Network Connection

The AON-M2 requires a network connection:

  • with a computer/workstation to operate the machine (transfer files and print). Internet access is not required.
  • with Internet access to receive software updates.
  • with Internet access for remote troubleshooting of your machine.

The AON-M2 receives updates automatically when connected to a network that has access to the Internet. These updates are released regularly, with goals to improve print quality, machine usability, and overall stability of the machine. If your machine does not have Internet access, we offer a service to receive offline updates. This service is offered free of charge for all Success Plan customers. Please contact help@aon3d.com for more information.

There are two methods of connecting the machine to a network:

  • Wired - using the ethernet port at the back of the machine.
  • Wireless - using the built-in WiFi capability.

We highly recommend that you connect the machine to your network using a wired connection if possible. It is more reliable and allows for easier remote troubleshooting if needed.

When using either a wired or wireless connection, the network must have a DHCP server to assign an IP address to the machine.

All locations have a slightly different network topology, so the following instructions may not be appropriate for your installation. Please consult your network administrator if you are unsure. As always, feel free to email help@aon3d.com.

Although AON-M2 is Internet-enabled, no ports are exposed outside of your local area network and all updates and troubleshooting support is conducted through a secure VPN. For more information regarding the technical security details, please email help@aon3d.com.

The first time you power up your AON-M2, the control software is in the default factory state. As the software is rapidly evolving, it is likely that the version on your machine requires an update.

To update the software, you need to connect the machine to your network. Once connected, the machine downloads any available updates. Instructions on how to update the software can be found in the Maintenance section under Software Update.

After you power up the machine for the first time, you need to set the machine name.

Wired Connections

To connect using a wired connection, connect the machine to your network using a standard ethernet cable, the same way that you would connect a normal computer.

Throughout the user interface, question mark icons are displayed, you can tap/click on these to get more information about the associated setting.

Wired Connection Diagram

Wireless Connections

The AON-M2 can only connect to 2.4 GHz WiFi networks that use WPA or WPA2 security and require a password. 5 GHz WiFi networks are not supported.

To connect using a wireless connection, on the machine touchscreen, navigate to the Settings page and then go to the Network tab. Tap on the input box for WiFi SSID, type in the name of your wireless network, then tap the enter key to submit. Next, tap on the WiFi Password input box, type in your password, then tap the enter key to submit. Once you have entered your SSID and your password, tap the Save button at the bottom of the screen.

During future visits to the network settings page, your password is not displayed to avoid leaking private data to connected clients.

Settings Tab

Wireless Connection Diagram

Machine Name and Control Interface

The machine control interface can be accessed from a computer on the same network by visiting either the mDNS URL constructed using the machine name or the device IP address. If you are using a computer running Windows, you need to install Bonjour Print Services to enable mDNS service discovery. If you do not want to install Bonjour Print Services, you can still access your machine control page by visiting the machine’s assigned IP address directly.

mDNS and Bonjour service discovery sometimes do not work well on computers running Windows. This appears to be an unresolved bug in Windows. If you encounter this issue, please fallback to using the device IP address.

On the machine, navigate to the Settings -> General page. Tap on the input box for Machine Name, then type in the machine name you wish to use. Tap the enter key to submit. This name can only be made up of letters, numbers, underscores (_), and dashes (-). Once you have input the machine name, tap the Save button at the bottom of the screen.

General Settings Tab

The Machine URL is shown on the Network tab update to reflect the URL. You may visit the machine control interface from a computer connected to the same network.

Once you have completed these setup steps, visit either the machine URL or machine IP in a modern browser to begin using your AON-M2.

Client Authorization

A simple client-based authorization scheme can be configured that requires clients (i.e., browsers on a workstation) to be explicitly authorized to access the machine user interface. When you visit the control page of your machine for the first time, you are prompted to input a client name. This should be the name of either the user or workstation attempting to connect. Once this request has been submitted, you must navigate to the Settings -> Clients tab on the machine touchscreen and tap on the Authorize button next to the appropriate client name.

Authorize Client Request

While the client authorization scheme used is cryptographically secure, it does not replace physical and network security for your machine. If you are working in a large enterprise with many employees who should not have access to the machine, it is advisable to use a dedicated network or subnet, and install the machine in a secure location.

If you wish to disable authorization, go to the Settings -> Network tab, and toggle the switch for Device Authorization. This allows any workstation on the same local area network to access the machine user interface.

Advanced Networking Information

The following sections contains information for your network administrator.

Networks Without Internet Access

If you wish to isolate your AON-M2 from the Internet, a local area network connection between the AON-M2 and a workstation is still required for uploading print files and controlling the machine. This network requires that a DHCP server be active in order to provide an IP address to the machine. The DHCP server can be on a router or the workstation.

Temporarily connecting the AON-M2 to the WiFi hotspot of a mobile phone is an easy way to update the software on a machine that is normally air-gapped. Refer to the user manual of your mobile phone for instructions on how to setup a WiFi hotspot. Alternatively instructions for some popular mobile phones can be found here.

With this type of network setup, your machine cannot make outgoing requests to our servers to get updates. We offer a service to receive offline updates. This service is offered free of charge for all Success Plan customers. Please contact help@aon3d.com for more information.

Air-Gapped Networking Diagram

Firewall Information

The following ports must be opened in the firewall so that the machine can be updated or for remote troubleshooting:

  • 53 (DNS)
  • 123 (NTP)
  • 443 (VPN to update server)

The following domains must be allowed in the firewall so that the machine can be updated:

  • *.balena-cloud.com
  • *.docker.com
  • *.docker.io
  • *.resinio.pool.ntp.org

The following domains can be optionally allowed in the firewall:

  • ip-api.com
  • freegeoip.app
  • ipapi.co

Advanced Networking Diagram

The following domains must be allowed in the firewall so that Simplify3D can be updated:

  • HTTPS traffic to *.simplify3d.com (for example, api.simplify3d.com or cloud.simplify3d.com)
  • HTTP and HTTPS traffic to wyday.com

Last modified: August 11, 2020