Topics

1

General discussion forum / RRC1258 Possible Vulnerability

« on: 2018-04-19, 12:20:44 »

Hi Folks,

I have been a RRC1258 user for over 7 years with 5 systems in use on a remote site.
I have changed all of the default port numbers on the RRC1258 and am using 2.91 software on all systems. I use a Cisco 1800 series router on my internet connection, which has a fixed IP address, with standard NAT and firewall rules for port translation.

I also have a 18Mbps radio link directly into the remote ststion LAN.
On Monday 16th the RRC1258 controlling one of the radios was being reset by something. The radio went off (checked on CCTV) and the uptime counter on the RRC1258 reset to zero.
I drove to the radio site and a lot of work followed. I changed and checked the PSU which is an obvious first step. In the end I cloned the RRC1258 settings and put another RRC1258 together with another radio in place. I then changed the Netgear LAN switch.

I was amazed that with a different RRC1258 that the fault continued after a random 3-30min interval and the RRC1258 reset itself. Therefore I changed the RRC1258 internal IP address to hide it from the Internet, all was fine and has been since!

I then took the original RRC1258 and ran it, stand alone, on the LAN with the original IP address so that the key ports could be seen on the Internet.
This RRC1258 continued to be reset at random, 2-30min intervals. None of the other RRC1258 systems, radio or control, most of which have Internet visible ports, were impacted.
This behaviour continued for another 4 hours. Switching off all NAT on the firewall stopped the problem. This verified that I had not got a problem on the LAN.

On the following days I left the RRC1258 as a 'tethered lamb' but with more extensive monitoring on the firewall. Unfortunately the attack had stopped.
Apart from cracking the user name and password combination on the RRC1258 web interface which is possible but not that likely the only other possibility is that a TCP or UDP attack (I have taken care only to open TCP or UDP ports and NAT as required) will reset a RRC1258.

So my questions are:
Has anybody seen anything similar - ie RRC1258 resetting?
Has anybody tried penetration testing the open ports on a RRC1258?

73
John G4SWX
(retired network secirity engineer)

2

General discussion forum / Internet Explorer Temorary Files

« on: 2017-10-18, 17:02:52 »

I have had a number of issues with the PC on which I use the browser to control the web switch which I used to control my amateur ststion. The PC is running Windows 7 professional and IE 11.
The main problem is the aggregation of hundreds of thousands of 'setswitch', 9 byte files in the Temorary Internet Files cache. As the numbers increase the IE browser performance take a real hit!
Likewise the RC1216H that I use seems to generate a large number of temporary files.
I realise that if I unclick 'Preserve Favourites website data' and enable 'Delete browsing history on exit' that I can cure this problem but at the sacrifice that the loading of the pages becomes rather slow over the constrained data connection.
Has anybody any thoughts on resolving this one?

73
John G4SWX

3

General discussion / Software access to PTT function

« on: 2014-07-27, 11:45:43 »

Hi,

I was wondering if it might be possible to add some sort of software access to the PTT function. Possibly a virtual com port. I have been using the Micro PC Client with JT65B for EME, but have to push the PTT button for the TX sequence My system does not permit the use of VOX as I have a number of systems to sequence before the rig is allowed to go onto TX. I had considered using a parallel hardware switch connected to the spare RRC 1258 com port and tunelling the command from the WSJT software but have not tested this idea.

Although I have been using the hardware RRC 1258 on my EME station for several years with 16 bit audio I was surprised that most JT65 weak signals survived the A-law compression etc. The addition of a software PTT might enable me to operate the station from even more interesting places.

73
John G4SWX

4

General discussion forum / WiFi & Profiles Strange Behaviour

« on: 2013-10-26, 18:44:03 »

Hi All,

I have encountered an issue with the way in which WiFi SSIDs and keys are stored and recalled in the RRC-1258.

I have several remote stations with different capabilities; TS2000, K3, VHF and 144MHz EME all using different ports etc and therefore have set up my control RRC with a number of different profiles. I sometimes run from different locations and apart from some hotel systems where they insist on authentication with a HTTP form all is fine with wired Ethernet. This authentication problem caused a demonstration that I had set-up for my talk on remote operation at the RSGB convention a week ago to fail:-(

I have recently tried running using WiFi access from a number of places where I have not known the SSID and key in advance. These are 'normal' WiFi systems with no additional authentication. If the SSID and key are known in advance there is no problem dropping them, beforehand into the WiFi settings of the respective profile using the web interface, preferably whilst the RRC-1258 is connected to a wired Ethernet system.
However if you go to a new location with working WiFi and then use the set-up manager via the USB interface to a PC to set up the WiFi parameters, these seem to be all are stored in the 'default' profile whichever profile has been selected beforehand. I suspect that this is a minor error in addressing the memory location from this form.

If you then change the RRC-1258, using the Setup manager to the correct profile to enable you to connect to the remote station whose parameters are stored in that profile it will no longer have a WiFi connection as the SSID and key is not stored against that profile.
This is very frustrationg as it seems that the only way to switch radios in this situation is to edit all of the parameters in the default profile.

I hope this all makes sense. If anybody has found an easy way around this please let me know.

73
John G4SWX

5

General discussion forum / NAT and UDP ports

« on: 2013-07-29, 18:35:08 »

After 2 years of great remote operation (including exhibition stations) I have decided to upgrade my station to allow me to control several radio RRCs. I have a linked private IP network and obviously I can choose the ports and IP addresses to be whatever I want. I have chosen the same port numbers for command/SIP/Audio on all radio RRCs. To change a control RRC from one radio to another I simply change the profile to another radio RRC destination IP address and all works fine.
However, there is only one external Internet IP address and I wanted to be able to address more than one radio RRC over the Internet.

What I tried and so far failed to get running is to NAT (13000 to 13001 etc) the three UDP streams from one of the radio RRCs at my firewall (Cisco 1801). I then changed to control RRC to match the same external port numbers. This would be nice as I could keep the inside network the same but address multiple radios over the Internet by simply changing the ports from profile to profile.

Looking at the status of the control and radio RRC after attempting a connection shows differing in/out ports for command/SIP/Audio so I presume that the communications protocol will not accept UDP NAT. Is this correct?

I realise that if this is the case I will have to change the ports so that each radio RRC has a different set and then simply open the relative UDP ports on the firewall. Any other thoughts on how to configure the network gateway for multiple radio RRCs?


73
John G4SWX

6

General discussion forum / RRC Switching Regulator Noise

« on: 2013-03-10, 22:32:27 »

I have been using a number of RRC128 MkII for several years with great success, including a 144MHz moonbounce demonstration station as GB2EME.

However I have always been aware of some low level noise around both the control and radio RRC1258 boxes. As I have to run another remote 144MHz EME demonstration in a month or so I thought I would check things out. After having ensured that all Ethernet connections in the shack were screened and all power supplies were linear I still could observe a small increase in the noise floor from the direction of my shack. Switching off the RRC1258 eliminated the noise! After removing the Ethernet connection careful checks with firstly a FT817 portable RX and then with a spectrum analyser with a loop pick-up showed that the noise source was the RRC1258 12V power supply lead. Changing the power supply demonstrated that the source was indeed the RRC1258. The noise is identical in both radio and control RRCs (I have several units and all are the same).

The noise has a 50MHz wide peak centred around 150MHz and consists of a comb of unstable peaks with a spacing of around 6-800KHz. This spacing varies with changing the applied voltage around 12V.
It seems to be coming from the switching regulator within the RRC1258 and being radiated from the power supply lead which I note is floating from the RRC case gnd. This probably means that a screened 12V lead will still radiate.

I would really like to eliminate this noise as it does degrade the station performance.

So; has anybody else observed noise coming from the RRC1258 12V power leads? Have you cured it?

Have the design team got any suggestions on additional filtering?  I can see what looks like a series TDK bifilar SMD choke and parallel capacitor on the 12V line as it enters the RRC1258.
Further I wonder if I am going to have the same problems with webswitches and the RC-1216H that I have?

73
John G4SWX

7

General discussion forum / Browser Redirects to Help pages

« on: 2012-10-04, 11:27:09 »

I have run into a new problem this morning, when I go to the 'set relays', 'inputs' 'profiles' or several of the other pages the browser redirects to the Webswitch help pages on the Internet. I have experienced this problem on three different PCs - all Win XP with Internet Explorer 8.
This is making it almost impossible to control the webswitch. I have cleared the browser caches etc and even managed to restart the webswitch. The problem remains.
It was running perfectly yesterday, as it has done for over 6 months so all I can think of is a Microsoft update has changed the way that the browser executes the javascript from the Webswitch.
The Webswitch software version is 2.52

Any thoughts, suggestions etc??

