Network Connection

The AON-M2 requires a network connection:

  • with a computer/workstation to operate the machine (transfer files and print). Internet access is not required.
  • with internet access to receive software updates.
  • with internet access for remote troubleshooting of the machine.

The AON-M2 receives automatic updates when connected to an internet network. Updates are released regularly, with goals to improve print quality, machine usability, and overall stability of the machine. If the machine does not have access to the internet, AON3D offers a service to receive offline updates. This service is offered free of charge for all Success Plan customers. Please reach out to our Customer Success team at help@aon3d.com for details.

There are two methods to connect the AON-M2 to a network:

  • Wired: A cable installed into the ethernet port found on the rear panel behind the machine. When using a wired connection, the network should have a DHCP server to assign an IP address to the machine. An IP address can also be set manually for a wired connection. See Wired Connection.
  • Wireless: Built-in WiFi capability. When using a wireless connection, the network must have a DHCP server to assign an IP address to the machine. See Wireless Connection.

AON3D recommends the AON-M2 be connected to a network through a wired connection. A wired connection is more reliable and allows for easier remote troubleshooting with AON3D technicians.

All locations have a slightly different network topology. The following instructions may not be specific to every installation procedure. Please consult your network administrator if clarification is required.

Although the AON-M2 is internet-enabled, no ports are exposed outside of your local area network (LAN) and all updates and troubleshooting support is conducted through a secured VPN. For more information regarding the technical security details, please reach out to our Customer Success team at help@aon3d.com.

On initial power-up of the AON-M2:

  • Rename the machine.
  • The control software is in the default factory state. As the software rapidly evolves, the machine may require a software update. To update the software, connect the machine to internet network. Once connected, the machine downloads any available updates. Instructions on how to update the software are found in the Maintenance section under Software Update.

The following sections provide details for setting up the network for the AON-M2:

Wired Connection

To connect the machine to a wired connection, install a standard ethernet cable into the ethernet port found at the rear panel of the machine.

Throughout the user interface, question-mark icons are displayed. These icons can be selected to get additional information about the associated setting.

Wired Connection Diagram

Wireless Connection

The AON-M2 only connects to 2.4 GHz WiFi networks that use WPA or WPA2 security and require a password. The AON-M2 does not support 5 GHz WiFi networks.

To connect using a wireless connection:

  1. On the machine touchscreen, navigate to the Settings page and then the Network tab.
  2. Turn ON the Wireless connection by sliding the toggle to the right or tapping it.
  3. When the feature is ON, the toggle turns green.
  4. Tap on the input box for WiFi SSID.
  5. Type in the name of the wireless network, then tap the Enter key to submit.
  6. Tap on the WiFi Password input box and type in the WiFi password and tap the Enter key to submit.
  7. Once the SSID and password have been correctly entered, tap the Save button at the bottom of the screen.

To protect private data to connected clients, all future visits to the network settings page will not display the WiFi password.

WiFi Settings Wireless Connection Diagram

Machine Name and Control Interface

The machine control interface can be accessed from a computer on the same network by visiting either the mDNS URL constructed using the machine name or the device IP address. On a computer with Windows® OS, install Bonjour Print Services to enable mDNS service discovery. User can access the machine control page by visiting the machine’s assigned IP address directly should Bonjour Print Services not be installed on their computer.

mDNS and Bonjour service discovery sometimes do not work well on computers running Windows®. This appears to be an unresolved bug in Windows®. If this issue occurs, revert to using the machine IP address.

Rename Machine:

  1. Navigate to the Settings -> General page.
  2. Tap on the input box for Machine Name.
  3. Type in the new machine name. Only letters, numbers, underscores (_), and dashes (-) are permitted.
  4. Tap the Enter key to submit.
  5. Once machine name has been entered, tap the Save button at the bottom of the screen.

The Machine URL is shown on the Network tab update to reflect the URL. The machine control interface may now be controlled from a computer connected to the same network.

Once these steps have been completed, and both the machine and computer are on the same network, visit either the Machine URL or Machine IP in a modern browser to begin using your AON-M2.

Set Machine Name

Client Authorization

A simple client-based authorization scheme can be configured that requires clients (i.e., browsers on a workstation) to be explicitly authorized to access the machine user interface.

On initial start-up of the control page of the machine, user is prompted to input a Client Name. Ideally, this should be the name of either the user or workstation which will attempt to connect. Once request has been submitted, navigate to the Settings -> Clients tab on the machine touchscreen and tap on the Authorize button next to the appropriate client name.

Authorize Client Request

While the client authorization scheme used is cryptographically secure, it does not replace physical and network security for the machine. In a large enterprise with employees who should not have access to the machine, it is advisable to use a dedicated network or subnet, and install the machine in a secure location.

To disable authorization:

  1. Navigate to the Settings page and then the Network tab,
  2. Turn OFF the Device Authorization feature by sliding the toggle to the left or tapping it.

    When the feature is OFF, the toggle turns grey.

  3. Tap Save at the bottom to save your feature selection.

This allows a workstation on the same local area network to access the machine user interface.

Set Device Authorization Feature

Advanced Networking Information

The following sections contains information for your network administrator.

Networks Without Internet Access

To isolate the AON-M2 from the internet, a local area network (LAN) connection between the AON-M2 and a workstation is still required for uploading print files and controlling the machine. This network should have an active DHCP server in order to provide an IP address to the machine. The DHCP server can be on a router or the workstation. Alternatively, an IP address can be set manually for a wired connection.

The AON-M2 requires an internet connection in order to make outgoing software update requests to our AON3D servers. If internet access is not an option, AON3D offers a service to receive offline updates, free of charge, for all Success Plan customers. Please reach out to our Customer Success team at help@aon3d.com for details.

The AON-M2 can connect to a mobile phone WiFi hotspot to update the software on a machine that is normally air-gapped. Refer to the user manual of a mobile phone for instructions on how to setup a WiFi hotspot. Alternatively, instructions for most popular mobile phones can be found here.

Air-Gapped Networking Diagram

Set Static IP Address

To set a static IP address for the machine:

  1. Navigate to the Settings page and go to the Network tab.
  2. Set DHCP to OFF by sliding the toggle to the left or tapping it. When this feature is OFF, the toggle turns grey and the manual settings are displayed.
  3. Type in the desired values for IP Address, Submask, Gateway, and DNS servers.
  4. Once all the values have been entered, tap the Save button at the bottom of the screen.

Static IP Settings

Firewall Information

The ports that follow must be opened in the firewall for the machine to be updated and/or for remote troubleshooting:

  • 53 (DNS)
  • 123 (NTP)
  • 443 (VPN to update server)

The domains that follow must be allowed in the firewall so that the machine can be updated:

  • *.balena-cloud.com
  • *.docker.com
  • *.docker.io
  • *.resinio.pool.ntp.org

The domains that follow are optional in the firewall:

  • ip-api.com
  • freegeoip.app
  • ipapi.co Advanced Networking Diagram

The domains that follow must be allowed in the firewall for Simplify3D® to be updated:

  • HTTPS traffic to *.simplify3d.com (for example, api.simplify3d.com or cloud.simplify3d.com)
  • HTTP and HTTPS traffic to wyday.com

Last modified: June 17, 2021