manualshive.com logo in svg

BinTec R232a, Reference Manual

The BinTec R232a Reference Manual is now available for free download on our website. This comprehensive manual covers all the features and functionalities of the R232a, making it easy for users to optimize their experience with this high-performance product. Get your copy today at manualshive.com.

Share
Download
background image

work has a parameter that uniquely identifies the network and is comparable with a domain
name. Only clients with a network configuration that matches that of your device can com-
municate in this WLAN. The corresponding parameter is called the network name. In the
network environment, it is sometimes also referred to as the SSID.

Protection of wireless networks

As data can be transmitted over the air in the WLAN, this data can in theory be intercepted
and read by any attacker with the appropriate resources. Particular attention must therefore
be paid to protecting the wireless connection.

There are three security modes, WEP, WPA-PSK and WPA Enterprise. WPA Enterprise of-
fers the highest level of security, but this security mode is only really suitable for compan-
ies, because it requires a central authentication server. Private users should choose WEP
or preferably WPA-PSK with higher security as their security mode.

WEP

802.11 defines the WEP security standard (Wired Equivalent Privacy = encryption of data
with 40 bits (Security Mode =

WEP 40

) or 104 bits (Security Mode =

WEP 104

). However,

this widely used WEP has proven susceptible to failure. However, a higher degree of se-
curity can only be achieved through hardware-based encryption which required additional
configuration (for example 3DES or AES). This permits even sensitive data from being
transferred via a radio path without fear of it being stolen.

IEEE 802.11i

Standard IEEE 802.11i for wireless systems contains basic security specifications for wire-
less networks, in particular with regard to encryption. It replaces the insecure WEP (Wired
Equivalent Privacy) with WPA (Wi-Fi Protected Access). It also includes the use of the ad-
vanced encryption standard (AES) to encrypt data.

WPA

WPA (Wi-Fi Protected Access) offers additional protection by means of dynamic keys
based on the Temporal Key Integrity Protocol (TKIP), and offers PSK (Pre-Shared Keys) or
Extensible Authentication Protocol (EAP) via 802.1x (e.g. RADIUS) for user authentication.

Authentication using EAP is usually used in large wireless LAN installations, as an authen-
tication instance in the form of a server (e.g. a RADIUS server) is used in these cases. PSK
(Pre-Shared Keys) are usually used in smaller networks, such as those seen in SoHo
(Small office, Home office). Therefore, all the wireless LAN subscribers must know the
PSK, because it is used to generate the session key.

Funkwerk Enterprise Communications GmbH

8 Wireless LAN

bintec R200 Series

143

Summary of Contents for R232a

Page 1: ...Manual bintec R200 Series Reference Copyright Version 5 0 2009 Funkwerk Enterprise Communications GmbH Funkwerk Enterprise Communications GmbH Manual bintec R200 Series 1...

Page 2: ...ts no responsibility for data loss unwanted connection costs and damage caused by un intended operation of the product Trademarks funkwerk trademarks and the funkwerk logo bintec trademarks and the bi...

Page 3: ...d connecting 12 2 5 Configuration 13 2 5 1 Preparations 13 2 5 2 Configuring the Gateway 20 2 5 3 Testing the Configuration 21 2 5 4 Reset 22 2 6 Support Information 23 Chapter 3 Technical data 24 3 1...

Page 4: ...Connections 47 3 4 5 Pin Assignments 48 Chapter 4 Access and Configuration 51 4 1 Access Options 51 4 1 1 Access via LAN 51 4 1 2 Access via the Serial Interface 54 4 1 3 Access over ISDN 56 4 2 Logg...

Page 5: ...strative Access 99 5 4 1 Access 99 5 4 2 SSH 100 5 4 3 SNMP 104 5 5 Remote Authentication 105 5 5 1 RADIUS 105 5 5 2 TACACS 110 5 5 3 Options 113 Chapter 6 Physical Interfaces 115 6 1 Ethernet Ports 1...

Page 6: ...tual Service Sets 142 8 2 Administration 148 8 2 1 Basic settings 148 Chapter 9 Routing 150 9 1 Routes 150 9 1 1 IP Routes 150 9 1 2 Options 155 9 2 NAT 157 9 2 1 NAT Interfaces 157 9 2 2 Portforwardi...

Page 7: ...7 10 2 2 Service Categories 212 10 2 3 OAM Controlling 215 10 3 Real Time Jitter Control 219 10 3 1 Controlled Interfaces 219 Chapter 11 VPN 221 11 1 IPSec 221 11 1 1 IPSec Peers 221 11 1 2 Phase 1 Pr...

Page 8: ...l 280 12 1 Policies 281 12 1 1 Filter Rules 282 12 1 2 QoS 285 12 1 3 Options 287 12 2 Interfaces 288 12 2 1 Groups 289 12 3 Addresses 289 12 3 1 Address List 290 12 3 2 Groups 291 12 4 Services 292 1...

Page 9: ...Pool 314 14 3 2 IP MAC Binding 317 14 3 3 DHCP Relay Setting 319 14 4 Web Filter 320 14 4 1 Global Settings 320 14 4 2 Filter List 322 14 4 3 Black White List 324 14 4 4 History 326 14 5 CAPI Server 3...

Page 10: ...5 1 2 DNS Test 353 15 1 3 Traceroute Test 354 15 2 Software Configuration 354 15 2 1 Options 354 15 3 Reboot 358 15 3 1 System Reboot 359 Chapter 16 External Reporting 360 16 1 Syslog 360 16 1 1 Syslo...

Page 11: ...1 1 System Messages 374 17 2 IPSec 375 17 2 1 IPSec Tunnels 375 17 2 2 IPSec Statistics 377 17 3 ISDN Modem 378 17 3 1 Current Calls 379 17 3 2 Call History 380 17 4 Interfaces 381 17 4 1 Statistics 3...

Page 12: ...Table of Contents Funkwerk Enterprise Communications GmbH x bintec R200 Series...

Page 13: ...ation How to get your device running is explained in Configuration on page 13 There we show you how to start up your device within a few minutes from a Windows PC with the help of a Configuration Wiza...

Page 14: ...ice even if this is hundreds of miles away These local networks are connected via an ISDN only bintec R232a R232b and R232bw or DSL connection The size of your own local network whether it consists of...

Page 15: ...and clearing the con nection Security firewall DynDNS Your gateway is provided with integrated firewall mechanisms and therefore provides ex tensive low cost features to meet all the requirements for...

Page 16: ...evices have a powerful IPSec implementation and have with two active VPN tunnel licenses ex works In addition to encryption via AES or 3DES the devices offer authentica tion via certificates or presha...

Page 17: ...also offer WLAN functionality The WLAN function al lows flexible use in wireless environments In addition to a 4 port switch and a further Ethernet port for the LAN WAN connection the bintec R230b and...

Page 18: ...igation menus in the Funkwerk Configuration Interface The individual chapters also contain general explanations on the subsystem in question Glossary The glossary contains a reference to the most impo...

Page 19: ...his manual Typographical elements Typographical element Use Indicates lists Menu Submenu File Open Indicates menus and sub menus non proportional Courier e g ping 192 168 1 254 Indicates commands that...

Page 20: ...ed includes all the tools that you need for the configuration and management of your device The BRICKware contains useful applications for managing your device 2 2 System requirements For configuratio...

Page 21: ...inst unauthorised use Make sure you change the passwords to prevent unauthorised access to your device see Access and Configuration on page 51 Software update Your device contains the version of the s...

Page 22: ...the device 2 4 1 Connections All connections are located on the back of the device Fig 4 Back of bintec R230a R230b 1 Reset Reset button 2 PWR Socket for plug in power pack 3 Console Serial interface...

Page 23: ...interface annex A 8 Main AUX RSMA connection Fig 6 Back of bintec R232a R232b 1 Reset Reset button 2 PWR Socket for plug in power pack 3 Console Serial interface 4 4 3 2 1 10 100 Base T Ethernet inte...

Page 24: ...o damage your device Con nect only the ETH interface of the device to the LAN interface of the computer hub or a WAN interface if available and the ISDN interface of the device only to the ISDN con ne...

Page 25: ...ied with the equipment However configuration via the serial interface is not provided by default The device is now prepared for configuration using the Express Setup Wizard 2 5 Configuration In this c...

Page 26: ...e the given example values for IP addresses and netmasks In cases of doubt ask your system administrator Basic configuration For a basic configuration of your gateway you need information that relates...

Page 27: ...ber and the co user number If you use T DSL you must add the character string t online de at the end of this string of numbers You username could for ex ample look like this 00012345678906112345678 00...

Page 28: ...all The remote terminal must also know your details You have to agree this data between you Your device and the device at your head office check before every connection to see if they should take the...

Page 29: ...as follows to check whether you have installed the protocol 1 Click the Windows Start button and then Settings Network and Dial up Connec tions Windows 2000 or Settings Network Connections Windows XP...

Page 30: ...Click OK 4 Close the status window with OK The computer now has an IP configuration and can access the Internet via the gateway 2 5 1 3 Installing BRICKware BRICKware contains a number of programs to...

Page 31: ...CD ROM drive of your PC The Start win dow will appear automatically after a short time If the Start window does not open automatically click your CD ROM drive in Windows Explorer and double click set...

Page 32: ...ress line Follow the instructions Optional 1 On the bintec bintec Companion CD choose Installation and click the Configure Device button 2 Then follow the instructions to find a free IP address for th...

Page 33: ...your device and can now test the connection in your LAN and to the Internet Carry out the following steps to test your device 1 Remove the serial cable from your device if this was connected and you...

Page 34: ...eset button Proceed as follows if you also want to reset all the user passwords to the ex works state and delete stored configurations when resetting the device 1 Set up a serial connection to your de...

Page 35: ...Support Center of Funkwerk Enterprise Communications GmbH under the follow ing call number or via the E mail Hotline 49 911 9673 1550 hotline funkwerk ec com For detailed information on our support se...

Page 36: ...lug in power pack bintec Companion CD Documentation Quick Install Guide printed User s Guide on CD Release Notes if required Safety precautions 3 1 2 General Product Features The general product featu...

Page 37: ...wer consumption of the device 4 7 Watt Voltage supply 12 V DC 500 mA EU PSU Environmental require ments Storage temperature 20 to 70 C Operating temperature 0 to 40 C Relative atmospheric hu midity 10...

Page 38: ...s Guidelines R TTE Directive 1999 5 EC CE symbol for all EU states SAFERNET TM Security Technology Community Passwords PAP CHAP MS CHAP Access Con trol Lists NAT SIF Software supplied BRICKware for Wi...

Page 39: ...ice is connected to the Ethernet 100 mbps or 10 mbps flashing Data traffic via the Ethernet Interface 100 mbps or 10 mbps ADSL on ADSL connection is active 3 1 4 Connections All the connections are lo...

Page 40: ...rates from 1200 to 115200 Bps The interface is designed as a 5 pole mini USB socket Fig 11 5 pole mini USB socket The pin assignment is as follows Pin assignment of the mini USB socket Pin Function 1...

Page 41: ...e an Auto MDI X function 3 1 5 3 ADSL interface The ADSL interface is connected via an RJ11 plug The cable supplied connects the RJ11 plug needed for the device to an RJ11 plug needed for most ADSL sp...

Page 42: ...ntec Companion CD Documentation Quick Install Guide printed User s Guide on CD Release Notes if required Safety precautions 3 2 2 General Product Features The general product features cover performanc...

Page 43: ...1x WLAN 1x Status 1x ADSL Power consumption of the device 4 7 Watt Voltage supply 12 V DC 800 mA EU PSU Environmental require ments Storage temperature 20 to 70 C Operating temperature 0 to 40 C Rela...

Page 44: ...socket ADSL interface RJ11 socket SAFERNET TM Security Technology Community Passwords PAP CHAP MS CHAP Access Con trol Lists NAT SIF Software supplied BRICKware for Windows BRICKtools for Unix Printed...

Page 45: ...the following status information for your device LED status display LED Status Information Power on The power supply is connected Status on The device has started flashing The device is active 1 to 4...

Page 46: ...ug in power pack 3 Console Serial interface 4 4 3 2 1 10 100 Base T Ethernet interface 6 ADSL ADSL interface 8 Main AUX RSMA connection 3 2 5 Pin Assignments 3 2 5 1 Serial interface bintec R230aw has...

Page 47: ...ernet 10 100 Base T interface RJ45 socket The pin assignment for the Ethernet 10 100 Base T interface RJ45 socket is as follows RJ45 socket for LAN connection Pin Function 1 TD 2 TD 3 RD 4 Not used 5...

Page 48: ...on 1 Not used 2 a 3 b 4 Not used 3 3 bintec R232a bintec R232b 3 3 1 Scope of supply Your device is supplied with the following parts Cable sets mains unit Ethernet cable ISDN cable Serial connecting...

Page 49: ...roduct name bintec R232a bintec R232b Dimensions and weights Equipment dimensions without cable B x H x D 189 2 mm x 27 mm x 123 1 mm Weight approx 550 g Transport weight incl documentation cables pac...

Page 50: ...00 19200 38400 57600 115200 Baud Ethernet IEEE 802 3 LAN 4 port switch Permanently installed twisted pair only 10 100 mbps auto sensing MDIX ISDN WAN S0 Permanently installed ETH Additional Ethernet s...

Page 51: ...mode the LEDs display the following status information for your device LED status display LED Status Information Power on The power supply is connected Status on The device has started flashing The d...

Page 52: ...are arranged as follows Fig 20 Back of bintec R232a bintec R232b Back of bintec R232a bintec R232b 1 Reset Reset button 2 PWR Socket for plug in power pack 3 Console Serial interface 4 4 3 2 1 10 100...

Page 53: ...t interface with an integrated 4 port switch This is used to connect individual PCs or other switches The device also has a fifth Ethernet interface The connection is made via an RJ45 socket Fig 22 Et...

Page 54: ...onnection Fig 23 ADSL interface RJ11 The pin assignment for the ADSL interface RJ11 socket is as follows RJ11 socket for ADSL connection Pin Function 1 Not used 2 a 3 b 4 Not used 3 3 5 4 ISDN S0 port...

Page 55: ...3 4 bintec R232bw 3 4 1 Scope of supply Your device is supplied with the following parts Cable sets mains unit Ethernet cable ISDN cable Serial connecting cable DSL cable Plug in power pack Antennas t...

Page 56: ...Dimensions and weights Equipment dimensions without cable B x H x D 189 2 mm x 27 mm x 123 1 mm Weight approx 550 g Transport weight incl documentation cables packaging approx 1 2 kg Memory 32 MB SDR...

Page 57: ...isted pair only 10 100 mbps auto sensing MDIX ISDN WAN S0 Permanently installed ETH Additional Ethernet switch port WLAN interface antennas 802 11b and 802 11g with Antenna Diversity Data rates 1 2 5...

Page 58: ...ntenna is receiving a better signal This is then used for decoding Since the two antennas are approximately one wavelength apart the dif ference in signal strength can be quite considerable 3 4 3 LEDs...

Page 59: ...thernet flashing Data traffic via the Ethernet interface ADSL on ADSL connection is active ISDN on One B channel is used flashing Both B channels are in use 3 4 4 Connections All the connections are l...

Page 60: ...to 115200 Bps The interface is designed as a 5 pole mini USB socket Fig 27 5 pole mini USB socket The pin assignment is as follows Pin assignment of the mini USB socket Pin Function 1 Not used 2 Rx 3...

Page 61: ...nterface The ADSL interface is connected via an RJ11 plug The cable supplied connects the RJ11 plug needed for the device to an RJ11 plug needed for most ADSL splitters Only the two inner pins are use...

Page 62: ...ection is made via an RJ45 socket Fig 30 ISDN S0 BRI interface RJ45 socket The pin assignment for the ISDN S0 BRI interface RJ45 socket is as follows RJ45 socket for ISDN connection Pin Function 1 Not...

Page 63: ...rd and Funkwerk Configuration Interface in a web browser for configuration purposes and to access your device via Telnet or SSH 4 1 1 1 HTTP HTTPS With a current web browser you can use the HTML inter...

Page 64: ...UNIX and Linux without any problem 1 Enter telnet IP address of your device in a terminal A window with the login prompt appears You are now in the SNMP shell of your device 2 Continue with Logging i...

Page 65: ...r for each of the algorithms RSA and DSA i e two files must be stored in the flash for each algorithm see example at above If no keys are available you have to generate these first Proceed as follows...

Page 66: ...intec gateway has a serial interface with which a PC can be connected directly The following chapter describes what you have to remember when setting up a serial con nection and what you can do to con...

Page 67: ...device has not been set up successfully Therefore check the COM1 or COM2 settings on your PC 1 Click on File Properties 2 Click Configure in the Connect to tab The following settings are necessary Bit...

Page 68: ...on in parallel to a PBX the PBX cannot take any calls until an ISDN number is configured on the device Access over ISDN costs money If your device and your computer are in the LAN it is cheaper to acc...

Page 69: ...e normally shown on the Setup Tool screen not in plain text but only as asterisks The user names on the other hand are displayed as plain text The security concept of your device enables you to read a...

Page 70: ...ave the SNMP shell after completing the configuration enter exit and press Return 4 3 Configuration options This chapter first offers an overview of the various tools you can use for configuration of...

Page 71: ...vice is ready for use The information you need for configuration with the Express Setup Wizard and the prerequisites for this can be found in the Quick Install Guide on page 8 which is also available...

Page 72: ...figur ation button You can also use the Funkwerk Configuration Interface to monitor the most important function parameters of your device Fig 31 Funkwerk Configuration Interface Initial Screen 4 Acces...

Page 73: ...ess field of the web browser 5 Enter admin in the User field and funkwerk in the Password field and click LOGIN You are not in the status menu of your device s Funkwerk Configuration Interface see Sta...

Page 74: ...ck this button if you want to activate the configuration wizard The configuration assistant is opened in a new window and takes you step by step through the basic configuration of your device and alte...

Page 75: ...the entry selected will be displayed in red All the other sub menus will be closed You can see at a glance the sub menu you are in Status page If you call the Funkwerk Configuration Interface after y...

Page 76: ...nternal list Funkwerk Configuration Interface buttons for special functions Button Function In the Access Point Search menu you use this button to start automatic detection of all the access points av...

Page 77: ...us for an interface or connection Indicates Blocked status for an interface or connection Indicates Going up status for an interface or connection Indicates that data traffic is encrypted Triggers a W...

Page 78: ...list Structure of the Funkwerk Configuration Interface configuration menus The menus of the Funkwerk Configuration Interface contain the following basic struc tures Funkwerk Configuration Interface me...

Page 79: ...mpty text field Text field with hidden input Enter the data Radio buttons e g Select the corresponding option Checkboxes e g activation by selecting checkbox Selection of several possible options Drop...

Page 80: ...at values were entered or selected incorrectly Pay particular attention to the following message Warning changes not supported by the Setup Tool If you makes these changes with the Funkwerk Configurat...

Page 81: ...device are to run routing or bridging and if necessary can define bridge groups Administrative Access In this menu you configure the access options for the individual interfaces Remote Authentication...

Page 82: ...able via RIP Load Balancing In this menu you configure application controlled bandwidth management Multicast In this menu you configure the use of multimedia streaming protocols for e g voice over IP...

Page 83: ...menu you configure the filter rules for the firewall Interfaces In this menu you can group together the interfaces to be filtered Addresses In this menu you can create the address aliases to be filte...

Page 84: ...iscovery In this menu you can configure management functions for bintec Access Point UPnP In this menu you configure the UPnP settings individually for each interface of your gateway Maintenance Menu...

Page 85: ...are displayed Interfaces In this menu connection statistics and status of all interfaces are displayed WLAN This menu shows you the WLAN connections statistics 4 3 3 The Setup Tool for experts The Se...

Page 86: ...urs The help line tells you how to move around in the current menu which entries you can change or which values are possible for an entry Basically a menu looks like this Fig 38 Setup Tool menu 4 3 3...

Page 87: ...nu Commands When you start moving around in the Setup Tool you will notice that some menus have special command options such as DELETE SAVE and CANCEL The meaning of the commands is explained below Bu...

Page 88: ...as follows 1 Enter the first letter of the entry you are looking for with the cursor located on a list entry Entries can be made in upper or lower case 2 If necessary enter more characters to refine...

Page 89: ...start the Setup Tool of your device in a mode in which the passwords are displayed in plain text and can be changed by one time editing you must enter the command setup p This option only exists if y...

Page 90: ...word and the help line shows the following message Password doesn t match Try again 4 3 3 5 Menu structure The main menu of the Setup Tool looks like this Fig 40 Setup Tool main menu The menu structur...

Page 91: ...ou enter the basic system settings of your device such as for example system name system date system time passwords External Systems In this menu you can configure management functions for ex ternal s...

Page 92: ...y functions of your device e g Stateful Inspection Firewall and Web Filtering IPSEC In this menu you configure VPN connections over IPSec IP In this menu you enter all the settings that concern the IP...

Page 93: ...from the SNMP shell via SNMP commands This type of configuration requires a detailed knowledge of our devices 4 4 BOOTmonitor The BOOTmonitor is only available over a serial connection to the device...

Page 94: ...nitor prompt is displayed if you are serially connected to your device After display of the BOOTmonitor prompt press the space bar within four seconds to use the functions of the BOOTmonitor If you do...

Page 95: ...see an overview of the following data System status Your device s activities Resource utilisation active sessions and tunnels Status and basic configuration of the LAN WAN ISDN WLAN and ADSL interfac...

Page 96: ...e the device was rebooted System Date Displays the current system date and system time Serial Number Displays the device serial number BOSS Version Displays the currently loaded version of the system...

Page 97: ...atus Field Value Physical Interface In terface Specifics Link The physical interfaces are listed here and there most important settings are shown The system also displays whether the inter face is con...

Page 98: ...ystem The System Management Global Settings System menu consists of the following fields Fields in the System Basic Parameters menu Field Value System Name Enter the system name of your device This is...

Page 99: ...higher or identical priority to that indicated i e all messages generated are recorded at syslog level debug Possible values Emergency Only messages with emergency priority are re corded Alert Messag...

Page 100: ...ds Note All bintec devices are delivered with the same username and password As long as the password remains unchanged they are not protected against unauthorised use Make sure you change the password...

Page 101: ...ord Options menu Field Value Show Passwords and keys in clear text Define whether the passwords are to be displayed in clear text plain text The function is activated with Display The function is disa...

Page 102: ...related switches that are scheduled for the extra hour are then carried out Switches already initiated are carried out again when the set time is reached If an external call is made during the switch...

Page 103: ...Date and Time Manual Time Settings menu Field Description New Date Enter a new date Format Day dd Month mm Year yyyy New Time Enter a new time Format Hour hh Minute mm Fields in the Date and Time Aut...

Page 104: ...r the time re quest Secondary Timeserver Enter the secondary time server using either a domain name or an IP address In addition select the protocol for the time server request Possible values SNTP de...

Page 105: ...he system attempts to contact the time server again following a failed time update Possible values Normal default value The system attempts to contact the time server after 1 2 4 8 and 16 minutes Aggr...

Page 106: ...ng license data You can obtain the licence data for extra licences via the online licensing pages in the sup port section at www funkwerk ec com Please follow the online licensing instructions Please...

Page 107: ...ra licences by adding the received licence information in the System Ad ministration Global Settings System Licenses New menu The System Management Global Settings System Licences New menu con sists o...

Page 108: ...number 5 3 Interface Mode Bridge Groups In this menu you define the operation mode for your device s interfaces Routing versus bridging Bridging connects networks of the same type In contrast to rout...

Page 109: ...b Number of the bridge group Example br0 first bridge group The name of the wireless network is made up of the following parts a Abbreviation for interface type b Number of the wireless module c Numb...

Page 110: ...Interface Mode Bridge Groups Interfaces The System Management Interface Mode Bridge Groups Interfaces menu con sists of the following fields Fields in the Interfaces menu Field Description Shows the s...

Page 111: ...n interface Interface name Select the interface to be used for con figuration If this interface is in a bridge group it is assigned the group s IP address when it is taken out of the group 5 4 Adminis...

Page 112: ...ss Access Add menu consists of the following fields Fields in the Access menu Field Description Interface Select the interface for which administrative access is to be con figured 5 4 2 SSH Your devic...

Page 113: ...e shell of your device via an SSH client make sure the settings for the SSH Daemon and SSH client are the same Note If configuration of an SSH connection is not possible restart the device to initiali...

Page 114: ...ple errors of the SSH Daemon and information messages are recorded Fatal Only fatal errors of the SSH Daemon are recorded Errors Fatal and simple errors of the SSH Daemon are re corded Debug All messa...

Page 115: ...the status Unknown is displayed generation of a key is not possible for example because there is not enough space in the FlashROM DSA Key Status Shows the status of the DSA key If a DSA key has not be...

Page 116: ...bles and variables and defined in the MIB Management Information Base This contains all the configuration and status variables of the device SNMP can be used to perform the following network managemen...

Page 117: ...sfer all data unencrypted 5 5 Remote Authentication This menu contains the settings for user authentication 5 5 1 RADIUS RADIUS Remote Authentication Dial In User Service is a service that enables aut...

Page 118: ...ACCESS_REQUEST Client Server If an access request is received by your device a request is sent to the RADIUS server if no corresponding connection part ner has been found on your device ACCESS_ACCEPT...

Page 119: ...5 1 1 Edit New Choose the icon to edit existing entries Choose the New button to add RADIUS serv ers Fig 53 System Administration Remote Authentication RADIUS New The System Management Remote Authent...

Page 120: ...ication between the RADIUS server and your device Priority If a number of RADIUS server entries were created the server with the highest priority is used first If this server does not an swer the serv...

Page 121: ...repeated according to Retries or the next configured RADIUS server is requested Possible values are whole numbers between 50 and 50000 The default value is 1000 1 second Alive Check Here you can acti...

Page 122: ...disabled by default If the function is active you can enter the following options Reload Interval Enter the time period in seconds between the update intervals The default entry here is 0 i e an autom...

Page 123: ...ration Remote Authentication TACACS New The System Management Remote Authentication TACACS New menu con sists of the following fields Fields in the TACACS Basic Parameters menu Field Description Authe...

Page 124: ...nction is activated by choosing Enabled The function is enabled by default The Advanced Settingsmenu consists of the following fields Fields in the Advanced Settings menu Field Description Policy Sele...

Page 125: ...xchange between the TACACS server and the NAS is to be encrypted with MD5 The function is activated by choosing Enabled The function is enabled by default If the function is not enabled the packets an...

Page 126: ...sequence is used for in coming calls with RADIUS First CLID then PPP and then PPP with RADIUS Options Inband Only inband RADIUS requests PAP CHAP MS CHAP V1 V2 i e PPP requests without CLID are sent t...

Page 127: ...he Ethernet switch ports Note The Ethernet ports of the four port switches are assigned to a single Ethernet interface in ex works state The Ethernet interface en1 0 is pre configured with the IP Addr...

Page 128: ...same For ex ample if you split all the switch ports from each other each of the resulting interfaces only uses a part of the total bandwidth If you group together several switch ports into one inter f...

Page 129: ...10 mbps Half Duplex Fixed 100 mbps Full Duplex Fixed 100 mbps Half Duplex Fixed 10 mbps Full Duplex Fixed 10 mbps Half Duplex Disabled The interface is created but remains inactive Current Speed Mode...

Page 130: ...de Shows the actual mode and actual speed of the interface Possible values 100 mbps Full Duplex 100 MBit s Half Duplex 10 mbps Full Duplex 10 mbps Half Duplex Inactive 6 2 ISDN Ports You can use the I...

Page 131: ...ly set ISDN protocol prevents ISDN connections being set up In the Physical Interfaces ISDN Ports ISDN Configuration menu a list of all ISDN ports and their configurations is shown 6 2 1 1 Working wit...

Page 132: ...o point See Port Usage and ISDN Configtype Euro ISDN point to multipoint See Port Usage and ISDN Configtype Auto Config disabled Manual setting for Port Usage and ISDN Configtype Running Detection is...

Page 133: ...s not detected TEI you can manually enter the value assigned by the exchange Possible values are 0 to 63 The default value is 1 for automatic detection X 31 TEI Service Only if X 31 X 25 in D channel...

Page 134: ...s support the DynDNS service to enable hosts without fixed IP ad dresses to obtain a secure connection over the Internet With the IPSec Callback function and using a direct ISDN call to an IPSec peer...

Page 135: ...all MSNs is shown 6 2 2 1 New Choose the New button to edit MSNs Fig 58 Physical Interfaces ISDN Ports MSN Configuration New The Physical Interfaces ISDN Ports MSN Configuration New menu consists of...

Page 136: ...arty number For the call to be accepted it is sufficient for the individual numbers in the entry to agree taking account of MSN Recognition MSN Recognition Select the mode your device is to use for th...

Page 137: ...operation mode The value cannot be changed Possible values Unknown The ADSL link is not active ANSI T1 413 ANSI T1 413 ADSL1 ADSL classic G DMT ITU G 992 1 G Lite Splitterless ADSL ITU G 992 2 ADSL2...

Page 138: ...SL1 ADSL1 G DMT is used ADSL2 ADSL2 G 992 3 is used ADSL2 Plus ADSL2 Plus G 992 5 is used None The ADSL interface is not active Transmit Shaping Select whether the data rate in the send direction is t...

Page 139: ...Field Description Enter the maximum data rate in the send direction in bits per second Funkwerk Enterprise Communications GmbH 6 Physical Interfaces bintec R200 Series 127...

Page 140: ...tton to create virtual interfaces However this is only needed in special applications e g BRRP Depending on the option selected different fields and options are available All the config uration option...

Page 141: ...on Based on Ethernet Inter face This field is only displayed if you are editing a virtual routing in terface Select the Ethernet interface for which the virtual interface is to be configured Address M...

Page 142: ...ciated with the interface For virtual interfaces you can use the MAC address of the physical inter face under which the virtual interface was created but this is not necessary You can also allocate a...

Page 143: ...device is to apply MSS Clamping To pre vent IP packets fragmenting the MSS Maximum Segment Size is automatically decreased by the device to the value set here The function is activated by choosing Ena...

Page 144: ...he VLAN menu you can make all the settings needed for this and query their status Caution For interfaces that operate in Routing mode you only assign a VLAN ID to the inter face You define this via th...

Page 145: ...consists of the following fields Fields in the VLANs Configure VLAN menu Field Description VLAN Identifier Enter the number that identifies the VLAN In the Edit menu you can no longer change this valu...

Page 146: ...following fields Fields in menu Port Configuration Field Description Interface Shows the port for which you define the PVID and processing rules PVID Assign the selected port the required PVID Port V...

Page 147: ...for each bridge group Fig 64 LAN VLAN Administration The LAN VLAN Administration menu consists of the following fields Fields in the menu Bridge Group br ID VLAN Options Field Description Enable VLAN...

Page 148: ...GHz which ensures that parts of the building are penetrated as effect ively as possible with a low transmission power that poses no health risks A 802 11g compatible standard is 802 11b which operates...

Page 149: ...e Settings menu an overview of all the configuration options for the WLAN module is shown Fig 65 Wireless LAN WLANx Wireless Module Settings 8 1 1 1 Radio Settings Edit In this menu you change the set...

Page 150: ...ription Radio Select whether you want to enable the radio The function is activated by choosing Enabled The function is disabled by default Operation Mode Define whether your device is to be run as an...

Page 151: ...dvisable to allocate the networks to different channels Each of these should be spaced at least four channels apart as a network also partially occupies the adja cent channels In the case of manual ch...

Page 152: ...ssion speed Possible values auto default value The transmission speed is determined automatically 1 2 5 6 9 11 12 18 24 36 48 54 mbps Burst Mode This performance feature increases the maximum burst ti...

Page 153: ...witched on off If you choose User Defined in the input field you can specify the data packet length threshold in bytes 1 2346 as of which the RTS CTS mechanism is to be used This makes sense if severa...

Page 154: ...Max Transmit MSDU Lifetime Enter the time from sending of the first fragment of a data pack et as of which no further send attempts are made The data packet is discarded Possible values are 1 to 42949...

Page 155: ...to failure However a higher degree of se curity can only be achieved through hardware based encryption which required additional configuration for example 3DES or AES This permits even sensitive data...

Page 156: ...on with the general value for Network Name SSID Any and do not know the SSID settings Use the available encryption methods To do this select Security Mode WEP 40 WEP 104 WPA PSK or WPA Enterprise or b...

Page 157: ...ield Description Network Name SSID Enter the name of the wireless network SSID Enter an ASCII string with a maximum of 32 characters Also select whether the Network Name SSID is to be trans mitted The...

Page 158: ...in the Virtual Service Sets Security Settings menu Field Description Security Mode Select the security mode encryption and authentication for the wireless network Possible values Inactive default val...

Page 159: ...d WPA 2 can be used WPA Only WPA is used WPA 2 Only WPA2 is used WPA Cipher Only for Security Mode WPA PSK and WPA Mode WPA and WPA and WPA2 Select the type of encryption you want to apply to WPA Poss...

Page 160: ...d by choosing Enabled The function is disabled by default Allowed Addresses Use Add to make entries and enter the MAC addresses MAC Address of the clients to be permitted 8 2 Administration The Wirele...

Page 161: ...untry in which the access point is to be run Possible values are all the countries configured on the gate way s wireless module The range of channels available for selection Channel in the Wireless LA...

Page 162: ...1 1 Edit New Choose the icon to edit existing entries Choose the New button to create routes Fig 69 Routing Routes IP Routes New with Extended Route Not Enabled If the Extended Route option is selecte...

Page 163: ...e function is active a route is created with extended routing parameters such as source interface and source IP ad dress as well as protocol source and destination port type of service TOS and the sta...

Page 164: ...Network Type Not for Route Type Default Route Also select the network type Possible values Direct default value in the LAN You define another IP address for the interface in the WAN You define a rout...

Page 165: ...rt Only if Layer 4 Protocol TCP or UDP Enter the source port First select the port number range Possible values Any default value The route is valid for all port numbers Single Enables the entry of a...

Page 166: ...5 Enter the appropriate values for the indivividual port or start port of a range in Port and for a range the end port in to Port DSCP TOS Value Select the Type of Service TOS Possible values Ignore d...

Page 167: ...interface is dormant then dial and wait until the interface is up In this case an alternative interface with a poorer metric is used for routing until the interface is up 9 1 2 Options Back Route Ver...

Page 168: ...pecific interfaces Displays the serial number of the list entry Interface Only for Mode Enable for specific interfaces Displays the name of the interface Back Route Verify Only for Mode Enable for spe...

Page 169: ...n page 158 In the Routing NAT NAT Interfaces menu a list of all NAT interfaces is shown Fig 72 Routing NAT NAT Interfaces For each NAT interface you can select the options NAT Active Silent Deny and P...

Page 170: ...rk are also to be permitted if NAT is activated The function is disabled by default If PPTP Passthrough is enabled the device itself cannot be configured as a tunnel endpoint Portforwardings Shows the...

Page 171: ...n Interface Select the interface for which port forwarding is to be con figured Fields in the Portforwarding Select traffic Field Description Service Select the service for which address mapping is de...

Page 172: ...ol Only if Services User defined Select the protocol Possible values ANY default value ICMP GGP IP TCP EGP IGP PUP Chaos UDP HMP XNS IDP RDP IPv6 RSVP GRE ESP AH TLSP SKIP Kryptolan 9 Routing Funkwerk...

Page 173: ...ed by default so that you can enter the IP address manually Port Only if Service User defined First select whether all connections are to be permitted or whether a certain port or port range is to be...

Page 174: ...formation between several devices This ex change is controlled by a Routing Protocol e g RIP Routing Information Protocol By de fault about every 30 seconds this value can be changed in Update Timer a...

Page 175: ...st of all RIP interfaces is shown Fig 74 Routing RIP RIP Interfaces 9 3 1 1 Edit For each RIP interface you can in the menu select the options Send Version Re ceive Version and Route Announce Funkwerk...

Page 176: ...is not enabled RIP V1 Enables sending and receiving of version 1 RIP packets RIP V2 Enables sending and receiving of version 2 RIP packets RIP V1 V2 Enables sending and receiving of both version 1 and...

Page 177: ...this option if you want to set the time at which any activ ated routing protocols e g RIP are to propagate the IP routes defined for this interface Note This setting does not affect the interface spe...

Page 178: ...s no entry this corresponds to the IP address 0 0 0 0 with Netmask 255 255 255 255 In the Routing RIP RIP Filters menu a list of all RIP filters is shown Fig 76 Routing RIP RIP Filters You can use the...

Page 179: ...and outgoing RIP packets import or ex port for the same IP address must be separately configured You can enter individual host addresses or network addresses Direction Select whether the filter appli...

Page 180: ...Options Fig 78 Routing RIP RIP Options The Routing RIP RIP Options menu consists of the following fields Fields in the RIP Options Global RIP Parameters menu Field Description RIP UDP Port The settin...

Page 181: ...Timer For the timers described in RFC 2453 select whether the same values that you can configure in the Timer for RIP V2 RFC 2453 menu The function is activated with Enabled The function is enabled b...

Page 182: ...m the IPROUTETABLE if no update is carried out for the route The default value is 120 seconds Fields in the RIP Options Timer for Triggered RIP RFC 2091 menu Field Description Hold Down Timer Only for...

Page 183: ...erent providers Session based load balancing is achieved Related dependent sessions are always routed over the same interface A decision on distribution is only made for outgoing sessions In the Routi...

Page 184: ...send and receive direction Consider Only for Distribution Policy Load dependent Bandwidth Choose the direction in which the current data rate is to be con sidered Options Download Only the data rate...

Page 185: ...ution for effective use of bandwidth because the sender of the data packet which can be received by several re cipients only needs to send the packet once The packet is sent to a virtual address defin...

Page 186: ...ol In IPv4 IGMP Internet Group Management Protocol is a protocol that hosts can use to provide the router with multicast membership information IP addresses of the class D ad dress range are used for...

Page 187: ...inter faces of your device 9 5 1 1 New Choose the New button to create forwarding rules for new multicast groups Fig 80 Routing Multicast Forwarding New The Routing Multicast Forward New menu consist...

Page 188: ...ignal the informa tion about group membership in a subnet As a result only the packets explicitly wanted by a host enter the subnet Special mechanisms ensure that the requirements of the individual cl...

Page 189: ...and responses are accepted Query Interval Enter the interval in seconds in which IGMP queries are to be sent Possible values are 0 to 600 The default value is 125 Maximum Response Time For the sending...

Page 190: ...more packets for this group should be forwarded to this interface Possible values are 0 to 255 The default value is 10 IGMP State Limit Limit the number of reports queries per second for the selected...

Page 191: ...on IGMP Proxy Select whether your device is to forward the hosts IGMP mes sages in the subnet via its defined Proxy Interface Proxy Interface Only for IGMP Proxy enabled Select the interface on your d...

Page 192: ...s of the following fields Fields in the Options Basic Settings menu Field Description IGMP Status Select the IGMP status Possible values Auto default value Multicast is activated automatically for hos...

Page 193: ...ups to be permitted both in ternally and in reports Maximum Sources Enter the maximum number of sources that are specified in ver sion 3 reports and the maximum number of internally managed sources pe...

Page 194: ...otocols You can also configure Internet access over ISDN Note Note your provider s instructions Dialin connections over ISDN are used to establish a connection to networks or hosts out side your LANs...

Page 195: ...e If for example you configure both Internet access and a corporate network connection enter a default route to the ISP and a network route to the head office You can enter several default routes on y...

Page 196: ...traffic drops the additional B channels are closed again Static In static channel bundling you specify right from the start how many B channels your device is to use for connections regardless of the...

Page 197: ...n Description Enter a name to uniquely identify the PPPoE partner The first character in this field must not be a number and no special characters or umlauts must be used either PPPoE Mode Select whet...

Page 198: ...E Mode Standard Select the Ethernet interface specified for a standard PPPoE connection If you want to use an external DSL modem select the Ethernet port to which the modem is connected When using the...

Page 199: ...r your device is to be assigned a static IP address or whether it should be assigned this dynamically Possible values Get IP Address default value Your device is dynamic ally assigned an IP address St...

Page 200: ...tion has failed The de fault value is 60 Maximum Number of Di alup Retries Enter the number of unsuccessful attempts to setup a connec tion before the interface is blocked Possible values are 0 to 100...

Page 201: ...ymmetrical bandwidths ADSL The function is activated with Enabled The function is disabled by default LCP Alive Check Check whether the availability of the remote terminal is to be checked by sending...

Page 202: ...g the internet connection The first character in this field must not be a number and no special characters or umlauts must be used either PPTP Interface Select the IP interface over which packets are...

Page 203: ...interval in seconds This determines how many seconds should pass between sending the last traffic data pack et and clearing the connection Possible values are 0 to 3600 seconds 0 deactivates the timeo...

Page 204: ...PTP partner Add a new entry with Add Remote IP Address IP address of the destination host or destination network Netmask Netmask of Remote IP Address If no entry is made your device uses a default net...

Page 205: ...ntication protocol required by the PPTP partner MSCHAP version 1 or 2 possible MS CHAPv2 Run MS CHAP version 2 only DNS Negotiation Select whether your device receives IP addresses for primary DNS ser...

Page 206: ...s activated with Enabled The function is disabled by default 10 1 3 PPPoA In the WAN Internet Dialup PPPoA menu a list of all PPPoA interfaces is shown In this menu you configure a xDSL connection use...

Page 207: ...racter in this field must not be a number and no special characters or umlauts must be used either ATM PVC Select an ATM profile created in the ATM Profiles menu in dicated by the global identifiers V...

Page 208: ...smission 20 for LAN to LAN transmis sion 90 for Internet connections Fields in the PPPoA IP Mode and Routes menu Field Description IP Address Mode Choose whether your device has a static IP address or...

Page 209: ...lock after connection failure for Enter the wait time in seconds before the device should try again after an attempt to set up a connection has failed The de fault value is 60 Maximum Number of Di alu...

Page 210: ...CP ACK Packets Select whether the TCP download is to be optimised in the event of intensive TCP upload This function can be specially applied for asymmetrical bandwidths ADSL The function is activated...

Page 211: ...e of the ISDN Callback function 10 1 4 1 New Choose the New button to set up new ISDN interfaces Fig 87 WAN Internet Dialup ISDN New Funkwerk Enterprise Communications GmbH 10 WAN bintec R200 Series 1...

Page 212: ...DN data connections User Name Enter your device code local PPP user name Remote User for Dialin only Enter the code of the remote terminal remote PPP user name Password Enter the password Always on Se...

Page 213: ...ined as the default route The function is activated with Enabled The function is disabled by default Create NAT Policy Only if IP Address Mode Static and Get IP Address When you configure an ISDN conn...

Page 214: ...iled The default value is 60 Maximum Number of Di alup Retries Enter the number of unsuccessful attempts to setup a connec tion before the interface is blocked Possible values are 0 to 100 The default...

Page 215: ...ection If Encryption is set the remote terminal must also sup port it otherwise a connection cannot be established Possible values None default value MPP encryption is not used Enabled MPP encryption...

Page 216: ...ack and maintaining the initial connection to your device without call back This only applies if no fixed outgoing number has been configured for the connection partner This is done by pressing CANCEL...

Page 217: ...er Number Subscriber Number Enter the connection partner s number Fields in the Advanced Settings IP Options menu Field Description OSPF Mode Select whether and how routes are propagated via the inter...

Page 218: ...n is enabled by default 10 1 5 IP Pools In the IP Pools menu a list of all IP pools is displayed Your device can operate as a dynamic IP address server for PPP connections You can use this function by...

Page 219: ...ield enter the last IP address of the range 10 2 ATM 10 2 1 Profiles In the WAN ATM Profiles menu a list of all ATM profiles is shown If the connection for your Internet access is set up using the int...

Page 220: ...ew The WAN ATM Profile New menu consists of the following fields Fields in the Profile ATM Profiles Parameter menu Field Description Provider Select one of the preconfigured ATM profiles for your prov...

Page 221: ...irtual path to be used Note your pro vider s instructions Possible values are 0 to 255 The default value is 8 Virtual Channel Identifier VCI Only for Provider User defined Enter the VCI value of the A...

Page 222: ...n with Frame Check Sequence checksums Fields in the Settings for Ethernet over ATM menu only shown for Type Ethernet over ATM Field Description Default Ethernet for PPPoE Interfaces Only for Type Ethe...

Page 223: ...select the Use Pre configured option default set ting in which case the MAC address of en1 0 is used DHCP Hostname Only for Address Mode DHCP If necessary enter the host name registered with the provi...

Page 224: ...rtual Circuit already configured with specific assigned data traffic parameters is shown Your device supports QoS Quality of Service for ATM interfaces Caution ATM QoS should only be used if your prov...

Page 225: ...e category a priority is implicitly assigned from CBR highest priority through VBR 1 VBR 3 to VBR lowest priority Possible settings Unspecified Bit Rate UBR default value Unspecified Bit Rate A partic...

Page 226: ...on network i e is discarded if ne cessary The Peak Cell Rate PCR represents the maximum possible data rate This category is suitable for critical applica tions with burst data traffic Peak Cell Rate P...

Page 227: ...eived This is ensured without a specific OAM configuration for both flow level 4 and flow level 5 Two mechanisms are available for monitoring the ATM connection Loopback Tests and OAM Continuity Check...

Page 228: ...annel default value f4 virtual path level The OAM settings are used for the vir tual path Virtual Channel Connec tion VCC Only for OAM Flow Level f5 Select the already configured ATM connection to be...

Page 229: ...arded as in terrupted down Possible values are 1 to 99 The default value is 5 Loopback Segment Select whether you want to activate the loopback test for the segment connection segment connection of th...

Page 230: ...irection field OAM CC requests are either sent and or responded to There is no CC negotiation None The function is disabled Also select whether the test cells of the OAM CC are to be sent or received...

Page 231: ...rnet voice data packets normally have the highest priority Nevertheless if the upstream bandwidth is low noticeable delays in speach transmission can occur when other packets are routed at the same ti...

Page 232: ...mode for the optimisation Possible values Controlled RTP Streams only default value By means of the data routed via the media gateway the system detects voice data traffic and optimises the voice tra...

Page 233: ...ackets The IPSec implementation can also be smoothly integrated in a Public Key Infrastructure PKI The bintec IPSec im plementation achieves this firstly by using the Authentication Header AH protocol...

Page 234: ...s in the list IPSec Tunnels on page 376 11 1 1 1 New Choose the New button to set up more IPSec peers Fig 94 VPN IPSec IPSec Peers New The VPN IPSec IPSec Peers New menu consists of the following fiel...

Page 235: ...entry can be omitted in certain configurations whereby your device then cannot initiate an IPSec connection Peer ID Select the ID type and enter the peer ID This entry is not necessary in certain con...

Page 236: ...ed by default Local IP Address Only if Default Route is not enabled Enter the WAN IP address of your IPSec tunnel This can be the same IP address as the address configured on your router as the LAN IP...

Page 237: ...th Enabled The function is disabled by default Proxy ARP Select whether your device is to respond to ARP requests from its own LAN on behalf of the specific connection partner Possible values Off defa...

Page 238: ...number are routed to the IPSec service If callback is active the peer is caused to initiate setting up an IPSec tunnel by an ISDN call as soon as this tunnel is required With passive callback the set...

Page 239: ...cepted by the remote station and therefore incurs costs If a peer whose IP address has been assigned dynamically wants to arrange for another peer to set up an IPSec tunnel it can transfer its own IP...

Page 240: ...e call in the D channel can also incur costs An incorrect configuration at the called side can mean that the called side opens the B channel the calling side incurs costs Fields in the Advanced Settin...

Page 241: ...nsfer its IP address to the peer Possible values Autodetect Best Mode Your device automatically de termines the most favourable mode It first tries all D channel modes before switching to the B channe...

Page 242: ...the D channel SUBADDR The IP address is transferred in the subaddress in formation elements of the D channel LLC and SUBADDR The IP address is transferred in both the LLC and subaddress information e...

Page 243: ...ely defines the type of rule Proposals In this field you can select any combination of encryption and message hash algorithms for IKE phase 1 on your device The combination of six encryption algorithm...

Page 244: ...vel of secur ity against attacks and general speed Here it is used with a key length of 128 bits AES 192 Rijndael has been nominated as AES due to its fast key setup low memory requirements high level...

Page 245: ...ntiation at 1024 bits is used to create the en cryption material 5 1536 bit During the Diffie Hellman key calculation modular exponentiation at 1536 bits is used to create the en cryption material Lif...

Page 246: ...This field is only shown for authentication settings based on certificates and indicates that a certificate is essential Mode Select the phase 1 mode Possible values Aggressive default value The Aggre...

Page 247: ...cal Alive Check During communication between two IPSec peers one of the peers may become unavail able e g due to routing problems or a reboot However this can only be detected when the end of the life...

Page 248: ...n both sides This option only checks the availability of the peer if data is to be sent to it Dead Peer Detection Idle Use DPD dead peer de tection in accordance with RFC 3706 DPD uses a request reply...

Page 249: ...ed by default CA Certificates Only if Authentication Method DSA Signature RSA Sig nature or RSA Encryption If you enable the Trust following CA certificates op tion you can select up to three addition...

Page 250: ...Standard column you can mark the profile to be used as the default profile 11 1 3 1 New Choose the New button to set up new profiles Fig 98 VPN IPSec Phase 2 Profiles New 11 VPN Funkwerk Enterprise Co...

Page 251: ...requirements high level of secur ity against attacks and general speed Here it is used with a key length of 128 bits AES 192 Rijndael has been nominated as AES due to its fast key setup low memory req...

Page 252: ...is used to protect the keys of a renewed phase 2 SA even if the keys of the phase 1 SA have become known The field has the following options 1 768 bit During the Diffie Hellman key calculation modula...

Page 253: ...s the per formance can be significantly affected by the increased effort during compression The function is activated with Enabled The function is disabled by default Alive Check Select whether and th...

Page 254: ...ses These IP addresses can be assigned to dialling in connection partners for the duration of the connection Any host routes entered always have priority over IP addresses from the address pools This...

Page 255: ...elds in the Options IP Pools menu Field Description IP Pool Name Enter the name of the IP pool IP Pool Range In the first field enter the first IP address of the range In the second field enter the la...

Page 256: ...The function is active as soon as an IPSec Peer is configured Delete complete IPsec configuration If you click the icon delete the complete IPSec configuration of your device This cancels all settings...

Page 257: ...to work correctly to other bintec devices so that you only need to change these values if the remote terminal is a third party product or you know special settings are necessary These may be needed fo...

Page 258: ...thentication Select whether RADIUS authentication is to be activated via IPSec The function is activated with Enabled The function is disabled by default Fields in the Advanced Settings PKI Editing Op...

Page 259: ...nabled to sup press this behaviour 11 2 L2TP The layer 2 tunnel protocol L2TP enables PPP connections to be tunnelled via a UDP connection Your bintec device supports the following two modes L2TP LNS...

Page 260: ...tion for the current profile The device automatically names the profiles L2TP and numbers them but the value can be changed Local Hostname Enter the host name for LNS or LAC LAC The Local Hostname is...

Page 261: ...for tunnel authentication Au thentication between LAC and LNS takes place in both direc tions i e the LNS checks the Local Hostname and the Pass word contained in the SCCRQ of the LAC and compares the...

Page 262: ...our device uses the IP address of the interface used to reach Remote IP Address by the L2TP tun nel Hello Interval Enter the interval in seconds between the sending of two L2TP HELLO messages These me...

Page 263: ...Packets Sequence Numbers Select whether your device is to use sequence numbers for data packets sent through a tunnel on the basis of this profile The function is not currently used The function is a...

Page 264: ...ter a name for uniquely identifying the L2TP partner The first character in this field must not be a number and no special characters or umlauts must be used either The maxim um length of the entry is...

Page 265: ...device Password Enter the password Always on Select whether the interface should always be activated The function is activated with Enabled The function is disabled by default Connection Idle Timeout...

Page 266: ...y if IP Address Mode Get IP Address and Static Specify whether Network Address Translation NAT is to be ac tivated for this connection The function is activated with Enabled The function is disabled b...

Page 267: ...run MS CHAP version 1 PPP Microsoft Challenge Handshake Authentication Protocol MS CHAPv2 Run MS CHAP version 2 only Encryption Only for PPP Authentication MS CHAPv2 If necessary select the type of e...

Page 268: ...are however included when calculating the routing in formation and propagated over active interfaces Active OSPF is activated for this interface i e routes are propagated or OSPF protocol packets sen...

Page 269: ...activated with Enabled The function is enabled by default 11 2 3 Options Fig 103 VPN L2TP Options The VPN L2TP Options menu consists of the following fields Fields in the Options Global Options menu F...

Page 270: ...rnet Service Provider is set up at both sites Once these connections are available a tunnel is set up to the PPTP partner over the Internet using PPTP The PPTP subsystem sets up a control connection b...

Page 271: ...PPTP Tunnels New The VPN PPTP PPTP Tunnels New menu consists of the following fields Fields in the menu PPTP Tunnels PPTP Partner Parameters Field Description Description Enter a unique name for the t...

Page 272: ...default Connection Idle Timeout Only if Always on is disabled Enter the idle interval in seconds This determines how many seconds should pass between sending the last traffic data pack et and clearin...

Page 273: ...AN that is to be used as in ternal source address to the PPTP interface Route Entries Only if IP Address Mode Static Define routing entries for this connection partner Remote IP Address IP address of...

Page 274: ...lenge Handshake Authentication Protocol MS CHAPv2 Run MS CHAP version 2 only Encryption If necessary select the type of encryption that should be used for data traffic to the connection partner This i...

Page 275: ...Select whether your device is to answer APR requests from your LAN on behalf of the specific PPTP partner Possible values Inactive default value Disables Proxy ARP Address Resolution Protocol for thi...

Page 276: ...e function is disabled by default Note that you must activate the relevant option on the gateways of both partners An ISDN connection is usually required for this function Without ISDN callback is onl...

Page 277: ...ck 1 from the Microsoft Windows XP page and installed it Since in SP 1 Microsoft has changed the confirma tion algorithm in the GRE protocol the automatic window adapt ation for GRE must be turned off...

Page 278: ...use in PPTP connections RFC 2637 configuration in the PPTP menu GRE V 0 RFC 2784 for general encapsulation using GRE In this menu you can configure a virtual interface for using GRE V 0 The data traff...

Page 279: ...all data is automatically routed to one connection The function is disabled by default Local IP Address Enter the IP address to be used as the source address for this GRE connection Route Entries Defi...

Page 280: ...e key is enabled Enter the GRE connection key Possible values are 0 to 2147483647 The default value is 0 11 5 Certificates 11 5 1 Certificate List In the VPN Certificates Certificate List menu a list...

Page 281: ...y or request Certificate is CA Certific ate Mark the certificate as a certificate from a trustworthy certifica tion authority CA Certificates issued by this CA are accepted during authentica tion unle...

Page 282: ...thentication The function is activated with True The function is disabled by default Caution It is extremely important for VPN security that the integrity of all certificates manually marked as trustw...

Page 283: ...be selec ted manually Select the Request button to request or import more certificates Fig 108 VPN Certificates Certificate List Request The VPN Certificates Certificate List Request menu consists of...

Page 284: ...12 bits could be rated as unsecure whereas a key of 4096 bits not only needs a lot of time to create but also occupies a major share of the resources during IPSec processing A value of 768 or more is...

Page 285: ...r tificate is used RA Encrypt Certificate Only if Mode SCEP Only if RA Sign Certificate is not Use CA Certificate If you use one of your own certificates to sign communication with the RA you can sele...

Page 286: ...mydomain DC com c DE Common Name Only for Custom disabled Enter the name according to CA E mail Only for Custom disabled Enter the e mail address according to CA Organisational Unit Only for Custom di...

Page 287: ...d Settings Options menu Field Description Autosave Mode Select whether your device automatically stores the various steps of the enrolment internally This is an advantage if enrol ment cannot be concl...

Page 288: ...le browser Local Certificate De scription Enter a unique description for the certificate File Encoding Select the type of coding so that your device can decode the certificate Possible values auto def...

Page 289: ...CRLs CRL Import menu Field Description External Filename Enter the file path and name of the CRL to be imported or use Browse to select it from the file browser Local Certificate De scription Enter a...

Page 290: ...ificates Certificate Servers menu a list of all certificate servers is shown 11 5 3 1 New Choose the New button to set up new certificate servers Fig 111 VPN Certificates Certificate Servers New The V...

Page 291: ...Field Description Description Enter a unique description for the certificate server LDAP URL Path Enter the LDAP URL of the server Funkwerk Enterprise Communications GmbH 11 VPN bintec R200 Series 279...

Page 292: ...configuration The configuration effort for the SIF is com paratively simple with systems like Network Address Translation NAT and IP Access Lists IPAL As SIF NAT and IPAL are active in the system sim...

Page 293: ...er is informed of the packet rejection The incoming packets are processed as follows The SIF first checks if an incoming packet can be assigned to an existing connection If so it is forwarded If the p...

Page 294: ...viously been allowed by another filter rule In the Firewall Policies Filter Rules menu a list of all configured filter rules is shown Select the show administrative access rules option to display exis...

Page 295: ...s all WAN LAN interfaces interface groups see Firewall Interfaces Groups addresses see Firewall Addresses Address List and address groups see Firewall Addresses Groups for selection The value Any mean...

Page 296: ...ervice List In addition the service groups configured in Firewall Ser vices Groups can be selected Action Select the action to be applied to a filtered packet Possible values Access default value The...

Page 297: ...de Possible values None default value No priority Low Latency Low Latency Transmission LTT i e hand ling of data with the lowest possible latency e g suitable for VoIP data High Medium Low 12 1 2 QoS...

Page 298: ...nabled The function is disabled by default Specify bandwidth Only for Traffic Shaping Enabled Enter the maximum available bandwidth in kbps for the selected interface Filter Rules This field contains...

Page 299: ...nce with the priority defined in the firewall policy The option is deactivated by default 12 1 3 Options Fig 115 Firewall Policies Options The Firewall Policies Options menu consists of the following...

Page 300: ...ssible values are 30 to 86400 The default value is 180 TCP Inactivity Enter the inactivity time after which a TCP session is to be re garded as expired in seconds Possible values are 30 to 86400 The d...

Page 301: ...face groups Fig 116 Firewall Interfaces Groups New The Firewall Interfaces Groups New menu consists of the following fields Fields in the Groups Basic Parameters menu Field Description Description Ent...

Page 302: ...w menu consists of the following fields Fields in the Address List Basic Parameters menu Field Description Description Enter the desired description of the address Address Type Select the type of addr...

Page 303: ...roups In the Firewall Addresses Groups menu a list of all configured address groups is shown You can group together addresses This makes it easier to configure firewall rules 12 3 2 1 New Choose the N...

Page 304: ...Services Service List menu a list of all available services is shown 12 4 1 1 New Choose the New button to set up new services Fig 119 Firewall Services Service List New The Firewall Services Service...

Page 305: ...re 1 to 65535 Source Port Range Only if Protocol TCP UDP TCP or UDP In the first field enter the source port to be checked if applic able If a port number range is specified in the second field enter...

Page 306: ...ble Port Unreachable Fragmentation Needed Communication with Destination Network is Ad ministratively Prohibited Communication with Destination Host is Admin istratively Prohibited 12 4 2 Groups In th...

Page 307: ...the Groups Basic Parameters menu Field Description Description Enter the desired description of the service group Members Select the members of the group from the available service ali ases To do thi...

Page 308: ...infrastructure for voice transmission and shares this with other communication services 13 1 SIP SIP serves as a translation instance between different telecommunications networks e g between the pla...

Page 309: ...d with Enabled The function is disabled by default 13 2 RTSP In this menu you configure the use of the RealTime Streaming protocol RTSP RTSP is a network protocol for controlling multimedia traffic fl...

Page 310: ...lds in the RTSP ProxyBasic Parameters menu Field Description RTSP Proxy Select whether you want to permit RTSP sessions The function is activated by choosing Enabled The function is disabled by defaul...

Page 311: ...verview of DNS requests on your device Global Name Server The IP addresses of global name servers that are queried if your device is unable to an swer requests itself or by forwarding entries are ente...

Page 312: ...S servers can resolve the name the information is forwarded and a dy namic entry created in the cache 5 Otherwise if overwriting the addresses of the global name servers is allowed DNS Server Configur...

Page 313: ...ter the standard domain name of your device DNS Server Configura tion Select whether the addresses of the global name server on your device can be overwritten by transferred name server ad dresses Pos...

Page 314: ...d The function is activated by default Negative Cache Select whether the negative dynamic cache is to be activated i e whether queried names for which a DNS server has sent a negative response are sto...

Page 315: ...partner configured in the system IP Address to use for DNS WINS Server As signment As DHCP Server Select which name server addresses are sent to the DHCP cli ent if your device is used as DHCP server...

Page 316: ...S Static Hosts New The Local Services DNS Static Hosts New menu consists of the following fields Fields in the Static Hosts Basic Parameters menu Field Description Description Enter the host name to w...

Page 317: ...s None A DNS request is ignored no answer is given IP Address Only if Response Positive Enter the IP address assigned to Name TTL Enter the the time for which the assignment of Name to IP Ad dress is...

Page 318: ...lect whether a host or domain is to be forwarded Possible values Host default value Domain Host Only for Forward Host Enter the name of the host to be forwarded The entry can also start with the wildc...

Page 319: ...The request is forwarded to the defined Interface DNS Server The request is forwarded to the defined DNS server Interface Only for Forward to Interface Select the interface via which the requests for...

Page 320: ...Select All button A dynamic entry can be converted to a static entry by marking the entry and confirming with Set to Static This entry then disappears from the list and is included in the list in the...

Page 321: ...quests Invalid DNS Packets Shows the number of invalid DNS packets received and ad dressed direct to your device DNS Requests Shows the number of valid DNS requests received and ad dressed direct to...

Page 322: ...an individual user name for the DynDNS service e g dyn_client The service providers offer various domain names for this so that a unique host name results for your device e g dyn_client provider com...

Page 323: ...ace whose IP address is to be propagated over the DynDNS service e g the interface of the Internet Ser vice Provider User Name Enter the user name as registered with the DynDNS provider Password Enter...

Page 324: ...be forwarded if the host currently configured is not to receive mail Ask your provider about this forwarding service and make sure e mails can be received from the host entered as MX Wildcard Select...

Page 325: ...the host name or IP address of the server on which the provider s DynDNS service runs Update Path Enter enter the path on the provider s server that contains the script for managing the IP address of...

Page 326: ...resses to requesting PCs in the LAN from a predefined IP address pool A PC sends out an ARP re quest and in turn receives its IP address assigned by your device You therefore do not need to allocate f...

Page 327: ...s DHCP Server DHCP Pool New menu consists of the following fields Fields in the DHCP PoolBasic Parameters menu Field Description Interface Select the interface over which the addresses defined in IP R...

Page 328: ...ollowing fields Fields in the Advanced Settings menu Field Description Gateway Select which IP address is to be transferred to the DHCP client as gateway Possible values No gateway default value No IP...

Page 329: ...ding In the Local Services DHCP Server IP MAC Binding menu a list of all clients is shown that have received an IP address from your device via DHCP You can now allocate an IP address from a defined I...

Page 330: ...tion Enter the name of the host to the MAC Address of which the IP Address is to be bound A character string of up to 256 characters is possible IP Address Enter the IP address to be assigned to the M...

Page 331: ...he client in the local network Fig 132 Local Services DHCP Server DHCP Relay Settings The Local Services DHCP Server DHCP Relay Settings menu consists of the fol lowing fields Fields in the DHCP Relay...

Page 332: ...Web Filter The action resulting from the classification is configured on your device 14 4 1 Global Settings This menu contains the configuration of basic parameters for using the Proventia Web Fil te...

Page 333: ...th to which a URL is to be checked by the Cobion Orange Filter Action if server not reachable Select which is to be done with URL requests if the web filtering server cannot be reached Possible values...

Page 334: ...menu configure which categories of In ternet pages are to be handled and how You configure the relevant filters for this purpose A list of filters already configured is dis played There are basically...

Page 335: ...filter is to be used on The options are first the standard categories of the Proventia Web Filter default value Pornography Nudity Actions can also be defined for the following special cases e g Defa...

Page 336: ...ue is 00 00 In to enter the time at which the filter is to be deactiv ated The time is entered in the form hh mm The default value is 00 00 Action Select the action to be executed if the filter matche...

Page 337: ...ption URL IP Address You enter a URL or IP address The length of the entry is limited to 60 characters Blacklisted Whitelisted You can select whether a URL or IP address can always in the White List o...

Page 338: ...assign user names and passwords to users of the CAPI applications on your device This makes sure that only authorised users can receive incoming calls and make outgoing calls via CAPI The CAPI servic...

Page 339: ...s with password You should then delete the user default without password 14 5 1 User In the Local Services CAPI Server User menu a list of all configured CAPI users is shown 14 5 1 1 New Choose the Ne...

Page 340: ...vice Access Select whether access to the CAPI service is to be permitted or denied for the user The function is activated by choosing Enabled The function is activated by default 14 5 2 Options Fig 13...

Page 341: ...e is 2662 14 6 Scheduling Your device has a event scheduler which enables certain standard actions activation or deactivation of interfaces to be carried out on a time dependent basis Note To run the...

Page 342: ...Schedule Action menu Field Description Select action Select the desired action Possible values Reboot Device default value Your device is rebooted Activate Interface The interface defined in the Selec...

Page 343: ...server The latest software will be downloaded from the Funkwerk server HTTP server The latest software will be downloaded from an HTTP server that you define in Update URL Update URL Only if Select Ac...

Page 344: ...aily from Monday to Friday Monday Saturday The initiator becomes active daily from Monday to Saturday Saturday Sunday The initiator becomes active on Sat urdays and Sundays Possible values for Conditi...

Page 345: ...Options menu consists of the following fields Fields in the Options Scheduling Options menu Field Description Schedule Interval Enter the interval in seconds during which the system checks whether th...

Page 346: ...and automatic ping tests Note This function cannot be configured on your device for connections that are authentic ated via a RADIUS server 14 7 1 Hosts In the Local Services Monitoring Hosts menu a l...

Page 347: ...ld be applied 14 7 1 1 Edit New Choose the icon to edit existing entries Choose the New button to set up new surveil lance tasks servers Fig 142 Local Services Monitoring Hosts New The Local Services...

Page 348: ...vice uses as the source address of the packet sent to the host to be monitored Possible values Automatic default value The IP address is determined automatically Specific Enter the IP address in the a...

Page 349: ...a list of all monitored interfaces is shown Fig 143 Local Services Surveillance Interfaces Values in the list Interfaces Field Description Monitored Interface Shows the interface to be monitored Statu...

Page 350: ...ces Basic Parameters menu Field Description Monitored Interface Select the interface on your device that is to be monitored Trigger Select the state or state transition of Monitored Interfaces that is...

Page 351: ...in Interface Action is to be performed All the physical and virtual interfaces and the options All PPP Interfaces and All IPSec Interfaces can be selected 14 7 3 Ping Generator In the Local Services M...

Page 352: ...tate of the destination IP address 14 7 3 1 Edit New Choose the icon to edit existing entries Choose the New button to set up further pings Fig 146 Local Services Monitoring Ping Generator New The Loc...

Page 353: ...access to the gateway owner s LAN Without theft protection he could dial in to the LAN by ISDN if under WAN Internet Dialup New the field Always On is en abled 14 8 1 Options All interfaces for which...

Page 354: ...n The function is activated with Enabled The function is disabled by default Dialling Number Only if ISDN Theft Protection Servic is enabled Enter the subscriber number that the gateway dials to call...

Page 355: ...e try ing again after an unsuccessful attempt to call itself Possible values are 2 to 20 The default value is 5 14 9 Funkwerk Discovery 14 9 1 Device Discovery The funkwerk Discovery protocol is used...

Page 356: ...s covery Status None means that discovery is not active Discovery is displayed when dis covery is currently being carried out This discovery function also enables your device to be discovered and conf...

Page 357: ...s field specifies the interface of your device on which discov ery is carried out MAC Address The value of this field can only be read This field specifies the MAC address of the discovered access poi...

Page 358: ...oint has not responded Access Denied The access point reported an authorisation error Check the authentication password Invalid IP Parameters There is a problem with the in tended IP parameters IP add...

Page 359: ...The Local Services Funkwerk Discovery Options menu consists of the following fields Fields in the Options Discovery Server Options menu Field Description Enable Discovery Server Select whether your d...

Page 360: ...nd the gateway is 5678 The LAN UPnP client acts as a so called service control point i e it re cognizes and controls the UPnP devices on the network The ports assigned dynamically by for example MSN M...

Page 361: ...nswer to client request Determine whether UPnP requests from clients are to be answered via the particular interface from the local network The function is activated with Enabled The function is disab...

Page 362: ...uests from the LAN The function is activated with Enabled The gateway proceeds with UPnP releases in accordance with the parameters con tained in the request from the LAN UPnP client independently of...

Page 363: ...Field Description Possible values are 1 to 65535 the default value is 5678 Funkwerk Enterprise Communications GmbH 14 Local Services bintec R200 Series 351...

Page 364: ...r a system reboot in this menu 15 1 Diagnostics In the Maintenance Diagnosis menu you can test the accessibility of individual hosts the resolution of domain names and certain routes 15 1 1 Ping Test...

Page 365: ...domain name of a particular host is correctly re solved The Output Results field shows the DNS test messages The DNS test is started by entering the domain name to be tested in DNS Address and clickin...

Page 366: ...manage the software version of your device your configuration files and the language of the Funkwerk Configuration Interface Your device contains the version of the system software available at the ti...

Page 367: ...s stored in the flash when your device is switched off RAM The current configuration and all changes you set on your device during operation are stored in the working memory RAM The contents of the RA...

Page 368: ...e current version of the ADSL logic loaded on your device Fields in the Options Software and Configuration Options menu Field Description Action Select the action you wish to execute Possible values N...

Page 369: ...d file name Copy The configuration file in the Source File Name field is saved as Destination file name Rename The configuration file in the Select File field is re named as New Filename Delete Config...

Page 370: ...mory is exported Include certificates and keys For Action Export configuration Export configur ation with status information Define whether the se lected Action should also be applied for certificates...

Page 371: ...g of the LEDs see the Technical Data chapter of the manual Note Before a reboot make sure you confirm your configuration changes by clicking the Save Configuration button so that these are not lost wh...

Page 372: ...larly and ensure that there is always enough spare capacity available on the hard disk of your PC Syslog Daemon All Unix operating systems support the recording of syslog messages For Windows PCs the...

Page 373: ...nu Field Description IP Address Enter the IP address of the host to which syslog messages are passed Level Select the priority of the syslog messages that are to be sent to the host Possible values Em...

Page 374: ...cal0 Timestamp Select the format of the time stamp in the syslog Possible values None default value No system time indicated Time System time without date Date Time System time with date Protocol Sele...

Page 375: ...unting function which enables you to collect a lot of useful information about the IP network traffic each individual IP session 16 2 1 Interfaces In this menu you can configure the IP Accounting func...

Page 376: ...ny order sequences separated by a slash e g t or n or defined tags Possible format tags Format tags for IP accounting messages Field Description d Date of the session start in the format DD MM YY t Ti...

Page 377: ...p o P O s 16 3 E mail Alert It was previously possible to send syslog messages from the router to any syslog host De pending on the configuration E mails are sent to the administrator as soon as rele...

Page 378: ...ng the mails The entry is limited to 40 characters SMTP Authentication Forward the incoming E mails Possible values None default value The E mails are not forwarded ESMTP The E mails are forwarded to...

Page 379: ...of syslog messages is displayed 16 3 2 1 New Choose the New button to create new e mail alert receivers Fig 162 External Reporting E mail Alert E mail Alert Recipient The External Reporting E mail Ale...

Page 380: ...the router must wait after a relevant event be fore it is forced to send the e mail alert Possible values are 0 to 86400 The value 0 disables the timeout Number of Messages Enter the number of syslog...

Page 381: ...As SNMP is a standard protocol you can use any other SNMP managers e g HPOpenView For more information on the SNMP versions see the relevant RFCs and drafts SNMP V 1 RFC 1157 SNMP V 2c RFC 1901 1908 S...

Page 382: ...SNMP traps Any whole number is possible The default value is 162 SNMP Trap Community Only if SNMP Trap Broadcasting is enabled Enter a new SNMP code This must be sent by the SNMP Man ager with every S...

Page 383: ...settings needed to monitor your device with the Windows tool Activity Monitor part of BRICKware for Windows Purpose The Activity Monitor enables Windows users to monitor the activities of your device...

Page 384: ...display the information contained in them in various ways ac cording to the configuration Activate the Activity Monitor as follows configure the relevant device s to be monitored Start and configure...

Page 385: ...alue 255 255 255 255 means that the broadcast ad dress of the first LAN interface is used Single Host The UDP packets are sent to the IP address entered in the adjacent input field Update Interval Ent...

Page 386: ...ages menu a list of all internally stored system messages is shown Above the table you will find the configured Maximum Num ber of Syslog Entries and the configured Maximum Message Level of Syslog Ent...

Page 387: ...rated the mes sage Message Displays the message text 17 2 IPSec 17 2 1 IPSec Tunnels In the Monitoring IPSec IPSec Tunnel menu a list of all configured IPSec peers is shown Fig 167 Monitoring IPSec IP...

Page 388: ...s Opens a detailed statistics window You change the status of the IPSec tunnel by pressing the button or button in the Action column By pressing the button you display detailed statistics on the IPSec...

Page 389: ...ages for this IPSec tunnel are displayed here 17 2 2 IPSec Statistics In the Monitoring IPSec IPSec Statistics menu statistical values for all IPSec con nections are shown Fig 169 Monitoring IPSec IPS...

Page 390: ...2 Shows the number of active phase 2 SAs Established from the total number of phase 2 SAs Total Field in the IPSec Statistics Packet Statistics menu Field Description Total Shows the number of all pro...

Page 391: ...that was dialled in the case of outgoing calls or from which the call was made in the case of incoming calls Interface Displays additional information for PPP connections Direction Displays the send d...

Page 392: ...ion Service Displays the service to or from which the call was connected PPP IPSEC X 25 POTS Remote Number Displays the number that was dialled in the case of outgoing calls or from which the call was...

Page 393: ...statistical data for the individual interfaces in de tail Values in the list Statistics Field Description Shows the serial number of the interface Description Displays the name of the interface Type...

Page 394: ...Action Enables you to change the status of the interface as displayed 17 5 WLAN 17 5 1 WLAN1 In the Monitoring WLAN WLAN1 menu the current values and activities of the first interface are shown Fig 1...

Page 395: ...Description Meaning Unicast MSDUs trans mitted successfully Displays the number of MSDUs successfully sent to unicast ad dresses since the last reset An acknowledgement was received for each of these...

Page 396: ...RTS Displays the number of received CTS clear to send frames that were received as a response to RTS request to send Received MPDU that couldn t be decrypted Displays the number of received MSDUs that...

Page 397: ...f packets received Signal dBm Shows the received signal strength in dBm Noise dBm Shows the received noise strength in dBm Data Rate mbps Shows the current transmission rate of data received by this c...

Page 398: ...t IP Address Shows the IP address of the client Up Time Shows the time in hours minutes and seconds for which the cli ent is logged in Signal dBm Shows the received signal strength in dBm Noise dBm Sh...

Page 399: ...g a 54 48 36 24 18 12 9 6 mbps If the 5 GHz frequency band is used the indication of 11 5 5 2 and 1 mbps is suppressed for IEEE 802 11b Rate Displays the possible data rates on this radio module Tx Pa...

Page 400: ...ged tone Busy On Busy Call to engaged team subscriber If one subscriber in a team has taken the receiver off the hook or is on the telephone you can de cide whether other calls are to be signalled for...

Page 401: ...nection to be selected and set up parameters must be defined for all the required connections These parameters are stored in lists which together permit the right con nection to be set up The PBX uses...

Page 402: ...as well 802 11b g One of the IEEE standards for wireless network hardware Products that meet the same IEEE standard can communicate with each oth er even if they come from different hardware manufactu...

Page 403: ...to a number of computers that form an in dependent 802 11 WLAN each with a wireless adapter Ad hoc net works work independently without an access point on a peer to peer basis Ad hoc mode is also know...

Page 404: ...eature on telephones By pressing a key or code the caller requests a call back from the engaged terminal If the subscriber you want is not at their desk or cannot take the call they are auto matically...

Page 405: ...Automatic redialling Performance feature of a terminal If the line is busy several redial attempts are made B channel Corresponds to a telephone line in T Net In T ISDN the basic con nection contains...

Page 406: ...an exchange data with each other without a fixed connection For example PCs notebooks or a PDA can access the Internet or a loc al network The appointments on a PDA can be synchronised with the appoin...

Page 407: ...Call costs account You can set up a call costs account for a subscriber here The maximum available number of units in the form of a limit can be as signed to each subscriber on their personal call cos...

Page 408: ...p is possible A call can only be picked up by subscribers terminals in the same pickup group The assignment of subscribers in pickup groups is not de pendent on the settings in the Day and Night team...

Page 409: ...Block Chaining CCITT Consultative Committee for International Telegraphy and Telephony CD Call Deflection The forwarding of calls This performance feature enables you to forward a call without having...

Page 410: ...Analogue Telephony or Telefax Group 3 can also be transmitted regardless of the configuration of the analogue con nection If 0 is dialled the service ID Analogue Telephony is also transmitted Confere...

Page 411: ...include STAC VJHC and MPPC Data Link Layer DLL Data packet A data packet is used for information transfer Each data packet contains a prescribed number of characters information and control characters...

Page 412: ...st Configuration Protocol Dial preparation On some telephones with a display you can first enter a telephone check it first and then dial it Dial in parameters Define the dial in parameters i e you en...

Page 413: ...function module can be installed on an analogue connection of your PBX If a door intercom DoorLine is connected to your PBX via a function module you can speak with a visitor at the door via every au...

Page 414: ...er face which is also called the E1 system ECB Electronic Code Book mode ECT Explicit Call Transfer This performance feature allows two external connections to be transferred without blocking the two...

Page 415: ...ing loaded the PBX functions are deleted Euro ISDN Harmonised ISDN standardised within Europe based on signalling protocol DSS1 the introduction of which network operators in over 20 European countrie...

Page 416: ...viation of telefax FHSS Frequency Hopping Spread Spectrum In a FHSS system the frequency spread is achieved through con stantly changing frequencies based on certain hopping patterns In contrast to DS...

Page 417: ...acket switching methods such as X 25 Because of its properties frame relay is used for fast WAN connections with a high density of traffic Freecall Telephone number Previous service 0130 These telepho...

Page 418: ...from a text sequence with a different meaning Encryption methods use hashing to make sure that intruders cannot change transmitted messages HDLC High Level Data Link Control HDSL High Bit Rate DSL HDS...

Page 419: ...cedure If you enter code 77 during a call or after the caller has ended a call you hear the engaged tone from the exchange the caller s tele phone number is stored in the exchange ISDN telephones can...

Page 420: ...local and university networks The IP protocol is used for data transmission on the Inter net Internet time sharing Allows several users to surf the Internet simultaneously over an ISDN connection The...

Page 421: ...xtension number ISDN number The network address of the ISDN interface e g 4711 ISDN router A router that does not have network connections but provides the same functions between PC ISDN and the Inter...

Page 422: ...ss a button so that the people present in the room can also hear the telephone call MAC Address Every device in the network is defined by a fixed hardware address MAC address The network card of a dev...

Page 423: ...protocol gate way A gateway that can route several protocols e g IP X 25 etc Music on hold MoH Your PBX has two internal music on hold melodies On delivery in ternal melody 1 is active You can choose...

Page 424: ...is the point at which access to a communication network is provided to the terminal Netz Direkt keypad functions You can use the Netz Direkt keypad function automatic external line access to enter a k...

Page 425: ...er of the connection you are calling from on their telephone display This telephone number transmitted during an external call is called the outgoing telephone number Packet switching Packet switching...

Page 426: ...Point to multipoint Point to multipoint connection Point to multipoint Basic connection in T ISDN with three telephone numbers and two lines as standard The ISDN terminals are connected directly on t...

Page 427: ...face Protocol Protocols are used to define the manner and means of information exchange between two systems Protocols control and rule the course of data communication at various levels decoding addre...

Page 428: ...motely usually in connection with other options such as deleting messages or changing recorded messages Repeater A device that transmits electrical signals from one cable connection to another without...

Page 429: ...de Please read the information on the described functions in the user s guide Router A device that connects different networks at layer 3 of the OSI mod el and routes information from one network to t...

Page 430: ...service from T Com Replaces Service 0190 Service number 0180 Additional voice service 0180call from T Com to receive calls from a location dependent telephone number uniform across Germany starting w...

Page 431: ...with an SMS enabled terminal the telephone number 0193010 of the SMS server must be prefixed to the recipient num ber This telephone number is already stored in your PBX so manu al input of the serve...

Page 432: ...scriber numbers are included as standard Specify own tele phone number for next call If you want to make a business call late in the evening from your private sphere say the living room for example yo...

Page 433: ...hone number for a particular service In the called terminal e g a PC various applications can also be ad dressed and in some cases executed Costs are charged for the performance feature and it must be...

Page 434: ...ssion process in which the sender and receiver operate with exactly the same clock signals in contrast to asynchronous trans mission Spaces are bridged by a stop code Syslog Syslog is used as the de f...

Page 435: ...e T NetBox can store up to 30 messages T NetBox telephone number Enter the current T NetBox telephone number here if it differs from the 08003302424 entered ex works As soon as your T NetBox re ceives...

Page 436: ...l family Telnet enables communic ation with a remote device in the network Terminal adapter Device for interface adaptation It enables different equipment to be connected to T ISDN The terminal adapte...

Page 437: ...ric Digital Subscriber Line UDP User Datagram Protocol Update Update to a software program PBX firmware An update is the up dated version of an existing software product and is indicated by a new vers...

Page 438: ...o analogue on one side of the modem provider as was the case with V 34 and earlier modems This makes higher transmission rates possible A maximum speed of 56 kbps can be achieved only under optimum co...

Page 439: ...PA PSK Intended for private users or small businesses that do not run a central authentication server PSK stands for Pre Shared Key and means that AP and client use a fixed character string 8 to 63 ch...

Page 440: ...on users such as e mail addresses telephone numbers and postal ad dresses You can search these databases to obtain information about individuals X 509 ITU T standards that define the format of the cer...

Page 441: ...52 259 Always on 185 190 Answer to client request 349 Apply Qos 283 ARP Processing 145 ATM PVC 195 ATM Service Category 213 Authentication 188 192 197 202 255 261 Authentication for PPP Dialin 114 Aut...

Page 442: ...et for PPPoE Interfaces 210 Default Route 187 191 196 201 223 253 260 267 Default Route Distribution 168 Delete complete IPsec configuration 244 Description 185 190 195 200 208 222 231 239 248 252 259...

Page 443: ...age Collection Timer 169 Gateway 151 316 345 Generate Private Key 271 GRE Window Adaption 265 GRE Window Size 265 Group Description 171 Group ID 334 335 H Hashing Algorithms 102 Hello Interval 250 Hol...

Page 444: ...ocal ID 376 Local ID Type 231 Local ID Value 231 Local IP 151 Local IP Address 187 191 196 201 223 250 253 260 267 376 Local PPTP IP Address 192 Locality 273 Location 86 Logged Actions 287 Logging Lev...

Page 445: ...Name SSID 145 Network Type 151 New Date 91 New File Name 356 New Time 91 Node Name 345 Noise dBm 385 386 Number of Dial Retries 343 Number of Messages 367 O OAM Flow Level 216 Operation Band 138 Oper...

Page 446: ...D 376 Remote IP Address 249 375 376 Remote IP Address Netmask 159 Remote Network 159 Remote Networks 375 Remote Number 379 380 Remote PPTP IP Address 192 259 Remote User for Dialin only 200 Response 3...

Page 447: ...face 153 175 Source IP Address 153 336 339 340 Source Location 330 356 Source Port 153 Source Port Range 292 Specify bandwidth 286 SSH 99 SSH Service Active 101 Stack 379 Start Mode 224 Start Time 331...

Page 448: ...pdate system time from ISDN 91 Update Timer 169 Update URL 330 UPnP Status 350 UPnP TCP Port 350 Upstream 126 Uptime 84 URL 356 URL Path Depth 320 URL IP Address 325 Usage Type 202 Use key 267 Use PFS...

Reviews:

No comments

Related manuals for R232a

ABB COM600 series Product Manual preview
COM600 series
Brand: ABB Pages: 20
ABB COM600 series Configuration Manual preview
COM600 series
Brand: ABB Pages: 66
Datapulse Intuition 1000 Operator Training Manual preview
Intuition 1000
Brand: Datapulse Pages: 26
ZyXEL Communications P-873HNU(B)-51B Quick Start Manual preview
P-873HNU(B)-51B
Brand: ZyXEL Communications Pages: 12
WITELCOM CPN-55-20 Installation Instructions preview
CPN-55-20
Brand: WITELCOM Pages: 2
AudioCodes MediaPack MP-262 Quick Manual preview
MediaPack MP-262
Brand: AudioCodes Pages: 2
Ericsson EDACS Jessica Operator'S Manual preview
EDACS Jessica
Brand: Ericsson Pages: 12
Quark-Elec QK-W017 Application Note preview
QK-W017
Brand: Quark-Elec Pages: 22
Planet Networking & Communication MH-5001 User Manual preview
MH-5001
Brand: Planet Networking & Communication Pages: 235
Endress+Hauser Fieldgate FXA720 Operating Instructions Manual preview
Fieldgate FXA720
Brand: Endress+Hauser Pages: 66
evertz 7890IXG User Manual preview
7890IXG
Brand: evertz Pages: 70
ActionTec PK5001A Quick Start Manual preview
PK5001A
Brand: ActionTec Pages: 6
ZyXEL Communications AX7501-B0 User Manual preview
AX7501-B0
Brand: ZyXEL Communications Pages: 361
Vertiv Avocent Quick Installation Manual preview
Avocent
Brand: Vertiv Pages: 2
Vertiv Avocent Installer/User Manual preview
Avocent
Brand: Vertiv Pages: 117
ZURN ZGW-LORA-W1 Installation Manual preview
ZGW-LORA-W1
Brand: ZURN Pages: 4
Arris SURFboard SBG6950 User Manual preview
SURFboard SBG6950
Brand: Arris Pages: 22
Rosslare AC-B3x Installation And Programming Manual preview
AC-B3x
Brand: Rosslare Pages: 40

Brands by name

Popular brands

Load more brands