About This Item
Overview
Details
Electrical utility engineers and project managers that require a cost effective serial-to-Ethernet solution to help meet NERC-CIP compliance for the protection of critical cyberassets in substations must consider the IOLAN SDS HV/LDC Terminal Server. In addition to the most extensive security features available, these IOLANís are designed to meet harsh environments associated with Power Substations with attributes such as support for substation AC and DC voltage ranges, extended operating temperatures and meeting emission, immunity and safety approvals associated with substation IT equipment.
Ideal for
- Electrical utility engineers and Project Managers requiring a high performance serial to Ethernet interface for serial RS232 or RS485 based devices such as SCADA based RTUs and protection relays.
- Environments that require a serial terminal server with unique environmental, form factor, or power inputs in harsh environments
- Substation Automation projects where using secured communications in remote connections is required.
Why IOLAN SDS HV/LDC Terminal Servers are the preferred choice:
- NERC CIP compliance features (EPCIP EU COM(2006)786);
- TACACS+, RADIUS for centralized authentication, authorization and accounting
- Support for alternate TACACS+ and RADIUS hosts
- Two factor strong authentication such as RSAís SecureID
- HTTPS, SSL/TLS, SSH ( AES, 3DES ) session encryption
- Keystroke and data logging
- Provides the ability to display a customizable ìAppropriate Useî login banner upon user access
- Secure dial-up
- Enable only the serial ports you need
- Meets IEC 61850-3 and IEEE 1613 ( IEEE C37 90 ) electrical substation EMI standards
- FIPS 140-2 – Cryptographic modules meet US Government NIST compliancy
- Universal High voltage: 88-300v DC or 85-265v AC – dual power models
- Dual Feed low voltage: 18 - 72v DC models
- Cisco RJ45 serial port pinout design enables connection to Cisco/Sun console ports using common serial ìrolledî CAT5 cabling
- Encapsulate ModBus and DNP protocols over IP
- Modbus TCP to Modbus RTU/ASCII gateway
- High performance 400 Mhz, 750 MIPS, 32 bit processor with integrated hardware encryption processor for the best throughput on the market
- Next Generation IP support (IPv6 ) for investment protection and network compatibility
- TrueSerialô packet technology – the most authentic serial connections across Ethernet ensures serial protocol integrity
- Primary/Backup host functionality enables automatic connections to alternate hosts should the primary TCP connection go down
- EasyPort Web – Access equipment serial console ports by using your java-enabled Internet browser
- TruePort – Perleís com/tty redirector for serial based applications operates on Windows, Vista, Linux, Solaris, SCO and Unix
- Java-free browser access to remote serial console ports via Telnet and SSH
- Lifetime warranty – best investment protection available
Features
| Serial Port Access | |
|---|---|
| Connect directly using Telnet / SSH by port and IP address | |
| Connect with EasyPort menu by Telnet / SSH | |
| Use an internet browser to access with HTTP or secure HTTPS via EasyPort Web menu | |
| Java-free browser access to remote serial console ports via Telnet and SSH | |
| Ports can be assigned a specific IP address ( aliasing ) | |
| Multisession capability enables multiple users to access ports simultaneously | |
| Multihost access enables multiple hosts/servers to share serial ports | |
| Accessibility | |
| In-band ( Ethernet ) and out-of-band ( dial-up modem ) support | |
| Dynamic DNS enables users to find a console server from anywhere on the Internet | |
| Domain name control through DHCP option 81 | |
| IPV6 and IPV4 addressing support | |
| Availability | |
| Primary/Backup host functionality enables automatic connections to alternate host(s) | |
| Security | |
| SSH v1 and v2 | |
| SSL V3.0/TLS V1.0, SSL V2.0 | |
| SSL Server and SSL client mode capability | |
| SSL Peer authentication | |
| IPSec VPN : NAT Traversal, ESP authentication protocol | |
| Encryption: AES (256/192/128), 3DES, DES, Blowfish, CAST128, ARCFOUR(RC4), ARCTWO(RC2) | |
| Hashing Algorithms: MD5, SHA-1, RIPEMD160, SHA1-96, and MD5-96 | |
| Key exchange: RSA, EDH-RSA, EDH-DSS, ADH | |
| X.509 Certificate verification: RSA, DSA | |
| Certificate authority (CA) list | |
| Local database | |
| RADIUS Authentication, Authorization and Accounting | |
| TACACS+ Authentication, Authorization and Accounting | |
| LDAP, NIS, Kerberos Authentication | |
| RSA SecureID-agent or via RADIUS Authentication | |
| SNMP v3 Authentication and Encryption support | |
| IP Address filtering | |
| Disable unused daemons | |
| Active Directory via LDAP | |
| Terminal Server | |
| Telnet | |
| SSH v1 and v2 | |
| Rlogin | |
| Auto session login | |
| LPD, RCP printer | |
| MOTD - Message of the day | |
| Serial machine to Ethernet | |
| Tunnel raw serial data across Ethernet - clear or encrypted | |
| Raw serial data over TCP/IP | |
| Raw serial data over UDP | |
| Serial data control of packetized data | |
| Share serial ports with multiple hosts/servers | |
| Virtual modem simulates a modem connection - assign IP address by AT phone number | |
| Virtual modem data can be sent over the Ethernet link with or without SSL encryption | |
TruePort com/tty redirector for serial based applications on Windows, Vista, Linux, Solaris, SCO and HP UX. For latest drivers click here           |
|
| "TrueSerial packet technology provides the most authentic serial connections across Ethernet ensuring serial protocol integrity" | |
| RFC 2217 standard for transport of serial data and RS232 control signals | |
| Customizable or fixed serial baud rates | |
| Plug-ins allow customer or Perle provided plug-ins for special applications | |
| Software Development Kit ( SDK ) available | |
| Serial encapsulation of industrial protocols such as ModBus, DNP3 and IEC-870-5-101 | |
| ModBus TCP gateway enables serial Modbus ASCII/RTU device connection to ModBus TCP | |
| Data logging will store serial data received when no active TCP session and forward to network peer once session re-established - 32K bytes circular per port | |
| Console Management | |
| Sun Break Safe | |
| Local port buffer viewing - 256K bytes per port | |
| External port buffering via NFS, encrypted NFS and Syslog | |
| Event notification | |
| Manage AC power of external equipment using Perle RPS power management products | |
| Clustering - central console server enables access ports across multiple console servers | |
| Windows Server 2003/2008 EMS - SAC support GUI access to text-based Special Administrative Console | |
| Ping watchdog probes enable customers to power cycle equipment with attached Perle RPS power switches in the event of an unresponsive networking gear | |
| Remote Access | |
| Dial, direct serial | PPP, PAP/CHAP, SLIP |
| HTTP tunneling enables firewall-safe access to remote serial devices across the internet | |
| Automatic DNS Update | Utilize DHCP Opt 81 to set IOLAN domain name for easy name management and with Dynamic DNS support , users on the Internet can access the device server by name without having to know its IP address. See Automatic DNS update support for details |
| IPSEC VPN client/servers | Microsoft L2TP/IPSEC VPN client ( native to Windows XP) |
| Microsoft IPSEC VPN Client ( native to Windows Vista ) | |
| Cisco routers with IPSEC VPN feature set | |
| Perle IOLAN SDS/STS and SCS models | |
| OA&M ( Operations, Administration and Management ) | |
| SNMP V3 - read and write, Perle MIB | |
| Syslog | |
| Perle Device Manager - Windows based utility for large scale deployments | |
| Configurable default configuration | |
| Installation Wizard | |
| Set a Personalized Factory Default for your IOLANs | |
| Protocols | |
| IPv6, IPv4, TCP/IP, Reverse SSH, SSH, SSL, IPSec/IPv4, IPSec/IPv6, L2TP/IPSec, CIDR, RIPV2/MD5, ARP, RARP, UDP, UDP Multicast, ICMP, BOOTP, DHCP, TFTP, SFTP, SNTP, Telnet, raw, reverse Telnet, LPD, RCP, DNS, Dynamic DNS, WINS, HTTP, HTTPS, SMTP, SNMPV3, PPP, PAP/CHAP, SLIP, CSLIP, RFC2217, MSCHAP | |