User's Manual 802.11N Wireless Broadband Router Model No

Add to my manuals
69 Pages

advertisement

User's Manual 802.11N Wireless Broadband Router Model No | Manualzz

User’s Manual

802.11N Wireless Broadband Router

Model No.: SP916N

http://www.micronet.info

Table of Contents

Chapter 1 Introduction................................................................................. 1

1.1 Package Contents .......................................................................................... 1

1.2 Key Features ................................................................................................. 1

1.3 Safety Information ........................................................................................ 2

1.4 System Requirements.................................................................................... 3

1.5 Specifications ................................................................................................ 3

Chapter 2 Physical Description .................................................................. 4

2.1 Back Panel..................................................................................................... 4

2.2 Front Panel .................................................................................................... 4

Chapter 3 System and Network Setup ....................................................... 6

3.1 Build Network Connection ........................................................................... 6

3.2 Connecting to Web-Based Management ...................................................... 7

3.2.1 IP Address Configuration .................................................................................7

3.2.2 Router’s IP Address ........................................................................................12

3.2.3 Starting Web-Based Management UI ..........................................................13

Chapter 4 Web-Based Management UI .................................................... 15

4.1 Quick Setup Wizard .................................................................................... 15

4.2 General Setup.............................................................................................. 23

4.2.1 System ..............................................................................................................23

4.2.2 WAN ..................................................................................................................26

4.2.3 LAN....................................................................................................................29

4.2.4 Wireless ............................................................................................................31

4.2.5 QoS....................................................................................................................42

4.2.6 NAT....................................................................................................................44

4.2.7 Firewall..............................................................................................................50

4.3 Status ........................................................................................................... 56

4.3.1 System Information .........................................................................................56

4.3.2 Internet Connection Status ............................................................................57

4.3.3 Device Status ...................................................................................................57

4.3.4 System Log ......................................................................................................58

4.3.5 Security Log .....................................................................................................59

4.3.6 Active DHCP Client .........................................................................................59

4.3.7 Statistics............................................................................................................61

4.4 Configuration Backup and Restore............................................................. 61

4.5 Firmware Upgrade ...................................................................................... 62

4.6 System Reset ............................................................................................... 63

Chapter 5 Glossary .................................................................................... 64

Chapter 1 Introduction

Micronet SP916N, 11n Wireless Broadband Router, delivers next generation wireless solution of high speed and cost-efficient network. It is compliant with IEEE 802.11 Draft-N and backward compatible with IEEE 802.11b/g. Best selection for small office where all computers and network devices can share Internet access through a single xDSL/cable modem. In addition, the scope of the network can be easily expanded by connecting the router to a hub or switch.

Prior to the installation of the device, please verify the following items are in the package: y

SP916N Wireless Broadband Router y

Quick Installation Guide y

High Internet Access throughput (Up to 300Mbps) y

Allow multiple users to share a single Internet line y

Supports up to 253 users y

Share a single Cable or xDSL Internet connection y

Access private LAN servers from the internet y

Four wired LAN ports (10/100M) and one WAN port (10/100M) y

Provides IEEE 802.11b/g/Draft-N wireless LAN capability y

Support DHCP (Server/Client) for easy IP-address setup y

Advanced network and security features like: Special Applications, DMZ, Virtual

Servers, Access Control, Firewall. y

Allow you to monitor the router’s status like: DHCP Client Log, System Log,

Security Log and Device/Connection Status

1

y

Easy to use Web-based GUI for network configuration and management purposes y

Remote management function allows configuration and upgrades from a remote computer (over the Internet) y

Auto MDI / MDI-X function for all wired Ethernet ports.

In order to keep the safety of users, please follow the following safety instructions: y

This router is designed for indoor use only. y

Do not put this router at or near hot or humid places. Also, do not leave this router in the car in summer. y

Do not pull any connected cable with force and disconnect it from the router first. y

If users want to place this router at high places, please make sure the router is firmly secured. Falling from high places would damage the router and its accessories, and in such cases, the warranty will be void. y

Accessories of this router, like antenna and power supply, are danger to small children under 3 years old. They may put the small parts in their nose or month and it could cause serious damage to them. y

The router will become hot when being used for long time (This is normal and is not a malfunction). Do not put this router on paper, cloth or other flammable materials. y

There’s no user-serviceable part inside the router. If users found the router is not working properly, please contact the authorized dealer of purchase. Do not disassemble the router, otherwise warranty will be void. y

If the router falls into water when it’s powered on, do not use hands to pick it up.

Switch the electrical power off before doing anything, or contact an experienced technician for help. y

If users smell something strange, or even see some smoke coming out from the router or power supply, remove the power supply or switch the electrical power off immediately, and call authorized for help.

2

y

Internet connection provided by xDSL or cable modem with a RJ-45 Ethernet port. y

Computer or network devices with wired or wireless network interface card. y

Web browsers (Microsoft Internet Explorer 4.0 or above, Netscape Navigator 4.7 or above, Opera web browser or Safari web browser). y

AC power socket (100 – 240V, 50/60Hz).

1.5 Specifications

Standards

Memory

Interface

z z z z

IEEE802.11b/ 802.11g / 802.11 Draft-N

Flash: 4MB

SDRAM: 16MB

WAN Port: 1 x Port 10/100Mbps UTP

LAN Ports: 4 x Port 10/100Mbps UTP

Antenna

3 x Fixed Antenna

MIMO Technology

2T3R MIMO Technology

Transmit Power

DHCP

16dBm ± 2dBm

DHCP Server & Client

Advance Features

z

DMZ z

Virtual Servers z z z

Access Control

Auto MDI/MDI-X for wired Ethernet ports

Supports QoS (WMM, WMM-PS and WMM-SA)

Security Features

z

WEP (64/128 bit) z

WPA, WPA2 and WPA Radius z z

Access Control List (MAC Addresses)

Firewall

Status Log

z

Management

Power

Humidity

Temperature

Dimension

z z z z

DHCP Client Log

System Log

Security Log

Device/Connection Status

Web-based Interface

12V DC, 1A Power Adapter

10-90% (Non-Condensing)

32~104 °F (0 ~ 40°C)

37 x 194 x 124 mm

3

Chapter 2 Physical Description

Parameter

LAN

Description

The Broadband router’s 4 LAN ports are where users can connect LAN’s PCs, printer servers, hubs and switches etc.

WAN

The WAN port is the segment connected to user’s xDSL or Cable modem and is linked to the Internet.

Reset

Press and hold <Reset/WPS> button for 20 seconds to clear all settings, and press the button for less than 20 seconds to start WPS function.

LED

PWR

WAN 10/100M

Light Status

ON

ON

OFF

Description

Router’s power supply is on

WAN port 100Mbps is connected

WAN port 10Mbps is connected

4

WAN LNK/ACT

LAN 10/100M

(Port 1-4)

LAN LNK/ACT

(Port 1-4)

WLAN

ON

OFF

Flashing

ON

OFF

ON

OFF

Flashing

ON

OFF

Flashing

WAN is connected

No WAN connection

WAN port has Activity (ACT) and data is being sent

LAN port speed is 100Mbps

LAN port speed is 10Mbps

LAN is connected

No LAN connection

LAN port has Activity (ACT) and data is being sent

Wireless LAN or WPS has been activated

Wireless LAN is disabled

Wireless LAN port has Activity (ACT) and data is being sent

5

Chapter 3 System and Network Setup

3.1 Build Network Connection

Please follow the following instruction to build the network connection between the new wireless router and other network computers and devices:

1. Connect the xDSL / cable modem to the WAN port of router by Ethernet cable.

2. Connect all computers, network devices (network-enabled consumer devices other than computers, like game console, or switch / hub) to the LAN port of the router.

3. Connect the power adapter to the wall socket, and then connect it to the ‘Power’ socket of the router.

6

4. Please check all LEDs on the front panel. ‘PWR’ LED should be steadily on, WAN and LAN LEDs should be on if the computer / network device connected to the respective port of the router is powered on and correctly connected. If PWD LED is not on, or any LED expected is not on, please recheck the cabling, or jump to

‘4-2 Troubleshooting’ for possible reasons and solution.

3.2 Connecting to Web-Based Management

After the network connection is established, the next step is to setup the router with proper network parameters for the user’s network environment.

Before connecting to the router and start configuration procedures, user’s computer must be able to get an IP address automatically (use dynamic IP address). If the PC is set to ‘static IP address’, then follow instructions below to reconfigure it to ‘dynamic IP address’.

3.2.1 IP Address Configuration a) Windows 95/98/Me

1. Click the Start button and select <Settings>, then click <Control Panel>. The

Control Panel window will appear.

2. Double-click on <Network> icon. The Network window will appear.

3. Check the list of Network Components. If TCP/IP is not installed, click the

<Add> button to install it. If TCP/IP is installed, go to step 6.

4. In the Network Component Type dialog box, select <Protocol> and click <Add> button.

5. In the Select Network Protocol dialog box, select <Microsoft> and <TCP/IP> then click the <OK> button to start installing the TCP/IP protocol. Windows CD may be needed to complete the installation.

6. After installing TCP/IP, go back to the Network dialog box. Select <TCP/IP> from the list of Network Components and then click the <Properties> button.

7. Check each of the tabs and verify the following settings:

7

y Bindings: Check Client for Microsoft Networks and File and printer sharing for Microsoft Networks. y Gateway: All fields are blank. y DNS Configuration: Select Disable DNS. y

WINS Configuration: Select Disable WINS Resolution. y IP Address: Select Obtain IP address automatically.

8. Reboot the PC. PC will now obtain an IP address automatically from the

Broadband Router’s DHCP server.

9. Please make sure that the Broadband router’s DHCP server is the only DHCP server available on the LAN network.

10. Proceed to Web-based User Interface once IP address is correctly configured.

b) Windows 2000

1. Click the <Start> button and select <Settings>, then click <Control Panel>.

The Control Panel window will appear.

2. Double-click <Network and Dial-up Connections> icon. In the Network and

Dial-up Connection window, double-click on <Local Area Connection> icon.

The Local Area Connection window will appear.

3. In the Local Area Connection window, click the <Properties> button.

4. Check the list of Network Components. Users should see Internet Protocol

[TCP/IP] on the list. Select it and click the <Properties> button.

8

5. In the Internet Protocol (TCP/IP) Properties window, select <Obtain an IP

address automatically> and <Obtain DNS server address automatically> as shown on the following screen.

6. Click <OK> to confirm the setting. The PC will now obtain an IP address automatically from the Broadband Router’s DHCP server.

7. Please make sure that the Broadband router’s DHCP server is the only DHCP server available on the LAN network.

8. Proceed to Web-based User Interface once IP address is correctly configured.

c) Windows XP

1. Click the <Start> button and select <Settings>, then click <Network

Connections>. The Network connections window will appear.

2. Double-click <Local Area Connection> icon. The Local Area Connection window will appear.

3. Check the list of Network Components. Users should see Internet Protocol

[TCP/IP] on the list. Select it and click the <Properties> button.

4. In the Internet Protocol (TCP/IP) Properties window, select <Obtain an IP

address automatically> and <Obtain DNS server address automatically> as shown on the following screen.

9

5. Click <OK> to confirm the setting. PC will now obtain an IP address automatically from the Broadband Router’s DHCP server.

6. Please make sure that the Broadband router’s DHCP server is the only DHCP server available on the LAN network.

d) Windows Vista

1. Click <Start> button, then click control panel. Click <View Network Status and

Tasks>, then click <Manage Network Connections>. Right-click <Local Area

Network>, then select <Properties>. Local Area Connection Properties window will appear, select <Internet Protocol Version 4 (TCP / IPv4)> and click

<Properties>.

10

2. Select <Obtain an IP address automatically> and <Obtain DNS server

address automatically>, then click <OK>.

11

3.2.2 Router’s IP Address

1. After the IP address setup is complete, please click <Start> then <Run> at the bottom lower corner of the desktop.

2. Enter ‘cmd’ command and click <OK>.

3. Input ‘ipconfig’, then press ‘Enter’ key. Please check the IP address followed by

‘Default Gateway’ (In this example, the IP address of router is 192.168.2.1, please note that this value may be different).

12

3.2.3 Starting Web-Based Management UI

1. After the computer has obtained an IP address from router, please start the web browser. Input the IP address of router in the address bar and the following message should appear:

2. Please input username and password in the field respectively. Default username is

‘admin’ and default password is ‘1234’, then press <OK> button. Once the login details are entered correctly, users can see the web management interface of this router.

13

14

Chapter 4 Web-Based Management UI

4.1 Quick Setup Wizard

The Quick Setup section is designed to get the broadband router running as quickly as possible. In the Quick Setup, users are required to fill in only the information necessary to access the Internet. Once user clicks on the <Quick Setup Wizard> in the HOME page, the following screen will appear.

Step 1: Time Zone

The Time Zone allows router to base its time on the settings configured in this section.

Parameter

Set Time Zone

Time Server Address

Enable Daylight

Savings

Description

Select the time zone for the country where the user resides.

The router will set its time based on user’s selection.

Users can manually assign time server address if the default time server is not functioning.

The router can also take Daylight savings into account. If users wish to use this function, tick the enable box to initiate daylight saving configuration.

Start Daylight Savings

Time

Select the period in which to start the daylight savings time.

End Daylight Savings

Time

Select the period in which to end the daylight savings time.

Click on <NEXT> to proceed to the next page: Broadband Type.

15

Step 2 Broadband Type

In this section users have to select one of four types of connections that it will be using to connect to broadband router WAN port to the ISP (see screen below). Different ISPs require different methods of connecting to the Internet, please check with the ISP as to the type of connection it requires.

Parameter

Cable Modem

Fixed-IP xDSL

PPPoE xDSL

PPTP xDSL

L2TP xDSL

Telstra Big Pond

Description

ISP will automatically provide an IP address.

ISP has given users an IP address already.

ISP requires using a Point-to-Point Protocol over Ethernet

(PPPoE) connection.

ISP requires using a Point-to-Point Tunneling Protocol

(PPTP) connection.

ISP requires using a Layer Two Tunneling Protocol (L2TP) connection.

This Protocol only used for Australia’s ISP connection.

Click on one of the WAN type and then proceed to the manual’s relevant sub-section.

Click on <Back> to return to the previous screen.

16

Step 2.1 Cable Modem

Choose Cable Modem if ISP will automatically provide an IP address. Some ISP’s may also require users fill in additional information such as Host Name and MAC address

(see screen below). The Host Name and MAC address section is optional and users can skip this section if the ISP does not require these settings for Internet connection.

Parameter

Host Name

MAC Address

Description

If the ISP requires a Host Name, type in the host name provided by the ISP, otherwise leave it blank.

ISP may require a particular MAC address in order for users to connect to the Internet. This MAC address is the PC’s MAC address that the ISP had originally used to connect to the

Internet. Type in this MAC address in this section or use the

“Clone MAC Address” button to replace the WAN MAC address with the MAC address of that PC.

Click <OK> to complete the Quick Setup Wizard and start using the broadband router.

Step 2.2 Fixed-IP xDSL

Select Fixed-IP xDSL if the ISP has given user a specific IP address. The ISP should provide all the information required in this section.

