Comtrend Corporation CT-5361T User Manual Download Page 87 | Manualshive

Page: 87 / 132

background image

86

6.10.2 Trusted CA

CA is the abbreviation for Certificate Authority. CA is a part of the X.509 system. It
is itself a certificate, attached with the owner information of this certificate authority.
But its purpose is not to do encryption/decryption. Its purpose is to sign and issue
certificates; in order to prove the owner information of that certificate is correct.

Click

Import Certificate

to paste the certificate content of your trusted CA.

Generally speaking, the certificate content will be provided by your vendor/ISP/ITSP
and is used to authenticate the Auto-Configuration Server (ACS) that the CPE will
connect to.

«
...
85
86
87
88
89
...
»

Summary of Contents for CT-5361T

Page 1: ...CT 5361T Wireless ADSL2 Router User s Manual Version A3 5 December 25 2007 261056 038 ...

Page 2: ...mmunications For product update new product release manual revision software upgrade technical support etc visit Comtrend Corporation at http www comtrend com This document is subject to change without notice Copyright Copyright 2007 Comtrend Corporation All rights reserved The information and messages contained herein are proprietary to Comtrend Corporation No part of this document may be transla...

Page 3: ...19 3 1 IPADDRESS 19 3 2 LOGIN PROCEDURE 21 3 3 DEFAULT SETTINGS 23 CHAPTER 4 DEVICE INFO 24 4 1 WAN 25 4 2 STATISTICS 26 4 2 1 LAN Statistics 27 4 2 2 WAN Statistics 28 4 2 3 ATM statistics 29 4 2 4 ADSL Statistics 31 4 2 5 Route 33 4 2 6 ARP 33 4 2 7 DHCP 34 CHAPTER 5 QUICK SETUP 35 5 1 AUTO QUICK SETUP 36 5 2 MANUAL QUICK SETUP 37 5 2 1 PPP over ATM PPPoA and PPP over Ethernet PPPoE 39 5 2 2 MAC...

Page 4: ...Static Route 75 6 6 3 RIP 76 6 7 DNS 77 6 7 1 DNS Server 77 6 7 2 Dynamic DNS 78 6 8 DSL 80 6 9 PORT MAPPING 81 6 10 CERTIFICATE 84 6 10 1 Local 84 6 10 2 Trusted CA 86 CHAPTER 7 WIRELESS 87 7 1 WIRELESS BASIC SCREEN 87 7 1 1 Security 89 7 1 2 MAC Filter 93 7 1 3 Wireless Bridge 95 7 1 4 Advanced 96 7 1 5 Quality of Service 100 7 1 6 Station Info 101 CHAPTER 8 DIAGNOSTICS 102 CHAPTER 9 MANAGEMENT ...

Page 5: ... 4 INTERNET TIME 114 9 5 ACCESS CONTROL 115 9 5 1 Services 116 9 5 2 Access IP Addresses 117 9 5 3 Passwords 118 9 6 UPDATE SOFTWARE 119 9 7 SAVE AND REBOOT 120 APPENDIX A FIREWALL 121 APPENDIX B PIN ASSIGNMENTS 127 APPENDIX C SPECIFICATIONS 128 APPENDIX D SSH CLIENT 131 ...

Page 6: ... business applications that require wired and wireless connectivity to an ADSL broadband network The CT 5361T supports up to 16 contiguous virtual connections allowing for multiple simultaneous Internet connections 1 1 Features UPnP Integrated 802 11g AP Backward compatible with 802 11b WPA WPA2 and 802 1x RADIUS client IP MAC address filtering Static route RIP RIP v2 routing functions Dynamic IP ...

Page 7: ...6 1 2 Application The following diagram depicts the application of the device on a wireless network ...

Page 8: ...passing customer data This may be identified at various times such after power on or during operation through the use of self testing or in operations which result in a unit state that is not expected or should not occur Green On An Ethernet Link is established Off An Ethernet Link is not established LAN 4x 1x Green Blink Data transmitting or receiving over LAN Green On The wireless module is read...

Page 9: ... timeout the light will remain green if an ADSL connection is still present Off Modem power off modem in bridged mode or ADSL connection not present Also if an IP or PPPoE session is dropped for any reason other than an idle timeout the light is turned off Green Blink IP connected and IP Traffic is passing thru the device either direction INTERNET Red On Device attempted to become IP connected and...

Page 10: ...ns Connection to LINE port If you wish to connect both the router and a telephone connect the LINE port to a POTS splitter with a RJ11 connection cable Connection to LAN port To connect to a hub or PC use a RJ45 cable You can connect the router to up to four LAN devices The ports are auto sensing MDI X and either straight through cable or crossover cable can be used Connection to USB port Connect ...

Page 11: ...rforms a self test Wait for a few seconds until the test is finished then the router will be ready to operate Caution 1 If the router fails to power up or it malfunctions first verify that the power supply is connected correctly Then power it on again If the problem persists contact our technical support engineers Caution 2 Before servicing or disassembling this equipment always disconnect all pow...

Page 12: ...indows XP 64 bit the driver needs to be installed manually please see section 2 3 below for details and the driver is also enclosed on the CD ROM To connect the router to a PC using the USB interface you need to use a standard USB cable and install the USB interface software Follow the steps below STEP 1 Insert the Installation disk and select the Install USB Driver option STEP 2 The following scr...

Page 13: ...12 STEP 3 When the screen displays as below wait until the drivers are fully installed STEP 4 Click the Finish button when the screen displays as below ...

Page 14: ...13 STEP 5 Installation is complete ...

Page 15: ...ng the USB interface you need to use a standard USB cable and install the USB interface software Follow the steps below STEP 1 Connect the USB router to the PC by plugging the flat connector of a standard USB cable into your PC and plugging the square connector into the router The screen will display as below STEP 2 When the screen displays as below select install from a list of specific location ...

Page 16: ...layed if the USB Driver has been previously un installed STEP 3 If you are installing the software from a disk insert the disk Note When the auto run screen pops up click Exit and continue with the manual installation process see below ...

Page 17: ...16 STEP 4 Select the location of the file using the Browse button Normally the file is on the CD ROM shipped with the device STEP 5 Locate the Vista folder and click the OK button ...

Page 18: ...17 STEP 6 When the screen displays as below click the NEXT button ...

Page 19: ...18 STEP 7 Click the Finish button when the screen displays as below STEP 8 Installation is complete ...

Page 20: ...he user can change the default password later when logged in to the device 3 1 IP Address The default IP address of the CT 5361T LAN port is 192 168 1 1 To configure the CT 5361T for the first time the configuration PC must have a static IP address within the 192 168 1 x subnet Follow the steps below to configure your PC IP address to use subnet 192 168 1 x STEP 1 Right click on the Local Area Con...

Page 21: ...20 STEP 3 Click OK to submit the settings STEP 4 Start your Internet browser and type the IP address for the router 192 168 1 1 in the Web address bar ...

Page 22: ...he IP address for the router in the Web address field For example if the IP address is 192 168 1 1 type http 192 168 1 1 STEP 2 You will be prompted to enter your user name and password Type root in the user name and 12345 in the password field and click OK These values can be changed later in the Web User Interface by selecting the Management link STEP 3 After successfully logging in you will rea...

Page 23: ...22 Shown here is the Device Info screen for your reference ...

Page 24: ...re than five seconds or by clicking the Restore Default Configuration option in the Restore Settings screen The following default settings are present when setting up the router for the first time The PC running the browser can be attached to the Ethernet z LAN port IP address 192 168 1 1 z Local administrator account name root z Local administrator account password 12345 z Local non administrator...

Page 25: ...24 Chapter 4 Device Info After login the Quick Setup screen appears as shown Note The selections available on the left side of menu are based upon the configured connection ...

Page 26: ...ATM service classes Service Shows the name for WAN connection Interface Shows connection interfaces Protocol Shows the connection type such as PPPoE PPPoA etc IGMP Shows the state of the IGMP function Nat Shows if the Network Address Translation NAT is enabled or disabled QoS Shows if IGMP IP QoS is enabled or disabled State Shows the connection state of the WAN connection Status Lists the status ...

Page 27: ...26 4 2 Statistics Selection of the Statistics screen provides statistics for the Network Interface of LAN WAN ATM and ADSL All statistics screens are updated every 15 seconds ...

Page 28: ...reen shows the interface statistics for Ethernet USB and Wireless interfaces The Network Statistics screen shows the interface statistics for the LAN interface This provides byte transfer packet transfer Error and Drop statistics for the LAN interface ...

Page 29: ...ocol Shows the connection type such as PPPoE PPPoA etc Interface Shows connection interfaces Received Transmitted Bytes Pkts Errs Drops Number of Bytes Received Transmitted Number of packets Received Transmitted Number of errored packets Received Transmitted Number of dropped packets Received Transmitted ...

Page 30: ... of received cells discarded during cell header validation including cells with unrecognized VPI VCI values and cells with invalid cell header patterns If cells with undefined PTI values are discarded they are also counted here In Hec Errors Number of cells received with an ATM Cell Header HEC error In Invalid Vpi Vci Errors Number of cells received with an unregistered VCC address In Port Not Ena...

Page 31: ...errors Out Errors Number of received AAL5 AAL0 CPCS PDU that could not be transmitted due to errors In Discards Number of received AAL5 AAL0 CPCS PDU discarded due to an input buffer overflow condition Out Discards This field is not currently used ATM AAL5 LAYER STATISTICS FOR EACH VCC OVER ADSL INTERFACE Field Description CRC Errors Number of PDUs received with CRC 32 errors SAR TimeOuts Number o...

Page 32: ... Statistics The following figure shows the ADSL Network Statistics screen Within the ADSL Statistics window a bit Error Rate Test can be started using the ADSL BER Test button The Reset button resets the statistics ...

Page 33: ... you would obtain Rate Kbps Current sync rate Super Frames Total number of super frames Super Frame Errors Number of super frames received with errors RS Words Total number of Reed Solomon code errors RS Correctable Errors Total Number of RS with correctable errors RS Uncorrectable Errors Total Number of RS words with uncorrectable errors HEC Errors Total Number of Header Error Checksum errors OCD...

Page 34: ...33 4 2 5 Route Choose Route to display the routes that the route information has learned 4 2 6 ARP Click ARP to display the ARP information ...

Page 35: ...34 4 2 7 DHCP Click DHCP to display the DHCP information ...

Page 36: ...onnection selection depends on whether the LAN side device typically a PC is running a PPPoE client or whether the CT 5361T is to run the PPPoE client The CT 5361T can support both cases simultaneously z If some or none of the LAN side devices do not run PPPoE client then select PPPoE If every LAN side device is running a PPPoE client then select Bridge In PPPoE mode CT 5361T also supports pass th...

Page 37: ...etup The auto quick setup requires the ADSL link to be up The ADSL router will automatically detect the PVC You only need to follow the online instructions that you are prompted 1 Select Quick Setup to display the DSL Quick Setup screen 2 Click Next to start the setup process Follow the online instructions to complete the setting This procedure will skip some processes like PVC index or encapsulat...

Page 38: ...nect checkbox to enable manual configuration of the connection type STEP 2 Enter the Virtual Path Identifier VPI and Virtual Channel Identifier VCI Select Enable Quality Of Service if required Click Next Un tick this checkbox to enable manual setup and display the following screen ...

Page 39: ...s requests Enter appropriate settings that are requested by your service provider The following descriptions state each connection type setup separately Select Enable 802 1q by ticking the box if required and input a number for the VLAN ID Click on Next to go to next step ...

Page 40: ...in the PPP user name and a maximum of 32 characters in PPP password Encapsulation Mode Choosing different connection types provides different encapsulation modes z PPPoA VC MUX LLC ENCAPSULATION z PPPoE LLC SNAP BRIDGING VC MUX z MER LLC SNAP BRIDGING VC MUX z IPoA LLC SNAP ROUTING VC MUX z Bridging LLC SNAP BRIDGING VC MUX Disconnect if no activity The CT 5361T can be configured to disconnect if ...

Page 41: ...rough DHCP using the LAN interface IP address z The ADSL router extends the IP subnet at the remote service provider to the LAN PC That is the PC becomes a host belonging to the same IP subnet z The ADSL router bridges the IP packets between WAN and LAN ports unless the packet is addressed to the router s LAN IP address Use Static IP Address Unless your service provider specially requires this set...

Page 42: ...ect Next The following screen appears This page allows the user to configure the LAN interface IP address subnet mask and DHCP server If the user would like this ADSL router to assign dynamic IP address DNS server and default gateways to other LAN devices select the button Enable DHCP server on the LAN to enter the starting IP address and end IP address and DHCP leased time ...

Page 43: ... DNS server addresses to each of your PCs Note 1 Enable DHCP Server Relay will not display if Firewall is enabled in the previous step Note 2 The router s default IP address is 192 168 1 1 and the default private address range provided by the ISP server in the router is 192 168 1 2 through 192 168 1 254 4 The following screen will be displayed To enable the wireless function select the box by clic...

Page 44: ...ory and reboot The Web UI will not respond until the system is brought up again After the system is up the Web UI will refresh to the Device Info page automatically The CT 5361T is ready for operation and the LED indicators display as described in the LED description tables subsection 1 3 ...

Page 45: ...AN IP settings Notice DHCP can be enabled for PVC in MER mode if Obtain an IP address automatically is chosen Changing the default gateway or the DNS effects the whole system Configuring them with static values will disable the automatic assignment from DHCP or other WAN connection If you configure static default gateway over this PVC in MER mode you must enter the IP address of the remote gateway...

Page 46: ...kbox is selected the Security submenu on the left side main panel will be displayed after system reboot The user can then configure firewall features after the system comes up If firewall is not used this checkbox should be de selected to free up system resources for better performance When system comes back after reboot the Security submenu will not be displayed on the left main panel Enable IGMP...

Page 47: ...nd end IP address and DHCP lease time This configures the router to automatically assign IP addresses default gateway address and DNS server addresses to each of your PCs Note 1 Enable DHCP Server Relay will not display if Firewall is enabled in the previous step Note 2 The router s default IP address is 192 168 1 1 and the default private address range provided by the ISP server in the router is ...

Page 48: ... wireless function select the box by clicking on it and input the SSID Then click Next The following screen will be displayed After clicking Save Reboot the router will save the configuration to the flash memory and reboot The Web UI will not respond until the system is brought up again After the system is up the Web UI will refresh to the Device Info page automatically The CT 5361T is ready for o...

Page 49: ...alues provided by the ISP and click Next 4 Select the IP over ATM IPoA radio button and click Next The following screen appears Notice that DHCP is not supported over IPoA The user must enter the IP address or WAN interface for the default gateway setup and the DNS server addresses provided by the ISP 5 Click Next The following screen appears ...

Page 50: ...e Security submenu on the left side main panel will be displayed after system reboot The user can then configure firewall features after the system comes up If firewall is not used this checkbox should be de selected to free up system resources for better performance When system comes back after reboot the Security submenu will not be displayed on the left main panel 6 Click Next to display the fo...

Page 51: ...ress and DNS server addresses to each of your PCs Note 1 Enable DHCP Server Relay will not display if Firewall is enabled in the previous step Note 2 The router s default IP address is 192 168 1 1 and the default private address range provided by the ISP server in the router is 192 168 1 2 through 192 168 1 254 7 The following screen will be displayed To enable the wireless function select the box...

Page 52: ...ory and reboot The Web UI will not respond until the system is brought up again After the system is up the Web UI will refresh to the Device Info page automatically The CT 5361T is ready for operation and the LED indicators display as described in the LED description tables subsection 1 3 ...

Page 53: ...t The following screen appears To use the bridge service tick the checkbox Enable Bridge Service and enter the service name 5 Click the Next button to continue Enter the IP address for the LAN interface The default IP address is 192 168 1 1 The LAN IP interface in bridge operating mode is needed for local users to manage the ADSL router Notice that there is no IP address for the WAN interface in b...

Page 54: ...ion select the box by clicking on it and input the SSID Then click Next The following screen will be displayed The WAN Setup Summary screen presents the entire configuration summary Click Save Reboot if the settings are correct Click Back if you wish to modify the settings ...

Page 55: ...ains WAN LAN Routing DSL and Port Mapping Note Shown below for your reference are the available menu options for each different configuration This screenshot is for MER and IPoA encapsulations This screenshot is for PPPoE and PPPoA encapsulations ...

Page 56: ...55 This screenshot is for Bridge encapsulation ...

Page 57: ...802 1Q VLAN tag on PPPoE MER or Bridge mode It means the packets are sent to WAN and a specific VlanID 802 1Q tag will be added in the Ethernet header The VlanID shows which 802 1Q tag will be added Please reference subsection 4 1 for further information ...

Page 58: ...r the LAN port Enable IGMP Snooping Enable Disable the function that is IGMP Snooping Standard Mode In standard mode as in all prior releases multicast traffic will flood to all bridge ports when there is no client subscribes to any multicast group even when IGMP snooping is enabled Blocking Mode In blocking mode the multicast data traffic will be blocked and not flood to all bridge ports when the...

Page 59: ...58 IP Address Enter the secondary IP address for the LAN port Subnet Mask Enter the secondary subnet mask for the LAN port ...

Page 60: ...AN side identified by Protocol and External port to the Internal server with private IP address on the LAN side The Internal port is required only if the external port needs to be converted to a different port number used by the server on the LAN side A maximum 32 entries can be configured To add a Virtual Server simply click the Add button The following will be displayed ...

Page 61: ...figured External Port End Enter the ending external port number when you select Custom Server When a service is selected the port ranges are automatically configured Protocol User can select from TCP TCP UDP or UDP Internal Port Start Enter the internal port starting number when you select Custom Server When a service is selected the port ranges are automatically configured Internal Port End Enter...

Page 62: ...s in the firewall when an application on the LAN initiates a TCP UDP connection to a remote party using the Triggering Ports The Router allows the remote party from the WAN side to establish new connections back to the application on the LAN side using the Open Ports A maximum 32 entries can be configured To add a Trigger Port simply click the Add button The following will be displayed ...

Page 63: ...ber when you select custom application When an application is selected the port ranges are automatically configured Trigger Port End Enter the ending trigger port number when you select custom application When an application is selected the port ranges are automatically configured Trigger Protocol User can select from TCP TCP UDP or UDP Open Port Start Enter the starting open port number when you ...

Page 64: ...way SIP behind the ADSL router the SIP ALG can help VoIP packet passthrough the router NAT enabled Note SIP Session Initiation Protocol RFC3261 is the protocol of choice for most VoIP Voice over IP phones to initiate communication This ALG is only valid for SIP protocol running on UDP port 5060 ...

Page 65: ...tgoing incoming IP traffic by specifying a new filter name and at least one condition below All of the specified conditions in this filter rule must be satisfied for the rule to take effect Click Save Apply to save and activate the filter Outgoing Note The default setting for Outgoing is Accepted To add a filtering rule simply click the Add button The following screen will be displayed ...

Page 66: ...ce IP address Enter source IP address Source Subnet Mask Enter source subnet mask Source Port port or port port Enter source port number Destination IP address Enter destination IP address Destination Subnet Mask Enter destination subnet mask Destination port port or port port Enter destination port number ...

Page 67: ...ing Note The default setting for Incoming is Blocked To add a filtering rule simply click the Add button The following screen will be displayed To configure the parameters please reference Outgoing table above ...

Page 68: ...arental control simply click the Add button The following screen will be displayed Username Input Internet access user name MAC Set the MAC address to access the Internet Mon Tue Wed Thu Fri Sat Sun Set which days that will have block restrictions to Internet access Start End Blocking Time Set Internet block start and stop time ...

Page 69: ...layer frames will be FORWARDED except those matching with any of the specified rules in the following table BLOCKED means that all MAC layer frames will be BLOCKED except those matching with any of the specified rules in the following table The default is FORWARD you change by clicking the Change Policy button Choose Add or Remove to configure MAC filtering rules The following screen pops up when ...

Page 70: ...MAC Address Define the destination MAC address Source MAC Address Define the source MAC address Frame Direction Select a direction of the frame WAN Interface Selects the interface that the MAC filter rule s will be applied Only the WAN interface that is configured for bridged can be selected ...

Page 71: ...70 6 5 Quality of Service To display the QoS function you need to enable the QoS feature in the WAN Setup Choose Add to configure network traffic classes The following screen will be displayed ...

Page 72: ...Type Of Service Select either Normal Service Minimize Cost Maximize Reliability Maximize Throughput Minimize Delay Mark 802 1p if 802 1q is enabled on WAN Select between 0 7 The higher the digit shows the higher the priority SET 1 Physical LAN Port Select between ENET 1 4 USB Wireless and Wireless_Guest Protocol User can select from TCP TCP UDP UDP or ICMP Source IP Address Enter the source IP add...

Page 73: ...er destination IP address Destination Subnet Mask Enter destination subnet mask Destination port port or port port Enter destination port number or port range SET 2 802 1p Priority Select between 0 7 The lower the digit shows the higher the priority If the Enable Differentiated Service Configuration box is ticked i e selected the following screen will be displayed ...

Page 74: ...MAC Mask is equal to the binary AND of the Source MAC Mask and this field Source MAC Mask This is the mask used to decide how many bits are checked in Source MAC Address Destination MAC Address A packet belongs to SET 1 then the result that the Destination MAC Address of its header binary AND to the Destination MAC Mask must equal to the result that this field binary AND to the Destination MAC Mas...

Page 75: ...uter will accept the first received default gateway assignment from one of the PPPoA PPPoE or MER DHCP enabled PVC s If the checkbox is not selected enter the static default gateway AND OR a WAN interface Click Save Apply button to save it NOTE If changing the Automatic Assigned Default Gateway from unselected to selected You must reboot the router to get the automatic assigned default gateway ...

Page 76: ...static routes and allows configuring static routes Choose Add or Remove to configure the static routes To add static route click the Add button to display the following screen Enter the destination network address subnet mask gateway AND OR available WAN interface then click Save Apply to add the entry to the routing table ...

Page 77: ...lobal RIP Mode To configure an individual interface select the desired RIP version and operation followed by placing a check in the Enabled checkbox for the interface Click the Save Apply button to save the configuration and to start or stop RIP based on the Global RIP mode selected ...

Page 78: ...ived DNS assignment from one of the PPPoA PPPoE or MER DHCP enabled PVC s during the connection establishment If the checkbox is not selected enter the primary and optional secondary DNS server IP addresses Click Save button to save the new configuration You must reboot the router to make the new configuration effective ...

Page 79: ...alias a dynamic IP address to a static hostname in any of the many domains allowing your DSL router to be more easily accessed from various locations on the Internet To add a dynamic DNS service simply click the Add button The following screen will be displayed ...

Page 80: ...c DNS provider from the list Hostname Enter the name for the dynamic DNS server Interface Select the interface from the list Username Enter the username for the dynamic DNS server Password Enter the password for the dynamic DNS server ...

Page 81: ...e system to use G Lite mode T1 413 Enabled Sets the T1 413 if you want the system to use only T1 413 mode ADSL2 Enabled The device can support the functions of the ADSL2 AnnexL Enabled The device can support enhance the long loop test ADSL2 Enabled The device can support the functions of the ADSL2 AnnexM DISABLED Covers a higher upstream data rate version by making use of some of the downstream ch...

Page 82: ...port this feature you must create mapping groups with appropriate LAN and WAN interfaces using the Add button The Remove button will remove the grouping and add the ungrouped interfaces to the Default group As shown below when you tick the Enable virtual ports on all of the LAN interfaces will be grouped together as a default To add a port mapping group simply click the Add button ...

Page 83: ...sing DHCP vendor ID option 60 The local DHCP server will decline and send the requests to a remote DHCP server by mapping the appropriate LAN interface This will be turned on when PortMapping is enabled There are 4 PVCs 0 33 0 36 0 37 0 38 0 33 is for PPPoE and the others are for IP setup box video The LAN interfaces are ETH1 ETH2 ETH3 ETH4 USB Wireless and Wireless_Guest Port mapping configuratio...

Page 84: ...from CPE s DHCP server and access Internet via PPPoE 0 33 If the setup box was connected with interface ETH1 and send a DHCP request with vendor id Video CPE s DHCP server will forward this request to ISP s DHCP server And CPE will change the port mapping configuration automatically The port mapping configuration will become 1 Default ETH2 ETH3 ETH4 USB Wireless and Wireless_Guest 2 Video nas_0_36...

Page 85: ...er information of this certificate is correct 6 10 1 Local Click Create Certificate Request to generate a certificate signing request The certificate signing request can be submitted to the vendor ISP ITSP to apply for a certificate Some information must be included in the certificate signing request Actually your vendor ISP ITSP will ask you to provide the information they require and to provide ...

Page 86: ... Certificate Name A user defined name for the certificate Common Name Usually it is the fully qualified domain name for the machine Organization Name The exact legal name of your organization Do not abbreviate State Province Name The state or province where your organization is located It cannot be abbreviated Country Region Name The two letter ISO abbreviation for your country ...

Page 87: ...pose is not to do encryption decryption Its purpose is to sign and issue certificates in order to prove the owner information of that certificate is correct Click Import Certificate to paste the certificate content of your trusted CA Generally speaking the certificate content will be provided by your vendor ISP ITSP and is used to authenticate the Auto Configuration Server ACS that the CPE will co...

Page 88: ...el set 7 1 Wireless Basic Screen The Basic option allows you to configure basic features of the wireless LAN interface You can enable or disable the wireless LAN interface hide the network from active scans set the wireless network name also known as SSID and restrict the channel set based on country requirements Click Apply to configure the basic wireless options ...

Page 89: ... will not discover this access point To connect a station to the available access points the station must manually add this access point name in its wireless configuration In Windows XP go to the Network Programs function to view all of the available access points You can also use other software programs such as NetStumbler to view available access points SSID Sets the wireless network name SSID s...

Page 90: ... the source station and the destination station to alter frame bits thus avoiding disclosure to eavesdroppers 802 11 supports two subtypes of network authentication services open system and shared key Under open system authentication any wireless station can request authentication The system that needs to authenticate with another wireless station sends an authentication management frame that cont...

Page 91: ...ion to the wireless network If the Network Authentication Shared mode checkbox is not shared that is if open system authentication is used no authentication is provided Open system authentication only performs identity verifications Different authentication type pops up different settings requests Choosing 802 1X enter RADIUS Server IP address RADIUS Port and RADIUS key Also enable WEP Encryption ...

Page 92: ...s or 26 hexadecimal digits for 128 bit encryption keys and enter 5 ASCII characters or 10 hexadecimal digits for 64 bit encryption keys Choosing WPA you must enter WPA Group Rekey Interval Choosing WPA PSK you must enter WPA Pre Shared Key and Group Rekey Interval ...

Page 93: ...This means that session keys with a greater number of bits have a greater degree of security and are considerably more difficult to forcibly decode This drop down menu sets either a 64 8 bit 5 ASCII character or 10 hexadecimal character or 128 8 bit 13 ASCII character or 26 hexadecimal character key If you set a minimum 128 bit key strength users attempting to establish a secure communications cha...

Page 94: ...t may connect to the access point and thus dictate what devices are authorized to access the wireless network When a device is using MAC filtering any address not explicitly defined will be denied access MAC Restrict mode Off disables MAC filtering Allow permits access for the specified MAC address deny reject access of the specified MAC address then click the SET button To delete an entry select ...

Page 95: ...s point Deny Prevents PCs with listed MAC from connecting to the access point MAC Address Lists the MAC addresses subject to the Off Allow or Deny instruction The Add button prompts an entry field that requires you type in a MAC address in a two character 6 byte convention xx xx xx xx xx xx where xx are hexadecimal numbers The maximum number of MAC addresses that can be added is 60 ...

Page 96: ...ality Wireless bridge functionality will still be available and wireless stations will be able to associate to the AP Select Disabled in Bridge Restrict which disables wireless bridge restriction Any wireless bridge will be granted access Selecting Enabled or Enabled Scan enables wireless bridge restriction Only those bridges selected in Remote Bridges will be granted access Option Description AP ...

Page 97: ...agmentation threshold set the RTS threshold set the wakeup interval for clients in power save mode set the beacon interval for the access point set XPress mode and set whether short or long preambles are used Click Apply to configure the advanced wireless options Option Description AP Isolation Select On or Off By enabling this feature wireless clients associated with the Access Point will be able...

Page 98: ...cast Rate Setting multicast packet transmit rate Basic Rate Setting basic transmit rate Fragmentation Threshold A threshold specified in bytes that determines whether packets will be fragmented and at what size On an 802 11 WLAN packets that exceed the fragmentation threshold are fragmented i e split into smaller units suitable for the circuit size Packets smaller than the specified fragmentation ...

Page 99: ...on needs the beacon interval to know when to wake up to receive the beacon and learn whether there are buffered frames at the access point The entered value is represented in ms Default is 100 Acceptable entry range is 1 to 0xffff 65535 Maximum Associated Clients This is the maximum number of client allowed to connect to the router Xpress TM Technology Xpress Technology is compliant with draft spe...

Page 100: ...ut under most conditions Preamble Type Short preamble is intended for application where maximum throughput is desired but it doesn t cooperate with the legacy Long preamble interoperates with the current 1 and 2 Mbit s DSSS specification as described in IEEE Std 802 11 1999 Transmit Power The router will set different power output by percentage according to this selection ...

Page 101: ... Fi networks to improve the end user experience by prioritizing audio video and voice traffic and optimizing the way shared network resources are allocated among competing applications If you want to enable Click on the drop down menu and select then click the Save Apply WME Settings button ...

Page 102: ...he BSSID is the MAC Medium Access Control address of the AP Access Point and in Independent BSS or ad hoc networks the BSSID is generated randomly Associated Lists all the stations that are associated with the Access Point along with the amount of time since packets were transferred to and from each station If a station is idle for too long it is removed from this list Authorized Lists those devic...

Page 103: ...uter also signifies that an Ethernet connection is present and that this test is successful Fail Indicates that the DSL Router does not detect the Ethernet interface on your computer USB Connection Pass Indicates that the USB interface from your computer is connected to router properly Down Indicates that the DSL Router does not detect the signal from USB interface Wireless connection Pass Indicat...

Page 104: ...LED will stop blinking i e training and the LED will switch off ISP Connection Pass Indicates we can access the WAN service like the Gateway and DNS Fail Indicates we cannot access the WAN side Diagnostics screen with a PPPoE configured for your reference If Port Mapping is enabled the following will be displayed ...

Page 105: ...ollowing maintenance functions and processes z Settings z System log z TR 069 Client z Internet Time z Access Control z Update software z Save Reboot 9 1 Settings The Settings option allows you to back up your settings to a file retrieve the setting file and restore the settings ...

Page 106: ...s save your router configurations to a file on your PC Click BACKUP Settings in the main window You will be prompted to define the location of the backup file to save After choosing the file location click Backup Settings The file will then be saved to the assigned location ...

Page 107: ...106 9 1 2 Update Settings The Update option under Management Settings update your router settings using your saved files ...

Page 108: ...he boot loader support the reset to default button If the reset button is continuously pushed for more than 5 seconds the boot loader will erase the entire configuration data saved on the flash memory NOTE 2 Restoring system settings requires a system reboot This necessitates that the current Web UI session be closed and restarted Before restarting the connected PC must be configured with a static...

Page 109: ...ssword 12345 z Remote user name support z Remote user password support After the Restore Default Configuration button is selected the following screen appears Close the DSL Router Configuration window and wait for 2 minutes before reopening your web browser If necessary reconfigure your PC s IP address to match your new configuration ...

Page 110: ... log or to configure the System Log options The default setting of system log is disabled Follow the steps below to enable and view the system log 1 Click Configure System Log to display the following screen 2 Select from the desired Log options described in the following table and then click SAVE Apply ...

Page 111: ...normal but insignificant condition z Informational provides information for reference z Debugging debug level messages Emergency is the most serious event level whereas Debugging is the least important For instance if the log level is set to Debugging all the events from the lowest Debugging level to the most critical level Emergency level will be recorded If the log level is set to Error only Err...

Page 112: ...111 ...

Page 113: ...in the form of a valid HTTP or HTTPS URL An HTTPS URL indicates that the ACS supports SSL The host portion of this URL is used by the CPE for validating the certificate from the ACS when using certificate based authentication ACS User Name Username used to authenticate the CPE when making a connection to the ACS using the CPE WAN Management Protocol This username is used only for HTTP based authen...

Page 114: ...PE or ACS to discover the set of methods supported by the ACS or CPE it is in communication with This list may include both standard TR 069 methods those defined in this specification or a subsequent version and vendor specific methods The receiver of the response MUST ignore any unrecognized methods Click this button to force the CPE to immediately establish a connection to the ACS ...

Page 115: ...et Time The Internet Time option under Management menu bar configures the Modem s time To automatically synchronize with Internet time servers tick the corresponding box displayed on the screen Then click Save Apply ...

Page 116: ...115 9 5 Access Control The Access Control option under Management menu bar configures the access related parameters including three parts Services IP Address and Passwords ...

Page 117: ...on limits or opens the access services over the LAN or WAN These services are provided FTP HTTP ICMP SSH Security Socket Share TELNET and TFTP Enable the service by checking the item in the corresponding checkbox and then click Save Apply ...

Page 118: ...cess Control Mode is enabled only the allowed IP addresses can access the router Before you enable it configure the IP addresses by clicking the Add button Enter the IP address subnet mask and select the interface Then click Save Apply to allow the PC with this IP address managing the DSL Router ...

Page 119: ... unrestricted access to change and view configuration of your DSL Router z support is used to allow an ISP technician to access your DSL Router for maintenance and to run diagnostics z user can access the Router view configuration settings and statistics as well as update the router s software Use the fields below to enter up to 16 characters and click Apply to change or create passwords ...

Page 120: ...performed using the following screen Step 1 Obtain an updated software image file from your ISP Step 2 Enter the path to the image file location in the box below or click the Browse button to locate the image file Step 3 Click the Update Software button once to upload the new image file NOTE The update process takes about 2 minutes to complete and your DSL Router will reboot ...

Page 121: ...boot options saving the configurations and reboot the router Close the DSL Router Configuration window and wait for 2 minutes before reopening your web browser If necessary reconfigure your PC s IP address to match your new configuration ...

Page 122: ...e filtering of traffic at the Network layer i e Layer 3 When a Routing interface is created Enable Firewall must be checked Navigate to Advanced Setup Security IP Filtering web page Outgoing IP Filtering Helps in setting rules to DROP packets from the LAN interface By default if Firewall is Enabled all IP traffic from LAN is allowed By setting up one or more filters particular packet types coming ...

Page 123: ...ddress Sub Mask 192 168 1 45 24 having a source port of 80 irrespective of the destination All other packets will be Accepted 2 Filter Name Out_Filter2 Protocol UDP Source Address 192 168 1 45 Source Subnet Mask 255 255 255 0 Source Port 5060 6060 Dest Address 172 16 13 4 Dest Sub Mask 255 255 255 0 Dest Port 6060 7070 This filter will drop all UDP packets coming from LAN with IP Address Sub Mask ...

Page 124: ...ation will be accepted Destination Port This can take on either a single port number or a range of port numbers Packets having a destination port equal to this value or falling within the range of port numbers portX portY will be accepted The WAN interface on which these rules apply needs to be selected by the user Examples 1 Filter Name In_Filter1 Protocol TCP Source Address 210 168 219 45 Source...

Page 125: ... the filtering of traffic at the Layer 2 MAC Filtering is only effective on ATM PVCs configured in Bridge mode After a Bridge mode PVC is created navigate to Advanced Setup Security MAC Filtering web page Global Policy When set to Forwarded the default filter behavior is to Forward all MAC layer frames except those explicitly stated in the rules Setting it to Blocked changes the default filter beh...

Page 126: ...ich this rule is applied Examples 1 Global Policy Forwarded Protocol Type PPPoE Dest MAC Addr 00 12 34 56 78 90 Source MAC Addr NA Frame Direction LAN WAN WAN Interface Selected br_0_34 nas_0_34 Addition of this rule drops all PPPoE frames going from LAN side to WAN side with a Dest MAC Addr of 00 12 34 56 78 90 irrespective of its Source MAC Addr on the br_0_34 WAN interface All other frames on t...

Page 127: ...are to be applied to a device other than the one on which the browser is running the MAC address of that LAN device is entered Days of the Week Days of the week when the restrictions are applied Start Blocking Time The time when restrictions on the LAN device are put into effect End Blocking Time The time when restrictions on the LAN device are lifted Example User Name FilterJohn Browser s MAC Add...

Page 128: ...n Definition Pin Definition 1 4 ADSL_TIP 2 5 3 ADSL_RING 6 Pin Assignments of the RJ11 Port LAN Port RJ45 Pin Definition Pin Definition 1 Transmit data 5 NC 2 Transmit data 6 Receive data 3 Receive data 7 NC 4 NC 8 NC Pin assignments of the LAN Port ...

Page 129: ...tream 832 Kbps Ethernet Standard IEEE 802 3 IEEE 802 3u 10 100 BaseT Auto sense MDI MDX support Yes Wireless Standard IEEE802 11g backward compatible with 802 11b Encryption 64 128 bit Wired Equivalent Privacy WEP Data Encryption Channels 11 Channels US Canada 13 Channels Europe 14 Channels Japan Data Rate Up to 54Mbps WPA WPA2 Yes IEEE 802 1x Yes ATM Attributes RFC 2364 PPPoA RFC 2684 RFC 1483 Br...

Page 130: ...HCP Relay DNS Proxy ARP Security Functions Authentication protocols PAP CHAP TCP IP Port filtering rules Port triggering Forwarding Packet and MAC address filtering access control SSH Application Passthrough PPTP L2TP IPSec VoIP Yahoo messenger ICQ RealPlayer NetMeeting MSN X box etc OS Supported for USB driver Windows Vista 2000 XP ME 98SE Power Supply External power adapter 110 Vac or 220 Vac En...

Page 131: ...130 Certifications FCC Part 15 class B FCC Part 68 CE Note Specifications are subject to change without notice ...

Page 132: ...e the router WEB UI to enable SSH access from LAN default is enabled type ssh l root 192 168 1 1 From WAN In the router use WEB UI to enable SSH access from WAN type ssh l support router WAN ip address To access the router using Windows putty ssh client From LAN Use the router WEB UI to enable SSH access from LAN default is enabled type putty ssh l root 192 168 1 1 From WAN In the router use WEB U...

Reviews:

No comments

Related manuals for CT-5361T

All in One Printer

Brand: Baracoda Pages: 42

Brand: Panasonic Pages: 24

Brand: Panasonic Pages: 2

BB-HCM381A - Network Camera

Brand: Panasonic Pages: 28

BB-HCM381A - Network Camera

Brand: Panasonic Pages: 2

Brand: Observint Pages: 117

Brand: Clavister Pages: 89

Fast SwitchHub-8mi SNMP

Brand: Accton Technology Pages: 13

BIC 1I12-P2A25-M30MI1-BPX05-110

Brand: Balluff Pages: 12

StorageWorks AIT 35GB AutoLoader

Brand: Compaq Pages: 4

Brand: Aewin Technologies Pages: 86

Brand: Hunter Pages: 2

Brand: Zhone Pages: 2

Brand: National Instruments Pages: 26

Brand: M-system Pages: 4

Brand: Kramer Pages: 56

Brand: Kasda Pages: 39

Brand: Goobay Pages: 20

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands