manualshive.com logo in svg

Comtrend Corporation CT-5611TC, User Manual

Get the User Manual for the Comtrend Corporation CT-5611TC for free download. This manual provides detailed instructions on how to set up and use the product effectively. To download the manual, visit manualshive.com and gain access to essential information to enhance your user experience.

Share
Download
background image

Appendix D: Security 

Stateful Packet Inspection 

Refers to an architecture, where the firewall keeps track of packets on each 
connection traversing all its interfaces and makes sure they are valid.  This is in 
contrast to static packet filtering which only examines a packet based on the 
information in the packet header. 

Denial of Service Attack 

Is an incident in which a user or organization is deprived of the services of a 
resource they would normally expect to have.  Various DoS attacks the device can 
withstand are ARP Attack, Ping Attack, Ping of Death, Land, SYN Attack, Smurf 
Attack, and Tear Drop. 

TCP/IP/Port/Interface Filter  

These rules help in the filtering of traffic at the Network layer i.e. Layer 3. 
When a Routing interface is created, Enable Firewall must be checked. 
Navigate to Advanced Setup -> Security -> IP Filtering.   

Outgoing IP Filter  

Helps in setting rules to DROP packets from the LAN interface.  By default if 
Firewall is Enabled all IP traffic from LAN is allowed.  By setting up one or more 
filters, particular packet types coming from the LAN can be dropped. 

Filter Name: 

User defined Filter Name.

 

Protocol: 

Can take on any values from: TCP/UDP, TCP, UDP or ICMP

 

Source IP Address/Source Subnet Mask: 

Packets with the particular “Source 

IP Address/Source Subnet Mask" combination will be dropped.

 

Source Port: 

This can take on either a single port number or a range of port 

numbers.  Packets having a source port equal to this value or falling within the 
range of port numbers (portX : portY) will be dropped. 

Destination 

IP Address/Destination Subnet Mask: Packets with the particular 

"Destination IP Address/Destination Subnet Mask" combination will be dropped. 

Destination Port: 

This can take on either a single port number or a range of 

port numbers.  Packets having a destination port equal to this value or falling 
within the range of port numbers (portX : portY) will be dropped. 

Example 1: 

 
 Filter 

Name 

  : 

Out_Filter1 

 Protocol   : 

TCP 

 Source 

Address 

 : 

192.168.1.45 

 Source 

Subnet 

Mask 

 : 

255.255.255.0 

 

Source Port   

 

: 80 

 Destination 

Address 

 : 

NA 

 

Destination Subnet Mask 

: NA 

 Destination 

Port 

 : 

NA 

 

  

This filter will Drop all TCP packets coming from LAN with IP Address/Sub.  Mask 
192.168.1.45/24 having a source port of 80 irrespective of the destination.  All 
other packets will be Accepted. 

 

81

Summary of Contents for CT-5611TC

Page 1: ...CT 5611TC ADSL2 Combo Router User s Manual Version A1 0 July 21 2008 261070 010...

Page 2: ...tems should be placed on the cord In addition do not walk on step on or mistreat the cord Use only the power cord and adapter that are shipped with this device To safeguard the equipment against overh...

Page 3: ...tic waste The cardboard box the plastic contained in the packaging and the parts that make up this router can be recycled in accordance with regionally established regulations Never dispose of this el...

Page 4: ...TER 5 DEVICE INFORMATION 34 5 1 WAN 35 5 2 STATISTICS 35 5 2 1 LAN Statistics 35 5 2 2 WAN Statistics 36 5 2 3 ATM statistics 37 5 2 4 ADSL Statistics 38 5 3 ROUTE 40 5 4 ARP 41 5 5 DHCP 41 CHAPTER 6...

Page 5: ...71 8 4 TR 069 CLIENT 71 8 5 INTERNET TIME 72 8 6 ACCESS CONTROL 72 8 6 1 Services 73 8 6 2 IP Addresses 74 8 6 3 Passwords 74 8 7 UPDATE SOFTWARE 75 8 8 SAVE AND REBOOT 76 APPENDIX A PIN ASSIGNMENTS...

Page 6: ...curity functions such as Firewall Virtual Private Networks with PPTP pass through L2TP pass through IPSec passthrough FEATURES ADSL2 over POTS Annex A Dynamic IP assignment Auto PVC configuration up t...

Page 7: ...Attach the power adapter to a wall outlet or other AC source Press the power button to the ON position IN If the Power LED indicator lights up GREEN then the device is ready for setup Caution 1 If th...

Page 8: ...d On Device attempted to become IP connected and failed no DHCP response no PPPoE response PPPoE authentication failed no IP address from IPCP etc On A USB link is established Off A USB link is not es...

Page 9: ...in XP 32 bit and Vista 32 bit For those using Windows XP 64 bit the driver must be installed manually please see section 2 3 below for details Follow the procedure below to install the standard 32 bit...

Page 10: ...STEP 3 When the window displays as below wait for the drivers to fully install STEP 4 Click the Finish button when the window displays as below 9...

Page 11: ...he correct drivers must be installed Follow the procedure below to manually install the 64bit USB driver STEP 1 Connect the USB port to the PC by plugging the flat connector of a standard USB cable in...

Page 12: ...as below select Install from a list or specific location Advanced and then click the Next button NOTE This window won t display if the USB Driver has been previously installed In this case contact tec...

Page 13: ...e autostart menu as shown in step 1 of previous section CLICK and continue with the manual installation process STEP 4 Select the location of the file using the Browse button as shown above Normally t...

Page 14: ...STEP 5 Locate the Vista folder and click OK STEP 6 When the window displays as below click Next and then wait 13...

Page 15: ...STEP 7 Click the Finish button when the window displays as below 14...

Page 16: ...STEP 8 Installation is complete You can now use the USB connection 15...

Page 17: ...IPoA Bridging Technical Note During power on the device initializes all settings to default values It will then read the configuration profile from the permanent storage section of flash memory The d...

Page 18: ...the steps below to configure your PC IP address to use subnet 192 168 1 x The following assumes you are running Windows XP STEP 1 From the Network Connections window open Local Area Connection You ma...

Page 19: ...s STEP 1 Start the Internet browser and enter the default IP address for the device in the Web address field For example if the default IP address is 192 168 1 1 type http 192 168 1 1 NOTE For local a...

Page 20: ...or the first time you will reach this screen NOTE1 If a PVC connection already exists then this Quick Setup screen will be bypassed and the Device Info Summary screen will display instead NOTE2 The se...

Page 21: ...de CT 5611TC also supports pass through PPPoE sessions from the LAN side while simultaneously running a PPPoE client from non PPPoE LAN devices NAT and firewall are always enabled when PPPoE mode is s...

Page 22: ...can use the ADSL service 4 2 Manual Quick Setup STEP 1 Click Quick Setup and un tick the DSL Auto connect checkbox to enable manual configuration of the connection type Un tick this checkbox to enabl...

Page 23: ...descriptions state each connection type setup separately Select Enable 802 1q by ticking the box if required and input a number for the VLAN ID Click on Next to go to next step 4 2 1 PPP over ATM PPPo...

Page 24: ...ension The PPP IP Extension is a special feature deployed by some service providers Unless your service provider specially requires this setup do not select it The PPP IP Extension supports the follow...

Page 25: ...by IP hosts to report their multicast group memberships to any immediately neighboring multicast routers Enable WAN Service checkbox Tick this item to enable the ATM service Untick it to stop the ATM...

Page 26: ...the LAN port click the checkbox below Step 4 Click Next to display the WAN Setup Summary screen that presents the entire configuration summary Click Save Reboot if the settings are correct Click Back...

Page 27: ...respond until the system is brought up again After the system is up the Web UI will refresh to the Device Info screen automatically The CT 5611TC is ready for operation and the LEDs display as describ...

Page 28: ...uld be de selected When the system comes back after reboot the NAT submenu will not be displayed on the left main menu The default setting for MER is disabled Enable Firewall checkbox If the firewall...

Page 29: ...igures the router to automatically assign IP addresses default gateway address and DNS server addresses to each of your PCs Select Enable DHCP Server Relay if required and enter the DHCP Server IP Add...

Page 30: ...ill refresh to the Device Info screen automatically The CT 5611TC is ready for operation and the LEDs display as described in the LED description tables 4 2 3 IP Over ATM Step 1 Enter the WAN IP setti...

Page 31: ...rewall is not used this checkbox should be de selected to free up system resources for better performance When system comes back after reboot the Security submenu will not be displayed on the left mai...

Page 32: ...ddresses the End IP address and DHCP lease time This configures the router to automatically assign IP addresses default gateway address and DNS server addresses to each of your PCs Select Enable DHCP...

Page 33: ...operation and the LEDs display as described in the LED description tables 4 2 4 Bridging Step 1 Tick the checkbox to Enable Bridge Service and enter a Service Name Step 2 Click the Next button to con...

Page 34: ...k Next to continue The following screen will be displayed The WAN Setup Summary screen presents the entire configuration summary Click Save Reboot if the settings are correct Click Back to modify the...

Page 35: ...5 Device Information This screen provides summary information about the device ADSL and IP status NOTE The selections available on the main menu are based upon account settings and configured connect...

Page 36: ...IGMP function QoS Shows if QoS is enabled or disabled State Shows the connection state of the WAN connection Status Lists the status of DSL link IP Address Shows IP address for WAN interface 5 2 Stati...

Page 37: ...AN statistics screen Service WAN service label VPI VCI ATM Virtual Path Channel Identifiers Protocol Connection type e g PPPoE IPoA Bridge Interface Shows connection interfaces in the following format...

Page 38: ...i Errors Number of cells received with an unregistered VCC address In Port Not Enable Errors Number of cells received on a port that has not been enabled In PTI Errors Number of cells received with an...

Page 39: ...32 errors SAR TimeOuts Number of partially re assembled PDUs which were discarded because they were not fully re assembled within the required period of time If the re assembly time is not supported...

Page 40: ...39...

Page 41: ...er frames received with errors RS Words Total number of Reed Solomon code errors RS Correctable Errors Total Number of RS with correctable errors RS Uncorrectable Errors Total Number of RS words with...

Page 42: ...5 4 ARP Click ARP to display the ARP information 5 5 DHCP Click DHCP to display the DHCP information 41...

Page 43: ...nnection type Igmp Shows enable or disable IGMP proxy QoS Shows if IP QoS is enabled or disabled VlanId VLAN ID is used for VLAN Tagging IEEE 802 1Q State Shows the connection state of the WAN connect...

Page 44: ...s enabled Blocking Mode In blocking mode the multicast data traffic will be blocked and not flood to all bridge ports when there are no client subscriptions to any multicast group DHCP Server To enabl...

Page 45: ...rtual Server allows you to direct incoming traffic from WAN side identified by Protocol and External port to the Internal server with private IP address on the LAN side The Internal port is required o...

Page 46: ...rnal port starting number when you select Custom Server When a service is selected the port ranges are automatically configured Internal Port End Enter the internal port ending number when you select...

Page 47: ...the starting trigger port number when you select custom application When an application is selected the port ranges are automatically configured Trigger Port End Enter the ending trigger port number w...

Page 48: ...rt ranges are automatically configured Open Protocol User can select from TCP TCP UDP or UDP 6 3 3 DMZ Host The DSL router will forward IP packets from the WAN that do not belong to any of the applica...

Page 49: ...y SIP behind the ADSL router the SIP ALG can help VoIP packet passthrough the router NAT enabled NOTE SIP Session Initiation Protocol RFC3261 is the protocol of choice for most VoIP Voice over IP phon...

Page 50: ...reate a filter rule to identify outgoing incoming IP traffic by specifying a new filter name and at least one condition below All of the specified conditions in this filter rule must be satisfied for...

Page 51: ...Source IP address Enter source IP address Source Subnet Mask Enter source subnet mask Source Port port or port port Enter source port number Destination IP address Enter destination IP address Destin...

Page 52: ...e screen below NOTE The default setting for Incoming is Blocked Field Description Filter Name Type a name for the filter rule Protocol User can select from TCP TCP UDP UDP or ICMP Source IP address En...

Page 53: ...and rules for the CT 5611TC can be set according to the following procedure The policy FORWARDED means that all MAC layer frames will be FORWARDED except those matching the rules specified in the foll...

Page 54: ...the destination MAC address Source MAC Address Defines the source MAC address Frame Direction Select the incoming outgoing packet interface WAN Interfaces Applies filter to selected PVCs bridge mode o...

Page 55: ...ernet use To add a parental control click the Add button The following screen will display Username To set access Internet user name MAC Address To set what MAC to access Internet Days of the week To...

Page 56: ...work traffic classes The following screen will display Traffic Class Name Enter name for traffic class Assign ATM Transmit Priority Select Low Medium or High Mark IP Precedence Select between 1 7 The...

Page 57: ...er destination subnet mask UDP TCP Destination port port or port port Enter destination port number 802 1p Priority Select between 0 7 The lower the digit shows the higher the priority 6 6 Routing The...

Page 58: ...ic routes and allows configuring static routes Choose Add or Remove to configure the static routes To add static route click the Add button to display the following screen Enter the destination networ...

Page 59: ...he checkbox is not selected enter the primary and optional secondary DNS server IP addresses Click Save button to save the new configuration You must reboot the router to make the new configuration ef...

Page 60: ...splay D DNS provider Select a dynamic DNS provider from the list Hostname Enter the name for the dynamic DNS server Interface Select the interface from the list Username Enter the username for the dyn...

Page 61: ...Lite mode T1 413 Sets the T1 413 if you want the system to use only T1 413 mode ADSL2 Enabled The device can support the functions of the ADSL2 AnnexL Enabled The device can support enhance the long l...

Page 62: ...rrect 6 9 1 Local Click Create Certificate Request to generate a certificate signing request The certificate signing request can be submitted to the vendor ISP ITSP to apply for a certificate Some inf...

Page 63: ...Name The exact legal name of your organization Do not abbreviate State Province Name The state or province where your organization is located It cannot be abbreviated Country Region Name The two lette...

Page 64: ...is not to do encryption decryption Its purpose is to sign and issue certificates in order to prove the owner information of that certificate is correct Click Import Certificate to paste the certifica...

Page 65: ...64...

Page 66: ...Down Indicates that the device does not detect the USB interface on your computer NOTE This is not a problem however since the CT 5611TC does not have a USB port ADSL Synchronization Pass Indicates t...

Page 67: ...rimary Domain Name Server DNS Fail Indicates that the device was unable to communicate with the primary Domain Name Server DNS It may not have an effect on your Internet connectivity Therefore if this...

Page 68: ...ieve the setting file and restore the settings 8 1 1 Backup Settings The Backup option under Management Settings save your router configurations to a file on your PC Click BACKUP Settings in the main...

Page 69: ...iguration window and wait for 2 minutes before reopening your web browser If necessary reconfigure your PC s IP address to match your new configuration NOTE 1 This entry has the same effect as the har...

Page 70: ...168 1 x subnet in order to configure the CT 5611TC 8 2 System Log The System Log option under Management Settings allows you to view the system events log or to configure the System Log options The de...

Page 71: ...t insignificant condition Informational provides information for reference Debugging debug level messages Emergency is the most serious event level whereas Debugging is the least important For instanc...

Page 72: ...er ACS to perform auto configuration provision collection and diagnostics to this device Option Description Inform Disable Enable TR 069 client on the CPE Inform Interval The duration in seconds of th...

Page 73: ...ing a Connection Request to the CPE Get RPC Methods This method may be used by a CPE or ACS to discover the set of methods supported by the ACS or CPE it is in communication with This list may include...

Page 74: ...es The Services option limits or opens the access services over the LAN or WAN These services are provided FTP HTTP ICMP SNMP SSH see Appendix C SSH Client for details TELNET and TFTP Enable the servi...

Page 75: ...outer 8 6 3 Passwords The Passwords option configures the access passwords for the router Access to your DSL router is controlled through three user accounts admin support and user root has unrestrict...

Page 76: ...rformed using the following screen Step 1 Obtain an updated software image file from your ISP Step 2 Enter the path to the image file location in the box below or click the Browse button to locate the...

Page 77: ...option saves the configurations and reboots the router Close the DSL Router Configuration window and wait for 2 minutes before reopening your web browser If necessary reconfigure your PC s IP address...

Page 78: ...ssignments Line port RJ11 Pin Definition Pin Definition 1 4 ADSL_TIP 2 5 3 ADSL_RING 6 LAN Port RJ45 Pin Definition Pin Definition 1 Transmit data 5 NC 2 Transmit data 6 Receive data 3 Receive data 7...

Page 79: ...ss UBR CBR VBR ATM UNI support UNI3 1 4 0 OAM F4 F5 Yes Management Compliant with remote management protocols TR 069 TR 098 TR 111 SNMP SSH Telnet Web based management Configuration backup and restora...

Page 80: ...degrees Celsius Relative humidity 5 95 non condensing Dimensions 152 mm W x 28 mm H x 112 mm D Kit Weight 1 CT 5611TC 1 RJ11 cable 1 USB cable 1 RJ45 cable 1 Power Adapter CD ROM 0 65 kg NOTE Specifi...

Page 81: ...ust first enable SSH access for LAN or WAN from the Management Access Control Services menu in the web user interface To access the router using the Linux ssh client For LAN access type ssh l root 192...

Page 82: ...pes coming from the LAN can be dropped Filter Name User defined Filter Name Protocol Can take on any values from TCP UDP TCP UDP or ICMP Source IP Address Source Subnet Mask Packets with the particula...

Page 83: ...Source IP Address Source Subnet Mask combination will be accepted Source Port This can take on either a single port number or a range of port numbers Packets having a source port equal to this value o...

Page 84: ...t to Forwarded the default filter behavior is to Forward all MAC layer frames except those explicitly stated in the rules Setting it to Blocked changes the default filter behavior to Drop all MAC laye...

Page 85: ...etwork through the device as per chosen days of the week and the chosen times User Name Name of the Filter Browser MAC Address Displays MAC address of the LAN device on which the browser is running Ot...

Reviews:

No comments

Related manuals for CT-5611TC

D-Link Air DCS-1000W Setting-Up Manual preview
Air DCS-1000W
Brand: D-Link Pages: 13
Xantrex C12 Owner'S Manual preview
C12
Brand: Xantrex Pages: 8
Watchguard Firebox SOHO 6 Wireless Instructions Manual preview
Firebox SOHO 6 Wireless
Brand: Watchguard Pages: 8
TP-Link tl-wr845n Quick Installation Manual preview
tl-wr845n
Brand: TP-Link Pages: 2
US Robotics USR8700 User Manual preview
USR8700
Brand: US Robotics Pages: 156
NA DigiNet 416 User Manual preview
DigiNet 416
Brand: NA Pages: 22
Enertronica Santerno SINUS H PROFInet User Manual preview
SINUS H PROFInet
Brand: Enertronica Santerno Pages: 34
Mastervolt MasterBus Tanklevel Interface User And Installation Manual preview
MasterBus Tanklevel Interface
Brand: Mastervolt Pages: 8
Watchguard XTM 850 Hardware Manual preview
XTM 850
Brand: Watchguard Pages: 30
ICP DAS USA PDS-734D Quick Start Manual preview
PDS-734D
Brand: ICP DAS USA Pages: 8
Delta Electronics LonWorks Communication Module LN-01 Instruction Sheet preview
LonWorks Communication Module LN-01
Brand: Delta Electronics Pages: 1
ICP DAS USA iWSN-200E Quick Start Manual preview
iWSN-200E
Brand: ICP DAS USA Pages: 8
ANEP P4GU VoLTE Technical Data Sheet preview
P4GU VoLTE
Brand: ANEP Pages: 48
SMC Networks SMC-EZ1026DT User Manual preview
SMC-EZ1026DT
Brand: SMC Networks Pages: 56
Lanner NCA-6520 User Manual preview
NCA-6520
Brand: Lanner Pages: 141
ADTRAN DUAL Nx56/64 1200142L1# User Manual preview
DUAL Nx56/64 1200142L1#
Brand: ADTRAN Pages: 48
Ryobi RE180PL1 Operator'S Manual preview
RE180PL1
Brand: Ryobi Pages: 44
QSC Q-SYS QIO-GP8x8 Hardware User Manual preview
Q-SYS QIO-GP8x8
Brand: QSC Pages: 13

Brands by name

Popular brands

Load more brands