DxConnect-IoT Admin Guide
DxConnect-IoT allows the user to create direct secure connections (tunnels) between a remote client and one or more servers running DxEnterprise or DxOdyssey without the need for a VPN, expensive hardware, or data passing through a vendor portal. DxConnect-IoT transfers encrypted packages across system-assigned UDP ports so there is no need to open a TCP or UDP port to the internet. With DxConnect-IoT, data transfers securely between custom-designed tunnels. DH2i’s DxConnect-IoT uses a highly available proprietary cloud Matchmaking Service to keep connections alive, but no payload data is passed through the matchmaker – all data is directly encrypted between servers.
In DxEnterprise or DxOdyssey create the tunnels and assign a client to the tunnel. Then export the client configuration to a *.dh2i file for use with DxConnect-IoT. For more information on creating tunnels in either DxEnterprise or DxConnect consult the appropriate admin guide.
DH2i Tunneling features
Configuration and Management Simplicity
- Lightweight Windows or Linux install
- Simply install and connect
- No dedicated VPN routers
- No ACLs, no firewall rules
- No expensive cloud VPN services
Highest Level Security and Performance
- Application-level micro-tunneling
- Discreetly transports TCP payloads via UDP
- Eliminates lateral network attack surface
- Highly available, auto self-healing tunnels
- Invisible to port scanners
Minimum System Requirements
The following sections describe hardware and software requirements for DxConnect-IoT.
DxConnect-IoT is hardware-agnostic, and uses minimal system resources. Please follow operating system and application best practices to achieve performance expectations.
Supported Operating Systems
- Windows 8 and above, x86 and x64.
- CentOS Linux 7.x
- RedHat Enterprise Linux 7.x or 8.x
- Ubuntu 16.04.x, 18.04.x, 20.04.x or 22.04.x
Network Configuration Guidelines
DxConnect uses a proprietary communications protocol based on TCP and UDP for its gateway group communication.
DxConnect-IoT software requires internet access to register with the DH2i Matchmaking Service.
- Install Windows and apply the latest patches. Consult Microsoft documentation for further details.
- Install Microsoft .NET Framework 4.5.2 or higher.
Installing DxConnect Software for Windows
Double-click the DxConnect-IoT setup program on the first server or desktop.
A welcome screen will be displayed. Click Next to continue with the installation.
Accept the license agreement and click Next to continue.
In the Destination Folder window, select an installation folder for the DxConnect-IoT Software and click Next.
In the Ready to install window, click Install.
Click Finish to complete the installation of DxConnect.
Update the server. If prompted to confirm, enter Y.
- Red Hat/CentOS
sudo yum update
sudo apt update
sudo apt upgrade
Install Microsoft .NET 6.0 Runtime using installation instructions from Microsoft:
- Red Hat/CentOS
Download the DxConnect-IoT repository configuration file.note
<distro>parameter in the example below with
rhel9to download the correct .conf file.
sudo yum install https://repos.dh2i.com/<distro>/retail/repo.rpm
Download the DH2i package signing key.
Register the DxConnect-IoT Ubuntu repository.tip
The architecture parameter
[arch=amd64]can be changed to
armhfto install DxConnect-IoT on those platforms.
sudo dpkg -i repo.deb
Update the Ubuntu package list.
sudo apt-get update
Cleanup the repo download.
Overview of DxConnect-IoT Client
Open a browser and connect the DxConnect-IoT console on port 8080.
The DxConnect-IoT console has a menu drop down in the upper right. If this is the first time using DxConnect-IoT users will want to first change the default admin password which is blank.
Select Inactive and then select Change Admin Password.
Once the new password is entered click OK to save it.
Click on Inactive and select Configure from the drop down menu.
- Configuration - Name of the *.dh2i configuration file.
- Fingerprint - Unique identifier assigned to a configuration file.
- Cred - Denotes if username/password is saved upon connection. A key icon will appear if active. Clicking on the key icon allows the ability to delete stored credentials.
- Heartbeat (sec) - Amount of time between heartbeat checks on connection.
- Connect on Startup - Whether to connect on system startup.
- Plus + icon - Used to add configuration file. User may choose to add muliple configuration files.
- Trash icon - Used to remove configuration file from list.
Click on the + icon to import the *.dh2i configuration file.
Click on the name of the configuration to highlight it and it will become the default. If you double-click on the name it will allow the name to be edited.
Click OK to save or Cancel to quit without saving.
Once a configuration file is saved go to Inactive and select Connect. A window asking for username/password will appear. Put in the username/password and select if the username/password should be saved.
Once successfully connected the Inactive button will turn green and say Connected.
Once connected the tunnel names and listeners will be listed on the main page.
Depending on the type of connection use the listener to connect to the tunnel. For this example it shows a remote desktop connection to a windows machine.
After successfully connecting the main screen will show the connection.
The connection will show what port it is connected on and the amount of packets received and transferred.
To end the connection select Connected and then select Disconnect from the drop down menu. This will disconnect all current connections.
For information and the current version that is installed select About from the drop down menu.