73
John G4SWX

8

General discussion forum / 1216H Band Decoding with TS2000

« on: 2012-03-28, 17:50:06 »

I am using a RRC1258 to remote a Kenwood TS2000 using a RC-2000 mobile controller. I aso use one of the RRC1258 com ports to run HRD remotely using the TS2000 RS232 connection.

I have upgraded the system to enable automatic switching of HF antennas using a Webswitch 1216H with a RS232 adaptor. I have used the Kenwood(FA/FB) no TXD configuration, and set up the Antenna Selection accordingly. To test out the system first I used a direct RS232 connection from the TS2000 to PC running the latest (5.11) version of HRD.

On most band configurations I am seeing relay chatter as the 1216H attempts to change band relays around once a second! Upon investigation the 'last set frequency' as displayed in the Antenna selection menu(refreshed) showed 14100KHz whatever band was selected on HRD. This turns out to be the VFO B frequency that was set on HRD. When 14MHz or any other band was selected on both A & B VFOs there was no problem. However if the band differed the problem reoccurs. It seems to me that the 1216H is decoding both VFO A and B frequencies from the RS232 stream and switching between them. When changing HRD to Kenwood's ARPC-2000 software this issue does not occur.

I have tried connecting the RS232 to decode the data sent from HRD (DB9 pin3) rather
than the data sent from the TS2000. This is stable with only one band selected, however it ONLY changes state when HRD is used to change the band data so does not fully maintain state with the TS2000.

My question is easy: - has anybody any idea how I can fix this?
However I do understand that it might be an issue with either HRD or the Webswith.

Any thoughts would be welcome
73
John G4SWX

9

General discussion forum / RRC1258 Fails to boot

« on: 2011-12-02, 10:04:12 »

Hi,

After nearly one year of flawless operation I have started to have problems with my control RRC.
For the last day or so it has failed to boot up first time on application of power. The red and yellow LEDs above the aux/mic socket illuminate immediately when power is applied and then stay illuminated. The power LED fails to illuminate.
I have changed the 12V PSU and the same happens.
The control RRC web interface is not available neither will the device respond to ping.
However, removing and applying power many times will sometimes result in it booting correctly.

The only think that I can think might be different is that the temperature dropped last night to 0 degrees C but that is hardly a drastic environmental change.

Has anybody else suffered similar problems or has any idea what might be failing?

73
John G4SWX

10

Configuration, RRC 1258 / Version 2.46 Software -OUT1/2

« on: 2011-11-09, 13:23:58 »

Hi,

I have just upgraded the software on the controller and radio units to version 2.46. I spotted in the release notes: "- If you use the I/O connector, be careful OUT1 and OUT2 are swapped, they where wrong before."

I do use OUT1 and OUT2 to provide remote operation of relays from switches fed into the IN-1 and IN-2 inputs. The operation still seems to be as before ie: an input on IN-1 produces an output on OUT-1 etc, so no change. However when I set the units up I did swap the OUT wires as I suspected that I might have got the wires crossed in the following relay unit.

Have I missunderstood the release note or are there more swaps to come???

73
John G4SWX

11

General discussion forum / RRC-1258 DNS Cache

« on: 2011-05-10, 18:52:29 »

My overall experience of the RRC is great.
However I have experienced a strange DNS failure a few times and I am wondering if it has something to do with the length of time that the RRC-1258 caches DNS. I am currently running 2.35 firmware and a dyndns address.

I have recently been suffering from intermittent operation on my control ADSL connection. As a result the IP address changes to another from the DHCP pool. You would think that this would not matter but after the customary connection failure when I try to reconnect from the control RRC to the radio and the connection attempt fails. The control RRC status indicates that the DNS status is unresolved... However with a PC on the same LAN I have no issues in connecting to the radio webserver even if I clear the PC's DNS cache and start again. The only difference as far as I can see is that I have entered my ISP's primary DNS server in the control RRC IP settings whereas the PC gets the DNS server address from by DHCP from my local router.
It does resolve, but not very quickly

Any thoughts?
John G4SWX