4: Using Setup Mode for Configuration
XPort™ User Guide 42
Encryption only applies to the port selected for tunneling (default 10001), regardless
of whether you are using TCP or UDP.
Generally, one of two situations applies.
Encrypted XPort-to-XPort communication (and in the future, XPort
communication to other Lantronix device servers) is supported without extra
effort.
The XPort uses standard AES encryption protocols. To communicate
successfully, products and applications on the peer side must use the same
protocols and the same shared key as the XPort. To ease the development
process, Lantronix provides an AES encryption DLL for Windows and
protocol source code samples. See the document entitled Encryption
Enabling Your Serial Device on the Lantronix web site (www.lantronix.com
)
for more instructions and sample code.
The following export agreement is required for the optional encryption:
I agree that I will not export or re-export this software file to a national
resident of Cuba, Iran, Iraq, Libya, North Korea, Sudan, Syria or any other
country to which the United States has embargoed goods; or to anyone on
the US Treasury Department's list of Specially Designated Nationals and
Blocked Persons, US Commerce Department's Table of Denial Orders and
Entitles List, or the US State Department's Debarred List. By receiving this
software, I am agreeing to the foregoing and I am representing and
warranting that I am not located in, under the control of, or a national or
resident of any such country or on any such list.
Encryption Tutorial
Rijndael is the block cipher algorithm chosen by the National Institute of Science and
Technology (NIST) as the Advanced Encryption Standard (AES) to be used by the
US government. The XPort supports 128, 192 and 256 bit encryption key lengths.
Follow the steps below to configure AES encryption on the XPort.
Note: Configuring encryption should be done through a local connection to
the serial port of the XPort, or via a secured network connection. Initial
configuration information including the encryption key is sent in clear text
over the network.
1. Telnet to the configuration port on the XPort (Port 9999).
Example Telnet command syntax is shown below. In the command examples
below, replace the x's with the IP address of the XPort.
Microsoft Windows command syntax: telnet xxx.xxx.xxx.xxx 9999 Unix
command syntax: telnet xxx.xxx.xxx.xxx:9999
2. When prompted, press Enter to go into Setup Mode.
3. At the Change Setup menu, select option 6 for security.
4. When prompted to enable encryption, press Y.
5. Enter the encryption key length when prompted. XPort supports 128-, 192- and
256-bit encryption key lengths.