ETIC 1230 Manual do Utilizador descarregar pdf (Página 65)

CONFIGURATION

Industrial router IPL-E User guide ref. 9015909-03 Page 65

16 M2Me_Connect service

This function is available in IPL-E-1400B, IPL-E-1220B, IPL-E-1230B

routers only.

16.1 Overview

The M2Me_Connect service simplifies the connection of a remote PC to a

machine through the Internet.

It provides a solution when a direct PPTP or TLS connection described

before shows itself impossible.

Let us take the example of a machine made of several devices forming a

“machine network” and connected to a company network through an IPL-E

router.

Suppose an expert wishes to connect to one or several of these devices to

help repairing them or to upgrade a firmware.

The simplest solution should be to set a remote connection between the

remote PC and the IPL-E through the company network, the existing

Internet access in the company, and the Internet.

Several reasons make that connection difficult or impossible, but the main

one is a security reason : It is generally not allowed to set an ingoing

connection from a PC connected to the Internet towards a device like an

IPL-E connected inside a company network.

The M2Me_Connect service solves that difficulty :

The PC does not connect directly to the IPL-E; both the PC and the router

connect to the “M2Me_Connect” service.

Once both parties have been authenticated by the M2Me_Connect

service with their own certificate, a TLS VPN is set from end to end from

the PC to the IPL-E router.

The remote user identity is checked by the router to verify he or she

belongs to the user list stored in the IPL-E router.

Finally, individual access rights are assigned to the remote user depending

on his or her identity.

1 2 ... 60 61 62 63 64 65 66 67 68 69 70 ... 105 106

Sem comentários

ETIC 1230 Manual do Utilizador Página 65