Home
/
D-Link
/
DRO-220i
/
User Manual

D-Link DRO-220i, User Manual

Share

42 pages before
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64

Page: 57 / 64

D-Link DRO-220i User Manual Download Page 57

Administration

Dlink DRO-220i User Guide

57

Access Right

To browse the MIBs, access rights are provided to the community. A
community can have READ or WRITE access.

Read Community

This defines the COMMUNITY STRING to which the READ access is
given

Write Community

This defines the COMMUNITY STRING to which the WRITE access is
given. The WRITE community has both READ as well as WRITES
permissions.

Security Level

SNMP v3 provides three types of security levels to its user are follows:

NoAuthNoPriv – It uses a user name string for authentication

AuthNoPriv – It provides authentication based on HMAC-MD5 or
HMAC-SHA algorithms.

AuthPriv – It adds DES 56-bit encryption in addition to authentication
based on HMAC-MD5 or HMAC-SHA

Authentication

Protocol

It ensures received message sent by the authorized SNMPv3 user.

Authentication

Password

Enter Authentication Password for the authentication of SNMP v3 Users.
The minimum password length should be eight characters long.

Privacy Protocol

This protocol enables managers and agents to encrypt messages to
prevent eavesdropping by third parties. Here manager entity and agent
entity must share the secret key. All the traffic flows between them is
encrypted using the DES.

Privacy Password

It sets the DES password phrase to the SNMP v3 users. The minimum
password length should be eight characters long.

L

Caution:

READ and WRITE community strings are used for authentication

with SNMP v1 and SNNP v2 only.

L

Note:

Security Level for SNMP v1 and SNMP v2 is NoAuthNoPriv.

TRAP is an “Unsolicited” message sent to the manager by the agent in case of failure that
occurred in the agent. This is to inform the manager about the agents status. The
supported generic Traps in DRO250 are: Cold Start, Warm Start Authentication Failure.

Select

Tools

→

TRAP

to configure

TRAP

as explained below.

TRAP

TRAP

Select Enable or Disable to activate or deactivate TRAP.

IP Address

Enter the IP address of the SNMP Manager where to send the TRAP.

Web UI

«
...
55
56
57
58
59
...
»

Summary of Contents for DRO-220i

Page 1: ...DRO 220i Business Gateway User Guide D Link India Ltd Software and R D Center Bangalore Phone 91 80 26788345 46 50 51 www dlink co in Version 1 1 April 23 2007 ...

Page 2: ... Dial In 19 2 4 3 Dial 21 2 5 WAN3 INTERFACE 21 2 5 1 Static Mode 21 2 5 2 Dynamic Mode 22 2 5 3 PPPoE Mode 23 3 DHCP DNS AND TIME 25 3 1 DHCP 25 3 1 1 DHCP Server 25 3 1 2 DHCP Static Mapping 26 3 1 3 DHCP Relay 27 3 2 DNS PROXY 28 3 3 TIME 29 4 ROUTING 30 4 1 STATIC ROUTING 31 4 2 DYNAMIC ROUTING 31 4 3 ROUTING TABLE 35 4 4 POLICY BASED ROUTING 35 4 5 MULTICAST 36 4 6 MULTICAST ROUTING 37 5 HIGH...

Page 3: ...Class Configuration 46 7 1 2 Filter Configuration 48 7 2 TOS DIFFSERV 49 8 ADMINISTRATION 51 8 1 DEVICE INFORMATION 51 8 2 TRAFFIC STATISTICS 52 8 3 SESSION LOG 53 8 4 SYSLOG 53 8 5 PASSWORD CHANGE 54 8 6 SYSTEM 54 8 7 UPLOAD DOWNLOAD 55 8 8 PING TEST 56 8 9 SNMP 56 9 FREQUENTLY ASKED QUESTIONS 59 9 1 GENERAL 59 9 2 DHCP DNS 60 9 3 ROUTING 60 9 4 HIGH AVAILABILITY 61 9 5 NAT 61 9 6 QOS 63 WARRANTY...

