Teltonika Networks RUTOS - an extensive introduction


/Teltonika Networks RUTOS - an extensive introduction

คำถามและคำตอบ // 2020/05/28

ในระหว่างการสัมมนาผ่านเว็บคุณได้ถามคำถามมากมายและบางคำถามก็ตอบเมื่อสิ้นสุดการถ่ายทอดสด และที่นี่เราต้องการแบ่งปันคำถามและคำตอบของคุณกับคุณทั้งหมด:

Q: What is the difference between RTOS and openWRT?

A: RutOS is highly customized openWRT by Teltonika Networks. It provides more functionality compared to standard openWRT

Q: Can we have separate firewall rules for separate WAN interface like Wired WAN and SIM (Mobile WAN)

A: To configure separate rules for WAN interfaces it'll be needed to use custom IPtables rules which can be inserted into Network -> Firewall -> custom rules section

Q: Is RutOS built around OpenWrt?

A: Yes

Q: Why don't the default settings is to protect from all malicious attack. users should be able to enable for some specific address/APIs. Every process uses resources of device hardware. What if user even do not use public IP.

A: Our thought process is to give user every tool for ability to secure themselves.

Q: What is the protection against DDOS attack on a closed port?

A: Even though the port is closed, DDOS packets arrive to the device and fill the incoming channel

Q: Can we block URLs like for example Youtube can we block it, as it has different domains ?

A: Solution for this would be 'Web filter' feature. Web filter has proxy based URL content blocker.

Q: If I want to access the router from remote, I should activate access by HTTP, right? What security settings should I then activate?

A: Everything is depends on your needs. I would recommend to DDOS and port scan protection or you can use RMS. RMS creating encrypted MQTT tunnel with SSL cert.

Q: Do any of your devices support Band 43 (3,7-3,8 GHz) to be used for private networks in Germany?

A: Unfortunately there are no devices which support B43

Q: Can you use different NAT settings for two WANs? For instance, for wired WAN I would like NAT to be disabled and for MOBILE wan I would like NAT to be enable. I did not manage to do so on a RUT 955, the NAT settings were tied toghether, either NAT was enabled for both WANs or disables for both WANs

A: The best solution for wanting result is to use 'Profile' feature.
Profile 1 would have settings A
Profile 2 would have settings B
And configurate triger for profile switch.

Q: I think you should enable ping reboot by default. I would say that it's mandatory if you want to prevent the router to be blocked at some time in the future

A: Feature is not enabled by default because not all SIM cards have access to the internet, some SIM cards work in internal networks by using private APN’s, enabling ping reboot feature, router would start to constantly reboot because default IP would be unreachable

Q: Can we get a static ip with help of router?

A: From WAN interface side - only you ISP can determine that. From LAN interface side - you can configurate all your network to use static IP

Q: Is it possible to host my own web page which have my own graphics, to be able to access remotely?

A: RutOS is based on OpenWRT (in simple term - Linux distro). Linux based systems is very customizable. RUT devices, out the box is unable to do that, but via SSH, with additional development from customer/our side - it can be easily achieved

Q: Are you doing Deep packet inspection for industrial protocols like Modbus TCPIP, CIP, Profinet?

A: No, we don't do deep packet inspection

Q: Does these devices support Radius server for monitoring these products from external radius server?

A: Yes, devices support external radius servers, we got also several guides in our wiki

Q: Do You maintain MTBF of products?

A: Yes, we do, MTBF values can be found in our wiki, for RUTX11 you can find this value here

Q: Can I use RMS as IoT platform for sensor's data (inputs)? Making reports, alerts, etc?

A: Currently it’s not possible to monitor connected sensors data via RMS, but this feature is already in development and should be released on Q3 of 2020

Q: Do your products works on the Narrow Band frequency (NB-IoT)?

A: Yes we have 2 products TRB255 and TRM250.

Q: Is there any IDS/IPS?

A: RUT/TRB devices use Linux IP tables as a firewall, there’s no deep packet inspection being done and traffic is filtered on different packet attributes e.g. source/destination IP. Unfortunately there’s no IDS/IPS

Q: what is the standard value for signal strength on teltonika device?

A: Recommended values can be found in wiki

Q: Is it possible to change administrative distances of static routes in rutx11?

A: RUT devices will always route packets according to the assigned metric, the lower metric value assigned the higher the priority of that route, maximum priority is given to routes with metric 0.
Static routes can be configured and have metric assigned in WebUI → Network → Routing → Static routes.
To add static routes via CLI use command “ip route add” e.g.:
ip route add via metric 15
This command will add a route to subnet via gateway with metric 15

Q: How carrier Aggregation functionality works?

A: It’s device modem feature and supported by LTE cat6 modems and better, this feature allows to transmit data using different LTE bands/frequencies to increase DL/UL speeds

Q: How about technical support, if your customers need help with some non standard configuration, how they can get help / support?

A: As you can use WikiCrowd support or contact the company, which you have bougth the devices, because all our VIP customers, have their own support team or they can contact Teltonika Networks VIP support helpdesk

Q: can we block by ip address ? like a whitelist or black list IP Address, if can, how to config it

A: Yes you can do that, check web filter

Q: If traffic is switched to the failover link, is it possible to go back to the original link once it recovers?

A: Yes, device will automatically switch back to original link once it comes up

Q: Is it possible to automatically recover a backup to a rut device by only connecting it to network? Through scripting or something? The idea is if a device needs to be replaced it takes the less effort possible and give autonomy to the technician who replaces it

A: By default there’s no such option but it’s possible to upload full configuration to device via RMS

Q: is it possible to install an mqtt client?

A: Our devices support MQTT protocol by default, no further installations are needed

Q: I want to know about the Modbus tCP Configuration in Teltonika with Azure Cloud Connection

A: First configure requests on your slave devices according to our wiki manual: RUT955 Modbus
Then using Modbus data sender functionality, select protocol MQTT and insert required fields like connection string, after configuration is completed, device will send data to Azure IoT Hub

Q: Trb141 don't have package manager, has it?

A: TRB141 has package manager, make sure to install the newest FW version TRB1_R_00.02.03.1, to install package run command “opkg install package” where package is the name of needed package.

Q: When routers will start supporting With Indian Navic Satellite just like GNSS,GPS etc Navic is indian navigation system

A: At the moment there are no plans for supporting it. Please contact office from India and they will check the possibilities for this service

Q: Can we use these devices for Remotely Accessing Any devices with transparent connectivity?

A: RUT devices support Bridge/passthrough modes which allow to assign public IP to end devices, RUT devices themselves become completely transparent in communication, more information can be found in wiki

Q: Are you offering any VPN cloud servers as well as routers with VPN Server functionality with remote gateway?

A: VPN services are coming in the near future (couple months time)

Q: Are your O.S using OpenWRT pre build packages ?

A: Some of the packages are the same, but some are customized. Also default OpenWrt packages can be installed using opkg package manager

Q: Is RMS free to use?

A: RMS is free of charge for each device for one month, then it is paid services. Contact your representer for the pricing for RMS.

Q: Do you have any routers coming out later this year or next that supports higher CAT specifications than RUTX09/11?

A: RUTX12 is comming next month. With 2 with two independent 4G LTE CAT6 mobile modems working simultaneously, so you will be able to reach much better speeds

Q: Can we make vpn over dynamic IP on SIM just linke easy vpn in cisco ?

A: You can use DDNS + VPN using dynamic IP.

Q: Can we create 2 groups in web filer ? 1st group for blocking some sites and 2nd group allows all or specific sites ?

A: There's whitelist and blacklist functionality, so you can either block all sites but the specified ones or vice versa, allow all and block only several

Q: How many slave devices we can able conncet on modbus master and how many segments ( requests ) can connect on one slave device?

A: For Modbus RTU master using RS485 the limit of slave devices is 32, there’s no limit for requests. For Modbus TCP master it’s possible to connect upto 254 slave devices.

Q: Do you support client isolation on WIFI? I mean clients cannot see or communicate to each other on the same SSID network

A: Yes, it's supports

Q: How many number of modbus request we can configure on rs485 and how many devices we can connect on rs485 ?

A: It’s possible to connect 32 devices, there’s no software limit on request count

Q: Alarm function is working with BT sensors already?

A: At the moment no. We will implement this funcionality in the next quarter. Contact your sales guy to get the newest information, when it will be ready

Q: Can we do load-balancing on WANs ?

A: Yes, we can!

Q: Will it work with aws mqtt to send data of modbus 20 slaves connectd on modbus 485 interface?

A: Yes it will work

Q: Do we have plans to bring MQTT sparkplug ?

A: Currently there are no RnD projects made to include MQTT sparkplug functionality into RutOS

Q: Can we install additional services, such as Node-Red?

A: Yes, we can install additional services. You should use SSH/CLI and OPKG command (similar to Linux APT)

Q: In modbus alaram configuration if I select condition 'more than' how many times the device will send a SMS. Is this keep on sending sms or not.

A: There's redundancy control, so you can specify that message would be sent only once

Q: Can you tell the VPN functionality in RUTX11?

A: You can read more about RUTX11 supported VPN protocols in our wiki page

Q: Is it correct that RUTOS is not available on Teltonika Modems like TRM 240/250?

A: Yes

Q: That is great, we're really excited about RUTX12 with the dual CAT 6 modems, for reaching higher speeds. Is there any plans to integrate Wireguard VPN into RutOS?

A: Yes, there are plans to include wireguard into RutOS functionality, it should be released with either RutOS 2.4 or RuTOS 2.5 versions

Q: Are you aware of unlicensed frequencies or something similar being available in Russia? (like CBRS in the US)

A: Such unlicensed frequencies are not supported by our RUT and TRB devices

Q: Can we adapt our own landing page when configuring Hotspot?

A: Yes you can, you can upload the html of your landing page into hotspot landing page configuration

Q: Which Industrial protocols Teltonika product support? Does it support DNP3 protocol?

A: Unfortunately DNP3 isn’t supported, from industrial protocols only Modbus is supported right now. Also device is able to be used transparently by configuring your RS232/RS485 port as serial type “Over IP”.

Q: Hi, is it possible to have Modbus RTU device connected to a TRB 245 gateway, and be monitored over MQTT. So TRB converts Modbus RTU into MQTT?

A: TRB245 has Modbus RTU master functionality so it can collect data from RTU devices and then transmit it to remote server via MQTT protocol