Introduction
Note:
The term eCVD refers to the electronic Cisco Validated Design template that we provide to you.
The term IR1800 refers to the industrial router series.
The configuration push through the CISCO-provided eCVDs (Cisco Validated Design) and bootstrapping without any customization does not result in a device reload if you are using 17.10.1a or above.
These two scenarios are the exception.
- When you enable Umbrella configuration.
- When a configuration rollback request from Operations Dashboard (OD) conflicts with the IP SLA.
Cisco’s IoT Operations Dashboard (IoT OD) provides cloud-based management for IoT routers, network devices, and more. Configuration of the managed devices on IoT OD is based on electronic Cisco Validated Design (eCVD) templates, that are designed to be easy to use without significant experience required with Cisco IOS command line that is traditionally used for configuration and management. These eCVD templates are designed, developed, and validated by Cisco to provide the most-used features. They provide a form-based user interface that enables you to get your IoT deployments up and running. These entry fields allow you to either search for existing values or enter new values that facilitate router configuration. You can also modify the eCVD templates to create more custom templates. On IoT OD, the IR1800 has one integrated template that can fit the requirements for each model (1821,1831,1833,1835) of the IR1800 series. These templates should be leveraged to configure IR1800 devices via IoT OD. For information on how to download the latest eCVD templates, go to the eCVD repository. IR1831, IR1833, and IR1835 models also support Dual LTE (2 Modems and up to 2 SIM cards). The IR1821 device supports only 1 modem and up to 2 SIM cards; it does not support Dual LTE.
WAN Uplink Settings
Dual LTE: IR1800 network device Dual LTE functionality provides a wider range of supported configuration options.
The following scenarios show dual LTE functionality:
- An IR1800 with 2 modems and 1 SIM card in each modem (see description and illustration in the WAN Uplink section below). This configuration allows you to enable Cellular 1 and Cellular 2 interfaces in the WAN page so that the device will failover all traffic, including management traffic, from one interface to the other.
- An IR1800 with 1 modem and up to 2 SIM cards installed in the modem (see description and illustration in the WAN Uplink section below). For this scenario, you can select the proper interface in the WAN page (either Cellular 1 or Cellular 2), and then select the Enable second SIM card option. The device, in this scenario, uses the SIM card in the first slot of the modem as the primary interface. If a link failure or degraded service is detected, then the device will failover to using the second SIM card on the same modem.
Note: Because the IP SLA test schedule set up for WAN Uplink priority mapping takes place every 50 seconds, there are rare occurrences when a configuration rollback request from Operations Dashboard (OD) conflicts with the IP SLA. When this conflict occurs, the eCVD 1800 device performs an unscheduled reload.
The following are the features available in the template, as well as information about the fields and values that make up those features. For a more in-depth look at the underlying technologies and design recommendations, see the Remote and Mobile Assets(RaMA) Cisco Validated Design (CVD).
Workgroup Bridge: The Workgroup Bridge (WGB) mode provides wireless access connectivity to wired clients by establishing a single, wireless connection to a root access point (RAP). The access point treats the WGB as a wireless client. For more information about Cisco Workgroup Bridges, see Using Cisco Workgroup Bridges.
Use WGB as a WAN uplink when the following criteria are met:
- The IR1800 is running on firmware 17.10.1a or above.
- The Wi-Fi6 pluggable module is 17.9.2 or above.
- The WAN Uplink is set to WGB mode. Ensure WGB is selected with another Uplink mode (at least another WAN Uplink is selected with the WGB).
- Wi-Fi settings must be set to WGB mode, the SSID and PSK of the Wi-Fi network to which the device connects.
Note: When WGB is used, the IR1800 device receives an IP address by way of DCHP on VLAN 50. (The DHCP server must be configured upstream on the SSID being broadcast by the Root Access Point.)
When the configuration is complete, all traffic, including management traffic, is forwarded over the WAN uplink in the order selected in the WAN uplink page.
Ethernet Settings
All the 1800 devices have 4 ethernet ports but only 1833 and 1835 have POE ports, which can provide power to the devices connected to these interfaces. (The total PoE available power is 30W to be shared by the 4 LAN ports.)
DHCP Settings
Dynamic Host Configuration Protocol (DHCP) is a network protocol that is used to configure network devices to communicate on an IP network. A DHCP client uses the DHCP protocol to acquire configuration information, such as an IP address, a default route, and one or more DNS server addresses from a DHCP server. The DHCP client then uses this information to configure its host. Once the configuration process is complete, the host is able to communicate on the Internet. DHCP is used for both IPv4 and IPv6. While both versions serve the same purpose, the details of the protocol for IPv4.
DNS/NTP Settings
The Domain Name System (DNS) enables a Domain Name Server to translate requests for specific domain names into IP addresses. The Network Time Protocol (NTP) is a networking protocol used for clock synchronization between computer systems (laptops to servers).
VPN Settings
he IR1800 series allows you to set up a primary and backup Virtual Private Network (VPN) to establish a secure, encrypted connection between the device and the Cloud. The VPN provides a private tunnel for data and communications while using public networks and makes it more difficult for third parties to track and steal data. For more information on using Headends on Cisco routers, see Enterprise Network Integration. If you are configuring VPN for your IR1800, you also need to configure VPN tunnel source interfaces. An IR1800 device enables you to set the VPN tunnel source interface to Ethernet, Cellular, or WGB WAN.
Network Settings
Network Settings allow you select how the network traffic is routed between nodes (devices). The QoS parameters in the network section allows you select and prioritize how the network traffic (for example, email, text, video games, streaming, etc.) is routed between nodes (devices/applications) and the priority the traffic type (email vs streaming) takes. Network Settings enable you to configure what interfaces (IP addresses) and what type of traffic is routed to those interfaces (IP addresses). IR1800 devices allow you define up to eight port forwarding rules (or methods) and six static routes to use Wi-Fi and other internet-based applications.
Security Settings
The Security Settings provide options that allow you to configure:
- Netflow: A Cisco-designed protocol for collecting IP traffic information and monitoring network flow for security and troubleshooting. The IR1800 series devices provide security options that allow you to configure Netflow, Umbrella, and Firewall.
- Umbrella: Cisco Umbrella features detailed reporting and data analytics so you can spot trends and understand the security risk of specific attacks on your network and endpoints.
- Firewall: A feature that enables you to create an access control list (ACL) to permit or deny traffic from a data traffic source.
Note: When you enable Umbrella configuration, the device performs an automatic reload during the configuration update on Cisco-provided eCVDs (Cisco Validated Design).
Device Management Settings
The Device Management provides the following configuration sections:
Vehicle: The IR1800 can be set up with a 12V or 24V battery.
On a 12V battery, the ignition sense voltage level adjusts to these voltage levels:
- If input voltage is greater than 13.200V for more than 1 second, Ignition is ON.
- If input voltage is less than 12.800V for more than 20 seconds, Ignition is OFF.
On a 24V battery, the ignition sense voltage level adjusts to these voltage levels:
- If input voltage is greater than 26.200V for more than 1 second, Ignition is ON.
- If input voltage is less than 25.800V for more than 20 seconds, Ignition is OFF.
Users: For those users who log into the IR1800 device by other methods external of IoT OD, you can enter up to six users with unique Name, Password, and Privilege Level designations.
Wi-Fi Settings
All models of the IR1800 series provide the same Wi-Fi settings that, when enabled, provide both WGB and Controller modes that connect the network. WGB and Controller mode enable the device to associate with a wireless infrastructure, providing network access to both wired and wireless clients.
Controller The access point treats the Controller as a wireless client to extend the reach to other wireless devices . For more information WLAN controllers see, Campus LAN and Wireless LAN Solution Design Guide.
Note:
Before onboarding an IR1800 device, the Wi-Fi6 module on IR1800 needs to be in controller mode. Once onboarding is complete, the IR1800 device receives an IP address by way of DCHP on VLAN 43, which points it to the proper controller. When the link to the correct controller is established, the WLC will manage it.
The IR1800 must be running the minimum software version:
- IOS-XE version 17.10.1a
- Wi-Fi Module it is 17.9.2
- eCVD firmware version 1800 2.4 or above
Section Configuration Details
Click on each link to see field definitions and configuration steps.
- Hardware
- WAN Uplink
- Ethernet Settings
- DHCP
- DNS/NTP
- VPN
- Network
- Security
- Device Management
- WiFi
- Serial
- GPIO
Validated software versions
Bootstrap Configuration Software Version:
- Minimum Day 0, ZTD configuration version: 4.2
Note: This is the initial software that your Cisco IOS router uses to boot up, it is similar to the BIOS of your computer. Just as with IOS, the bootstrap can be upgraded on some router platforms.