beautypg.com

1 tls proxy server, Tls proxy server – Campbell Scientific NL240 Wireless Network Link Interface User Manual

Page 36

background image

NL240 Wireless Network Link Interface

Enter the

TLS Private Key Password if the TLS Private Key is

encrypted. Otherwise, leave the setting blank.

After loading the key and certificate, click the

Apply button. The

NL240 will reboot. Connect with DevConfig again and navigate to

the Settings Editor tab and then to the TLS tab. The

TLS Status

should say

Initialized.

The TLS Settings described above cannot be edited over a

standard TCP DevConfig link. The TLS Private Key, TLS Private

Key Password and TLS Certificate can only be edited/transmitted

over a secure DevConfig link (USB or TLS).


If the status of the TLS stack is

Initialized, the NL240 will

automatically negotiate a secure TLS connection with DevConfig

as long as the

Use IP Connection option is selected.

8.2.6.1 TLS Proxy Server

A TLS proxy server is a device that acts as a secure intermediary for requests

from clients seeking resources from other servers. A client connects to the

proxy server, requesting some service, such as a file, connection, web page, or

other resource, available from a different server. The proxy server evaluates

the request according to its filtering rules. For example, it may filter traffic by

IP address or protocol. If the request is validated by the filter, the proxy

provides the resource by connecting to the relevant server and requesting the

service on behalf of the client.

When the TLS Proxy Server function is enabled, the NL240’s TLS Proxy

Server maintains a secure TLS connection with a remote TLS client and

forwards data onto a datalogger using a standard TCP connection thus enabling

communication with TLS clients. The TLS client can be a web browser using

HTTPS or other user-supplied TLS client. Any other client program that

encrypts a standard TCP connection using TLS may be used to establish a

connection with the NL240 TLS Proxy Server and the NL240 will forward

unencrypted TCP data to a datalogger. In this way, a remote TLS client can

establish a TLS connection with a datalogger.

The settings found in the TLS Proxy Server and TLS tab in DevConfig are used

to configure the NL240 TLS Proxy Server.

Two physical configurations are possible and the required settings differ

depending on the configuration chosen. The possible configurations are shown

in the following figure.

NOTE

NOTE

26

See also other documents in the category Campbell Scientific Hardware: