Netop Host 12.11)
Netop develops and sells software solutions that enable swift, secure and seamless
transfer of video, screens, sounds and data between two or more computers over the
Internet. For more information, see www.netop.com.
Netop SecureM2M Software Gateway Installation and Configuration Guide
Contents
1.
Introduction......................................................................................................................... 2
2.
Installation .......................................................................................................................... 3
3.
Components ....................................................................................................................... 4
3.1. Start and Stop Netop Host Daemon ......................................................................... 4
3.2. Display and hide the Netop Host Window ................................................................. 4
4.
Configuration ...................................................................................................................... 6
4.1. Mandatory configuration ........................................................................................... 7
4.2. Optional configuration............................................................................................. 11
Copyright © Netop 2015. All rights reserved
1
Netop SecureM2M Software Gateway Installation and Configuration Guide
1. Introduction
Netop SecureM2M software Gateway represents a group of applications that allows the creation
of the tunnel between the Connector and the device where the software Gateway is installed.
The tunnel is achieved so that applications on the Connector computer can communicate with
applications installed on the Gateway device.
Technical Requirements
Overall recommended minimum hardware

Pentium4 1.6Ghz/1GB RAM
Recommended software
OS: RedHat Enterprise 5.x and 6.x, Ubuntu 12.04, CentOS 5.x and 6.x, SUSE Enterprise 11,
OpenSUSE 11.4 and 12.1
Port requirements

No inbound port needs to be open.

Outbound TCP port needs to be open on port 6502 and 443.
Copyright © Netop 2015. All rights reserved
2
Netop SecureM2M Software Gateway Installation and Configuration Guide
2. Installation
The software Gateway should be placed in the same network as the end points.
1. Extract the files on your device.
2. Run the following command:
sudo ./install.pl -–autoinstall --host [software gateway license ]
3. The software Gateway is installed.
Note: The software Gateway license is received by email.
Uninstall Gateway
To uninstall the Netop Host, either use the default Operating System’s package manager or
execute the following commands in a terminal window depending on the Operating System:

For RedHat, CentOS, SUSE:
rpm -e NetopHost
rm -rf /etc/NetopHost

For Ubuntu:
apt-get remove netophost
rm –rf /etc/netophost
When using the package manager to uninstall the Host, the above rm command should also be
executed to remove the /etc/NetopHost folder and its contents.
Please refer to the package manager specific to the distribution you are using for additional
information on how to remove installed packages.
Copyright © Netop 2015. All rights reserved
3
Netop SecureM2M Software Gateway Installation and Configuration Guide
3. Components
Netop SecureM2M software Gateway includes these applications:

Netop Host Daemon (netophostd). Netop Host Daemon on Linux will typically run when the
computer operating system starts. A user with system user privileges can start and stop
Netop Host Daemon.

Netop Host Program (netophost). Netop Host Program on Linux will load and typically start
when Netop Host Daemon on Linux loads. If started, communication will be initialized
enabling a Netop Guest to connect. A user can typically control the Netop Host Program from
the Netop Host GUI.

Netop Host GUI (netophostgui). Netop Host GUI on Linux shows the Netop Host graphical
user interface. It will not load automatically when the Netop Host Program loads. A user can
load and unload the Netop Host GUI but only a user with system privileges can make
changes to the Netop Host program options.
3.1. Start and Stop Netop Host Daemon
Netop Host Daemon will start and stop with the Linux operating system. A user with system user
privileges can start, stop, restart and report the status of the Netop Host Daemon with these
terminal window commands:
Function
start
restart
status
stop
Command
Description
/etc/init.d/netophostd
start
This command starts Netop Host
Daemon on Linux and loads Netop Host
Program on Linux.
/etc/init.d/netophostd
restart
This command restarts Netop Host
Daemon on Linux and loads Netop Host
Program on Linux
/etc/init.d/netophostd
status
This command returns a message of
whether Netop Host Daemon on Linux is
running or not.
/etc/init.d/netophostd stop
This command unloads Netop Host
Program on Linux and stops Netop Host
Daemon on Linux.
3.2. Display and hide the Netop Host Window
The Netop Host GUI will not load automatically when the Netop Host Program loads.
Copyright © Netop 2015. All rights reserved
4
Netop SecureM2M Software Gateway Installation and Configuration Guide
If the Netop Host Program on Linux is loaded, execute this command in a terminal window:
netophostgui
This will display the Netop Host interface:
Note: The netophostgui command assumes that the Netop Host GUI program file resides in
the /usr/bin directory or is in a directory included in the global PATH. If the Netop Host GUI
resides in another directory, precede the command by the full directory path.
To unload the Netop Host GUI, click Exit on the File menu.
Copyright © Netop 2015. All rights reserved
5
Netop SecureM2M Software Gateway Installation and Configuration Guide
4. Configuration
To change the setup options of the software Gateway, click the Options button on the toolbar or
click Options on the Tools menu:
User name
Type a valid Linux logon name
To change the setup options of the Netop Host, the user must
have the privileges to edit the /etc/NetopHost/host.xml file.
Password
Type the matching Linux logon password.
Click OK to and the Netop Host Manager displays:
Copyright © Netop 2015. All rights reserved
6
Netop SecureM2M Software Gateway Installation and Configuration Guide
All the configuration is done under the branch NetopHost > Configuration > Local
configuration, therefore all references to the locations will start from next layer down.
To ensure that changes have been applied, restart Netop Host after clicking OK.
4.1.
Mandatory configuration
Configure cloud based connectivity
In order to securely connect through the Cloud, you need to configure WebConnect connectivity
from Host computer > Communication > Network listen > WebConnect.
Fill in the credentials as provided by e-mail.
Copyright © Netop 2015. All rights reserved
7
Netop SecureM2M Software Gateway Installation and Configuration Guide
Define end points and remote ports
Go to Host computer > Tunnel Configuration and define the remote ports (Allowed ports)
which will be used to send/receive information externally to/from the SecureM2M Connector:
1. Right-click on Allowed Tunnels and click New > Endpoint. An entry is added below.
2. Click the new entry and then double click the Address attribute in the Attribute-Value
section. The Edit string attribute window displays.
Copyright © Netop 2015. All rights reserved
8
Netop SecureM2M Software Gateway Installation and Configuration Guide
3. Enter the endpoint IP address and click OK. The new item previously added under the
Allowed Tunnels changes its name into the endpoint IP address.
4. Under Allowed Tunnels, right-click on the end point IP address and select New > Port.
5. Click on the new entry and then double click the Range attribute in the Attribute-Value
section. The Edit string attribute window displays.
Copyright © Netop 2015. All rights reserved
9
Netop SecureM2M Software Gateway Installation and Configuration Guide
6. Enter the remote port and click OK. The new item previously added under the endpoint IP
address changes its name into the allowed remote port.
In order to assign several remote ports to the same endpoint IP address, repeat steps 4 and
5.
Note: If you want to remove a port or an IP, right click on the corresponding entry and click
Delete.
Authentication
In order to add Users who are allowed to tunnel to the Software Gateway, add a user to the
underlying operating system.
In order to not allow a User to connect to the software Gateway, either remove or disable the
User on the underlying operating system.
Copyright © Netop 2015. All rights reserved
10
Netop SecureM2M Software Gateway Installation and Configuration Guide
4.2. Optional configuration
Note: In the following tables, the default value is marked with an asterisk (*)
Configure Gateway Naming
You can choose how the Gateway name displays on the Connector’s side by setting the Naming
attributes from Host computer > Hostname > Naming:
Attribute
Value
Naming Mode
Computer name*/Enter or leave
blank
Host Name
<String of characters> (<No value>*)
Computer name will identify the software Gateway by its computer name (generally
recommended). Enter or leave blank will identify the software Gateway by the Host Name
attribute value.
Maintenance password
You can protect the software Gateway with a maintenance password, so that no unauthorized
people can make changes to the Gateway setup.
In order to enable maintenance password protection, go to Host computer > Host security >
Maintenance and enter a value in the Password attribute. If enabled, Gateway or Netop Host
Manager will request the Password attribute value to execute a maintenance password
protected action including changing the Password attribute value.
Attribute
Value
Old password
<String of characters> (<No value>*) The field will show
dots or asterisks.
Password
<String of characters> (<No value>*) The field will show
dots or asterisks.
Guest access security
Enabled*/Disabled
All other configuration
Enabled*/Disabled
Program exit and “Stop Host”
Enabled*/Disabled
To change the maintenance password, specify the current maintenance password as the Old
Password attribute value and the new maintenance password as the Password attribute value.
Copyright © Netop 2015. All rights reserved
11