17

Parameter

IP

Gateway IP

DNS

Subnet Mask

Description

IP address provided by ISP.

ISP’s IP address gateway.

ISP’s DNS server IP address.

Enter the Subnet Mask provided by the ISP (e.g. 255.255.255.0).

Click <OK> to complete the Quick Setup Wizard and start using the broadband router.

Step 2.3 PPPoE xDSL

Select PPPoE if the ISP requires the PPPoE protocol to connect to the Internet. The

ISP should provide all the information required in this section.

Parameter

Username

Password

Service Name

MTU

Description

Enter the username provided by the ISP for the PPPoE connection.

Enter the password provided by the ISP for the PPPoE connection.

This is optional. Enter the Service name should the ISP requires it, otherwise leave it blank.

This is optional. Users can specify the maximum size of the transmission packet to the Internet. Leave it blank if users do not wish to set a maximum packet size.

18

Connection Type

Idle Time

z z z z

If you select “Continuous”, the router will always connect to the ISP. If the WAN line breaks down and links again, the routers will auto-reconnect to the ISP.

If users select “Connect on Demand”, the router will autoconnect to the ISP when someone wants to use the Internet and keep connected until the WAN idle timeout. The router will close the WAN connection if the idle time period exceeds the “Idle Time”.

If users select “Manual”, the router will connect to ISP only when click “Connect” manually from the Web user interface.

The WAN connection will not disconnect due to the idle timeout. If the WAN line breaks down and links again, the router will not auto-connect to the ISP.

Users can specify an idle time threshold (minutes) for the

WAN port. This means if no packets have been sent during the specified period, the router will automatically disconnect the connection with the ISP.

Click <OK> to complete the Quick Setup Wizard and start using the broadband router.

Step 2.4 PPTP xDSL

Select PPTP if the ISP requires the PPTP protocol to connect to the Internet. The ISP should provide all the information required in this section.

19

Parameter

Obtain an IP address

Automatically

Use the following IP address

IP Address

Subnet Mask

Default Gateway

User ID

Password

PPTP Gateway

Connection ID

MTU

BEZEQ-ISRAEL

Connection Type

Idle Time

Description

The ISP requires user to obtain an IP address by DHCP before connecting to the PPTP server.

The ISP gives user a static IP to be used to connect to the PPTP server.

This is the IP address that the ISP has given to user to establish a PPTP connection.

Enter the Subnet Mask provided by the ISP (e.g. 255.255.255.0).

Enter the IP address of the ISP Gateway

Enter the Username provided by the ISP for the PPTP connection. Sometimes called a Connection ID.

Enter the Password provided by the ISP for the PPTP connection.

If the LAN has a PPTP gateway, then enter that PPTP gateway

IP address here. If users do not have a PPTP gateway then enter the ISP’s Gateway IP address above.

This is the ID given by ISP. This is optional.

This is optional. Users can specify the maximum size of the transmission packet to the Internet. Leave it blank if users do not wish to set a maximum packet size.

Select this item if users are using the service provided by

BEZEQ in Israel. z z z z z

If you select “Continuous”, the router will always connect to the ISP. If the WAN line breaks down and links again, the routers will auto-reconnect to the ISP.

If users select “Connect on Demand”, the router will autoconnect to the ISP when someone wants to use the Internet and keep connected until the WAN idle timeout. The router will close the WAN connection if the idle time period exceeds the “Idle Time”.

If users select “Manual”, the router will connect to ISP only when click “Connect” manually from the Web user interface.

The WAN connection will not disconnect due to the idle timeout. If the WAN line breaks down and links again, the router will not auto-connect to the ISP.

Users can specify an idle time threshold (minutes) for the

WAN port. This means if no packets have been sent during the specified period, the router will automatically disconnect the connection with the ISP.

This “idle timeout” function may not work due to abnormal activities of some network application software, computer virus or hacker attacks from the Internet.

Click <OK> to complete the Quick Setup Wizard and start using the broadband router.

20

Step 2.5 L2TP

Select L2TP if the ISP requires the L2TP protocol to connect to the Internet. The ISP should provide all the information required in this section.

Parameter

Obtain an IP address

Automatically

MAC Address

Use the following IP address

IP Address

Subnet Mask

Gateway

User ID

Password

L2TP Gateway

MTU

Description

The ISP requires user to obtain an IP address by DHCP before connecting to the L2TP server.

The ISP may require a particular MAC address in order for users to connect to the Internet. Type in this MAC address in this section or use the "Clone MAC Address" button to replace the

WAN MAC address with the MAC address of that PC.

The ISP gives user a static IP to be used to connect to the L2TP server.

This is the IP address that the ISP has given to users to establish a L2TP connection.

Enter the Subnet Mask provided by the ISP (e.g. 255.255.255.0).

Enter the IP address of the ISP Gateway

Enter the Username provided by the ISP for the L2TP connection. Sometimes called a Connection ID.

Enter the Password provided by the ISP for the L2TP connection.

If the LAN has a L2TP gateway, then enter that L2TP gateway IP address here. If users do not have a L2TP gateway then enter the ISP’s Gateway IP address above.

This is optional. Users can specify the maximum size of the transmission packet to the Internet. Leave it blank if users do not wish to set a maximum packet size.

21

Connection Type

Idle Time

z z z z z

If you select “Continuous”, the router will always connect to the ISP. If the WAN line breaks down and links again, the routers will auto-reconnect to the ISP.

If users select “Connect on Demand”, the router will autoconnect to the ISP when someone wants to use the Internet and keep connected until the WAN idle timeout. The router will close the WAN connection if the idle time period exceeds the “Idle Time”.

If users select “Manual”, the router will connect to ISP only when click “Connect” manually from the Web user interface.

The WAN connection will not disconnect due to the idle timeout. If the WAN line breaks down and links again, the router will not auto-connect to the ISP.

Users can specify an idle time threshold (minutes) for the

WAN port. This means if no packets have been sent during the specified period, the router will automatically disconnect the connection with the ISP.

This “idle timeout” function may not work due to abnormal activities of some network application software, computer virus or hacker attacks from the Internet.

Click <OK> to complete the Quick Setup Wizard and start using the broadband router.

Step 2.6 Telstra Big Pond

Select Telstra Big Pond if the ISP requires the Telstra Big Pond protocol to connect to the Internet. The ISP should provide all the information required in this section. Telstra

Big Pond protocol is used by the ISP in Australia.

Parameter

Username

Password

User Decide Login

Server Manually

Login Server

Description

Enter the username provided by the ISP for the Telstra Big Pond connection.

Enter the password provided by the ISP for the Telstra Big Pond connection.

Select if users want to assign the IP of Telstra Big Pond’s login server manually.

The IP address of the login server.

Click <OK> to complete the Quick Setup Wizard and start using the broadband router.

22

In this chapter, the user will know how to change the time zone, password, and remote management settings. Please start the web browser and log onto router web management interface, then click ‘General Setup’ button on the left, or click ‘General

Setup’ link at the upper-right corner of web management interface.

4.2.1 System

This section allows user to set the following system configuration: Time Zone,

Password and Remote Management Administrator.

4.2.1.1 Time zone and Time Auto-synchronization

Please click ‘System’ menu on the left of web management interface, then click ‘Time

Zone’, and the following message will be displayed on the web browser: Please select time zone at ‘Set time zone’ drop-down list, and input the IP address or host name of time server. If users want to enable daylight savings setting, please check ‘Enable

Function’ box, and set the duration of daylight setting.

23

4.2.1.2 Password Setting

Default password of this router is ‘1234’, and it’s displayed on the login prompt when accessed from web browser. There’s a security risk if users don’t change the default password, since everyone can see it. This is very important when the wireless function is enabled. Please click ‘System’ menu on the left of web management interface, then click ‘Password Settings’. The following message will be displayed on your web browser:

24

Parameter

Current Password

New Password

Confirmed Password

Description

Enter user’s current password for the remote management administrator to login to your Broadband router.

Default: no password

Enter the new password.

Enter the new password again for verification purposes. If users forget the password, it will be necessary to reset the router to the factory default (No password) with the reset button (see router’s back panel).

Click <Apply> at the bottom of the screen to save the above configurations.

4.2.1.3 Remote Management

This router does not allow management access from Internet, to prevent possible security risks (especially when users defined a weak password, or didn’t change default password). However, users can still manage this router from a specific IP address by enabling the ‘Remote Management’.

25

Parameter

Host

Address

z z z

Description

This is the IP address of the host in the Internet that will have management/configuration access to the Broadband router from a remote site. This means if users are at home and the home IP address has been designated the Remote Management host IP address for this router (located in your company office), then it will be able to configure this router remotely.

If the Host Address is left 0.0.0.0, it would mean anyone can access the router’s web-based configuration from a remote location, provided password is known.

When users want to access the web-based management from a remote site, it is necessary to enter the router’s WAN IP address (e.g. 10.0.0.1) into your web-browser followed by port number 8080 (e.g. 10.0.0.1:8080). Users also need to know the password set in the Password Setting screen in order to access the router’s web-based management.

Click <Apply> at the bottom of the screen to save the above configurations.

4.2.2 WAN

Internet connections setup can be setup by using ‘Quick Setup’ menu described in chapter 4.1. However, users can setup WAN connections up by using WAN configuration menu. Users can also set advanced functions like DDNS (Dynamic DNS) via this interface.

26

Parameter Description

ISP will automatically give user an IP address.

Dynamic IP address

Follow section 4.1 “Cable Modem” for detail information.

ISP has given user an IP address already.

Static IP address

Follow section 4.1 “Fixed IP” for detail information.

ISP requires using a Point-to-Point Protocol over Ethernet

(PPPoE) connection.

PPPoE

Follow section 4.1 “PPPoE” for detail information.

ISP requires using a Point-to-Point Tunneling Protocol

(PPTP) connection.

PPTP

L2TP

Follow section 4.1 “PPTP” for detail information.

ISP requires using a Layer Two Tunneling Protocol (L2TP) connection.

This Protocol only used for Australia’s ISP connection.

Telstra Big Pond

DNS

DDNS

Follow section 4.1 “Telstra Big Pond” for detail information.

Users can specify a DNS server.

Users can specify a DDNS server and configure the username and password provided by the DDNS service provider.

Click <More Configuration> at the bottom of the screen and proceed to the manual’s relevant sub-section.

4.2.2.1 DNS

A Domain Name System (DNS) server is like an index of IP addresses and Web addresses. If users type a Web address into the browser, such as www.router.com, a

DNS server will find that name in its index and the matching IP address. Most ISPs provide a DNS server for speed and convenience. If the Service Provider connects the user to the Internet with dynamic IP settings, it is likely that the DNS server IP address is provided automatically. However, if there is a DNS server that the user would rather use, it is necessary to specify the IP address of that DNS server in this section.

27

Parameter

Domain Name Server

(DNS) Server

Secondary DNS

Address (optional)

Description

This is the DNS server IP address provided by ISP. Users can specify preferred DNS server IP address.

This is optional. Users can enter another DNS server’s IP address as a backup. The secondary DNS will be used should the primary DNS fail.

Click <Apply> at the bottom of the screen to save the above configurations.

4.2.2.2 DDNS

DDNS allows user to map the static domain name to a dynamic IP address. Users must get an account, password and static domain name from the DDNS service providers. This router supports DynDNS, TZO and other common DDNS service providers.

28

Parameter

Enable/Disable

Provider

Domain name

Account/E-mail

Password/Key

Description

Enable or Disable the DDNS function of this router.

Select a DDNS service provider.

User’s static domain name that use DDNS.

The account that the DDNS service provider assigned to user.

The password set for the DDNS service account above.

Click <Apply> at the bottom of the screen to save the above configurations.

4.2.3 LAN

Before all computers using wired Ethernet connection (i.e. those computers connect to this router’s LAN port 1 to 4 by Ethernet cable) can communicate with each other and access internet, they must have a valid IP address. There are two ways to assign IP addresses to computers: static IP address (set the IP address for every computer manually), and dynamic IP address (IP address of computers will be assigned by router automatically). It’s recommended for most of computers to use dynamic IP address, since it will save a lot of time on setting IP addresses. DHCP settings are only available when ‘DHCP Server’ in ‘LAN IP’ section is ‘Enabled’.

Parameter

IP address

IP Subnet Mask

Description

This is the router’s LAN port IP address (LAN clients default gateway IP address).

Specify a Subnet Mask for the LAN segment.

29

802.1d Spanning Tree

DHCP Server

Lease Time

IP Address Pool

Domain Name

If 802.1d Spanning Tree function is enabled, this router will use the spanning tree protocol to prevent from network loop happening in the LAN ports.

Users can enable or disable the DHCP server. By enabling the DHCP server, the router will automatically give

LAN clients an IP address. If the DHCP is not enabled then users will have to manually set the LAN client’s IP addresses.

Make sure the LAN Client is in the same subnet as this broadband router for the router to be the LAN client’s default gateway.

The DHCP when enabled will temporarily give the LAN clients an IP address. In the Lease Time setting, users can specify the time period that the DHCP lends an IP address to the LAN clients. The DHCP will change the LAN client’s IP address when this time threshold period is reached.

Users can select a particular IP address range for the DHCP server to issue IP addresses to LAN Clients.

Users can specify a Domain Name for the LAN network.

Click <Apply> at the bottom of the screen to save the above configurations.

4.2.3.1 Static DHCP Leases Table

This function allows user to assign a static IP address to a specific computer so that it is not necessary to set the IP address for a computer, and still enjoy the benefit of using DHCP server. Maximum 16 static IP addresses can be assigned here.

Parameter

Enable Static DHCP

Leases

MAC Address

IP address

Description

Check this box to enable this function.

Input the MAC address of the computer or network device.

Input the IP address to assign to this computer or network device.

Click <Add> to enter the entry into the table, otherwise click on <Clear> to remove all characters.

30

4.2.4 Wireless

Wireless Broadband Router builds a wireless LAN and can let all PCs equipped with

IEEE 802.11b or 801.11g wireless network adaptor connect to the Intranet and Internet.

It supports WEP and WPA2 encryption to enhance the security of the wireless network.

Parameter

Enable or Disable Wireless

Module Function

Description

Users can select to enable or disable the wireless connection of this device.

Click <Apply> at the bottom of the screen to save the above configurations.

4.2.4.1 Basic Wireless Setting

Please click ‘Wireless’ menu on the left of web management interface, then click ‘Basic

Settings’, and the following message will be displayed on the web browser.

31

Mode: AP

Mode: AP Bridge-Point to Point

Mode: AP Bridge-Point to Multi-Point

32

Mode: AP Bridge-WDS

Mode

Band

Parameter

ESSID

Channel Number

MAC address

Set Security

Description

It allows user to set the following mode: AP, Station, Bridge or

WDS mode.

It allows user to set the AP to be fixed at 802.11b, 802.11g or

802.11n mode. Users also can select B+G+N mode to allow the router to select among 802.11b, 802.11g and 802.11n connection automatically.

This is the name of the wireless LAN. All the devices in the same wireless LAN should have the same ESSID.

The channel used by the wireless LAN. All devices in the same wireless LAN should use the same channel.

If users want to bridge more than one network together with wireless LAN, it is necessary to set this access point in the following modes: “AP Bridge-Point to Point mode”, “AP

Bridge-Point to Multi-Point mode” or “AP Bridge-WDS mode”.

Users have to enter the MAC addresses of other access points that join the bridging work.

Click the <Set Security> button for “Security Settings” window to pop up. Users can set the security parameters used to bridge access points together when the AP is in AP

Bridge modes.

Click <Apply> at the bottom of the screen to save the above configurations.

33

4.2.4.2 Advanced Wireless Settings

This router provides some advanced control of wireless parameters. If users want to configure these settings, please click <Wireless> menu on the left of web management interface, and then click <Advanced Settings>. The following message will be displayed on the web browser.

Parameter

Fragment Threshold

RTS Threshold

Beacon Interval

Description

"Fragment Threshold" specifies the maximum size of packet during the fragmentation of data to be transmitted. If users set this value too low, it will result in bad performance.

Default: 2346.

When the packet size is smaller the RTS threshold, the wireless router will not use the RTS/CTS mechanism to send this packet.

Default: 2347.

The interval of time that this wireless router broadcast a beacon. Beacon is used to synchronize the wireless network.

Default: 100.

34

DTIM Period

Data Rate

N Data Rate

Preamble Type

Broadcast ESSID

CTS Protect

Tx Power

Turbo Mode

WMM

Set the DTIM period of wireless radio.

Default: 3.

The “Data Rate” is the rate this access point uses to transmit data packets. The access point will use the highest possible selected transmission rate to transmit the data packets.

Same parameter as above but for 802.11n clients.

The “Long Preamble” can provide better wireless LAN compatibility, while the “Short Preamble” can provide better wireless LAN performance.

If “Broadcast ESSID” is enabled, every wireless station located within the coverage of this access point can discover this access point easily. If users are building a public wireless network, enabling this feature is recommended. Disabling

“Broadcast ESSID” can provide better security.

Enabling this setting will reduce the chance of radio signal collisions between 802.11b and 802.11g wireless access points. It’s recommended to set this option to ‘Auto’ or

‘Always’.

Users can set the output power of wireless radio. Unless the user is using this wireless router in a really big space, it is not necessary to set output power to 100%.

Enhance the data transfer rate of LAN (up to 35Mbps, only for

11g).

Default: ‘Enabled’.

WMM is short for Wi-Fi Multimedia which will enhance the data transfer performance of multimedia contents when transferred over wireless network.

Default: ‘Disabled’.

Click <Apply> at the bottom of the screen to save the above configurations.

35

4.2.4.3 Wireless Security

To set wireless security settings, please click <Wireless> menu on the left of web management interface and then click <Security Settings>. Follow the following instructions to set wireless security settings.

WEP Only

Parameter

Key Length

Key Format

Default Key

Description

Users can select the WEP key length for encryption, 64-bit or

128-bit. Larger WEP key length will provide higher level of security, but the throughput will be lower.

Default: 64-bit

There are two types of key format: ASCII and Hex. When users select a key format, the number of characters of key will be displayed. For example, if users select ’64-bit’ as key length, and ‘Hex’ as key format, the message at the right of

‘Key Format’ is ‘Hex (10 characters), which means the length of WEP key is 10 characters.

Select one of the four keys to encrypt the data. Only the key selected in the "Default key" will take effect.

The WEP keys are used to encrypt data transmitted in the wireless network. Fill the text box by following the rules below.

Key 1 - Key 4

z z

64-bit WEP: input 10-digit Hex values (in the "A-F", "a-f" and "0-9" range) or 5-digit ASCII character as the encryption keys.

128-bit WEP: input 26-digit Hex values (in the "A-F", "a-f" and "0-9" range) or 13-digit ASCII characters as the encryption keys.

Click <Apply> at the bottom of the screen to save the above configurations.

36

802.1x only

IEEE 802.1x is an authentication protocol and every user must use a valid account to login before accessing the wireless LAN. The authentication is processed by a RADIUS server. This mode only authenticates user by IEEE 802.1x, but it does not encrypt the data during communication.

Parameter Description

RADIUS Server IP address

The IP address of external RADIUS server.

RADIUS Server Port

The service port of the external RADIUS server.

RADIUS Server

Password

The password used by external RADIUS server.

Click <Apply> at the bottom of the screen to save the above configurations.

802.1x WEP Static key

IEEE 802.1x is an authentication protocol and every user must use a valid account to login before accessing the wireless LAN. The authentication is processed by a RADIUS server. This mode also uses WEP to encrypt the data during communication.

37

Refer to relevant sections for WEP and 802.1x configurations.

WPA Pre-shared key

Wi-Fi Protected Access (WPA) is an advanced security standard. Users can use a preshared key to authenticate wireless stations and encrypt data during communication. It uses TKIP or CCMP (AES) to change the encryption key frequently. So the encryption key is not easy to be broken by hackers.

Parameter

WPA(TKIP)

WPA2(AES)

WPA2 Mixed

Description

TKIP can change the encryption key frequently to enhance the wireless LAN security.

This use CCMP protocol to change encryption key frequently.

AES can provide high level encryption to enhance the wireless LAN security.

This will use TKIP or AES based on the other communication peer automatically.

38

Users may select to a pass phrase (alphanumeric format) or

Hexadecimal Digits (in the “A-F”, “a-f” and “0-9” range) to be the Pre-shared Key.

Pre-shared Key

Format

For example:

Pass phrase: iamguest

Hexadecimal Digits: 12345abcde

The Pre-shared key is used to authenticate and encrypt data transmitted in the wireless network. Fill in the text box by following the rules below.

Pre-shared Key

Hex WEP: input 64-digit

Hex values (in the “A-F”, “a-f” and “0-9” range) or at least 8 character pass phrase as the pre-shared keys.

Click <Apply> at the bottom of the screen to save the above configurations.

WPA Radius

Wi-Fi Protected Access (WPA) is an advanced security standard. Users can use an external RADIUS server to authenticate wireless stations and provide the session key to encrypt data during communication. It uses TKIP or CCMP (AES) to change the encryption key frequently.

Parameter

WPA(TKIP)

WPA2(AES)

WPA2 Mixed

RADIUS Server IP address

RADIUS Server Port

RADIUS Server

Password

Description

TKIP can change the encryption key frequently to enhance the wireless LAN security.

This use CCMP protocol to change encryption key frequently.

AES can provide high level encryption to enhance the wireless LAN security.

This will use TKIP or AES based on the other communication peer automatically.

The IP address of external RADIUS server.

The service port of the external RADIUS server

Default: 1812.

The password used by external RADIUS server.

Click <Apply> at the bottom of the screen to save the above configurations.

39

4.2.4.4 Wireless Access Control

This wireless router provides MAC Address Control, which prevents the unauthorized

MAC addresses from accessing the wireless network.

Parameter Description

Enable wireless access control

Allow enabling of access control for wireless connection.

Add MAC address into the list

Remove MAC address from the list

Fill in the "MAC Address" and "Comment" of the wireless station to be added. Click <Add> to for this wireless station to be added into the "Current Access Control List". Click

<Clear> for both "MAC Address" and "Comment" fields to be cleared.

If users want to remove a MAC address from the "Current

Access Control List ", select the MAC addresses to be deleted and click <Delete Selected>. Click <Delete All> button to remove all MAC addresses. Click <Reset> will clear current selections.

Click <Apply> at the bottom of the screen to save the above configurations.

40

4.2.4.5 WPS

Wi-Fi Protected Setup (WPS) is the simplest way to build connection between wireless network clients and the wireless router. Users don’t have to select encryption mode and input a long encryption passphrase every time setting up a wireless client. This wireless router supports two types of WPS: Push-Button Configuration (PBC) and PIN code. If users want to use PBC, it is necessary to push a specific button on the wireless client to start WPS mode, and switch this wireless router to WPS mode too. You can push Reset/WPS button of this wireless router, or click ‘Start PBC’ button in the web configuration interface. If users want to use PIN code, it is necessary to know the PIN code of wireless client and switch it to WPS mode, then provide the PIN code of the wireless client to connect to this wireless router. The detailed instructions are listed follow:

Please click <Wireless> menu on the left of web management interface and click

‘WPS’. The following message will be displayed on the web browser.

41

Parameter

Enable WPS

WPS Status

Self PIN code

SSID

Authentication Mode

Configure via Push

Button

Configure via Client

Pin Code

Description

Check this box to enable WPS function, uncheck it to disable

WPS.

If the wireless security (encryption) function of this wireless router is properly set, users will see ‘Configured’ message.

This is the WPS PIN code of this wireless router. This code is useful when users need to build wireless connection by WPS with other WPS-enabled wireless devices.

The SSID of this wireless router will be displayed here.

The wireless security authentication mode of this wireless router will be displayed here.

Click <Start PBC> to start Push-Button style WPS via Push

Button setup procedure. This wireless router will wait for WPS requests from wireless clients for 2 minutes. The ‘WLAN’ LED on the wireless router will be steady on when this wireless router is waiting for incoming WPS request.

Please input the PIN code of the wireless client you wish to connect, and click <Start PIN> button. The ‘WLAN’ led on the wireless router will be steady on when this wireless router is waiting for incoming WPS request.

4.2.5 QoS

Quality of service provides an efficient way for computers on the network to share the

Internet bandwidth with a promised quality of internet service. Without QoS, all computers and devices on the network will compete with each other to get Internet bandwidth, and some applications which require guaranteed bandwidth (like video streaming and network telephone) will be affected. Therefore an unpleasing result will occur, like the interruption of video / audio transfer.

42

Parameter

Enable/Disable QoS

Add a QoS rule into the table

Remove QoS rules from the table

Edit a QoS rule

Adjust QoS rule priority

Description

Allow enable or disable of QoS function.

Click <Add> to enter the form page for the QoS rule. Click

<Apply> after filling out the form and the rule will be added into the table.

If users want to remove a QoS rules from the table, select the

QoS rules and click <Delete Selected>. To remove all QoS rules from the table, click <Delete All> button. Click <Reset> will clear the current selections.

Select the rule to edit and click <Edit>, then it will enter the detail form of the QoS rule. Click <Apply> after editing the form and the rule will be saved.

Users can select the rule and click <Move Up> to make the priority higher. Select the rule and click <Move Down> to make the priority lower.

4.2.5.1 Edit QoS Rule

Users can assign packet classification criteria by its local IP range, remote IP range, traffic type, protocol, local port range and remote port range parameters. The parameters that users leave as blank will be ignored. The priority of this rule will be applied to packets that match classification criteria of this rule. It can limit bandwidth consumed by packets that match this rule or guarantee bandwidth required by packets that match this rule.

43

Parameter

Rule Name

Bandwidth

Local IP Address

Local Port Range

Remote IP Address

Remote Port Range

Traffic Type

Protocol

Save

Reset

Description

The name of this rule.

Users can assign the download or upload bandwidth in the unit of Kbps (1024 bit per second). It can limit the maximum bandwidth consumed by this rule by selecting “Maximum”.

Reserve enough bandwidth for this rule by selecting

“Guarantee”.

Enter the local IP address range of the packets that this rule will apply. If users assign 192.168.2.3 – 192.168.2.5, it would mean 3 IP addresses: 192.168.2.3, 192.168.2.4 and

192.168.2.5.

Enter the local port range of the packets that this rule will apply. Users can assign a single port number here or assign a range of port numbers by assigning the first port number and the last port number of the range. The two numbers are separated by a dash “-“, for example “100-150” means from port number 100 to port number 150 – the range of 50 port numbers.

Enter the remote IP address range of the packets that this rule will apply. If users assign 192.168.2.3 – 192.168.2.5, it means 3 IP addresses: 192.168.2.3, 192.168.2.4 and

192.168.2.5.

Enter the remote port range of the packets that this rule will apply. Users can assign a single port number here or assign a range of port numbers by assigning the first port number and the last port number of the range. The two numbers are separated by a dash “-“, for example “101-150” means from port number 100 to port number 150 – the range of 50 port numbers.

Select the traffic type of the packets that this rule will apply.

List of some popular applications is already available for easing the configuration. Users also can get the same result by using other parameters.

Select the protocol type of the packets that this rule will apply.

Save and exit the form.

Clear the content of this form.

Click <Save> at the bottom of the screen to save the above configurations.

4.2.6 NAT

Network address translations solve the problem of sharing a single IP address to multiple computers. Without NAT, all computers must be assigned with a valid Internet

IP address to connect to Internet. Therefore it’s necessary to use NAT technology to share a single Internet IP address to multiple computers on local network, so everyone can connect to Internet.

44

4.2.6.1 Port Forwarding

This function allows user to redirect a single port or consecutive ports of Internet IP address to the same port of the IP address on local network. The port number(s) of

Internet IP address and private IP address (the IP address on local network) must be the same. If the port number of Internet IP address and private IP address is different, please use ‘Virtual Server’ function, described in next section.

45

Type

Port Range

Comment table

Parameter

Enable Port

Forwarding

Private IP

Add Port Forwarding into the table

Remove Port

Forwarding into the

Description

Allow port forwarding to be enabled.

This is the private IP of the server behind the NAT firewall.

Users will need to give the LAN PC clients a fixed/static IP address for Port Forwarding to work properly.

This is the protocol type to be forwarded. Users can choose to forward “TCP” or “UDP” packets only or select “both” to forward both “TCP” and “UDP” packets.

The range of ports to be forward to the private IP.

The description of this setting.

Fill in the "Private IP", “Type”, “Port Range” and "Comment" of the setting and click <Add>. This Port Forwarding setting will be added into the "Current Port Forwarding Table". Click

<Reset> and the fields will be cleared.

If users want to remove some Port Forwarding settings from the "Current Port Forwarding Table", select the Port

Forwarding setting and click <Delete Selected>. Click

<Delete All> button to remove all settings. Click <Reset> to clear the current selection.

Click <Apply> at the bottom of the screen to save the above configurations.

4.2.6.2 Virtual Server

This function allows user to redirect a port on Internet IP address (on WAN port) to a specified port of an IP address on local network, so it can setup an Internet service on the computer on local network, without exposing it on Internet directly. Users can also build many sets of port redirection to provide many different Internet services on different local computers via a single Internet IP address.

46

Parameter Description

Enable Virtual Server

Allow Virtual Server to be enabled.

Private IP

Private Port

Type

Public Port

This is the LAN client/host IP address that the Public Port number packet will be sent. Users need to give the LAN PC clients a fixed/static IP address for Virtual Server to work properly.

This is the port number (of the above Private IP host) that the below Public Port number will be changed to when the packet enters the LAN (to the LAN Server/Client IP).

Select the port number protocol type (TCP, UDP or both). If users are unsure, then leave it to default.

Enter the service (service/Internet application) port number from the Internet that will be redirected to the above Private

IP address host in the LAN. Virtual Server function will have priority over the DMZ function if there is a conflict between the Virtual Server and the DMZ settings.

Comment

The description of this setting.

Add Virtual Server

Remove Virtual Server

Fill in the "Private IP", "Private Port", "Type", “Public Port” and

"Comment" of the setting to be added and click <Add>. Then this Virtual Server setting will be added into the "Current

Virtual Server Table". Click <Reset> and the fields will be cleared.

If users want to remove some Virtual Server settings from the

"Current Virtual Server Table", select the Virtual Server setting and click <Delete Selected>. Click <Delete All> button to remove all settings. Click <Reset> to clear the current selection.

Click <Apply> at the bottom of the screen to save the above configurations.

4.2.6.3 Port Mapping for Special Applications

Some applications require more than one connection a time and won’t work with simple

NAT rules. In order to make these applications work, users can use this function to let these applications operate properly.

47

I

4.2.6.4 UPnP Setting

This function enables network auto-configuration for peer-to-peer communications.

Network devices will be able to communicate with other devices directly, and learn information about other devices. Many network device and applications rely on UPnP function nowadays.

48

Parameter

UPnP Feature

Description

Users can enable or disable the UPnP feature. Enable the

UPnP feature, all client systems that support UPnP, like

Windows XP, can discover this router automatically and access the Internet through this router without any configuration. The NAT Traversal function provided by UPnP can let applications that support UPnP smoothly connect to

Internet sites without any incompatibility problem due to the

NAPT port translation.

Click <Apply> at the bottom of the screen to save the above configurations.

4.2.6.5 ALG Settings

Users can select applications that need “Application Layer Gateway” support.

Parameter

Enable

Description

Users can enable “Application Layer Gateway”, and the router will let that application correctly pass though the NAT gateway.

Click <Apply> at the bottom of the screen to save the above configurations.

49

4.2.7 Firewall

Besides NAT, this router also provides firewall function to block malicious intruders from accessing computers on local network. These functions include inbound attack prevention, and block outbound traffics, like block URLs which have pre-defined keywords.

Parameter

Access Control

URL Blocking

DoS

DMZ

Description

Access Control allows user to specify which hosts that the users can or cannot have access to certain Internet applications.

URL Blocking allows user to specify which URLs cannot be accessed by users.

The Broadband router's firewall can block common hacker attacks and can log the attack activities.

The DMZ function allows user to redirect all packets going to the WAN port IP address to a particular IP address in your

LAN.

4.2.7.1 Access Control

Restrict users from accessing certain Internet applications/services via this interface

(e.g. Internet websites, email, FTP etc.). Access Control allows users to define the traffic type permitted in the LAN. Users can control which PC client have access to these services.

50

Parameter

Filter client PC by

MAC address

Description

Deny

Allow

If select <Deny> then all PCs will be allowed to access

Internet besides the PCs in the list below.

If select <Allow> then all PCs will be denied to access

Internet except for the PCs in the list below.

Filter client PCs by IP

Fill in “IP Filtering Table” to filter PC clients by IP.

Add PC

Remove PC

Users can click <Add> PC to add an access control rule for users by IP addresses.

If users want to remove some PC from the "IP Filtering

Table", select the PC and click <Delete Selected>. Click

<Delete All>" button to remove all PCs from the list.

Check <Enable MAC Filtering> to enable MAC Filtering.

Add PC

Remove PC

Fill in “Client PC MAC Address” and “Comment” of the PC that is allowed to access the Internet and click <Add>. Click

<Reset> to clear the all fields.

If users want to remove some PC from the "MAC Filtering

Table", select the PC and click <Delete Selected>. Click

<Delete All> button to remove all PCs from the table. Click

<Reset> to clear all selections.

51

Access Control – Add PC

After button is clicked, the following message will be displayed on the web browser.

Parameter Description

Client PC Description

The description for this client PC rule.

Client PC IP

Addresses

Client PC Service

Protocol

Port Range

Enter the IP address range to apply this Access Control rule.

Users need to give the LAN PC clients a fixed/static IP address for the Access Control rule to work properly.

Users can block the clients from accessing some Internet services by checking the services to block.

This allows users to select UDP, TCP or both protocol types to block.

It can be assign up to five port ranges. The router will block clients from accessing Internet services that use these ports.

Add

Reset

Click <Add> to save the setting.

Click <Reset> to clear all fields.

Click <Apply> at the bottom of the screen to save the above configurations.

4.2.7.2 URL Blocking

Users can block access to some websites from particular PCs by entering a full URL address or just keyword of the Web site.

52

Parameter Description

Enable URL Blocking

Allow URL Blocking to be enabled.

Add URL Keyword

Remove URL Keyword

Fill in “URL/Keyword” and then click <Add>. Users can enter the full URL address or the keyword of the web site to be blocked. Click <Reset> to clear all fields.

If users want to remove a URL keyword from the "Current

URL Blocking Table", select the URL keyword to remove and click <Delete Selected>. Click <Delete All> button to remove all entries. To clear the selection, just click <Reset>.

4.2.7.3 DoS Attack Prevention

The Broadband router's firewall can block common hacker attacks, including Denial of

Service, Ping of Death, Port Scan and Sync Flood. When Internet attacks occur, the router can log the events.

53

Parameter

Ping of Death

Discard Ping From

WAN

Port Scan

Sync Flood

Advanced Settings

Description

Protections from Ping of Death attack.

The router’s WAN port will not respond to any Ping requests.

Protect the router from port scan.

Protect the router from Sync Flood attack.

Click on this button to enter the setup of advanced settings for the DoS method.

DoS – Advanced Settings

When users click <Advanced Settings> button in DoS menu, the following message will be displayed on the web browser.

Parameter

Ping of Death

Discard Ping From

WAN

Port Scan

Sync Flood

Description

Set the threshold of when this DoS prevention mechanism will be activated. Please check the box of Ping of Death, and input the frequency of threshold (how many packets per second, minute, or hour). Users can also input the ‘Burst’ value, which means when this number of ‘Ping of Death’ packet is received in very short time, this DoS prevention mechanism will be activated.

Check the box to activate this DoS prevention mechanism.

Many kind of port scan methods are listed here, please check one or more DoS attack methods to activate.

Like Ping of Death, users can set the threshold of when this

DoS prevention mechanism will be activated.

54

4.2.7.4 Demilitarized Zone (DMZ)

If users have a local client PC that cannot run an Internet application (e.g. Games) properly from behind the NAT firewall, the router can open the client to an unrestricted two-way Internet access by defining a DMZ Host. The DMZ function allows re-direct of all packets going to the WAN port IP address to a particular IP address in the LAN. The difference between the virtual server and the DMZ function is that the virtual server re­ directs a particular service/Internet application (e.g. FTP, websites) to a particular LAN client/server, whereas DMZ re-directs all packets (regardless of services) going to your

WAN IP address to a particular LAN client/server.

Parameter

Enable DMZ

Public IP Address

Client PC IP Address

Description

Allow the DMZ to be enabled. If there is a conflict between the Virtual Server and the DMZ setting, then Virtual Server function will have priority over the DMZ function.

The IP address of the WAN port or any other Public IP addresses given by the user’s ISP.

Input the IP address of a particular host in the LAN that will receive all the packets originally going to the WAN port/Public

IP address above. Users need to give the LAN PC clients a fixed/static IP address for DMZ to work properly.

55

4.3 Status

The Status section allows user to monitor the current status of the router. Use the

Status page to monitor following information: z

The connection status of the broadband router WAN/LAN interfaces. z z

The current firmware and hardware version numbers.

Any illegal attempts to access the network, and information on all DHCP client

PCs currently connected to the network.

4.3.1 System Information

The Status and Information section allows user to view the router’s system information.

Parameter

Information

Description

Users can view the router’s system information such as the router’s Hardware version, Serial Number, Boot code Version and Runtime code Version.

56

4.3.2 Internet Connection Status

View the broadband router’s current Internet connection status and other related information.

Parameter

Internet Connection

Description

This page displays whether the WAN port is connected to a

Cable/DSL connection. It also displays the router’s WAN port:

WAN IP address, Subnet Mask, and ISP Gateway as well as the Primary DNS and Secondary DNS being used.

4.3.3 Device Status

View the broadband router’s current configuration settings. The Device Status displays the configuration settings where users have configured in the Quick Setup

Wizard/General Setup section.

57

Parameter

Device Status

Description

This page shows the broadband router’s current device settings. This page displays the Broadband router LAN port’s current LAN IP Address and Subnet Mask. It also shows whether the DHCP Server function has being enabled or disabled.

4.3.4 System Log

View the operation log of the system. All important system events are logged and users can use this function to check the event log of the router.

58

Parameter

System Log

Description

This page shows the current system log of the broadband router. It displays any event occurred after system start up.

At the bottom of the page, the system log can be saved via

<Save> button to a local file for further processing. The system log can be cleared by clicking <Clear> button.

Refresh the interface to update current situation, click on

<Refresh> button. When the system is powered down, the system log will disappear if not saved to a local file.

4.3.5 Security Log

View any attempts that have been made to illegally gain access to the network. All information about network and system security is kept here, and users can use this function to check the security event log of the router.

Parameter

Security Log

Description

This page shows the current security log of the broadband router. It displays any illegal attempts to access the network.

At the bottom of the page, the security log can be saved via

<Save> button to a local file for further processing. The security log can be cleared by clicking <Clear> button.

Refresh the interface to update current situation, click on

<Refresh> button. When the system is powered down, the security log will disappear if not saved to a local file.

4.3.6 Active DHCP Client

View the LAN client's information that is currently linked to the broadband router's DHCP server.

59

Parameter

Active DHCP Client

Description

This page shows all DHCP clients (LAN PCs) currently connected to the network. The “Active DHCP Client Table” displays the IP address, the MAC address and Time Expired of each LAN Client. Use the <Refresh> button to get the most updated situation

60

4.3.7 Statistics

View the statistics of packets sent and received on WAN, LAN and Wireless LAN.

Parameter

Statistics

Description

Shows the counters of packets sent and received on WAN,

LAN and Wireless LAN.

4.4 Configuration Backup and Restore

This page includes the basic configuration tools, such as Configuration Tools (save or restore configuration settings), Firmware Upgrade (upgrade system firmware) and

Reset.

Parameter Description

Use the "Backup" tool to save the Broadband router current configuration to a file named "config.bin" on the PC. Users can use the "Restore" tool to restore the saved configuration

Configuration Tools

to the broadband router. Alternatively, users can use the

"Restore to Factory Defaults" tool to force the Broadband router to perform a power reset and restore the original factory settings.

61

The system software used by this router is called as ‘firmware’. Just like any applications on the computer, when users replace the old application with a new one, the computer will be equipped with new function. Users can also use this firmware upgrade function to add new functions to the router.

Parameter

Firmware Upgrade

Description

This tool allows user to upgrade the broadband router’s system firmware. To upgrade the firmware of the broadband router, users need to download the firmware file to the local hard disk. Enter that file name and path in the appropriate field on this page. Alternatively, use the <Browse> button to find the firmware file.

Click <Apply> at the bottom of the screen to save the above configurations.

62

Users can reset the router’s system should any problem exist. The reset function essentially re-boots the router’s system.

Reset

Parameter Description

In the event that the system stops responding correctly or in some way stops functioning, users can perform a reset. The settings will not be changed. To perform the reset, click on the <Apply> button. Users will be asked to confirm your decision. The reset will be complete when the power light stops blinking. Once the reset process is complete users may start using the router again.

63

Chapter 5 Glossary

Default Gateway (Router): Every non-router IP device needs to configure a default gateway’s IP address.

When the device sends out an IP packet, if the destination is not on the same network, the device has to send the packet to its default gateway, which will then send it out towards the destination.

DHCP: Dynamic Host Configuration Protocol. This protocol automatically gives every computer on the home network an IP address.

DNS Server IP Address: DNS stands for Domain Name System, which allows Internet servers to have a domain name (such as www.Broadbandrouter.com) and one or more IP addresses (such as 192.34.45.8). A

DNS server keeps a database of Internet servers and their respective domain names and IP addresses, so that when a domain name is requested, the user is sent to the proper IP address. The DNS server IP address used by the computers on the home network is the location of the DNS server assigned by the ISP.

DSL Modem: DSL stands for Digital Subscriber Line. A DSL modem uses the existing phone lines to transmit data at high speeds.

Ethernet: A standard for computer networks. Ethernet networks are connected by special cables and hubs, and move data around at up to 10/100 million bits per second (Mbps).

Idle Timeout: Idle Timeout is designed so that when there is no traffic to the Internet for a pre-configured amount of time, the connection will automatically be disconnected.

IP Address and Network (Subnet) Mask: IP stands for Internet Protocol. An IP address consists of a series of four numbers separated by periods that identifies a single, unique Internet computer host in an IP network.

Example: 192.168.2.1. It consists of 2 portions: the IP network address, and the host identifier.

ISP Gateway Address: (see ISP for definition). The ISP Gateway Address is an IP address for the Internet router located at the ISP's office.

ISP: Internet Service Provider. An ISP is a business that provides connectivity to the Internet for individuals and other businesses or organizations.

64

LAN: Local Area Network. A LAN is a group of computers and devices connected together in a relatively small area (such as a house or an office). The home network is considered a LAN.

MAC Address: MAC stands for Media Access Control. A MAC address is the hardware address of a device connected to a network. The MAC address is a unique identifier for a device with an Ethernet interface. It is comprised of two parts: 3 bytes of data that corresponds to the Manufacturer ID (unique for each manufacturer), plus 3 bytes that are often used as the product’s serial number.

NAT: Network Address Translation. This process allows all of the computers on the home network to use one IP address. Using the broadband router’s NAT capability, users can access the Internet from any computer on the home network without having to purchase more IP addresses from the ISP.

Port: Network Clients (LAN PC) uses port numbers to distinguish one network application/protocol over another. Below is a list of common applications and protocol/port numbers:

SNMP Trap UDP 162

PC Anywhere TCP 5631

PC Anywhere UDP 5632

PPPoE: Point-to-Point Protocol over Ethernet. Point-to-Point Protocol is a secure data transmission method originally created for dial-up connections and PPPoE is for Ethernet connections. PPPoE relies on two widely accepted standards, Ethernet and the Point-to-Point Protocol. It is a communications protocol for transmitting information over Ethernet between different manufacturers.

65

Router: A router is an intelligent network device that forwards packets between different networks based on network layer address information such as IP addresses.

Subnet Mask: A subnet mask, which may be a part of the TCP/IP information provided by the ISP, is a set of four numbers (e.g. 255.255.255.0) configured like an IP address. It is used to create IP address numbers used only within a particular network (as opposed to valid IP address numbers recognized by the Internet, which must be assigned by InterNIC).

TCP/IP, UDP: Transmission Control Protocol/Internet Protocol (TCP/IP) and Unreliable Datagram Protocol

(UDP). TCP/IP is the standard protocol for data transmission over the Internet. Both TCP and UDP are transport layer protocol. TCP performs proper error detection and error recovery, and thus is reliable. UDP on the other hand is not reliable. Both run on top of the IP (Internet Protocol), a network layer protocol.

WAN: Wide Area Network. A network that connects computers located in geographically separate areas (e.g. different buildings, cities, countries). The Internet is a wide area network.

Web-based management Graphical User Interface (GUI): Many devices support a graphical user interface that is based on the web browser. This means the user can use the familiar Netscape or Microsoft Internet

Explorer to Control/configure or monitor the device being managed.

66

advertisement

Was this manual useful for you? Yes No
Thank you for your participation!

* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project

Related manuals