advertisement
User’s Manual
802.11N Wireless Broadband Router
Model No.: SP916N
http://www.micronet.info
Table of Contents
Chapter 1 Introduction................................................................................. 1
1.1 Package Contents .......................................................................................... 1
1.2 Key Features ................................................................................................. 1
1.3 Safety Information ........................................................................................ 2
1.4 System Requirements.................................................................................... 3
1.5 Specifications ................................................................................................ 3
Chapter 2 Physical Description .................................................................. 4
2.1 Back Panel..................................................................................................... 4
2.2 Front Panel .................................................................................................... 4
Chapter 3 System and Network Setup ....................................................... 6
3.1 Build Network Connection ........................................................................... 6
3.2 Connecting to Web-Based Management ...................................................... 7
3.2.1 IP Address Configuration .................................................................................7
3.2.2 Router’s IP Address ........................................................................................12
3.2.3 Starting Web-Based Management UI ..........................................................13
Chapter 4 Web-Based Management UI .................................................... 15
4.1 Quick Setup Wizard .................................................................................... 15
4.2 General Setup.............................................................................................. 23
4.2.1 System ..............................................................................................................23
4.2.2 WAN ..................................................................................................................26
4.2.3 LAN....................................................................................................................29
4.2.4 Wireless ............................................................................................................31
4.2.5 QoS....................................................................................................................42
4.2.6 NAT....................................................................................................................44
4.2.7 Firewall..............................................................................................................50
4.3 Status ........................................................................................................... 56
4.3.1 System Information .........................................................................................56
4.3.2 Internet Connection Status ............................................................................57
4.3.3 Device Status ...................................................................................................57
4.3.4 System Log ......................................................................................................58
4.3.5 Security Log .....................................................................................................59
4.3.6 Active DHCP Client .........................................................................................59
4.3.7 Statistics............................................................................................................61
4.4 Configuration Backup and Restore............................................................. 61
4.5 Firmware Upgrade ...................................................................................... 62
4.6 System Reset ............................................................................................... 63
Chapter 5 Glossary .................................................................................... 64
Chapter 1 Introduction
Micronet SP916N, 11n Wireless Broadband Router, delivers next generation wireless solution of high speed and cost-efficient network. It is compliant with IEEE 802.11 Draft-N and backward compatible with IEEE 802.11b/g. Best selection for small office where all computers and network devices can share Internet access through a single xDSL/cable modem. In addition, the scope of the network can be easily expanded by connecting the router to a hub or switch.
Prior to the installation of the device, please verify the following items are in the package: y
SP916N Wireless Broadband Router y
Quick Installation Guide y
High Internet Access throughput (Up to 300Mbps) y
Allow multiple users to share a single Internet line y
Supports up to 253 users y
Share a single Cable or xDSL Internet connection y
Access private LAN servers from the internet y
Four wired LAN ports (10/100M) and one WAN port (10/100M) y
Provides IEEE 802.11b/g/Draft-N wireless LAN capability y
Support DHCP (Server/Client) for easy IP-address setup y
Advanced network and security features like: Special Applications, DMZ, Virtual
Servers, Access Control, Firewall. y
Allow you to monitor the router’s status like: DHCP Client Log, System Log,
Security Log and Device/Connection Status
1
y
Easy to use Web-based GUI for network configuration and management purposes y
Remote management function allows configuration and upgrades from a remote computer (over the Internet) y
Auto MDI / MDI-X function for all wired Ethernet ports.
In order to keep the safety of users, please follow the following safety instructions: y
This router is designed for indoor use only. y
Do not put this router at or near hot or humid places. Also, do not leave this router in the car in summer. y
Do not pull any connected cable with force and disconnect it from the router first. y
If users want to place this router at high places, please make sure the router is firmly secured. Falling from high places would damage the router and its accessories, and in such cases, the warranty will be void. y
Accessories of this router, like antenna and power supply, are danger to small children under 3 years old. They may put the small parts in their nose or month and it could cause serious damage to them. y
The router will become hot when being used for long time (This is normal and is not a malfunction). Do not put this router on paper, cloth or other flammable materials. y
There’s no user-serviceable part inside the router. If users found the router is not working properly, please contact the authorized dealer of purchase. Do not disassemble the router, otherwise warranty will be void. y
If the router falls into water when it’s powered on, do not use hands to pick it up.
Switch the electrical power off before doing anything, or contact an experienced technician for help. y
If users smell something strange, or even see some smoke coming out from the router or power supply, remove the power supply or switch the electrical power off immediately, and call authorized for help.
2
y
Internet connection provided by xDSL or cable modem with a RJ-45 Ethernet port. y
Computer or network devices with wired or wireless network interface card. y
Web browsers (Microsoft Internet Explorer 4.0 or above, Netscape Navigator 4.7 or above, Opera web browser or Safari web browser). y
AC power socket (100 – 240V, 50/60Hz).
1.5 Specifications
Standards
Memory
Interface
z z z z
IEEE802.11b/ 802.11g / 802.11 Draft-N
Flash: 4MB
SDRAM: 16MB
WAN Port: 1 x Port 10/100Mbps UTP
LAN Ports: 4 x Port 10/100Mbps UTP
Antenna
3 x Fixed Antenna
MIMO Technology
2T3R MIMO Technology
Transmit Power
DHCP
16dBm ± 2dBm
DHCP Server & Client
Advance Features
z
DMZ z
Virtual Servers z z z
Access Control
Auto MDI/MDI-X for wired Ethernet ports
Supports QoS (WMM, WMM-PS and WMM-SA)
Security Features
z
WEP (64/128 bit) z
WPA, WPA2 and WPA Radius z z
Access Control List (MAC Addresses)
Firewall
Status Log
z
Management
Power
Humidity
Temperature
Dimension
z z z z
DHCP Client Log
System Log
Security Log
Device/Connection Status
Web-based Interface
12V DC, 1A Power Adapter
10-90% (Non-Condensing)
32~104 °F (0 ~ 40°C)
37 x 194 x 124 mm
3
Chapter 2 Physical Description
Parameter
LAN
Description
The Broadband router’s 4 LAN ports are where users can connect LAN’s PCs, printer servers, hubs and switches etc.
WAN
The WAN port is the segment connected to user’s xDSL or Cable modem and is linked to the Internet.
Reset
Press and hold <Reset/WPS> button for 20 seconds to clear all settings, and press the button for less than 20 seconds to start WPS function.
LED
PWR
WAN 10/100M
Light Status
ON
ON
OFF
Description
Router’s power supply is on
WAN port 100Mbps is connected
WAN port 10Mbps is connected
4
WAN LNK/ACT
LAN 10/100M
(Port 1-4)
LAN LNK/ACT
(Port 1-4)
WLAN
ON
OFF
Flashing
ON
OFF
ON
OFF
Flashing
ON
OFF
Flashing
WAN is connected
No WAN connection
WAN port has Activity (ACT) and data is being sent
LAN port speed is 100Mbps
LAN port speed is 10Mbps
LAN is connected
No LAN connection
LAN port has Activity (ACT) and data is being sent
Wireless LAN or WPS has been activated
Wireless LAN is disabled
Wireless LAN port has Activity (ACT) and data is being sent
5
Chapter 3 System and Network Setup
3.1 Build Network Connection
Please follow the following instruction to build the network connection between the new wireless router and other network computers and devices:
1. Connect the xDSL / cable modem to the WAN port of router by Ethernet cable.
2. Connect all computers, network devices (network-enabled consumer devices other than computers, like game console, or switch / hub) to the LAN port of the router.
3. Connect the power adapter to the wall socket, and then connect it to the ‘Power’ socket of the router.
6
4. Please check all LEDs on the front panel. ‘PWR’ LED should be steadily on, WAN and LAN LEDs should be on if the computer / network device connected to the respective port of the router is powered on and correctly connected. If PWD LED is not on, or any LED expected is not on, please recheck the cabling, or jump to
‘4-2 Troubleshooting’ for possible reasons and solution.
3.2 Connecting to Web-Based Management
After the network connection is established, the next step is to setup the router with proper network parameters for the user’s network environment.
Before connecting to the router and start configuration procedures, user’s computer must be able to get an IP address automatically (use dynamic IP address). If the PC is set to ‘static IP address’, then follow instructions below to reconfigure it to ‘dynamic IP address’.
3.2.1 IP Address Configuration a) Windows 95/98/Me
1. Click the Start button and select <Settings>, then click <Control Panel>. The
Control Panel window will appear.
2. Double-click on <Network> icon. The Network window will appear.
3. Check the list of Network Components. If TCP/IP is not installed, click the
<Add> button to install it. If TCP/IP is installed, go to step 6.
4. In the Network Component Type dialog box, select <Protocol> and click <Add> button.
5. In the Select Network Protocol dialog box, select <Microsoft> and <TCP/IP> then click the <OK> button to start installing the TCP/IP protocol. Windows CD may be needed to complete the installation.
6. After installing TCP/IP, go back to the Network dialog box. Select <TCP/IP> from the list of Network Components and then click the <Properties> button.
7. Check each of the tabs and verify the following settings:
7
y Bindings: Check Client for Microsoft Networks and File and printer sharing for Microsoft Networks. y Gateway: All fields are blank. y DNS Configuration: Select Disable DNS. y
WINS Configuration: Select Disable WINS Resolution. y IP Address: Select Obtain IP address automatically.
8. Reboot the PC. PC will now obtain an IP address automatically from the
Broadband Router’s DHCP server.
9. Please make sure that the Broadband router’s DHCP server is the only DHCP server available on the LAN network.
10. Proceed to Web-based User Interface once IP address is correctly configured.
b) Windows 2000
1. Click the <Start> button and select <Settings>, then click <Control Panel>.
The Control Panel window will appear.
2. Double-click <Network and Dial-up Connections> icon. In the Network and
Dial-up Connection window, double-click on <Local Area Connection> icon.
The Local Area Connection window will appear.
3. In the Local Area Connection window, click the <Properties> button.
4. Check the list of Network Components. Users should see Internet Protocol
[TCP/IP] on the list. Select it and click the <Properties> button.
8
5. In the Internet Protocol (TCP/IP) Properties window, select <Obtain an IP
address automatically> and <Obtain DNS server address automatically> as shown on the following screen.
6. Click <OK> to confirm the setting. The PC will now obtain an IP address automatically from the Broadband Router’s DHCP server.
7. Please make sure that the Broadband router’s DHCP server is the only DHCP server available on the LAN network.
8. Proceed to Web-based User Interface once IP address is correctly configured.
c) Windows XP
1. Click the <Start> button and select <Settings>, then click <Network
Connections>. The Network connections window will appear.
2. Double-click <Local Area Connection> icon. The Local Area Connection window will appear.
3. Check the list of Network Components. Users should see Internet Protocol
[TCP/IP] on the list. Select it and click the <Properties> button.
4. In the Internet Protocol (TCP/IP) Properties window, select <Obtain an IP
address automatically> and <Obtain DNS server address automatically> as shown on the following screen.
9
5. Click <OK> to confirm the setting. PC will now obtain an IP address automatically from the Broadband Router’s DHCP server.
6. Please make sure that the Broadband router’s DHCP server is the only DHCP server available on the LAN network.
d) Windows Vista
1. Click <Start> button, then click control panel. Click <View Network Status and
Tasks>, then click <Manage Network Connections>. Right-click <Local Area
Network>, then select <Properties>. Local Area Connection Properties window will appear, select <Internet Protocol Version 4 (TCP / IPv4)> and click
<Properties>.
10
2. Select <Obtain an IP address automatically> and <Obtain DNS server
address automatically>, then click <OK>.
11
3.2.2 Router’s IP Address
1. After the IP address setup is complete, please click <Start> then <Run> at the bottom lower corner of the desktop.
2. Enter ‘cmd’ command and click <OK>.
3. Input ‘ipconfig’, then press ‘Enter’ key. Please check the IP address followed by
‘Default Gateway’ (In this example, the IP address of router is 192.168.2.1, please note that this value may be different).
12
3.2.3 Starting Web-Based Management UI
1. After the computer has obtained an IP address from router, please start the web browser. Input the IP address of router in the address bar and the following message should appear:
2. Please input username and password in the field respectively. Default username is
‘admin’ and default password is ‘1234’, then press <OK> button. Once the login details are entered correctly, users can see the web management interface of this router.
13
14
Chapter 4 Web-Based Management UI
4.1 Quick Setup Wizard
The Quick Setup section is designed to get the broadband router running as quickly as possible. In the Quick Setup, users are required to fill in only the information necessary to access the Internet. Once user clicks on the <Quick Setup Wizard> in the HOME page, the following screen will appear.
Step 1: Time Zone
The Time Zone allows router to base its time on the settings configured in this section.
Parameter
Set Time Zone
Time Server Address
Enable Daylight
Savings
Description
Select the time zone for the country where the user resides.
The router will set its time based on user’s selection.
Users can manually assign time server address if the default time server is not functioning.
The router can also take Daylight savings into account. If users wish to use this function, tick the enable box to initiate daylight saving configuration.
Start Daylight Savings
Time
Select the period in which to start the daylight savings time.
End Daylight Savings
Time
Select the period in which to end the daylight savings time.
Click on <NEXT> to proceed to the next page: Broadband Type.
15
Step 2 Broadband Type
In this section users have to select one of four types of connections that it will be using to connect to broadband router WAN port to the ISP (see screen below). Different ISPs require different methods of connecting to the Internet, please check with the ISP as to the type of connection it requires.
Parameter
Cable Modem
Fixed-IP xDSL
PPPoE xDSL
PPTP xDSL
L2TP xDSL
Telstra Big Pond
Description
ISP will automatically provide an IP address.
ISP has given users an IP address already.
ISP requires using a Point-to-Point Protocol over Ethernet
(PPPoE) connection.
ISP requires using a Point-to-Point Tunneling Protocol
(PPTP) connection.
ISP requires using a Layer Two Tunneling Protocol (L2TP) connection.
This Protocol only used for Australia’s ISP connection.
Click on one of the WAN type and then proceed to the manual’s relevant sub-section.
Click on <Back> to return to the previous screen.
16
Step 2.1 Cable Modem
Choose Cable Modem if ISP will automatically provide an IP address. Some ISP’s may also require users fill in additional information such as Host Name and MAC address
(see screen below). The Host Name and MAC address section is optional and users can skip this section if the ISP does not require these settings for Internet connection.
Parameter
Host Name
MAC Address
Description
If the ISP requires a Host Name, type in the host name provided by the ISP, otherwise leave it blank.
ISP may require a particular MAC address in order for users to connect to the Internet. This MAC address is the PC’s MAC address that the ISP had originally used to connect to the
Internet. Type in this MAC address in this section or use the
“Clone MAC Address” button to replace the WAN MAC address with the MAC address of that PC.
Click <OK> to complete the Quick Setup Wizard and start using the broadband router.
Step 2.2 Fixed-IP xDSL
Select Fixed-IP xDSL if the ISP has given user a specific IP address. The ISP should provide all the information required in this section.
17
Parameter
IP
Gateway IP
DNS
Subnet Mask
Description
IP address provided by ISP.
ISP’s IP address gateway.
ISP’s DNS server IP address.
Enter the Subnet Mask provided by the ISP (e.g. 255.255.255.0).
Click <OK> to complete the Quick Setup Wizard and start using the broadband router.
Step 2.3 PPPoE xDSL
Select PPPoE if the ISP requires the PPPoE protocol to connect to the Internet. The
ISP should provide all the information required in this section.
Parameter
Username
Password
Service Name
MTU
Description
Enter the username provided by the ISP for the PPPoE connection.
Enter the password provided by the ISP for the PPPoE connection.
This is optional. Enter the Service name should the ISP requires it, otherwise leave it blank.
This is optional. Users can specify the maximum size of the transmission packet to the Internet. Leave it blank if users do not wish to set a maximum packet size.
18
Connection Type
Idle Time
z z z z
If you select “Continuous”, the router will always connect to the ISP. If the WAN line breaks down and links again, the routers will auto-reconnect to the ISP.
If users select “Connect on Demand”, the router will autoconnect to the ISP when someone wants to use the Internet and keep connected until the WAN idle timeout. The router will close the WAN connection if the idle time period exceeds the “Idle Time”.
If users select “Manual”, the router will connect to ISP only when click “Connect” manually from the Web user interface.
The WAN connection will not disconnect due to the idle timeout. If the WAN line breaks down and links again, the router will not auto-connect to the ISP.
Users can specify an idle time threshold (minutes) for the
WAN port. This means if no packets have been sent during the specified period, the router will automatically disconnect the connection with the ISP.
Click <OK> to complete the Quick Setup Wizard and start using the broadband router.
Step 2.4 PPTP xDSL
Select PPTP if the ISP requires the PPTP protocol to connect to the Internet. The ISP should provide all the information required in this section.
19
Parameter
Obtain an IP address
Automatically
Use the following IP address
IP Address
Subnet Mask
Default Gateway
User ID
Password
PPTP Gateway
Connection ID
MTU
BEZEQ-ISRAEL
Connection Type
Idle Time
Description
The ISP requires user to obtain an IP address by DHCP before connecting to the PPTP server.
The ISP gives user a static IP to be used to connect to the PPTP server.
This is the IP address that the ISP has given to user to establish a PPTP connection.
Enter the Subnet Mask provided by the ISP (e.g. 255.255.255.0).
Enter the IP address of the ISP Gateway
Enter the Username provided by the ISP for the PPTP connection. Sometimes called a Connection ID.
Enter the Password provided by the ISP for the PPTP connection.
If the LAN has a PPTP gateway, then enter that PPTP gateway
IP address here. If users do not have a PPTP gateway then enter the ISP’s Gateway IP address above.
This is the ID given by ISP. This is optional.
This is optional. Users can specify the maximum size of the transmission packet to the Internet. Leave it blank if users do not wish to set a maximum packet size.
Select this item if users are using the service provided by
BEZEQ in Israel. z z z z z
If you select “Continuous”, the router will always connect to the ISP. If the WAN line breaks down and links again, the routers will auto-reconnect to the ISP.
If users select “Connect on Demand”, the router will autoconnect to the ISP when someone wants to use the Internet and keep connected until the WAN idle timeout. The router will close the WAN connection if the idle time period exceeds the “Idle Time”.
If users select “Manual”, the router will connect to ISP only when click “Connect” manually from the Web user interface.
The WAN connection will not disconnect due to the idle timeout. If the WAN line breaks down and links again, the router will not auto-connect to the ISP.
Users can specify an idle time threshold (minutes) for the
WAN port. This means if no packets have been sent during the specified period, the router will automatically disconnect the connection with the ISP.
This “idle timeout” function may not work due to abnormal activities of some network application software, computer virus or hacker attacks from the Internet.
Click <OK> to complete the Quick Setup Wizard and start using the broadband router.
20
Step 2.5 L2TP
Select L2TP if the ISP requires the L2TP protocol to connect to the Internet. The ISP should provide all the information required in this section.
Parameter
Obtain an IP address
Automatically
MAC Address
Use the following IP address
IP Address
Subnet Mask
Gateway
User ID
Password
L2TP Gateway
MTU
Description
The ISP requires user to obtain an IP address by DHCP before connecting to the L2TP server.
The ISP may require a particular MAC address in order for users to connect to the Internet. Type in this MAC address in this section or use the "Clone MAC Address" button to replace the
WAN MAC address with the MAC address of that PC.
The ISP gives user a static IP to be used to connect to the L2TP server.
This is the IP address that the ISP has given to users to establish a L2TP connection.
Enter the Subnet Mask provided by the ISP (e.g. 255.255.255.0).
Enter the IP address of the ISP Gateway
Enter the Username provided by the ISP for the L2TP connection. Sometimes called a Connection ID.
Enter the Password provided by the ISP for the L2TP connection.
If the LAN has a L2TP gateway, then enter that L2TP gateway IP address here. If users do not have a L2TP gateway then enter the ISP’s Gateway IP address above.
This is optional. Users can specify the maximum size of the transmission packet to the Internet. Leave it blank if users do not wish to set a maximum packet size.
21
Connection Type
Idle Time
z z z z z
If you select “Continuous”, the router will always connect to the ISP. If the WAN line breaks down and links again, the routers will auto-reconnect to the ISP.
If users select “Connect on Demand”, the router will autoconnect to the ISP when someone wants to use the Internet and keep connected until the WAN idle timeout. The router will close the WAN connection if the idle time period exceeds the “Idle Time”.
If users select “Manual”, the router will connect to ISP only when click “Connect” manually from the Web user interface.
The WAN connection will not disconnect due to the idle timeout. If the WAN line breaks down and links again, the router will not auto-connect to the ISP.
Users can specify an idle time threshold (minutes) for the
WAN port. This means if no packets have been sent during the specified period, the router will automatically disconnect the connection with the ISP.
This “idle timeout” function may not work due to abnormal activities of some network application software, computer virus or hacker attacks from the Internet.
Click <OK> to complete the Quick Setup Wizard and start using the broadband router.
Step 2.6 Telstra Big Pond
Select Telstra Big Pond if the ISP requires the Telstra Big Pond protocol to connect to the Internet. The ISP should provide all the information required in this section. Telstra
Big Pond protocol is used by the ISP in Australia.
Parameter
Username
Password
User Decide Login
Server Manually
Login Server
Description
Enter the username provided by the ISP for the Telstra Big Pond connection.
Enter the password provided by the ISP for the Telstra Big Pond connection.
Select if users want to assign the IP of Telstra Big Pond’s login server manually.
The IP address of the login server.
Click <OK> to complete the Quick Setup Wizard and start using the broadband router.
22
In this chapter, the user will know how to change the time zone, password, and remote management settings. Please start the web browser and log onto router web management interface, then click ‘General Setup’ button on the left, or click ‘General
Setup’ link at the upper-right corner of web management interface.
4.2.1 System
This section allows user to set the following system configuration: Time Zone,
Password and Remote Management Administrator.
4.2.1.1 Time zone and Time Auto-synchronization
Please click ‘System’ menu on the left of web management interface, then click ‘Time
Zone’, and the following message will be displayed on the web browser: Please select time zone at ‘Set time zone’ drop-down list, and input the IP address or host name of time server. If users want to enable daylight savings setting, please check ‘Enable
Function’ box, and set the duration of daylight setting.
23
4.2.1.2 Password Setting
Default password of this router is ‘1234’, and it’s displayed on the login prompt when accessed from web browser. There’s a security risk if users don’t change the default password, since everyone can see it. This is very important when the wireless function is enabled. Please click ‘System’ menu on the left of web management interface, then click ‘Password Settings’. The following message will be displayed on your web browser:
24
Parameter
Current Password
New Password
Confirmed Password
Description
Enter user’s current password for the remote management administrator to login to your Broadband router.
Default: no password
Enter the new password.
Enter the new password again for verification purposes. If users forget the password, it will be necessary to reset the router to the factory default (No password) with the reset button (see router’s back panel).
Click <Apply> at the bottom of the screen to save the above configurations.
4.2.1.3 Remote Management
This router does not allow management access from Internet, to prevent possible security risks (especially when users defined a weak password, or didn’t change default password). However, users can still manage this router from a specific IP address by enabling the ‘Remote Management’.
25
Parameter
Host
Address
z z z
Description
This is the IP address of the host in the Internet that will have management/configuration access to the Broadband router from a remote site. This means if users are at home and the home IP address has been designated the Remote Management host IP address for this router (located in your company office), then it will be able to configure this router remotely.
If the Host Address is left 0.0.0.0, it would mean anyone can access the router’s web-based configuration from a remote location, provided password is known.
When users want to access the web-based management from a remote site, it is necessary to enter the router’s WAN IP address (e.g. 10.0.0.1) into your web-browser followed by port number 8080 (e.g. 10.0.0.1:8080). Users also need to know the password set in the Password Setting screen in order to access the router’s web-based management.
Click <Apply> at the bottom of the screen to save the above configurations.
4.2.2 WAN
Internet connections setup can be setup by using ‘Quick Setup’ menu described in chapter 4.1. However, users can setup WAN connections up by using WAN configuration menu. Users can also set advanced functions like DDNS (Dynamic DNS) via this interface.
26
Parameter Description
ISP will automatically give user an IP address.
Dynamic IP address
Follow section 4.1 “Cable Modem” for detail information.
ISP has given user an IP address already.
Static IP address
Follow section 4.1 “Fixed IP” for detail information.
ISP requires using a Point-to-Point Protocol over Ethernet
(PPPoE) connection.
PPPoE
Follow section 4.1 “PPPoE” for detail information.
ISP requires using a Point-to-Point Tunneling Protocol
(PPTP) connection.
PPTP
L2TP
Follow section 4.1 “PPTP” for detail information.
ISP requires using a Layer Two Tunneling Protocol (L2TP) connection.
This Protocol only used for Australia’s ISP connection.
Telstra Big Pond
DNS
DDNS
Follow section 4.1 “Telstra Big Pond” for detail information.
Users can specify a DNS server.
Users can specify a DDNS server and configure the username and password provided by the DDNS service provider.
Click <More Configuration> at the bottom of the screen and proceed to the manual’s relevant sub-section.
4.2.2.1 DNS
A Domain Name System (DNS) server is like an index of IP addresses and Web addresses. If users type a Web address into the browser, such as www.router.com, a
DNS server will find that name in its index and the matching IP address. Most ISPs provide a DNS server for speed and convenience. If the Service Provider connects the user to the Internet with dynamic IP settings, it is likely that the DNS server IP address is provided automatically. However, if there is a DNS server that the user would rather use, it is necessary to specify the IP address of that DNS server in this section.
27
Parameter
Domain Name Server
(DNS) Server
Secondary DNS
Address (optional)
Description
This is the DNS server IP address provided by ISP. Users can specify preferred DNS server IP address.
This is optional. Users can enter another DNS server’s IP address as a backup. The secondary DNS will be used should the primary DNS fail.
Click <Apply> at the bottom of the screen to save the above configurations.
4.2.2.2 DDNS
DDNS allows user to map the static domain name to a dynamic IP address. Users must get an account, password and static domain name from the DDNS service providers. This router supports DynDNS, TZO and other common DDNS service providers.
28
Parameter
Enable/Disable
Provider
Domain name
Account/E-mail
Password/Key
Description
Enable or Disable the DDNS function of this router.
Select a DDNS service provider.
User’s static domain name that use DDNS.
The account that the DDNS service provider assigned to user.
The password set for the DDNS service account above.
Click <Apply> at the bottom of the screen to save the above configurations.
4.2.3 LAN
Before all computers using wired Ethernet connection (i.e. those computers connect to this router’s LAN port 1 to 4 by Ethernet cable) can communicate with each other and access internet, they must have a valid IP address. There are two ways to assign IP addresses to computers: static IP address (set the IP address for every computer manually), and dynamic IP address (IP address of computers will be assigned by router automatically). It’s recommended for most of computers to use dynamic IP address, since it will save a lot of time on setting IP addresses. DHCP settings are only available when ‘DHCP Server’ in ‘LAN IP’ section is ‘Enabled’.
Parameter
IP address
IP Subnet Mask
Description
This is the router’s LAN port IP address (LAN clients default gateway IP address).
Specify a Subnet Mask for the LAN segment.
29
802.1d Spanning Tree
DHCP Server
Lease Time
IP Address Pool
Domain Name
If 802.1d Spanning Tree function is enabled, this router will use the spanning tree protocol to prevent from network loop happening in the LAN ports.
Users can enable or disable the DHCP server. By enabling the DHCP server, the router will automatically give
LAN clients an IP address. If the DHCP is not enabled then users will have to manually set the LAN client’s IP addresses.
Make sure the LAN Client is in the same subnet as this broadband router for the router to be the LAN client’s default gateway.
The DHCP when enabled will temporarily give the LAN clients an IP address. In the Lease Time setting, users can specify the time period that the DHCP lends an IP address to the LAN clients. The DHCP will change the LAN client’s IP address when this time threshold period is reached.
Users can select a particular IP address range for the DHCP server to issue IP addresses to LAN Clients.
Users can specify a Domain Name for the LAN network.
Click <Apply> at the bottom of the screen to save the above configurations.
4.2.3.1 Static DHCP Leases Table
This function allows user to assign a static IP address to a specific computer so that it is not necessary to set the IP address for a computer, and still enjoy the benefit of using DHCP server. Maximum 16 static IP addresses can be assigned here.
Parameter
Enable Static DHCP
Leases
MAC Address
IP address
Description
Check this box to enable this function.
Input the MAC address of the computer or network device.
Input the IP address to assign to this computer or network device.
Click <Add> to enter the entry into the table, otherwise click on <Clear> to remove all characters.
30
4.2.4 Wireless
Wireless Broadband Router builds a wireless LAN and can let all PCs equipped with
IEEE 802.11b or 801.11g wireless network adaptor connect to the Intranet and Internet.
It supports WEP and WPA2 encryption to enhance the security of the wireless network.
Parameter
Enable or Disable Wireless
Module Function
Description
Users can select to enable or disable the wireless connection of this device.
Click <Apply> at the bottom of the screen to save the above configurations.
4.2.4.1 Basic Wireless Setting
Please click ‘Wireless’ menu on the left of web management interface, then click ‘Basic
Settings’, and the following message will be displayed on the web browser.
31
Mode: AP
Mode: AP Bridge-Point to Point
Mode: AP Bridge-Point to Multi-Point
32
Mode: AP Bridge-WDS
Mode
Band
Parameter
ESSID
Channel Number
MAC address
Set Security
Description
It allows user to set the following mode: AP, Station, Bridge or
WDS mode.
It allows user to set the AP to be fixed at 802.11b, 802.11g or
802.11n mode. Users also can select B+G+N mode to allow the router to select among 802.11b, 802.11g and 802.11n connection automatically.
This is the name of the wireless LAN. All the devices in the same wireless LAN should have the same ESSID.
The channel used by the wireless LAN. All devices in the same wireless LAN should use the same channel.
If users want to bridge more than one network together with wireless LAN, it is necessary to set this access point in the following modes: “AP Bridge-Point to Point mode”, “AP
Bridge-Point to Multi-Point mode” or “AP Bridge-WDS mode”.
Users have to enter the MAC addresses of other access points that join the bridging work.
Click the <Set Security> button for “Security Settings” window to pop up. Users can set the security parameters used to bridge access points together when the AP is in AP
Bridge modes.
Click <Apply> at the bottom of the screen to save the above configurations.
33
4.2.4.2 Advanced Wireless Settings
This router provides some advanced control of wireless parameters. If users want to configure these settings, please click <Wireless> menu on the left of web management interface, and then click <Advanced Settings>. The following message will be displayed on the web browser.
Parameter
Fragment Threshold
RTS Threshold
Beacon Interval
Description
"Fragment Threshold" specifies the maximum size of packet during the fragmentation of data to be transmitted. If users set this value too low, it will result in bad performance.
Default: 2346.
When the packet size is smaller the RTS threshold, the wireless router will not use the RTS/CTS mechanism to send this packet.
Default: 2347.
The interval of time that this wireless router broadcast a beacon. Beacon is used to synchronize the wireless network.
Default: 100.
34
DTIM Period
Data Rate
N Data Rate
Preamble Type
Broadcast ESSID
CTS Protect
Tx Power
Turbo Mode
WMM
Set the DTIM period of wireless radio.
Default: 3.
The “Data Rate” is the rate this access point uses to transmit data packets. The access point will use the highest possible selected transmission rate to transmit the data packets.
Same parameter as above but for 802.11n clients.
The “Long Preamble” can provide better wireless LAN compatibility, while the “Short Preamble” can provide better wireless LAN performance.
If “Broadcast ESSID” is enabled, every wireless station located within the coverage of this access point can discover this access point easily. If users are building a public wireless network, enabling this feature is recommended. Disabling
“Broadcast ESSID” can provide better security.
Enabling this setting will reduce the chance of radio signal collisions between 802.11b and 802.11g wireless access points. It’s recommended to set this option to ‘Auto’ or
‘Always’.
Users can set the output power of wireless radio. Unless the user is using this wireless router in a really big space, it is not necessary to set output power to 100%.
Enhance the data transfer rate of LAN (up to 35Mbps, only for
11g).
Default: ‘Enabled’.
WMM is short for Wi-Fi Multimedia which will enhance the data transfer performance of multimedia contents when transferred over wireless network.
Default: ‘Disabled’.
Click <Apply> at the bottom of the screen to save the above configurations.
35
4.2.4.3 Wireless Security
To set wireless security settings, please click <Wireless> menu on the left of web management interface and then click <Security Settings>. Follow the following instructions to set wireless security settings.
WEP Only
Parameter
Key Length
Key Format
Default Key
Description
Users can select the WEP key length for encryption, 64-bit or
128-bit. Larger WEP key length will provide higher level of security, but the throughput will be lower.
Default: 64-bit
There are two types of key format: ASCII and Hex. When users select a key format, the number of characters of key will be displayed. For example, if users select ’64-bit’ as key length, and ‘Hex’ as key format, the message at the right of
‘Key Format’ is ‘Hex (10 characters), which means the length of WEP key is 10 characters.
Select one of the four keys to encrypt the data. Only the key selected in the "Default key" will take effect.
The WEP keys are used to encrypt data transmitted in the wireless network. Fill the text box by following the rules below.
Key 1 - Key 4
z z
64-bit WEP: input 10-digit Hex values (in the "A-F", "a-f" and "0-9" range) or 5-digit ASCII character as the encryption keys.
128-bit WEP: input 26-digit Hex values (in the "A-F", "a-f" and "0-9" range) or 13-digit ASCII characters as the encryption keys.
Click <Apply> at the bottom of the screen to save the above configurations.
36
802.1x only
IEEE 802.1x is an authentication protocol and every user must use a valid account to login before accessing the wireless LAN. The authentication is processed by a RADIUS server. This mode only authenticates user by IEEE 802.1x, but it does not encrypt the data during communication.
Parameter Description
RADIUS Server IP address
The IP address of external RADIUS server.
RADIUS Server Port
The service port of the external RADIUS server.
RADIUS Server
Password
The password used by external RADIUS server.
Click <Apply> at the bottom of the screen to save the above configurations.
802.1x WEP Static key
IEEE 802.1x is an authentication protocol and every user must use a valid account to login before accessing the wireless LAN. The authentication is processed by a RADIUS server. This mode also uses WEP to encrypt the data during communication.
37
Refer to relevant sections for WEP and 802.1x configurations.
WPA Pre-shared key
Wi-Fi Protected Access (WPA) is an advanced security standard. Users can use a preshared key to authenticate wireless stations and encrypt data during communication. It uses TKIP or CCMP (AES) to change the encryption key frequently. So the encryption key is not easy to be broken by hackers.
Parameter
WPA(TKIP)
WPA2(AES)
WPA2 Mixed
Description
TKIP can change the encryption key frequently to enhance the wireless LAN security.
This use CCMP protocol to change encryption key frequently.
AES can provide high level encryption to enhance the wireless LAN security.
This will use TKIP or AES based on the other communication peer automatically.
38
Users may select to a pass phrase (alphanumeric format) or
Hexadecimal Digits (in the “A-F”, “a-f” and “0-9” range) to be the Pre-shared Key.
Pre-shared Key
Format
For example:
Pass phrase: iamguest
Hexadecimal Digits: 12345abcde
The Pre-shared key is used to authenticate and encrypt data transmitted in the wireless network. Fill in the text box by following the rules below.
Pre-shared Key
Hex WEP: input 64-digit
Hex values (in the “A-F”, “a-f” and “0-9” range) or at least 8 character pass phrase as the pre-shared keys.
Click <Apply> at the bottom of the screen to save the above configurations.
WPA Radius
Wi-Fi Protected Access (WPA) is an advanced security standard. Users can use an external RADIUS server to authenticate wireless stations and provide the session key to encrypt data during communication. It uses TKIP or CCMP (AES) to change the encryption key frequently.
Parameter
WPA(TKIP)
WPA2(AES)
WPA2 Mixed
RADIUS Server IP address
RADIUS Server Port
RADIUS Server
Password
Description
TKIP can change the encryption key frequently to enhance the wireless LAN security.
This use CCMP protocol to change encryption key frequently.
AES can provide high level encryption to enhance the wireless LAN security.
This will use TKIP or AES based on the other communication peer automatically.
The IP address of external RADIUS server.
The service port of the external RADIUS server
Default: 1812.
The password used by external RADIUS server.
Click <Apply> at the bottom of the screen to save the above configurations.
39
4.2.4.4 Wireless Access Control
This wireless router provides MAC Address Control, which prevents the unauthorized
MAC addresses from accessing the wireless network.
Parameter Description
Enable wireless access control
Allow enabling of access control for wireless connection.
Add MAC address into the list
Remove MAC address from the list
Fill in the "MAC Address" and "Comment" of the wireless station to be added. Click <Add> to for this wireless station to be added into the "Current Access Control List". Click
<Clear> for both "MAC Address" and "Comment" fields to be cleared.
If users want to remove a MAC address from the "Current
Access Control List ", select the MAC addresses to be deleted and click <Delete Selected>. Click <Delete All> button to remove all MAC addresses. Click <Reset> will clear current selections.
Click <Apply> at the bottom of the screen to save the above configurations.
40
4.2.4.5 WPS
Wi-Fi Protected Setup (WPS) is the simplest way to build connection between wireless network clients and the wireless router. Users don’t have to select encryption mode and input a long encryption passphrase every time setting up a wireless client. This wireless router supports two types of WPS: Push-Button Configuration (PBC) and PIN code. If users want to use PBC, it is necessary to push a specific button on the wireless client to start WPS mode, and switch this wireless router to WPS mode too. You can push Reset/WPS button of this wireless router, or click ‘Start PBC’ button in the web configuration interface. If users want to use PIN code, it is necessary to know the PIN code of wireless client and switch it to WPS mode, then provide the PIN code of the wireless client to connect to this wireless router. The detailed instructions are listed follow:
Please click <Wireless> menu on the left of web management interface and click
‘WPS’. The following message will be displayed on the web browser.
41
Parameter
Enable WPS
WPS Status
Self PIN code
SSID
Authentication Mode
Configure via Push
Button
Configure via Client
Pin Code
Description
Check this box to enable WPS function, uncheck it to disable
WPS.
If the wireless security (encryption) function of this wireless router is properly set, users will see ‘Configured’ message.
This is the WPS PIN code of this wireless router. This code is useful when users need to build wireless connection by WPS with other WPS-enabled wireless devices.
The SSID of this wireless router will be displayed here.
The wireless security authentication mode of this wireless router will be displayed here.
Click <Start PBC> to start Push-Button style WPS via Push
Button setup procedure. This wireless router will wait for WPS requests from wireless clients for 2 minutes. The ‘WLAN’ LED on the wireless router will be steady on when this wireless router is waiting for incoming WPS request.
Please input the PIN code of the wireless client you wish to connect, and click <Start PIN> button. The ‘WLAN’ led on the wireless router will be steady on when this wireless router is waiting for incoming WPS request.
4.2.5 QoS
Quality of service provides an efficient way for computers on the network to share the
Internet bandwidth with a promised quality of internet service. Without QoS, all computers and devices on the network will compete with each other to get Internet bandwidth, and some applications which require guaranteed bandwidth (like video streaming and network telephone) will be affected. Therefore an unpleasing result will occur, like the interruption of video / audio transfer.
42
Parameter
Enable/Disable QoS
Add a QoS rule into the table
Remove QoS rules from the table
Edit a QoS rule
Adjust QoS rule priority
Description
Allow enable or disable of QoS function.
Click <Add> to enter the form page for the QoS rule. Click
<Apply> after filling out the form and the rule will be added into the table.
If users want to remove a QoS rules from the table, select the
QoS rules and click <Delete Selected>. To remove all QoS rules from the table, click <Delete All> button. Click <Reset> will clear the current selections.
Select the rule to edit and click <Edit>, then it will enter the detail form of the QoS rule. Click <Apply> after editing the form and the rule will be saved.
Users can select the rule and click <Move Up> to make the priority higher. Select the rule and click <Move Down> to make the priority lower.
4.2.5.1 Edit QoS Rule
Users can assign packet classification criteria by its local IP range, remote IP range, traffic type, protocol, local port range and remote port range parameters. The parameters that users leave as blank will be ignored. The priority of this rule will be applied to packets that match classification criteria of this rule. It can limit bandwidth consumed by packets that match this rule or guarantee bandwidth required by packets that match this rule.
43
Parameter
Rule Name
Bandwidth
Local IP Address
Local Port Range
Remote IP Address
Remote Port Range
Traffic Type
Protocol
Save
Reset
Description
The name of this rule.
Users can assign the download or upload bandwidth in the unit of Kbps (1024 bit per second). It can limit the maximum bandwidth consumed by this rule by selecting “Maximum”.
Reserve enough bandwidth for this rule by selecting
“Guarantee”.
Enter the local IP address range of the packets that this rule will apply. If users assign 192.168.2.3 – 192.168.2.5, it would mean 3 IP addresses: 192.168.2.3, 192.168.2.4 and
192.168.2.5.
Enter the local port range of the packets that this rule will apply. Users can assign a single port number here or assign a range of port numbers by assigning the first port number and the last port number of the range. The two numbers are separated by a dash “-“, for example “100-150” means from port number 100 to port number 150 – the range of 50 port numbers.
Enter the remote IP address range of the packets that this rule will apply. If users assign 192.168.2.3 – 192.168.2.5, it means 3 IP addresses: 192.168.2.3, 192.168.2.4 and
192.168.2.5.
Enter the remote port range of the packets that this rule will apply. Users can assign a single port number here or assign a range of port numbers by assigning the first port number and the last port number of the range. The two numbers are separated by a dash “-“, for example “101-150” means from port number 100 to port number 150 – the range of 50 port numbers.
Select the traffic type of the packets that this rule will apply.
List of some popular applications is already available for easing the configuration. Users also can get the same result by using other parameters.
Select the protocol type of the packets that this rule will apply.
Save and exit the form.
Clear the content of this form.
Click <Save> at the bottom of the screen to save the above configurations.
4.2.6 NAT
Network address translations solve the problem of sharing a single IP address to multiple computers. Without NAT, all computers must be assigned with a valid Internet
IP address to connect to Internet. Therefore it’s necessary to use NAT technology to share a single Internet IP address to multiple computers on local network, so everyone can connect to Internet.
44
4.2.6.1 Port Forwarding
This function allows user to redirect a single port or consecutive ports of Internet IP address to the same port of the IP address on local network. The port number(s) of
Internet IP address and private IP address (the IP address on local network) must be the same. If the port number of Internet IP address and private IP address is different, please use ‘Virtual Server’ function, described in next section.
45
Type
Port Range
Comment table
Parameter
Enable Port
Forwarding
Private IP
Add Port Forwarding into the table
Remove Port
Forwarding into the
Description
Allow port forwarding to be enabled.
This is the private IP of the server behind the NAT firewall.
Users will need to give the LAN PC clients a fixed/static IP address for Port Forwarding to work properly.
This is the protocol type to be forwarded. Users can choose to forward “TCP” or “UDP” packets only or select “both” to forward both “TCP” and “UDP” packets.
The range of ports to be forward to the private IP.
The description of this setting.
Fill in the "Private IP", “Type”, “Port Range” and "Comment" of the setting and click <Add>. This Port Forwarding setting will be added into the "Current Port Forwarding Table". Click
<Reset> and the fields will be cleared.
If users want to remove some Port Forwarding settings from the "Current Port Forwarding Table", select the Port
Forwarding setting and click <Delete Selected>. Click
<Delete All> button to remove all settings. Click <Reset> to clear the current selection.
Click <Apply> at the bottom of the screen to save the above configurations.
4.2.6.2 Virtual Server
This function allows user to redirect a port on Internet IP address (on WAN port) to a specified port of an IP address on local network, so it can setup an Internet service on the computer on local network, without exposing it on Internet directly. Users can also build many sets of port redirection to provide many different Internet services on different local computers via a single Internet IP address.
46
Parameter Description
Enable Virtual Server
Allow Virtual Server to be enabled.
Private IP
Private Port
Type
Public Port
This is the LAN client/host IP address that the Public Port number packet will be sent. Users need to give the LAN PC clients a fixed/static IP address for Virtual Server to work properly.
This is the port number (of the above Private IP host) that the below Public Port number will be changed to when the packet enters the LAN (to the LAN Server/Client IP).
Select the port number protocol type (TCP, UDP or both). If users are unsure, then leave it to default.
Enter the service (service/Internet application) port number from the Internet that will be redirected to the above Private
IP address host in the LAN. Virtual Server function will have priority over the DMZ function if there is a conflict between the Virtual Server and the DMZ settings.
Comment
The description of this setting.
Add Virtual Server
Remove Virtual Server
Fill in the "Private IP", "Private Port", "Type", “Public Port” and
"Comment" of the setting to be added and click <Add>. Then this Virtual Server setting will be added into the "Current
Virtual Server Table". Click <Reset> and the fields will be cleared.
If users want to remove some Virtual Server settings from the
"Current Virtual Server Table", select the Virtual Server setting and click <Delete Selected>. Click <Delete All> button to remove all settings. Click <Reset> to clear the current selection.
Click <Apply> at the bottom of the screen to save the above configurations.
4.2.6.3 Port Mapping for Special Applications
Some applications require more than one connection a time and won’t work with simple
NAT rules. In order to make these applications work, users can use this function to let these applications operate properly.
47
I
4.2.6.4 UPnP Setting
This function enables network auto-configuration for peer-to-peer communications.
Network devices will be able to communicate with other devices directly, and learn information about other devices. Many network device and applications rely on UPnP function nowadays.
48
Parameter
UPnP Feature
Description
Users can enable or disable the UPnP feature. Enable the
UPnP feature, all client systems that support UPnP, like
Windows XP, can discover this router automatically and access the Internet through this router without any configuration. The NAT Traversal function provided by UPnP can let applications that support UPnP smoothly connect to
Internet sites without any incompatibility problem due to the
NAPT port translation.
Click <Apply> at the bottom of the screen to save the above configurations.
4.2.6.5 ALG Settings
Users can select applications that need “Application Layer Gateway” support.
Parameter
Enable
Description
Users can enable “Application Layer Gateway”, and the router will let that application correctly pass though the NAT gateway.
Click <Apply> at the bottom of the screen to save the above configurations.
49
4.2.7 Firewall
Besides NAT, this router also provides firewall function to block malicious intruders from accessing computers on local network. These functions include inbound attack prevention, and block outbound traffics, like block URLs which have pre-defined keywords.
Parameter
Access Control
URL Blocking
DoS
DMZ
Description
Access Control allows user to specify which hosts that the users can or cannot have access to certain Internet applications.
URL Blocking allows user to specify which URLs cannot be accessed by users.
The Broadband router's firewall can block common hacker attacks and can log the attack activities.
The DMZ function allows user to redirect all packets going to the WAN port IP address to a particular IP address in your
LAN.
4.2.7.1 Access Control
Restrict users from accessing certain Internet applications/services via this interface
(e.g. Internet websites, email, FTP etc.). Access Control allows users to define the traffic type permitted in the LAN. Users can control which PC client have access to these services.
50
Parameter
Filter client PC by
MAC address
Description
Deny
Allow
If select <Deny> then all PCs will be allowed to access
Internet besides the PCs in the list below.
If select <Allow> then all PCs will be denied to access
Internet except for the PCs in the list below.
Filter client PCs by IP
Fill in “IP Filtering Table” to filter PC clients by IP.
Add PC
Remove PC
Users can click <Add> PC to add an access control rule for users by IP addresses.
If users want to remove some PC from the "IP Filtering
Table", select the PC and click <Delete Selected>. Click
<Delete All>" button to remove all PCs from the list.
Check <Enable MAC Filtering> to enable MAC Filtering.
Add PC
Remove PC
Fill in “Client PC MAC Address” and “Comment” of the PC that is allowed to access the Internet and click <Add>. Click
<Reset> to clear the all fields.
If users want to remove some PC from the "MAC Filtering
Table", select the PC and click <Delete Selected>. Click
<Delete All> button to remove all PCs from the table. Click
<Reset> to clear all selections.
51
Access Control – Add PC
After button is clicked, the following message will be displayed on the web browser.
Parameter Description
Client PC Description
The description for this client PC rule.
Client PC IP
Addresses
Client PC Service
Protocol
Port Range
Enter the IP address range to apply this Access Control rule.
Users need to give the LAN PC clients a fixed/static IP address for the Access Control rule to work properly.
Users can block the clients from accessing some Internet services by checking the services to block.
This allows users to select UDP, TCP or both protocol types to block.
It can be assign up to five port ranges. The router will block clients from accessing Internet services that use these ports.
Add
Reset
Click <Add> to save the setting.
Click <Reset> to clear all fields.
Click <Apply> at the bottom of the screen to save the above configurations.
4.2.7.2 URL Blocking
Users can block access to some websites from particular PCs by entering a full URL address or just keyword of the Web site.
52
Parameter Description
Enable URL Blocking
Allow URL Blocking to be enabled.
Add URL Keyword
Remove URL Keyword
Fill in “URL/Keyword” and then click <Add>. Users can enter the full URL address or the keyword of the web site to be blocked. Click <Reset> to clear all fields.
If users want to remove a URL keyword from the "Current
URL Blocking Table", select the URL keyword to remove and click <Delete Selected>. Click <Delete All> button to remove all entries. To clear the selection, just click <Reset>.
4.2.7.3 DoS Attack Prevention
The Broadband router's firewall can block common hacker attacks, including Denial of
Service, Ping of Death, Port Scan and Sync Flood. When Internet attacks occur, the router can log the events.
53
Parameter
Ping of Death
Discard Ping From
WAN
Port Scan
Sync Flood
Advanced Settings
Description
Protections from Ping of Death attack.
The router’s WAN port will not respond to any Ping requests.
Protect the router from port scan.
Protect the router from Sync Flood attack.
Click on this button to enter the setup of advanced settings for the DoS method.
DoS – Advanced Settings
When users click <Advanced Settings> button in DoS menu, the following message will be displayed on the web browser.
Parameter
Ping of Death
Discard Ping From
WAN
Port Scan
Sync Flood
Description
Set the threshold of when this DoS prevention mechanism will be activated. Please check the box of Ping of Death, and input the frequency of threshold (how many packets per second, minute, or hour). Users can also input the ‘Burst’ value, which means when this number of ‘Ping of Death’ packet is received in very short time, this DoS prevention mechanism will be activated.
Check the box to activate this DoS prevention mechanism.
Many kind of port scan methods are listed here, please check one or more DoS attack methods to activate.
Like Ping of Death, users can set the threshold of when this
DoS prevention mechanism will be activated.
54
4.2.7.4 Demilitarized Zone (DMZ)
If users have a local client PC that cannot run an Internet application (e.g. Games) properly from behind the NAT firewall, the router can open the client to an unrestricted two-way Internet access by defining a DMZ Host. The DMZ function allows re-direct of all packets going to the WAN port IP address to a particular IP address in the LAN. The difference between the virtual server and the DMZ function is that the virtual server re directs a particular service/Internet application (e.g. FTP, websites) to a particular LAN client/server, whereas DMZ re-directs all packets (regardless of services) going to your
WAN IP address to a particular LAN client/server.
Parameter
Enable DMZ
Public IP Address
Client PC IP Address
Description
Allow the DMZ to be enabled. If there is a conflict between the Virtual Server and the DMZ setting, then Virtual Server function will have priority over the DMZ function.
The IP address of the WAN port or any other Public IP addresses given by the user’s ISP.
Input the IP address of a particular host in the LAN that will receive all the packets originally going to the WAN port/Public
IP address above. Users need to give the LAN PC clients a fixed/static IP address for DMZ to work properly.
55
4.3 Status
The Status section allows user to monitor the current status of the router. Use the
Status page to monitor following information: z
The connection status of the broadband router WAN/LAN interfaces. z z
The current firmware and hardware version numbers.
Any illegal attempts to access the network, and information on all DHCP client
PCs currently connected to the network.
4.3.1 System Information
The Status and Information section allows user to view the router’s system information.
Parameter
Information
Description
Users can view the router’s system information such as the router’s Hardware version, Serial Number, Boot code Version and Runtime code Version.
56
4.3.2 Internet Connection Status
View the broadband router’s current Internet connection status and other related information.
Parameter
Internet Connection
Description
This page displays whether the WAN port is connected to a
Cable/DSL connection. It also displays the router’s WAN port:
WAN IP address, Subnet Mask, and ISP Gateway as well as the Primary DNS and Secondary DNS being used.
4.3.3 Device Status
View the broadband router’s current configuration settings. The Device Status displays the configuration settings where users have configured in the Quick Setup
Wizard/General Setup section.
57
Parameter
Device Status
Description
This page shows the broadband router’s current device settings. This page displays the Broadband router LAN port’s current LAN IP Address and Subnet Mask. It also shows whether the DHCP Server function has being enabled or disabled.
4.3.4 System Log
View the operation log of the system. All important system events are logged and users can use this function to check the event log of the router.
58
Parameter
System Log
Description
This page shows the current system log of the broadband router. It displays any event occurred after system start up.
At the bottom of the page, the system log can be saved via
<Save> button to a local file for further processing. The system log can be cleared by clicking <Clear> button.
Refresh the interface to update current situation, click on
<Refresh> button. When the system is powered down, the system log will disappear if not saved to a local file.
4.3.5 Security Log
View any attempts that have been made to illegally gain access to the network. All information about network and system security is kept here, and users can use this function to check the security event log of the router.
Parameter
Security Log
Description
This page shows the current security log of the broadband router. It displays any illegal attempts to access the network.
At the bottom of the page, the security log can be saved via
<Save> button to a local file for further processing. The security log can be cleared by clicking <Clear> button.
Refresh the interface to update current situation, click on
<Refresh> button. When the system is powered down, the security log will disappear if not saved to a local file.
4.3.6 Active DHCP Client
View the LAN client's information that is currently linked to the broadband router's DHCP server.
59
Parameter
Active DHCP Client
Description
This page shows all DHCP clients (LAN PCs) currently connected to the network. The “Active DHCP Client Table” displays the IP address, the MAC address and Time Expired of each LAN Client. Use the <Refresh> button to get the most updated situation
60
4.3.7 Statistics
View the statistics of packets sent and received on WAN, LAN and Wireless LAN.
Parameter
Statistics
Description
Shows the counters of packets sent and received on WAN,
LAN and Wireless LAN.
4.4 Configuration Backup and Restore
This page includes the basic configuration tools, such as Configuration Tools (save or restore configuration settings), Firmware Upgrade (upgrade system firmware) and
Reset.
Parameter Description
Use the "Backup" tool to save the Broadband router current configuration to a file named "config.bin" on the PC. Users can use the "Restore" tool to restore the saved configuration
Configuration Tools
to the broadband router. Alternatively, users can use the
"Restore to Factory Defaults" tool to force the Broadband router to perform a power reset and restore the original factory settings.
61
The system software used by this router is called as ‘firmware’. Just like any applications on the computer, when users replace the old application with a new one, the computer will be equipped with new function. Users can also use this firmware upgrade function to add new functions to the router.
Parameter
Firmware Upgrade
Description
This tool allows user to upgrade the broadband router’s system firmware. To upgrade the firmware of the broadband router, users need to download the firmware file to the local hard disk. Enter that file name and path in the appropriate field on this page. Alternatively, use the <Browse> button to find the firmware file.
Click <Apply> at the bottom of the screen to save the above configurations.
62
Users can reset the router’s system should any problem exist. The reset function essentially re-boots the router’s system.
Reset
Parameter Description
In the event that the system stops responding correctly or in some way stops functioning, users can perform a reset. The settings will not be changed. To perform the reset, click on the <Apply> button. Users will be asked to confirm your decision. The reset will be complete when the power light stops blinking. Once the reset process is complete users may start using the router again.
63
Chapter 5 Glossary
Default Gateway (Router): Every non-router IP device needs to configure a default gateway’s IP address.
When the device sends out an IP packet, if the destination is not on the same network, the device has to send the packet to its default gateway, which will then send it out towards the destination.
DHCP: Dynamic Host Configuration Protocol. This protocol automatically gives every computer on the home network an IP address.
DNS Server IP Address: DNS stands for Domain Name System, which allows Internet servers to have a domain name (such as www.Broadbandrouter.com) and one or more IP addresses (such as 192.34.45.8). A
DNS server keeps a database of Internet servers and their respective domain names and IP addresses, so that when a domain name is requested, the user is sent to the proper IP address. The DNS server IP address used by the computers on the home network is the location of the DNS server assigned by the ISP.
DSL Modem: DSL stands for Digital Subscriber Line. A DSL modem uses the existing phone lines to transmit data at high speeds.
Ethernet: A standard for computer networks. Ethernet networks are connected by special cables and hubs, and move data around at up to 10/100 million bits per second (Mbps).
Idle Timeout: Idle Timeout is designed so that when there is no traffic to the Internet for a pre-configured amount of time, the connection will automatically be disconnected.
IP Address and Network (Subnet) Mask: IP stands for Internet Protocol. An IP address consists of a series of four numbers separated by periods that identifies a single, unique Internet computer host in an IP network.
Example: 192.168.2.1. It consists of 2 portions: the IP network address, and the host identifier.
ISP Gateway Address: (see ISP for definition). The ISP Gateway Address is an IP address for the Internet router located at the ISP's office.
ISP: Internet Service Provider. An ISP is a business that provides connectivity to the Internet for individuals and other businesses or organizations.
64
LAN: Local Area Network. A LAN is a group of computers and devices connected together in a relatively small area (such as a house or an office). The home network is considered a LAN.
MAC Address: MAC stands for Media Access Control. A MAC address is the hardware address of a device connected to a network. The MAC address is a unique identifier for a device with an Ethernet interface. It is comprised of two parts: 3 bytes of data that corresponds to the Manufacturer ID (unique for each manufacturer), plus 3 bytes that are often used as the product’s serial number.
NAT: Network Address Translation. This process allows all of the computers on the home network to use one IP address. Using the broadband router’s NAT capability, users can access the Internet from any computer on the home network without having to purchase more IP addresses from the ISP.
Port: Network Clients (LAN PC) uses port numbers to distinguish one network application/protocol over another. Below is a list of common applications and protocol/port numbers:
SNMP Trap UDP 162
PC Anywhere TCP 5631
PC Anywhere UDP 5632
PPPoE: Point-to-Point Protocol over Ethernet. Point-to-Point Protocol is a secure data transmission method originally created for dial-up connections and PPPoE is for Ethernet connections. PPPoE relies on two widely accepted standards, Ethernet and the Point-to-Point Protocol. It is a communications protocol for transmitting information over Ethernet between different manufacturers.
65
Router: A router is an intelligent network device that forwards packets between different networks based on network layer address information such as IP addresses.
Subnet Mask: A subnet mask, which may be a part of the TCP/IP information provided by the ISP, is a set of four numbers (e.g. 255.255.255.0) configured like an IP address. It is used to create IP address numbers used only within a particular network (as opposed to valid IP address numbers recognized by the Internet, which must be assigned by InterNIC).
TCP/IP, UDP: Transmission Control Protocol/Internet Protocol (TCP/IP) and Unreliable Datagram Protocol
(UDP). TCP/IP is the standard protocol for data transmission over the Internet. Both TCP and UDP are transport layer protocol. TCP performs proper error detection and error recovery, and thus is reliable. UDP on the other hand is not reliable. Both run on top of the IP (Internet Protocol), a network layer protocol.
WAN: Wide Area Network. A network that connects computers located in geographically separate areas (e.g. different buildings, cities, countries). The Internet is a wide area network.
Web-based management Graphical User Interface (GUI): Many devices support a graphical user interface that is based on the web browser. This means the user can use the familiar Netscape or Microsoft Internet
Explorer to Control/configure or monitor the device being managed.
66
advertisement
* Your assessment is very important for improving the workof artificial intelligence, which forms the content of this project
Related manuals
advertisement
Table of contents
- 4 Chapter 1 Introduction
- 4 1.1 Package Contents
- 4 1.2 Key Features
- 5 1.3 Safety Information
- 6 1.4 System Requirements
- 6 1.5 Specifications
- 7 Chapter 2 Physical Description
- 7 2.1 Back Panel
- 7 2.2 Front Panel
- 9 Chapter 3 System and Network Setup
- 9 3.1 Build Network Connection
- 10 3.2 Connecting to Web-Based Management
- 18 Chapter 4 Web-Based Management UI
- 18 4.1 Quick Setup Wizard
- 26 4.2 General Setup
- 59 4.3 Status