Page 4: ...his document shall not be reproduced distributed or copied without the permission from D Link India Ltd Conventions This document uses the following notational conventions bold This text format is used to give strong emphasis Italics This text format is used to highlight specific keywords notes and cautions This icon is used to indicate that the Web User Interface is explained L This icon is used ...

Page 5: ...ts for connectivity With three WAN links DRO 220i ensures high reliability Converged Network Support The router provides the following features to support Data Voice and Video services over the same IP Network Application Level Gateway support for Voice Video over IP enables successful deployment of voice video equipment by addressing the interoperability issues with Firewall NAT devices QoS suppo...

Page 6: ...er Guide 6 1 1 Hardware Details DRO 220i Package Contents The DRO 220i package contains the following items DRO 220i Router 3 Straight Ethernet cables 1 Cross over Ethernet Cable 1Power cord 1 V 35 Cable 1 Console Cable 1 User Manual CD ...

Page 7: ...router s ports and reset button Interfaces Description V 35 DTE WAN1 WAN Port LAN Ethernet 10BaseT for LAN Port RJ 45 WAN3 DMZ WAN3 Port De Militarized Zone Port ISDN WAN2 ISDN Port Console Console Port ISDN Port Console WAN3 DMZ Port V 35 DTE WAN1 LAN LED Indication Factory Reset Reset ...

Page 8: ...14 PWR WAN1 WAN2 LAN WAN3 SWT Number Module Status Description Designation 1 Power On ON OFF 2 WAN1 V 35 Ready ON Interface Protocol is UP OFF Interface Protocol is DOWN 3 WAN1 V 35 Link ACT ON Physical Link is UP OFF Physical Link is DOWN Blinking There is activity through v 35 interface 4 WAN2 ISDN Link ON Physical link is up OFF Physical link is Down ...

Page 9: ...n Activity on OFF Transmission Activity off 9 LAN Rx ON Receive Activity on OFF Receive Activity off 10 WAN3 DMZ Link ON Physical link is up OFF Physical link is down 11 WAN3 DMZ Tx ON Transmission Activity on OFF Transmission Activity off 12 WAN3 DMZ Rx ON Receive Activity on OFF Receive Activity off 13 SWT F Restores the factory Settings 14 SWT R Hard reset for board Rear Panel The rear panel pr...

Page 10: ...Product Overview Dlink DRO 220i User Guide 10 Interface Description INPUT 85 265 VAC Input Voltage 230 VAC Power Socket ...

Page 11: ...ram to a set of hosts that form multicast group Every member in a multicast group that uses the same multicast group can receive a copy of the IP datagram Multicast supports two protocols are Internet Group Management Protocol IGMP is used by IP hosts to report their host group memberships to any immediately neighboring multicast routers and Protocol Independent Multicast Sparse Mode PIM SM is a p...

Page 12: ... use the available WAN bandwidth This feature allows prioritization and bandwidth reservation with upper ceiling for each class of service and enables optimal dynamic utilization of bandwidth while guaranteeing highest quality voice and video services DHCP Server The router provides a built in DHCP Server Relay for assigning network settings for the LAN clients The DHCP Server also supports reserv...

Page 13: ...o use and don t place a great burden on the network It supports Message Integrity Authentication and Encryption Secure Web based Management The product provides SSL based secure user friendly Web Pages to configure and manage the device and the network The router also supports Secure Remote Configuration of the device to enable easy remote monitoring and troubleshooting In addition it provides Com...

Page 14: ...ic IP Address assigned by the ISP to connect to the broadband network Dynamic The ISP assigns an IP Address dynamically using DHCP Protocol PPPoE Point to Point link over Ethernet This option is the most common mode of WAN connectivity Here the ISP assigns an IP Address dynamically through PPPoE Protocol The following sections explain these interfaces and their configuration in detail 2 1 LAN Inte...

Page 15: ...Select Interface DMZ to configure DMZ Settings as explained below DMZ Settings IP Address Enter the IP address of the DMZ interface Subnet Mask Enter the subnet mask of the DMZ interface To add a DMZ Server in the network the administrator can a Assign Private IP Addresses to the DMZ network And configure a One To One NAT entry to map a Global IP Address to the Private DMZ Server IP Address Refer ...

Page 16: ...ttings for WAN1 Interface Protocol Select the sync protocol either cisco HDLC or sync PPP IP Address Enter the IP address assigned for the WAN interface Subnet Mask Enter the subnet mask for the IP address Default Gateway Enter the default gateway address in the same subnet L Note The default gateway field specified here will be used by Load balancing feature to route packets through this interfac...

Page 17: ... set as Sync PPP Connection Type Users can select among the available connection types in the dropdown list depending on his her requirement 128K Dialin Dialout User can configure dial out and dial in 128k 64K Dialin 64K Dialout User can configure first channel B1 for dial out and second channel B2 for dial in 2 64K Dialout Users can configure two channels B1 B2 with two different dialout configur...

Page 18: ...nections page User can choose either B1 or B2 only when connection type is 2 64K dialout For all other Connection types B1 channel is selected automatically When the Connection type is 128kbps dial out dial in only Channel 1 B1 will be enabled User can see the status of two channels in the status page Profile table will show which profile has been selected for which channel This page only configur...

Page 19: ...assword given by the ISP provider It can be 20 characters long Idle Timeout If there is no activity on the line then the connection will hang up automatically after the time entered in Idle Timeout field in seconds Enter zero in this field to disable auto hang up Retries Enter the number of times user wants the system to retry the dialing to connect to ISP if it is not connected It is a single dig...

Page 20: ... the time entered in this field in seconds User Account Select Interface WAN2 Dial up Dial in User Account to configure the User Account for Dialin connections User Account Settings for WAN2 Interface User Name Enter the user name to be given to Dialin user It can be 20 characters long Password Enter the password to be given to the Dialin user It can be 20 characters long Phone number Enter the ph...

Page 21: ...nectivity through an ISP Typically ISPs support 3 modes of WAN Connectivity Static Dynamic and PPPoE The WAN Interface configurations for these modes are explained in the following sections These configurations are explained for WAN3 interface Maximum Transmission Unit MTU or Maximum Transmission Unit is the largest sized packet that can be transmitted through the internet A higher MTU brings high...

Page 22: ...hernet WAN Link Detection Feature L Note The default gateway field specified here will be used by Load balancing feature to route packets through this interface 2 5 2 Dynamic Mode In this mode ISP provides the Global IP address automatically using DHCP Protocol A DHCP Client is built into router to support this mode of connectivity Select Interface WAN3 and choose IP Setting Mode as Dynamic Config...

Page 23: ...very is inherently a client server relationship In the Discovery process a Host the client discovers an Access Concentrator the server Based on the network topology there may be more than one Access Concentrator that the Host can communicate with The Discovery stage allows the Host to discover all Access Concentrators and then select one When Discovery completes successfully both the Host and the ...

Page 24: ...Maximum Failures Enter the number of Maximum Failures for the PPPoE connection This is the number of times for which LCP Echo requests from PPPoE client did not get response from PPPoE server After the number of failures cross this value the PPPoE session is disconnected The minimum value for failure is 2 seconds and maximum value is 10 seconds After entering all the information press the Apply bu...

Page 25: ...c addressing by the DHCP server leases the address to each client for a defined period of time During the life cycle of the lease the client is guaranteed to have a unique IP address that can last for the entire period If the client needs to renew the lease from the server it can do so before the expiration of the lease The client may also decide at any time that it no longer wishes to use the IP ...

Page 26: ...e Internet that provides the service of converting text URLs into IP address for sites on the Internet Secondary DNS Server optional Enter the IP address of a secondary DNS server that is be used when there is a problem with the Primary DNS Server Select the Disable checkbox to disable Secondary DNS After entering all the information press the Apply button The DHCP Client Table will list the clien...

Page 27: ...ist on every LAN which is not economical or easy to maintain DHCP relay solves this problem A DHCP relay acts as an intermediary between the client in the local network and the remote DHCP server It intercepts requests from clients and relays them to the server The server then responds back to the relay which then forwards the response back to the client This relay agent functionality is most conv...

Page 28: ...er IP Addresses This problem can be overcome with the use of router s DNS Proxy feature Here the router s LAN IP Address can be configured as the DNS server at all the end user systems The router acts as a DNS Proxy and communicates with the DNS Servers to resolve the domain names on behalf of the user systems Select Misc DNS Proxy to configure DNS Proxy Settings as explained below DNS Proxy Setti...

Page 29: ...ient makes a transaction with its server over its polling interval from 64 to 1024 seconds which dynamically changes over time depending on the network conditions between the NTP server and the client The list of public NTP servers is available at http www ntp org Select Misc Time to configure System Time Settings as explained below System Time Settings System Date Time The current date and time a...

Page 30: ...y of their network RIP and OSPF are examples of intra AS routing algorithms These algorithms are also referred to as Interior Gateway Routing Protocols This router supports RIP routing algorithm In the internetworking environment there are typically more than one path connecting the two end hosts The dynamic routing algorithm selects the best path that has the least cost for transporting RIP uses ...

Page 31: ... button The routes entered will now be displayed under the Route Entries table To delete a specific route press the Delete button next to the specific route entry In the table entries with yellow color are active routes i e the corresponding interface is UP The entries with grey color are inactive routes i e the corresponding interface is DOWN Click on View Active Routes to view the Routing Table ...

Page 32: ...es only classful routing which means that all devices in the network must use the same subnet mask This is because RIP version 1 does not include the subnet mask when it sends updates RIP V1 broadcasts its routing updates RIP V2 Uses classless routing RIP v2 uses multicast 224 0 0 9 to update its routing tables For backward compatibility with RIP V1 RIP V2 messages must be broadcast instead of mul...

Page 33: ...es are acknowledged to make them reliable Each message has a sequence number so a router can see whether an incoming LINK STATE UPDATE is older or newer than what it currently has DATABASE DESCRIPTION messages gives the sequence numbers of all the link state entries currently held by the sender Each partner can request link state information from the other one using LINK STATE REQUEST messages The...

Page 34: ...virtual links can be configured Area ID Enter the Area ID for the virtual link The Transit area that the Virtual link traverses Router ID Enter the Router ID for the virtual link This is the Router ID of the virtual neighbor Enable Select Enable to activate virtual link L Note Follow the procedure to convert Area ID from decimal format to IP Address format Step 1 Represent the area id as a hexadec...

Page 35: ...ension of normal routing which offers network administrators significant flexibility to implement their own custom policies for making routing decisions Typically Static Dynamic routing defines routes based on the destination IP Address of the packet With PBR the administrator has more control to choose a specific path for certain traffic flows based on various criteria such as source destination ...

Page 36: ...r the Destination Port Number to specify the type of application for this policy Destination port value of zero indicates Any Destination Port After entering all the information press the Apply button The routes entered will now be displayed under the Policy Based Routing Table L Note Policy Based Routes will be given higher preference over Static Dynamic routes to the same destination 4 5 Multica...

Page 37: ...ng PIM Status Enable or disable the PIM Interface Name Administrator can enable multicast routing on a particular interface If user selects disable option on an interface then multicast routing can not be enabled on that interface Candidate RP Choose the interface to represent Candidate RP Candidate RP Priority It is priority which is set for RP Rendezvous Point Lesser number will be higher priori...

Page 38: ...ect Interface AutoBackup to configure the Backup Configuration as explained below Backup Configuration Primary The primary interface for which Auto Backup functionality can be configured Backup Mode If Enabled the configured backup interface will be connected automatically when the Primary interface goes down Backup Interface This interface will be configured as backup interface for the primary an...

Page 39: ...face WAN interfaces between which the load must be shared Status Enable Disable load balancing on this interface Weight Percentage of the load to be sent through this interface The sum of the weights in all enabled interfaces should be equal to 100 L Caution Load Balancing feature will not function as desired if default routes are added via Static Routing since static routes will be given higher p...

Page 40: ... address If the default gateway is reachable then the Protocol Status of the Interface will be UP otherwise it will be DOWN No of Retries Enter the number of attempts to reach the default gateway before confirming the status UP DOWN of the link Delay between Retries Enter the time in seconds between retry attempts After entering all the information press the Apply button The Ethernet WAN Status Ta...

Page 41: ...lication Level Gateway support for common applications to enable smooth operation behind NAT The ALG Support involves Allowing client applications to use dynamic ephemeral TCP UDP ports to communicate with the server applications even though firewall may allow only a limited number of known ports In the absence of an ALG either the ports would get blocked or the network administrator would need to...

Page 42: ...d only in case of One to One NAT Enter the starting IP address for the range of Private IP Addresses End Address This can be configured only in case of One to One NAT Enter the ending IP address for the range of Private IP Addresses In case of a single IP configure the same IP in both the Start and End fields Global IP address On This Interface Select this checkbox to automatically use the WAN Int...

Page 43: ...AN2 systems already use global IP Addresses Select NAT NAT Exception to configure the NAT Exception as explained below NAT Exception NAT between WAN1 and WAN2 B1 Select Disable to deactivate NAT between WAN1 and WAN2 NAT between WAN1 and WAN2_B2 Select Disable to deactivate NAT between WAN1 and DMZ NAT between WAN1 and WAN3 Select Disable to deactivate NAT between WAN2 and DMZ NAT between WAN1 and...

Page 44: ...its connections The transport type is dependent on the application that is providing the service This is mostly used for non standard cases where the port numbers are defined by the administrator Protocol Select the appropriate application from the list This selection is equivalent to entering a correct transport type TCP or UDP and port number for an application For example when SMTP is chosen tr...

Page 45: ...ivate the feature Port number Enter the port number of the SIP Phone or SIP Server After entering all the information press the Apply button and the SIP ALG Table will now be displayed at the bottom To delete an entry press the Delete button next to the entry 6 4 NAT Table The router maintains a table of sessions for which IP Address and Port Translations have been performed This translation table...

Page 46: ...nsures that the amount of service provided to each class is at least the minimum of the amount it requests and the amount assigned to it When a class requests less than the amount assigned the remaining excess bandwidth is distributed to other classes which request service and which have highest priority To enable this feature the administrator can configure the total interface bandwidth and diffe...

Page 47: ...est priority Classes with the highest priority will get excess bandwidth first The priority will be effective at the leaf classes only Guaranteed Rate Enter the Guaranteed bandwidth value should be between 1 and 100 000 Kbps This value should not exceed the interface bandwidth This is the bandwidth which the class and all its children are guaranteed Maximum Rate Enter the Maximum bandwidth value s...

Page 48: ...e Interface on which to apply the filter Source The Source IP Any If selected the filter will be applied for any source address Subnet If selected the user needs to configure specific Source IP address with subnet IP Address Enter the Source IP Subnet Destination The Destination IP Any If selected the filter will be applied for any destination address Subnet If selected the user needs to configure...

Page 49: ...ype Of Service DiffServ Source The Source IP Any If selected the filter will be applied on the network traffic regardless of its source address Subnet If selected the user needs to configure specific Source IP address with subnet IP Address Specify the Source IP Subnet Destination The Destination IP Any If selected the filter will be applied on the network traffic regardless of its destination add...

Page 50: ...is selected as the Protocol TOS DiffServ Enter the TOS value 8 bit binary number to be set in the IP header of the filtered packet After entering all the information press the Apply button and the TOS DiffServ Table will now be displayed at the bottom of the page Press Delete button for deleting the corresponding entry ...

Page 51: ... out DOWN on the LAN port MAC Address Displays the MAC address of the LAN port IP Address Displays the current LAN IP address Subnet Mask Displays the subnet mask for the LAN IP address DHCP Server Displays if the router is currently configured as a DHCP server WAN1 WAN1 Physical Link Status Displays if a cable is plugged in UP or out DOWN on the WAN port WAN1 Protocol Status Displays the operatio...

Page 52: ... IP Address Displays the current WAN IP address Subnet Mask Displays the subnet mask for the WAN IP address Default Gateway Displays the gateway IP address for this interface DMZ DMZ Physical Link Status Displays if a cable is plugged in UP or out DOWN on the DMZ port IP Address Displays the DMZ IP address Subnet Mask Displays the subnet mask for the DMZ IP address 8 2 Traffic Statistics The numbe...

Page 53: ...ted the session Destination port Displays the IP address and the TCP UDP port number of the application that responded to the session Type Displays the protocol used for the session Terminate Reason Displays the reason for session termination or the current status 8 4 SysLog The SysLog feature is used to send the System Logs to a remote server Select Misc SysLog to configure SysLog as explained be...

Page 54: ...and serial key for that router Once the administrator gets the username and serial key from the technical support he she has to go the following URL https LAN IP address html Backup html To access the router enter DRO220i as the username and the password This web page will prompt for username and serial key When the administrator enters the information received from the technical support the passw...

Page 55: ...e to the router The administrator can configure the device save the configuration and download the configuration in cfg format on the local PC Subsequently he can upload the configuration file DRO250 cfg on the device again whenever required L Caution Ensure that the downloaded configuration is saved with the file name DRO250 cfg Only a file of this name will be accepted by the router for configur...

Page 56: ...st When the test is over the results are shown in the text box below L Note If NAT is enabled on the remote side then the Global IP address should be entered as the remote IP address because the router will get the request from that address 8 9 SNMP The SNMP feature is used to monitor the device by any SNMP Manager Select Tools SNMP to configure SNMP as explained below SNMP SNMP Daemon Select Enab...

Page 57: ...cation of SNMP v3 Users The minimum password length should be eight characters long Privacy Protocol This protocol enables managers and agents to encrypt messages to prevent eavesdropping by third parties Here manager entity and agent entity must share the secret key All the traffic flows between them is encrypted using the DES Privacy Password It sets the DES password phrase to the SNMP v3 users ...

Page 58: ... the Traps will be sent Only the members of this community can be able to send the traps Authentication failure TRAP To activate deactivate the authentication trap This is the TRAP generated by the agent during Authentication Failures This is to inform the manager about UnAuthorized User access ...

Page 59: ...sword will be displayed to you for subsequent login to the router Q3 I have a working configuration currently I want to try out some new configuration rules But if the new configuration does not work out how can I easily revert back to my original configuration Ans Go to Tools System and click Save to save your working configuration Now go to Tools Upload and Download your configuration to the Loc...

Page 60: ... g dlink com from your LAN PC If this ping fails check the DNS Configuration at your PC The DNS Server can be set to the router s IP Address If your PC has been configured with a global DNS Server then ensure that the DNS Server is reachable 9 2 DHCP DNS Q5 What is the purpose of DHCP Server Auto Configuration Ans This field allows you to specify whether or not the Router will automatically assign...

Page 61: ... the router s receive version on the interface must be the same as the neighbor s send version 9 4 High Availability Q9 I have multiple ISP Connections and am using the router in Load balancing Auto Backup mode However the router does not automatically detect ISP Connectivity failures requiring me to manually disconnect the failed ISP link What could be the problem Ans If the ISP Connection is Sta...

Page 62: ... why the traffic has been blocked from entering inside Q12 I am using SIP ALG for VoIP Calls between my branch offices But I am not able to register my phones to the SIP Server What could be the problem Ans Follow the steps below to troubleshoot this issue Verify the phone network configurations for default gateway and dns server Verify the phone sip configurations for user name password and prope...

Page 63: ... Add a HTB Root Node with interface bandwidth as 128kbps Set the Default Class ID as 3 Add a HTB Class Node for Email Traffic with Priority 0 Guaranteed Rate 50kbps Maximum Rate 128kbps Parent ID 1 and Class ID 2 Add another HTB Class Node for all other traffic with Priority 1 Guaranteed Rate 78kbps Maximum Rate 128kbps Parent ID 1 and Class ID 3 Add a HTB Filter on the corresponding WAN interface...

Page 64: ...t Servers Routers One Year 8 Leased Line Modems One Year 9 Cable DSL Modems One Year 10 ISDN Products One Year 11 Digital Home Products One Year 12 Repeaters Transceivers One Year 13 PCMCIA Products One Year 14 Wireless Products One Year 15 USB Products One Year 16 Cameras One Year 17 Fire Wire Products One Year 18 Power Supplies UPS Inverters One Year 19 Home PNA Products One Year 20 VOIP Product...

Reviews:

No comments

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands