Home
/
Draytek
/
Vigor130
/
User Manual

Draytek Vigor130, User Manual

Share

Page: 95 / 288

Draytek Vigor130 User Manual Download Page 95

Vigor130 Series User’s Guide

85

Activating the DoS/DDoS defense functionality might
block some legal packets. For example, when you activate
the fraggle attack defense, all broadcast UDP packets
coming from the Internet are blocked. Therefore, the RIP
packets from the Internet might be dropped.

Block TCP flag scan

Check the box to activate the Block TCP flag scan function.
Any TCP packet with anomaly flag setting is dropped. Those
scanning activities include

no flag scan

,

FIN without ACK

scan

,

SYN FINscan

,

Xmas scan

and

full Xmas scan

.

Block Tear Drop

Check the box to activate the Block Tear Drop function.
Many machines may crash when receiving ICMP datagrams
(packets) that exceed the maximum length. To avoid this
type of attack, the Vigor modem is designed to be capable of
discarding any fragmented ICMP packets with a length
greater than 1024 octets.

Block Ping of Death

Check the box to activate the Block Ping of Death function.
This attack involves the perpetrator sending overlapping
packets to the target hosts so that those target hosts will
hang once they re-construct the packets. The Vigor modems
will block any packets realizing this attacking activity.

Block ICMP Fragment

Check the box to activate the Block ICMP fragment
function. Any ICMP packets with more fragment bit set are
dropped.

Block Unassigned
Numbers

Check the box to activate the Block Unknown Protocol
function. Individual IP packet has a protocol field in the
datagram header to indicate the protocol type running over
the upper layer. However, the protocol types greater than 100
are reserved and undefined at this time. Therefore, the
modem should have ability to detect and reject this kind of
packets.

Warning Messages

We provide Syslog function for user to retrieve message
from Vigor modem. The user, as a Syslog Server, shall
receive the report sending from Vigor modem which is a
Syslog Client.

All the warning messages related to

DoS Defense

will be

sent to user and user can review it through Syslog daemon.
Look for the keyword

DoS

in the message, followed by a

name to indicate what kind of attacks is detected.

«
...
93
94
95
96
97
...
»

Summary of Contents for Vigor130

Page 1: ...Vigor130 Series User s Guide i ...

Page 2: ...Vigor130 Series User s Guide ii Vigor130 Series VDSL2 ADSL2 2 Modem User s Guide Version 2 0 Firmware version V3 8 5 For future update please visit DrayTek web site Date June 1 2022 ...

Page 3: ...vent electronic shock hazards Keep the package out of reach of children When you want to dispose of the modem please follow local regulations on conservation of the environment Warranty We warrant to the original end user purchaser that the router will be free from any defects in workmanship or materials for a period of two 2 years from the date of purchase from the dealer Please keep your purchas...

Page 4: ...hboard 14 2 4 1 Virtual Panel 14 2 4 2 Name with a Link 15 2 4 3 Quick Access for Common Used Menu 15 2 4 4 GUI Map 16 2 4 5 Web Console 16 2 4 6 Config Backup 18 2 5 Online Status 19 2 5 1 Physical Connection 19 2 5 2 Virtual WAN 21 2 6 Saving Configuration 22 2 7 Registering Vigor130 22 Web Configuration 27 3 1 Internet Access 27 3 1 1 Basics of Internet Protocol IP Network 27 3 1 2 General Setu...

Page 5: ...e 103 3 7 Applications 107 3 7 1 Dynamic DNS 107 3 7 2 Schedule 110 3 7 3 UPnP 113 3 7 4 IGMP 115 3 8 System Maintenance 117 3 8 1 System Status 117 3 8 2 TR 069 119 3 8 3 Administrator Password 120 3 8 4 Configuration Backup 121 3 8 5 Syslog Mail Alert 123 3 8 6 Time and Date 125 3 8 7 Management 126 3 8 8 Self Signed Certificate 130 3 8 9 Reboot System 131 3 8 10 Firmware Upgrade 133 3 9 Diagnos...

Page 6: ...adsl reboot 163 Telnet Command adsl oamlb 164 Telnet Command adsl vcilimit 164 Telnet Command adsl annex 165 Telnet Command adsl automode 165 Telnet Command adsl showbins 165 Telnet Command adsl optn 166 Telnet Command adsl femec 167 Telnet Command adsl savecfg 167 Telnet Command adsl vendorid 167 Telnet Command adsl atm 168 Telnet Command adsl pvcbinding 168 Telnet Command vdsl status 169 Telnet ...

Page 7: ...and ip maxnatuser 200 Telnet Command ip6 addr 200 Telnet Command ip6 dhcp req_opt 201 Telnet Command ip6 dhcp client 201 Telnet Command ip6 dhcp server 202 Telnet Command ip6 internet 204 Telnet Command ip6 neigh 205 Telnet Command ip6 pneigh 206 Telnet Command ip6 route 206 Telnet Command ip6 ping 207 Telnet Command ip6 tracert 208 Telnet Command ip6 tspc 208 Telnet Command ip6 radvd 209 Telnet C...

Page 8: ...elnet Command sys cfg 253 Telnet Command sys cmdlog 254 Telnet Command sys ftpd 254 Telnet Command sys domainname 254 Telnet Command sys iface 256 Telnet Command sys name 257 Telnet Command sys passwd 257 Telnet Command sys reboot 257 Telnet Command sys autoreboot 258 Telnet Command sys commit 258 Telnet Command sys tftpd 258 Telnet Command sys cc 258 Telnet Command sys version 259 Telnet Command ...

Page 9: ...n DF_check 271 Telnet Command wan disable 272 Telnet Command wan enable 272 Telnet Command wan forward 272 Telnet Command wan status 272 Telnet Command wan vdsl 273 Telnet Command wan detect 274 Telnet Command wan lb 275 Telnet Command wan mvlan 275 Telnet Command wan multifno 277 Telnet Command wan vlan 278 ...

Page 10: ......

Page 11: ...t ti io on n B Bu ut tt to on ns s E Ex xp pl la an na at ti io on n Several main buttons appeared on the web pages are defined as the following Save and apply current settings Cancel current settings and recover to the previous saved settings Clear all the selections and parameters settings including selection from drop down list All the values must be reset with factory default settings Add new ...

Page 12: ...st LED Status Explanation Off The system is not ready or is failed ACT Blinking The system is ready and can work normally On A normal connection is through its corresponding port Off LAN is disconnected LAN Blinking Data is transmitting sending receiving On The DoS DDoS function is active DoS Blinking It will blink while detecting an attack On DSL connection synchronized DSL Blinking DSL connectio...

Page 13: ...hrough VDSL2 ADSL2 2 LAN Connecter for local networked devices Factory Reset Restore the default settings Usage Turn on the modem Press the button and keep for more than 10 seconds Then the modem will restart with the factory default configuration ON OFF Power switch Connecter for a power adapter ...

Page 14: ...e to connect your devices correctly 1 Connect the DSL interface to the MODEM port of external splitter with a DSL line cable 2 Connect the LAN port to your computer with a RJ 45 cable 3 Connect one end of the power adapter to the Power port of this device Connect the other end to the wall outlet of electricity 4 Power on the modem 5 Check the POWER ACT LAN DSL and INTERNET LEDs to assure network c...

Page 15: ...mputer to get IP dynamically from the modem or set up the IP address of the computer to be the same subnet as the default IP address of Vigor modem 192 168 1 1 For the detailed information please refer to the later section Trouble Shooting of the guide 2 Open a web browser on your PC and type http 192 168 1 1 A pop up window will open to ask for username and password Please type admin admin as the...

Page 16: ...user interface of Vigor130 The Main Screen will appear as below 2 Go to System Maintenance page and choose Administrator Password User Password 3 Enter the login password the default is blank on the field of Old Password Type New Password Then click OK to continue 4 Now the password has been changed Next time use the new password to access the Web User Interface for this modem ...

Page 17: ...net It connects users through an Ethernet to the Internet with a common broadband medium such as a single DSL line wireless device or cable modem All the users over the Ethernet can share a common connection PPPoE is used for most of DSL modem users All local users can share one PPPoE connection for accessing the Internet Your service provider will provide you information about user name password ...

Page 18: ...n n F Fo or r A AD DS SL L O On nl ly y Y Yo ou u h ha av ve e t to o s se el le ec ct t a an n a ap pp pr ro op pr ri ia at te e W WA AN N c co on nn ne ec ct ti io on n t ty yp pe e f fo or r c co on nn ne ec ct ti in ng g t to o t th he e I In nt te er rn ne et t t th hr ro ou ug gh h t th hi is s m mo od de em m a ac cc co or rd di in ng g t to o t th he e s se et tt ti in ng gs s t th ha at t...

Page 19: ... I IP P I If f y yo ou u c ch ho oo os se e N No o t th he e f fo ol ll lo ow wi in ng g I IP P A Ad dd dr re es ss s S Su ub bn ne et t M Ma as sk k a an nd d D De ef fa au ul lt t G Ga at te ew wa ay y w wi il ll l n no ot t b be e c ch ha an ng ge ed d I IP P A Ad dd dr re es ss s A As ss si ig gn n a an n I IP P a ad dd dr re es ss s f fo or r t th he e p pr ro ot to oc co ol l t th ha at t y ...

Page 20: ...us se ed d t to o a ac cc ce es ss s I In nt te er rn ne et t P Pa as ss sw wo or rd d A As ss si ig gn n a a v va al li id d p pa as ss sw wo or rd d p pr ro ov vi id de ed d b by y t th he e I IS SP P I It t w wi il ll l b be e u us se ed d t to o a ac cc ce es ss s I In nt te er rn ne et t C Co on nf fi ir rm m P Pa as ss sw wo or rd d R Re et ty yp pe e t th he e p pa as ss sw wo or rd d 6 Cli...

Page 21: ... ng g M MP Po oA A S St ta at ti ic c o or r D Dy yn na am mi ic c C Co on nn ne ec ct ti io on n 1 Click Quick Start wizard 2 The first screen of Quick Start Wizard is entering login password of the web user interface After typing the password please click Next ...

Page 22: ... ha at t i in nd di ic ca at te es s w wh he er re e t th he e c ce el ll l s sh ho ou ul ld d b be e r ro ou ut te ed d T Th he e A AT TM M i is s a a m me et th ho od d o of f s se en nd di in ng g d da at ta a i in n s sm ma al ll l p pa ac ck ke et ts s o of f f fi ix xe ed d s si iz ze es s I It t i is s u us se ed d f fo or r t tr ra an ns sf fe er rr ri in ng g d da at ta a t to o c cl li i...

Page 23: ...i io on n D De et te er rm mi in ne es s w wh he et th he er r 8 80 02 2 1 1a ad d V VL LA AN N t ta ag gs s w wi il ll l b be e a ad dd de ed d t to o o ou ut tb bo ou un nd d W WA AN N t tr ra af ff fi ic c i in n A AD DS SL L V VD DS SL L 2 2 m mo od de e C Ch he ec ck k w wi it th h y yo ou ur r I IS SP P t to o d de et te er rm mi in ne e i if f t th hi is s i is s r re eq qu ui ir re ed d a ...

Page 24: ...panel of the modem displays the physical interface connection It will be refreshed every five seconds P Po or rt t C Co ol lo or r D Di is sp pl la ay ye ed d E Ex xp pl la an na at ti io on n B Bl la ac ck k I It t m me ea an ns s t th he e m mo od de em m o or r t th he e f fu un nc ct ti io on n i is s n no ot t w wo or rk ki in ng g L LE ED D l le ef ft t s si id de e G Gr re ee en n I It t m ...

Page 25: ... menu items which can be accessed in a quick way just for convenience Look at the right side of the Dashboard You will find a group of common used functions grouped under Quick Access The function links of System Status Dynamic DNS TR 069 Schedule Syslog Mail Alert and Firewall Object Setting are displayed here Move your mouse cursor on any one of the links and click on it The corresponding settin...

Page 26: ...the function for detailed configuration Click the icon on the top of the main screen to display all the functions 2 2 4 4 5 5 W We eb b C Co on ns so ol le e It is not necessary to use the telnet command via DOS prompt The changes made by using web console have the same effects as modified through web user interface The functions settings modified under Web Console also can be reviewed on the web ...

Page 27: ...Vigor130 Series User s Guide 17 Click the Web Console icon on the top of the main screen to open the following screen ...

Page 28: ...kly by clicking the Config Backup icon It allows you to backup current settings as a file Such configuration file can be restored by using System Maintenance Configuration Backup Simply click the icon on the top of the main screen to save the settings 2 2 4 4 7 7 L Lo og go ou ut t Click the Logout icon to exit the web user interface ...

Page 29: ...oE PPPoA as the protocol you will find out a link of Dial PPPoE or Drop PPPoE in the Online Status web page P Ph hy ys si ic ca al l C Co on nn ne ec ct ti io on n f fo or r I IP Pv v4 4 P Pr ro ot to oc co ol l Detailed explanation is shown below Item Description LAN Status Primary DNS Display the primary DNS server address for WAN interface Secondary DNS Display the secondary DNS server address ...

Page 30: ... the WAN interface ADSL Information ATM Statistics Display the ATM layer information TX Cells Display the total number of ATM transmission cells RX Cells Display the total number of ATM received cells TX CRC errs Display the total number of transmission CRC errors RX CRC errs Display the total number of CRC errors received ADSL Status Display the ADSL layer information Mode Display the type of ADS...

Page 31: ...en means such interface is enabled No in red means such interface is not available Mode Displays the type of WAN connection e g TSPC Up Time Displays the total uptime of the interface IP Displays the IP address of the WAN interface Gateway IP Displays the IP address of the default gateway Note The words in green mean that the WAN connection of that interface WAN1 is ready for accessing Internet th...

Page 32: ...al number of received packets at the WAN interface RX Rate Display the speed of received octets at the WAN interface 2 2 6 6 S Sa av vi in ng g C Co on nf fi ig gu ur ra at ti io on n Each time you click OK on the web page for saving the configuration you can find messages showing the system interaction with you Ready indicates the system is ready for you to input settings Settings Saved means you...

Page 33: ...that you created previously And click Login If you haven t an accessing account please refer to section Creating an Account for MyVigor to create your own one Please read the articles on the Agreement regarding user rights carefully while creating a user account 4 The following page will be displayed after you logging in MyVigor Type a nickname for the router then click Submit ...

Page 34: ...Vigor130 Series User s Guide 24 5 When the following page appears your router information has been added to the database Your router has been registered to myvigor website successfully ...

Page 35: ...Vigor130 Series User s Guide 25 6 Clicking MYPRODUCT for viewing the general information of the registered router on MyVigor website ...

Page 36: ...Vigor130 Series User s Guide 26 This page is left blank ...

Page 37: ... and click the Internet Access link 3 3 1 1 1 1 B Ba as si ic cs s o of f I In nt te er rn ne et t P Pr ro ot to oc co ol l I IP P N Ne et tw wo or rk k IP means Internet Protocol Every device in an IP based Network including modems print server and host PCs needs an IP address to identify its location on the network To avoid address conflicts IP addresses are publicly registered with the Network ...

Page 38: ...onnection G Ge et t Y Yo ou ur r P Pu ub bl li ic c I IP P A Ad dd dr re es ss s f fr ro om m I IS SP P In ADSL deployment the PPP Point to Point style authentication and authorization is required for bridging customer premises equipment CPE Point to Point Protocol over Ethernet PPPoE connects a network of hosts via an access device to a remote access concentrator or aggregation concentrator This ...

Page 39: ... sending them out Please type the tag value and specify the priority for the packets sending by WAN1 Disable Disable the function of VLAN with tag Tag value Type the value as the VLAN ID number The range is form 0 to 4095 Priority Type the packet priority number for such VLAN The range is from 0 to 7 After finished the above settings click OK to save the settings 3 3 1 1 3 3 P PP PP Po oE E P PP P...

Page 40: ...rovided by ISP VCI Type in the value provided by ISP Encapsulating Type Drop down the list to choose the type provided by ISP Protocol Drop down the list to choose the protocol PPPoE or PPPoA Modulation Choose a suitable method for PPPoE PPoA connection PPPoE Pass through The modem offers PPPoE dial up connection Besides you also can establish the PPPoE connection directly from local clients to yo...

Page 41: ...sername provided by ISP in this field Password Type in the password provided by ISP in this field PPP Authentication Select PAP only or PAP or CHAP for PPP Always On If you want to connect to Internet all the time check the Always On box Idle Timeout Set the timeout for breaking down the Internet after passing through the time without any action This setting is active only when the Active on deman...

Page 42: ... 3 3 1 1 4 4 M MP Po oA A S St ta at ti ic c o or r d dy yn na am mi ic c I IP P MPoA is a specification that enables ATM services to be integrated with existing LANs which use either Ethernet token ring or TCP IP protocols The goal of MPoA is to allow different LANs to send packets to each other via an ATM backbone For static IP mode you usually receive a fixed public IP address or a public subne...

Page 43: ...re determined by the page of Internet Access Multi PVCs Encapsulating Type Drop down the list to choose the type provided by ISP VPI Type in the value provided by ISP VCI Type in the value provided by ISP Modulation Choose a suitable method for such connection WAN Connection Detection Such function allows you to verify whether network connection is alive or not through ARP Detect or Ping Detect Mo...

Page 44: ... automatically Modem Name Type in the modem name provided by ISP Domain Name Type in the domain name that you have assigned DHCP Client Identifier for some ISP This feature is offered for certain ISP with special request Enable Check this box to enable the function of DHCP client identifier for some ISP Username Type a username used for such function Password Type a password used for such function...

Page 45: ...ess or specify another MAC address for your necessity MAC Address Type in the MAC address for the modem manually DNS Server IP Address Type in the primary IP address for the modem If necessary type in secondary IP address for necessity in the future After finishing all the settings here please click OK to activate them 3 3 1 1 5 5 I IP Pv v6 6 O Of ff fl li in ne e When Offline is selected the IPv...

Page 46: ...h as 2001 B010 7300 200 64 offered by the ISP In addition PCs under LAN also can have the public IPv6 address for Internet access by means of the generated prefix Available settings are explained as follows Item Description Auto No need to type any other information for PPP mode Manual Subnet Prefix Enter the subnet prefix address obtained from service provider Below shows an example for successfu...

Page 47: ...configuration file It gets a public IPv6 IP address and an IPv6 prefix from the tunnel broker and then monitors the state of the tunnel in background After getting the IPv6 prefix and starting modem advertisement daemon RADVD the PC behind this modem can directly connect to IPv6 the Internet Available settings are explained as follows Item Description Username Type the name obtained from the broke...

Page 48: ...ccount at http www sixxs net It is suggested for you to apply another username and password Password Type the password assigned with the user name Confirm Password Type the password again to make the confirmation Tunnel Broker Type the address for the tunnel broker IP FQDN or an optional port number Subnet Prefix Type the subnet prefix address getting from service provider After finishing all the ...

Page 49: ...le settings are explained as follows Item Description Identify Association Choose Prefix Delegation or Non temporary Address as the identify association IAID Type a number as IAID After finishing all the settings here please click OK to save the configuration S St ta at ti ic c I IP Pv v6 6 This type allows you to setup static IPv6 address for WAN interface ...

Page 50: ...Tu un nn ne el l Such mode allows the router to access IPv6 network through IPv4 network However 6in4 offers a prefix outside of 2002 0 16 So you can use a fixed endpoint rather than any cast endpoint The mode has more reliability Available settings are explained as follows Item Description Remote Endpoint IPv4 Address Type the static IPv4 address for the remote server 6in4 IPv6 Address Type the s...

Page 51: ...Vigor130 Series User s Guide 41 ...

Page 52: ...tic 6rd Set 6rd options manually IPv4 Border Relay Type the IPv4 addresses of the 6rd Border Relay for a given 6rd domain IPv4 Mask Length Type a number of high order bits that are identical across all CE IPv4 addresses within a given 6rd domain It may be any value between 0 and 32 6rd Prefix Type the 6rd IPv6 address 6rd Prefix Length Type the IPv6 prefix length for the 6rd IPv6 prefix in number ...

Page 53: ...nfigurations used by every channel Available settings are explained as follows Item Description Channel Display the number of each channel Channels 1 and 2 are used by the Internet Access web user interface and can not be configured here Channels 3 8 are configurable Enable Enable or disable the settings for this channel WAN Type Displays the physical medium that the channel will use VLAN Tag Disp...

Page 54: ...erfaces created in every channel may select a specific WAN type to be built upon General Setting VPI Type in the value provided by your ISP VCI Type in the value provided by your ISP Protocol Select a proper protocol for this channel Encapsulation Choose a proper type for this channel The types will be different according to the protocol setting that you choose Add VLAN Header Check the box to ena...

Page 55: ...ective for Web configuration telnet TR069 IPTV The IPTV configuration will allow the WAN interface to send IGMP packets to IPTV servers WAN Connection Detection Such function allows you to verify whether network connection is alive or not through ARP Detect or Ping Detect Mode Choose ARP Detect or Ping Detect for the system to execute for WAN detection Ping IP If you choose Ping Detect as detectio...

Page 56: ... Gateway IP Address Type in gateway IP address DNS Server IP Address Type in the primary IP address for the router if you want to use Static IP mode If necessary type in secondary IP address for necessity in the future WAN link for Channel 3 4 and 5 are provided for modem borne application such as TR 069 and IPTV The settings must be applied and obtained from your ISP For your special request plea...

Page 57: ...inable Cell Rate The value of SCR must be smaller than PCR MBS It represents Maximum Burst Size The range of the value is 10 to 50 PVC to PVC Binding It allows the enabled PVC channel to use the same ADSL connection settings of another PVC channel Please choose the PVC channel via the drop down list After finished the above settings click OK to save the settings ...

Page 58: ... does is to translate the packets from public IP address to private IP address to forward the right packets to the right host and vice versa Besides Vigor modem has a built in DHCP server that assigns private IP address to each local host See the following diagram for a briefly understanding In some special case you may have a public IP subnet from your ISP such as 220 135 240 0 24 This means that...

Page 59: ...allows users to change the information of the modem such as IP address and the modems will automatically inform for each other W Wh ha at t i is s S St ta at ti ic c R Ro ou ut te e When you have several subnets in your LAN sometimes a more effective and quicker way for connection is the Static routes function rather than other method You may simply set rules to forward data from one specified sub...

Page 60: ...tion Available settings are explained as follows Item Description LAN IP Network Configuration For NAT Usage 1st IPAddress Type in private IP address for connecting to a local private network Default 192 168 1 1 1st Subnet Mask Type in an address code that determines the size of the network Default 255 255 255 0 24 For IP Routing Usage Click Enable to invoke this function The default setting is Di...

Page 61: ...of MAC Address for 2nd DHCP server will help modem to assign the correct IP address of the correct subnet to the correct host So those hosts in 2nd subnet won t get an IP address belonging to 1st subnet RIP Protocol Control Disable deactivate the RIP protocol It will lead to a stoppage of the exchange of routing information between modems Default 1st Subnet Select the modem to change the RIP infor...

Page 62: ...ress of your modem is 192 168 1 1 the starting IP address must be 192 168 1 2 or greater but smaller than 192 168 1 254 IP Pool Counts Enter the maximum number of PCs that you want the DHCP server to assign IP addresses to The default is 50 and the maximum is 253 Gateway IPAddress Enter a value of the gateway IP address for the DHCP server The value is usually as same as the 1st IP address of the ...

Page 63: ... you more than one DNS Server If your ISP does not provide it the modem will automatically apply default secondary DNS Server IP address 194 98 0 1 to this field The default DNS Server IP address can be found via Online Status If both the Primary IP and Secondary IP Address fields are left empty the modem will assign its own IP address to local users as a DNS proxy server and maintain a DNS cache ...

Page 64: ...hen requested by a node sending a Router Solicitation message These messages are required for IPv6 stateless auto configuration Disable Click it to disable RADVD server Advertisement Lifetime The lifetime associated with the default modem in units of seconds It s used to control the lifetime of the prefix The maximum value corresponds to 18 2 hours A lifetime of 0 indicates that the modem is not a...

Page 65: ...ble Display current used IPv6 addresses When you finish the configuration please click OK to save and exit this page 3 3 2 2 3 3 S St ta at ti ic c R Ro ou ut te e Go to LAN to open setting page and choose Static Route The modem offers IPv4 and IPv6 for you to configure the static route Both protocols bring different web pages S St ta at ti ic c R Ro ou ut te e f fo or r I IP Pv v4 4 Available set...

Page 66: ... modem Assuming the Internet access has been configured and the modem works properly use the Main Modem to surf the Internet create a private subnet 192 168 10 0 using an internal Modem A 192 168 1 2 create a public subnet 211 100 88 0 via an internal Modem B 192 168 1 3 have set Main Modem 192 168 1 1 as the default gateway for the Modem A 192 168 1 2 Before setting Static Route user A cannot tal...

Page 67: ... add a static route as shown below which regulates all packets destined to 192 168 10 0 will be forwarded to 192 168 1 2 Click OK Available settings are explained as follows Item Description Enable Click it to enable this profile Destination IP Address Type an IP address as the destination of such static route Subnet Mask Type the subnet mask for such static route Network Interface Use the drop do...

Page 68: ...scription Index The number 1 to 40 under Index allows you to open next page to set up static route Destination Address Displays the destination address of the static route Status Displays the status of the static route Set to Factory Default Clear all of the settings and return to factory default settings Viewing IPv6 Routing Table Displays the routing table for your reference Click any underline ...

Page 69: ... to specify an interface for this static route When you finish the configuration please click OK to save and exit this page 3 3 2 2 4 4 B Bi in nd d I IP P t to o M MA AC C This function is used to bind the IP and MAC address in LAN to have a strengthening control in network When this function is enabled all the assigned IP and MAC address binding together cannot be changed If you modified the bin...

Page 70: ... Bind Click this radio button to block the connection of the IP MAC which is not listed in IP Bind List ARP Table This table is the LAN ARP table of this modem The information for IP and MAC will be displayed in this field Each pair of IP and MAC address listed in ARP table can be selected and added to IP Bind List by clicking Add below Select All Click this link to select all the items in the ARP...

Page 71: ...AT T Usually the modem serves as an NAT Network Address Translation modem NAT is a mechanism that one or more private IP addresses can be mapped into a single public one Public IP address is usually assigned by your ISP for which you may get charged Private IP addresses are recognized only among internal hosts When the outgoing packets destined to some public server on the Internet reach the NAT m...

Page 72: ...cal network LAN such as web servers FTP servers E mail servers etc Most of the case you need a public IP address for each server and this public IP address domain name are recognized by all users Since the server is actually located inside the LAN the network well protected by NAT of the modem and identified by its private IP address port the goal of Port Redirection function is to forward all acc...

Page 73: ...ress or interface used by the profile Protocol Display the transport layer protocol TCP or UDP Public Port Display the port number which will be redirected to the specified Private IP and Port of the internal host Private IP Display the IP address of the internal host providing the service Status Display if the profile is enabled v or not x Press any number under Index to access into next page for...

Page 74: ...pecified range of IP address and port Public Port Specify which port can be redirected to the specified Private IP and Port of the internal host If you choose Range as the port redirection mode you will see two boxes on this field Simply type the required number on the first box The second one will be assigned automatically later Private IP Specify the private IP address of the internal host provi...

Page 75: ... 3 3 3 2 2 D DM MZ Z H Ho os st t As mentioned above Port Redirection can redirect incoming TCP UDP or other traffic on particular ports to the specific private IP address port of host in the LAN However other IP protocols for example Protocols 50 ESP and 51 AH do not travel on a fixed port Vigor modem provides a facility DMZ Host that maps ALL unsolicited data on any protocol to a single host in ...

Page 76: ...e Available settings are explained as follows Item Description Choose Private IP or Active True IP first Active True IP selection is available for WAN1 only Private IP Enter the private IP address of the DMZ host or click Choose PC to select one Choose PC Click this button and then a window will automatically pop up as depicted below The window consists of a list of private IP addresses of all hos...

Page 77: ...own on the following screen Click OK to save the setting If you previously have set up WAN Alias for PPPoE PPPoA or MPoA mode you will find them in Aux WAN IP for your selection Available settings are explained as follows Item Description Enable Check to enable the DMZ Host function Private IP Enter the private IP address of the DMZ host or click Choose PC to select one ...

Page 78: ...will be shown on the following screen Click OK to save the setting After finishing all the settings here please click OK to save the configuration 3 3 3 3 3 3 O Op pe en n P Po or rt ts s Open Ports allows you to open a range of ports for the traffic of special applications Common application of Open Ports includes P2P application e g BT KaZaA Gnutella WinMX eMule and others Internet Camera etc En...

Page 79: ...ber on the page The index entry setup page will pop up In each index entry you can specify 10 port ranges for diverse services Available settings are explained as follows Item Description Enable Open Ports Check to enable this entry Comment Make a name for the defined network application service WAN IP Specify the WAN IP address that will be used for this entry This setting is available when WAN I...

Page 80: ... for processing the packets of voice and video RTSP ALG makes RTSP message RTCP message and RTP packets of voice and video be transmitted and received correctly via NAT by Vigor router However SIP ALG makes SIP message and RTP packets of voice be transmitted and received correctly via NAT by Vigor router Available settings are explained as follows Item Description Enable ALG Check to enable such f...

Page 81: ...tion SPI tracks packets and denies unsolicited incoming data Selectable Denial of Service DoS Distributed DoS DDoS attacks protection I IP P F Fi il lt te er rs s Depending on whether there is an existing Internet connection or in other words the WAN link status is up or down the IP filter architecture categorizes traffic into two Call Filter and Data Filter Call Filter When there is no existing I...

Page 82: ...tem s resource while the vulnerability attacks will try to paralyze the system by offending the vulnerabilities of the protocol or operation system The DoS Defense function enables the Vigor modem to inspect every incoming packet based on the attack signature database Any malicious packet that might duplicate itself to paralyze the host in the secure LAN will be strictly blocked and a Syslog messa...

Page 83: ...enable or disable the Call Filter or Data Filter Under some circumstance your filter set can be linked to work in a serial manner So here you assign the Start Filter Set only Also you can configure the Log Flag settings Apply IP filter to VPN incoming packets and Accept incoming fragmented UDP packets Click Firewall and click General Setup to open the general setup page ...

Page 84: ...se fragmented packets to prevent attack unless you enable Accept large incoming fragmented UDP or ICMP Packets By checking this box you can play these kinds of on line games If security concern is in higher priority you cannot enable Accept large incoming fragmented UDP or ICMP Packets Enable Strict Security Firewall For the sake of security the modem will execute strict security checking for data...

Page 85: ...filtering profiles including QoS Load Balance policy WCF APP Enforcement URL Content Filter for data transmission via Vigor modem Available settings are explained as follows Item Description Filter Select Pass or Block for the packets that do not match with the filter rules Sessions Control The number typed here is the total sessions of the packets that do not match the filter rule configured in t...

Page 86: ...ANSI 1252 Latin I If you do not choose any codepage no decoding job of URL will be processed Please use the drop down list to choose a codepage If you do not have any idea of choosing suitable codepage please open Syslog From Codepage Information of Setup dialog you will see the recommended codepage listed on the dialog box Window size It determines the size of TCP protocol 0 65535 The more the va...

Page 87: ... Item Description Filter Rule Click a button numbered 1 7 to edit the filter rule Click the button will open Edit Filter Rule web page For the detailed information refer to the following page Active Enable or disable the filter rule Comment Enter filter set comments description Maximum length is 23 character long Move Up Down Use Up or Down link to move the order of the filter rules Next Filter Se...

Page 88: ...efined in Applications Schedule setup The default setting of this field is blank and the function will always work Clear sessions when schedule ON Check this box to clear the sessions when the above schedule profiles are applied Direction Set the direction of packet flow It is for Data Filter only For the Call Filter this setting is not available since Call Filter is only applied to outgoing traff...

Page 89: ... drop down list choose the one that you want to apply Or use the IP Object drop down list to choose the object that you want Service Type Click Edit to access into the following dialog to choose a suitable service type To set the service type manually please choose User defined as the Service Type and type them in this dialog In addition if you want to use the service type from defined groups or o...

Page 90: ...n to be taken when packets match the rule Block Immediately Packets matching the rule will be dropped immediately Pass Immediately Packets matching the rule will be passed immediately Block If No Further Match A packet matching the rule and that does not match further rules will be dropped Pass If No Further Match A packet matching the rule and that does not match further rules will be passed thro...

Page 91: ...coding data from URL and enhance the correctness of URL Content Filter The default value for this setting is ANSI 1252 Latin I If you do not choose any codepage no decoding job of URL will be processed Please use the drop down list to choose a codepage If you do not have any idea of choosing suitable codepage please open Syslog From Codepage Information of Setup dialog you will see the recommended...

Page 92: ...ted before all the traffic will be separated and arbitrated using on of two IP filters call filter or data filter You may preset 12 call filters and data filters in Filter Setup and even link them in a serial manner Each filter set is composed by 7 filter rules which can be further defined After that in General Setup you may specify one set for call filter and one set for data filter to execute fi...

Page 93: ...eshold of the TCP SYN packets from the Internet has exceeded the defined value the Vigor modem will start to randomly discard the subsequent TCP SYN packets for a period defined in Timeout The goal for this is prevent the TCP SYN packets attempt to exhaust the limited resource of Vigor modem By default the threshold and timeout values are set to 50 packets per second and 10 seconds respectively Th...

Page 94: ...d That means when 150 packets per second received they will be regarded as attack event Block IP options Check the box to activate the Block IP options function The Vigor modem will ignore any IP packets with IP option field in the datagram header The reason for limitation is IP option appears to be a vulnerability of the security for the LAN because it will carry significant information such as s...

Page 95: ...nvolves the perpetrator sending overlapping packets to the target hosts so that those target hosts will hang once they re construct the packets The Vigor modems will block any packets realizing this attacking activity Block ICMP Fragment Check the box to activate the Block ICMP fragment function Any ICMP packets with more fragment bit set are dropped Block Unassigned Numbers Check the box to activ...

Page 96: ...Vigor130 Series User s Guide 86 ...

Page 97: ...ly it For example all the IPs in the same department can be defined with an IP object a range of IP address 3 3 5 5 1 1 I IP P O Ob bj je ec ct t You can set up to 192 sets of IP Objects with different conditions Available settings are explained as follows Item Description Set to Factory Default Clear all profiles Index Display the profile number that you can configure Name Display the name of the...

Page 98: ...le Address if this object contains one IP address only Select Range Address if this object contains several IPs within a range Select Subnet Address if this object contains one subnet for IP address Select Any Address if this object contains any IP address Select Mac Address if this object contains Mac address MAC Address Type the MAC address of the network card which will be controlled Start IP A...

Page 99: ...up Available settings are explained as follows Item Description Set to Factory Default Clear all profiles Index Display the profile number that you can configure Name Display the name of the group profile To set a new profile please do the steps listed below 1 Click the number e g 1 under Index column for configuration in details ...

Page 100: ...cters are allowed Interface Choose WAN LAN or Any to display all the available IP objects with the specified interface Available IP Objects All the available IP objects with the specified interface chosen above will be shown in this box Selected IP Objects Click button to add the selected IP objects in this box 3 After finishing all the settings here please click OK to save the configuration ...

Page 101: ...s are explained as follows Item Description Set to Factory Default Clear all profiles Index Display the profile number that you can configure Name Display the name of the object profile To set a new profile please do the steps listed below 1 Click the number e g 1 under Index column for configuration in details 2 The configuration page will be shown as follows ...

Page 102: ... IPv6 address Select Any Address if this object contains any IPv6 address Select Mac Address if this object contains Mac address Mac Address Type the MAC address of the network card which will be controlled Start IP Address Type the start IP address for Single Address type End IP Address Type the end IP address if the Range Address type is selected Prefix Len Type the number e g 64 for the prefix ...

Page 103: ...lows Item Description Set to Factory Default Clear all profiles Index Display the profile number that you can configure Name Display the name of the group profile To set a new profile please do the steps listed below 1 Click the number e g 1 under Index column for configuration in details 2 The configuration page will be shown as follows Available settings are explained as follows ...

Page 104: ...tton to add the selected IPv6 objects in this box 3 After finishing all the settings please click OK to save the configuration 3 3 5 5 5 5 S Se er rv vi ic ce e T Ty yp pe e O Ob bj je ec ct t You can set up to 96 sets of Service Type Objects with different conditions Available settings are explained as follows Item Description Set to Factory Default Clear all profiles Index Display the profile nu...

Page 105: ...col It can be ignored for other protocols The filter rule will filter out any port number when the first and last value are the same it indicates one port when the first and last values are different it indicates a range for the port and available for this profile when the first and last value are the same it indicates all the ports except the port defined here when the first and last values are d...

Page 106: ... Gr ro ou up p This page allows you to bind several service types into one group Available settings are explained as follows Item Description Set to Factory Default Clear all profiles Index Display the profile number that you can configure Name Display the name of the group profile ...

Page 107: ...ngs are explained as follows Item Description Name Type a name for this profile Maximum 15 characters are allowed Available Service Type Objects All the available service objects that you have added on Objects Setting Service Type Object will be shown in this box Selected Service Type Objects Click button to add the selected IP objects in this box 3 After finishing all the settings please click OK...

Page 108: ...00 keyword object profiles for choosing as black white list in CSM URL Web Content Filter Profile Available settings are explained as follows Item Description Set to Factory Default Clear all profiles Index Display the profile number that you can configure Name Display the name of the object profile ...

Page 109: ...are explained as follows Item Description Name Type a name for this profile e g game Maximum 15 characters are allowed Contents Type the content for such profile For example type gambling as Contents When you browse the webpage the page with gambling information will be watched out and be passed blocked based on the configuration on Firewall settings 3 After finishing all the settings please click...

Page 110: ... Filter Profile Available settings are explained as follows Item Description Set to Factory Default Clear all profiles Index Display the profile number that you can configure Name Display the name of the group profile To set a new profile please do the steps listed below 1 Click the number e g 1 under Index column for configuration in details 2 The configuration page will be shown as follows Avail...

Page 111: ...ects in this box 3 After finishing all the settings please click OK to save the configuration 3 3 5 5 9 9 F Fi il le e E Ex xt te en ns si io on n O Ob bj je ec ct t This page allows you to set eight profiles which will be applied in CSM URL Content Filter All the files with the extension names specified in these profiles will be processed according to the chosen action Available settings are expl...

Page 112: ...ion of Content Security Management which is used to control IM P2P usage filter the web content and URL content to reach a goal of security management U UR RL L C Co on nt te en nt t F Fi il lt te er r To provide an appropriate cyberspace to users Vigor modem equips with URL Content Filter not only to limit illegal traffic from to the inappropriate web sites but also prohibit other web feature whe...

Page 113: ...it may occupy user s system For example if you add key words such as sex Vigor modem will limit web access to web sites or web pages such as www sex com www backdoor net images sex p_386 html Or you may simply specify the full or partial URL such as www sex com or sex com 3 3 6 6 1 1 U UR RL L C Co on nt te en nt t F Fi il lt te er r P Pr ro of fi il le e Click CSM and click URL Content Filter Pro...

Page 114: ...configuration set in this page for URL Access Control and Web Feature will be inactive Either URL Access Control First When all the packages matching with the conditions specified in URL Access Control and Web Feature below such function can determine the priority for the actions executed For this one the modem will process the packages with the conditions set below for URL first then Web feature ...

Page 115: ...ing is available only when Either URL Access Control First or Either Web Feature First is selected Pass Allow accessing into the corresponding webpage with the keywords listed on the box below Block Restrict accessing into the corresponding webpage with the keywords listed on the box below If the web pages do not match with the keyword set here it will be processed with reverse action Group Object...

Page 116: ... do not match with the specified feature set here it will be processed with reverse action Cookie Check the box to filter out the cookie transmission from inside to outside world to protect the local user s privacy Proxy Check the box to reject any proxy transmission To control efficiently the limited bandwidth usage it will be of great value to provide the blocking mechanism that filters out the ...

Page 117: ... if you host a web server FTP server or other server behind the modem Before you use the Dynamic DNS feature you have to apply for free DDNS service to the DDNS service providers The modem provides up to three accounts from three different DDNS service providers Basically Vigor modems are compatible with the DDNS services supplied by most popular DDNS service providers such as www dyndns org www n...

Page 118: ...istered hostname hostname and domain name suffix dyndns org in the Domain Name block The following two blocks should be typed your account Login Name test and Password test Available settings are explained as follows Item Description Enable Dynamic DNS Account Check this box to enable the current account If you did check the box you will see a check mark appeared on the Active column of the previo...

Page 119: ...is function can detect the public IP used by the NAT modem and use the detected IP address for DDNS update There are two methods offered for you to choose WAN IP If it is selected and the WAN IP of Vigor modem is private DDNS update will take place right away Internet IP If it is selected and the WAN IP of Vigor modem is private it will be converted to public IP before DDNS update takes place 4 Cl...

Page 120: ...et the Vigor modem s clock to current time of your PC The clock will reset once if you power down or reset the modem There is another way to set up time You can inquiry an NTP server a time server on the Internet to synchronize the modem s clock This method can only be applied when the WAN connection has been built up Available settings are explained as follows Item Description Set to Factory Defa...

Page 121: ... to be dial on demand and the value of idle timeout should be specified in Idle Timeout field Disable Dial On Demand Specify the connection to be up when it has traffic on the line Once there is no traffic over idle timeout the connection will be down and never up again during the schedule Idle Timeout Specify the duration or period for the schedule How often Specify how often the schedule will be...

Page 122: ...PPoE always on from 9 00 to 18 00 for whole week 3 Configure the Force Down from 18 00 to next day 9 00 for whole week 4 Assign these two profiles to the PPPoE Internet access profile Now the PPPoE Internet connection will follow the schedule order to perform Force On or Force Down action according to the time plan that has been pre defined in the schedule profiles ...

Page 123: ...s XP and the modem provide the associated support for MSN Messenger to allow full use of the voice video and messaging features Available settings are explained as follows Item Description Enable UPNP Service Accordingly you can enable either the Connection Control Service or Connection Status Service After setting Enable UPNP Service setting an icon of IP Broadband Connection on Modem on Windows ...

Page 124: ...e accessing ability of some network ports Security Considerations Activating the UPnP function on your network may incur some security threats You should consider carefully these risks before activating the UPnP function Some Microsoft operating systems have found out the UPnP weaknesses and hence you need to ensure that you have applied the latest service packs and patches Non privileged users ca...

Page 125: ...y an interface for packets passing through IGMP version At present two versions v2 and v3 are supported by Vigor router Choose the correct version based on the IPTV service you subscribe General Query Interval Vigor router will periodically check which IP obtaining IPTV service by sending query It might cause inconvenience for client Therefore set a suitable time unit second as the query interval ...

Page 126: ...follows Item Description Refresh Click to reload the Multicast Group Table with the latest information Index Index number of the multicast group Group ID ID port of the multicast group which is within the IP range reserved for IGMP 224 0 0 0 through 239 255 255 254 P1 to P4 LAN ports that have IGMP hosts joined to this multicast group ...

Page 127: ...ork settings of Vigor modem It includes LAN and WAN interface information Also you could get the current running firmware version or firmware related information from this presentation Available settings are explained as follows Item Description Model Name Display the model name of the modem Firmware Version Display the firmware version of the modem Build Date Time Display the date and time of the...

Page 128: ... Interface Connection Display the connection type IP Address Display the IP address of the WAN interface Default Gateway Display the assigned IP address of the default gateway IPv6 Address Display the IPv6 address for LAN Scope Display the scope of IPv6 address For example IPv6 Link Local could only be used for direct IPv6 link It can t be used for IPv6 internet Internet Access Mode Display the co...

Page 129: ...r ACS Server URL Username Password Such data must be typed according to the ACS Auto Configuration Server you want to link Please refer to Auto Configuration Server user s manual for detailed information Test With Inform Click it to send a message based on the event code selection to test if such CPE is able to communicate with VigorACS SI server Event Code Use the drop down menu to specify an eve...

Page 130: ...the port number of the STUN server Minimum Keep Alive Period If STUN is enabled the CPE must send binding request to the server for the purpose of maintaining the binding in the Gateway Please type a number as the minimum period The default setting is 60 seconds Maximum Keep Alive Period If STUN is enabled the CPE must send binding request to the server for the purpose of maintaining the binding i...

Page 131: ...up p t th he e C Co on nf fi ig gu ur ra at ti io on n Follow the steps below to backup your configuration 1 Go to System Maintenance Configuration Backup The following windows will be popped up as shown below 2 Click Backup button to get into the following dialog Click Save button to open another dialog for saving configuration as a file 3 In Save As dialog the default filename is config cfg You ...

Page 132: ...le Note Backup for Certification must be done independently The Configuration Backup does not include information of Certificate R Re es st to or re e C Co on nf fi ig gu ur ra at ti io on n 1 Go to System Maintenance Configuration Backup The following windows will be popped up as shown below 2 Click Browse button to choose the correct configuration file for uploading to the modem 3 Click Restore ...

Page 133: ...e link to access into System Maintenance Management to set the modem name Server IP Address The IP address of the Syslog server Destination Port Assign a port for the Syslog protocol Enable syslog message Check the box listed on this web page to send the corresponding message of firewall VPN User Access Call WAN Router DSL information to Syslog Mail Alert Setup Check Enable to activate function of...

Page 134: ...ssage to the e mail box while the modem detects the item you specify here Click OK to save these settings For viewing the Syslog please do the following 1 Just set your monitor PC s IP address in the field of Server IP Address 2 Install the Modem Tools in the Utility within provided CD After installation click on the Modem Tools Syslog from program menu 3 From the Syslog screen select the modem yo...

Page 135: ...se Internet Time Select to inquire time information from Time Server on the Internet using assigned protocol Time Protocol Select a time protocol Server IP Address Type the IP address of the time server Time Zone Select the time zone where the modem is located Enable Daylight Saving Check the box to enable the daylight saving Such feature is available for certain area Advanced Click it to open a p...

Page 136: ...ss list port setup and SNMP setup The management pages for IPv4 and IPv6 protocols are different F Fo or r I IP Pv v4 4 Available settings are explained as follows Item Description Router Name Type in the modem name provided by ISP Default Disable Auto Logout If it is enabled the function of auto logout for web user interface will be disabled ...

Page 137: ...inistrator to use for accessing into web user interface of Vigor router Access List from the Internet You could specify that the system administrator can only login from a specific host or network defined in the list A maximum of three IPs subnet masks is allowed List IP Indicate an IP address allowed to login to the modem Subnet Mask Represent a subnet mask allowed to login to the modem Managemen...

Page 138: ...tead upgrade your web browser or SmartVPN client to a version that supports TLS protocols that are far more secure than SSL Device Management Check the box to enable the device management function for Vigor130 Respond to external device If it is enabled Vigor130 will be regarded as slave device When the external device master device sends request packet to Vigor130 Vigor130 would send back informa...

Page 139: ...s to specify Enable PING from the Internet Check the checkbox to enable all PING packets from the Internet For security issue this function is disabled by default Access List You could specify that the system administrator can only login from a specific host or network defined in the list A maximum of three IPs subnet masks is allowed IPv6 Address Prefix Length Indicate the IP address es allowed t...

Page 140: ...ice e g Vigor router which generates the certificate by itself to ensure the router security Such self signed certificate is signed with its own private key The self signed certificate can be used for services such as SSL VPN and HTTPS In addition it can be created for free by using a wide variety of tools Click Regeneration to open Regenerate Self Signed Certificate window ...

Page 141: ...ENERATE 3 3 8 8 9 9 R Re eb bo oo ot t S Sy ys st te em m The Web User Interface may be used to restart your modem Click Reboot System from System Maintenance to open the following page Index 1 15 in Schedule Setup You can type in four sets of time schedule for performing system reboot All the schedules can be set previously in Applications Schedule web page and you can use the number that you hav...

Page 142: ...the modem settings to default values check Using factory default configuration and click Reboot Now The modem will take 5 seconds to reboot the system Note When the system pops up Reboot System web page after you configure web settings please click OK to reboot your modem for ensuring normal operation and preventing unexpected errors of the modem in the future ...

Page 143: ...uide you to upgrade firmware by using an example Note that this example is running over Windows OS Operating System Download the newest firmware from DrayTek s web site or FTP site The DrayTek web site is www draytek com or local DrayTek s web site and FTP site is ftp draytek com Click System Maintenance Firmware Upgrade to launch the Firmware Upgrade Utility Click OK The following screen will app...

Page 144: ...l o ou ut t T Tr ri ig gg ge er ri in ng g Click Diagnostics and click Dial out Trigger to open the web page The internet connection e g PPPoE PPPoA etc is triggered by a package sending from the source IP address Available settings are explained as follows Item Description Decoded Format It shows the source IP address local destination IP remote address the protocol and length of the package Refr...

Page 145: ... Guide 135 3 3 9 9 2 2 R Ro ou ut ti in ng g T Ta ab bl le e Click Diagnostics and click Routing Table to open the web page And Available settings are explained as follows Item Description Refresh Click it to reload the page ...

Page 146: ...ress and an IP address Available settings are explained as follows Item Description Clear Click it to clear the whole table Refresh Click it to reload the page 3 3 9 9 4 4 I IP Pv v6 6 N Ne ei ig gh hb bo ou ur r T Ta ab bl le e The table shows a mapping between an Ethernet hardware address MAC Address and an IPv6 address This information is helpful in diagnosing network problems such as IP addres...

Page 147: ...ddress assignments This information is helpful in diagnosing network problems such as IP address conflicts etc Click Diagnostics and click DHCP Table to open the web page And Each item is explained as follows Item Description Index It displays the connection item number IP Address It displays the IP address assigned by this modem for specified PC MAC Address It displays the MAC address for the spe...

Page 148: ...Ta ab bl le e Click Diagnostics and click NAT Sessions Table to open the list page Available settings are explained as follows Item Description Private IP Port It indicates the source IP address and port of local PC Pseudo Port It indicates the temporary port of the modem used for NAT Peer IP Port It indicates the destination IP address and port of remote host Interface It displays the representin...

Page 149: ...splayed on Diagnostics DNS Cache Table Available settings are explained as follows Item Description Clear Click this link to remove the result on the window Refresh Click it to reload the page When an entry s TTL is larger than Check the box the type the value of TTL time to live for each entry Click OK to enable such function It means when the TTL value of each DNS query reaches the threshold of ...

Page 150: ...r such function Ping through Use the drop down list to choose the WAN interface that you want to ping through or choose Unspecified to be determined by the modem automatically Ping to Use the drop down list to choose the destination that you want to ping IP Address Type the IP address of the Host IP that you want to ping Ping IPv6 Address Type the IPv6 address that you want to ping Run Click this ...

Page 151: ... data display Available settings are explained as follows Item Description Enable Data Flow Monitor Check this box to enable this function Refresh Seconds Use the drop down list to choose the time interval of refreshing data flow that will be done by the system automatically Refresh Click this link to refresh this page manually Index Display the number of the data flow IP Address Display the IP ad...

Page 152: ...ive minutes The remaining time will be shown on the session column Current Peak Speed Current means current transmission rate and receiving rate for WAN interface Peak means the highest peak value detected by the modem in data transmission Speed means line speed specified in WAN General Setup If you do not specify any rate at that page here will display Auto for instead ...

Page 153: ... host Simply type the IP address of the host in the box and click Run The result of route trace will be shown on the screen or Available settings are explained as follows Item Description IPv4 IPv6 Click one of them to display corresponding information for it Protocol Use the drop down list to choose the protocol that you want to ping through Host IP Address It indicates the IP address of the host...

Page 154: ...the window 3 3 9 9 1 11 1 I IP Pv v6 6 T TS SP PC C S St ta at tu us s IPv6 TSPC status web page could help you to diagnose the connection status of TSPC If TSPC has configured properly the modem will display the following page when the user connects to tunnel broker successfully Available settings are explained as follows Item Description Refresh Click this link to refresh this page manually ...

Page 155: ...Vigor130 Series User s Guide 145 3 3 9 9 1 12 2 D DS SL L S St ta at tu us s DSL status web page could help you to diagnose the connection status of DSL ...

Page 156: ...Vigor130 Series User s Guide 146 This page is left blank ...

Page 157: ...ample of default setting and the corresponding deployment are shown below The default Vigor modem private IP address Subnet Mask is 192 168 1 1 255 255 255 0 The built in DHCP server is enabled so it assigns every local NATed host an IP address of 192 168 1 x starting from 192 168 1 10 You can just set the settings wrapped inside the red rectangles to fit the request of NAT usage ...

Page 158: ...Vigor130 Series User s Guide 148 To use another DHCP server in the network rather than the built in one of Vigor Modem you have to change the settings as show below ...

Page 159: ...Vigor130 Series User s Guide 149 ...

Page 160: ...Vigor130 Series User s Guide 150 This page is left blank ...

Page 161: ...e OK or not Backing to factory default setting if necessary If all above stages are done and the modem still cannot run normally it is the time for you to contact your dealer for advanced help 5 5 1 1 C Ch he ec ck ki in ng g I If f t th he e H Ha ar rd dw wa ar re e S St ta at tu us s I Is s O OK K o or r N No ot t Follow the steps below to verify the hardware status 1 Check the power line and DS...

Page 162: ...e link is stilled failed please do the steps listed below to make sure the network connection settings is OK F Fo or r W Wi in nd do ow ws s The example is based on Windows 7 As to the examples for other operation systems please refer to the similar steps or find support notes in www DrayTek com 1 Open All Programs Getting Started Control Panel Click Network and Sharing Center 2 In the following w...

Page 163: ...or130 Series User s Guide 153 4 Select Internet Protocol Version 4 TCP IP and then click Properties 5 Select Obtain an IP address automatically and Obtain DNS server address automatically Finally click OK ...

Page 164: ...uide 154 F Fo or r M Ma ac cO Os s 1 Double click on the current used MacOs on the desktop 2 Open the Application folder and get into Network 3 On the Network screen select Using DHCP from the drop down list of Configure IPv4 ...

Page 165: ...m correctly F Fo or r W Wi in nd do ow ws s 1 Open the Command Prompt window from Start menu Run 2 Type command for Windows 95 98 ME or cmd for Windows NT 2000 XP Vista The DOS command dialog will appear 3 Type ping 192 168 1 1 and press Enter If the link is OK the line of Reply from 192 168 1 1 bytes 32 time 1ms TTL 255 will appear 4 If the line does not appear please check the IP address setting...

Page 166: ...ved by returning to the default settings Try to reset the modem by software or hardware Warning After pressing factory default setting you will loose all settings you did before Make sure you have recorded all useful settings before you pressing The password of factory default is null S So of ft tw wa ar re e R Re es se et t You can reset the modem to factory default via Web page Go to System Main...

Page 167: ... rapidly please release the button Then the modem will restart with the default configuration After restore the factory default setting you can configure the settings for the modem again to fit your personal request 5 5 6 6 C Co on nt ta ac ct ti in ng g D Dr ra ay yT Te ek k If the modem still cannot work correctly after trying many efforts please feel free to send e mail to support draytek com ...

Page 168: ...Vigor130 Series User s Guide 158 This page is left blank ...

Page 169: ... in this manual Click Start Run and type Telnet 192 168 1 1 in the Open box as below Note that the IP address in the example is the default address of the router If you have changed the default enter the current IP address of the router Click OK The Telnet terminal will be open Please type admin admin for Account Password Then type You will see a list of valid common commands depending on the rout...

Page 170: ...nt status of ADSL setting S Sy yn nt ta ax x adsl status E Ex xa am mp pl le e Vigor adsl status ATU R Info hw annex A f w annex A Running Mode T1 413 State TRAINING DS Actual Rate 0 bps US Actual Rate 0 bps DS Attainable Rate 0 bps US Attainable Rate 0 bps DS Path Mode Fast US Path Mode Fast DS Interleave Depth 0 US Interleave Depth 0 NE Current Attenuation 0 dB Cur SNR Margin 0 dB DS actual PSD ...

Page 171: ...ols 0 PPPoA 1 PPPoE 2 MPoA Modu 0 T1 413 2 G dmt 4 Multi 5 ADSL2 7 ADSL2_AnnexM 8 ADSL2 14 ADSL2 _AnnexM acqIP It means the way to acquire IP address Type the number to determine the IP address by specifying or assigned dynamically by DHCP server 0 fix_ip 1 dhcp_client PPPoE PPPoA acquire IP method idle Type number to determine the network connection will be kept for always or idle after a certain...

Page 172: ...Channel 1 to 7 Channel 8 status It means to shown the whole bridge status save It means to save the configuration to flash enable It means to enable the Multi VLAN function disable It means to disable the Multi VLAN function on off It means to turn on off bridge mode for the specific channel clear It means to turn off and clear all the PVC settings tag tag_no No tag 1 Available number for tag 0 40...

Page 173: ... reboot to restart booting T Te el ln ne et t C Co om mm ma an nd d a ad ds sl l d dr ri iv ve em mo od de e This command is useful for laboratory to measure largest power of data transmission Please follow the steps below to set adsl drivermode 1 Please connect dsl line to the DSLAM 2 Waiting for dsl SHOWTIME 3 Drop the dsl line 4 Now it is on continuous sending mode and adsl2 2 led is always ON ...

Page 174: ...evel 5 for F5 End to End VC level chklink Check the DSL connection Log_on log_off Enable or disable the OAM log for debug E Ex xa am mp pl le e adsl oamlb chklink on OAM checking dsl link is ON adsl oamlb F5 4 Tx cnt 0 Rx Cnt 0 T Te el ln ne et t C Co om mm ma an nd d a ad ds sl l v vc ci il li im mi it t This command can cancel the limit for vci value Some ISP might set the vci value under 32 In ...

Page 175: ...s to add ADSL mode remove It means to remove ADSL mode set It means to use default settings plus the new added ADSL mode default It means to use default settings show It means to display current setting adsl_mode There are three modes to be choose ANNEXL ANNEXM and ANNEXJ E Ex xa am mp pl le e Vigor adsl automode set ANNEXJ Automode supported T1 413 G DMT ADSL2 ADSL2 ANNEXJ Vigor adsl automode def...

Page 176: ... 11 26 0 0 0 0 11 27 0 0 0 0 10 28 0 0 0 0 10 29 0 0 0 0 10 30 0 0 0 0 9 31 0 0 0 0 9 32 0 0 0 0 0 33 0 0 0 0 0 34 0 0 0 0 0 35 0 0 0 0 0 Bin SNR Gain Bi Bin SNR Gain Bi Bin SNR Gain Bi Bin SNR Gain Bi dB dB ts dB dB ts dB dB ts dB dB ts T Te el ln ne et t C Co om mm ma an nd d a ad ds sl l o op pt tn n At present this command allows you to enable and disable dual latency only adsl optn FUNC value...

Page 177: ... the configuration into FLASH with a file format of cfg E Ex xa am mp pl le e adsl savecfg Xdsl Cfg Save OK T Te el ln ne et t C Co om mm ma an nd d a ad ds sl l v ve en nd do or ri id d This command allows you to configure user defined CPE vendor ID adsl vendorid status on off set vid0 vid1 S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description status Display current status of...

Page 178: ...is 1 to 2539 max It means to get the highest speed for the upstream SCR It means Sustainable Cell Rate MBS It means Maximum Burst Size status It means to display PCR SCR MBS setting E Ex xa am mp pl le e adsl atm pcr 1 200 max PCR is 200 for pvc 1 adsl atm pcr status pvc channel PCR 0 1 0 1 2 200 2 3 0 3 4 0 4 5 0 5 6 0 6 7 0 7 8 0 adsl atm mbs 2 300 max MBS is 300 for pvc 2 T Te el ln ne et t C C...

Page 179: ...DS Attainable Rate 0 bps US Attainable Rate 0 bps DS Path Mode Fast US Path Mode Fast DS Interleave Depth 0 US Interleave Depth 0 NE Current Attenuation 0 dB Cur SNR Margin 0 dB DS actual PSD 0 0 dB US actual PSD 0 0 dB NE CRC Count 0 FE CRC Count 0 NE ES Count 0 FE ES Count 0 Xdsl Reset Times 0 Xdsl Link Times 0 ITU Version 0 b5004946 ITU Version 1 544e0000 VDSL Firmware Version 05 04 08 00 00 06...

Page 180: ...L Enter Driver Mode 1 please connect dsl line to the DSLAM 2 Waiting for dsl SHOWTIME 3 drop the dsl line 4 now it is on continuous sending mode Use adsl reboot to restart dsl to normal mode T Te el ln ne et t C Co om mm ma an nd d v vd ds sl l r re eb bo oo ot t Note We can provide prompt support support draytek com if you refer to the telnet command and have any queries E Ex xa am mp pl le e vds...

Page 181: ... E Ex xa am mp pl le e vdsl showbins 0 30 DOWNSTREAM Bin SNR Gain Bi Bin SNR Gain Bi Bin SNR Gain Bi Bin SNR Gain Bi dB 1dB ts dB 1dB ts dB 1dB ts dB 1dB ts Bin SNR Gain Bi Bin SNR Gain Bi Bin SNR Gain Bi Bin SNR Gain Bi dB 1dB ts dB 1dB ts dB 1dB ts dB 1dB ts T Te el ln ne et t C Co om mm ma an nd d v vd ds sl l o op pt tn n This command is used to enable or disable the parameters related to VDSL...

Page 182: ...support draytek com if you refer to the telnet command and have any queries adsl vendorid status on off set vid0 vid1 S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description status Display current setting of vendor ID On off Enable Disable the user defined setting set It is used to set user define vendor ID by vid0 vid1 vid0 vid1 Set vendor ID number with the format of HEX ex 00...

Page 183: ...s entry n UserName contact UserName max 24 characters p PassWord contact PassWord max 24 characters s select It means to specify an IP address for Server 0 no selection 1 NSW 61 9 192 13 2 QLD 61 9 208 13 3 VIC 61 9 128 13 4 SA 61 9 224 13 5 WA 61 9 240 13 l List List all settings configured E Ex xa am mp pl le e bpa 1 a 1 n testUser p testPassword s 4 bpa l index 1 active UserName 1 testUser Pass...

Page 184: ...me of APPE Profile 1 was setted T Te el ln ne et t C Co om mm ma an nd d c cs sm m a ap pp pe e i im m It is used to configure IM settings for APP Enforcement Profile csm appe im i INDEX v e AP d AP a AP ACTION S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description INDEX It means to specify the index number of CSM profile from 1 to 32 v It means to view the IM configuration of ...

Page 185: ...file from 1 to 32 v It means to view the P2P configuration of the CSM profile e It means to enable the blocking for specific application d It means to disable the blocking for specific application a Set the action of specific application 0 or 1 0 Block All of the applications meet the CSM rule will be blocked 1 Pass All of the applications meet the CSM rule will be passed AP Specify one of the fol...

Page 186: ...e the blocking for specific application a Set the action of specific application 0 or 1 0 Block All of the applications meet the CSM rule will be blocked 1 Pass All of the applications meet the CSM rule will be passed AP Specify one of the following applications for such profile Streaming MMS MMS RTSP RTSP TVAnts TVAnts PPStream PPStream PPlive PPlive FeiDian FeiDian UUSee UUSee NSPlayer NSPlayer ...

Page 187: ...t settings for all of the profile msg MSG It means de set the administration message MSG means the content less than 255 characters of the message itself obj It means to specify the object for the profile INDEX It means to specify the index number of CSM profile from 1 to 8 n It means to set the profile name PROFILE_NAME It means to specify the name of the profile less than 16 characters p It mean...

Page 188: ...bject_Index csm ucf obj INDEX uac g KEY_WORD_Group_Index S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description INDEX It means to specify the index number of CSM profile from 1 to 8 v It means to view the protocol configuration of the CSM profile e It means to enable the function of URL Access Control d It means to disable the function of URL Access Control a Set the action of ...

Page 189: ... 1 Profile Name game Log none Priority Select Bundle Pass Enable URL Access Control Action pass v Prevent web access from IP address No Obj NO Object Name No Grp NO Group Name csm ucf obj 1 uac a B Profile Index 1 Profile Name game Log none Priority Select Bundle Pass Enable URL Access Control Action block v Prevent web access from IP address No Obj NO Object Name No Grp NO Group Name ...

Page 190: ...tion of the CSM profile e It means to enable the restriction of web feature d It means to disable the restriction of web feature a Set the action of web feature P or B B Block The web access meets the web feature will be blocked P Pass The web access meets the web feature will be passed s It means to enable the the Web Feature configuration Features available for configuration are c Cookie p Proxy...

Page 191: ...wcf obj INDEX u CATEGORY WEB_GROUP S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description show It means to display the web content filter profiles Look It means to display the license information of WCF Cache It means to set the cache level for the profile Server WCF_SERVER It means to set web content filter server Msg MSG It means de set the administration message MSG means th...

Page 192: ...Internet Other CATEGORY Includes Alcohol Tobacco Criminal Activity Gambling Hate Intoleranc Illegal Drug Nudity Pornography Sexually Explicit Weapons Violence School Cheating Sex Education Tasteless Child Abuse Imges Entertainment Games Sports Travel Leisure Recreation Fashin Beauty Business Job Search Web based Emai Chat Instant Messaging Anonymizers Forums Newsgroups Computers Technology Downloa...

Page 193: ...Cheating v Sex Education v Tasteless v Child Abuse Images leisure Group Entertainment Games Sports Travel Leisure Recreation Fashion Beauty T Te el ln ne et t C Co om mm ma an nd d d dd dn ns s l lo og g Displays the DDNS log E Ex xa am mp pl le e ddns log T Te el ln ne et t C Co om mm ma an nd d d dd dn ns s t ti im me e Sets and displays the DDNS time ddns time update in minutes S Sy yn nt ta ax...

Page 194: ...er s ATTACK_F It means to specify the name of flooding attack s or portscan e g synflood udpflood icmpflood or postscan THRESHOLD It means the packet rate packet second that a flooding attack will be detected Set a value larger than 20 TIMEOUT It means the time seconds that a flooding attack will be blocked Set a value larger than 5 a It means to enable the defense function for all attacks listed ...

Page 195: ...t username max 49 characters for Internet accessing p password It means to set password max 49 characters for Internet accessing a n It means to set PPP Authentication Type and n means different types represented by 0 1 n 0 PAP CHAP this is default setting n 1 PAP Only t n It means to set connection duration and n means different conditions n 1 Always on n 1 999 Idle time for offline default 180 s...

Page 196: ... i ip p 2 2n nd ds su ub bn ne et t This command allows users to enable or disable the IP routing subnet for your router ip 2ndsubnet Enable Disable S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description Enable Enable the function Disable Disable the function E Ex xa am mp pl le e ip 2ndsubnet enable 2nd subnet enabled T Te el ln ne et t C Co om mm ma an nd d i ip p 2 2n nd da ...

Page 197: ...lic subnet mask public subnet IP address Specify a subnet mask The system will set the one that you specified as the public subnet mask E Ex xa am mp pl le e ip 2ndmask ip 2ndmask 2nd subnet mask Now 255 255 255 0 ip 2ndmask 255 255 0 0 Set 2nd subnet mask done T Te el ln ne et t C Co om mm ma an nd d i ip p a au ux x This command is used for configuring WAN IP Alias ip aux add IP Join to NAT Pool...

Page 198: ...172 16 3 113 No T Te el ln ne et t C Co om mm ma an nd d i ip p a ad dd dr r This command allows users to set add a specified LAN IP your router ip addr IP address S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description IP address It means the LAN IP address E Ex xa am mp pl le e ip addr 192 168 50 1 Set IP address OK Note When the LAN IP address is changed the start IP address ...

Page 199: ...current status for the arp table arp accept allows to accept or reject the source destination MAC address arp setCacheLife allows users to configure the duration in which ARP caches can be stored on the system If ip arp setCacheLife is set with 60 it means you have an ARP cache at 0 second Sixty seconds later without any ARP messages received the system will think such ARP cache is expired The sys...

Page 200: ...n e 1 or 0 w wan unmber c option number x option value ip dhcpc option u idx unmber ip dhcpc release ip dhcpc renew ip dhcpc status S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description option It is an optional setting for DHCP server h display usage l list all custom set DHCP options d delete custom dhcp client option by index number e enable disable option feature 1 enable 0...

Page 201: ... on n Parameter Description IP address It means the WAN IP address WAN1 PVC3 PVC4 PVC5 It means the WAN port PVC that the above IP address passes through E Ex xa am mp pl le e ip ping 172 16 3 229 WAN1 Pinging 172 16 3 229 with 64 bytes of Data Receive reply from 172 16 3 229 time 0ms Receive reply from 172 16 3 229 time 0ms Receive reply from 172 16 3 229 time 0ms Packets Sent 5 Received 5 Lost 0...

Page 202: ...address Port S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description IP address Type the WAN or LAN IP address of the remote device Port Type a port number e g 23 Available settings 0 65535 E Ex xa am mp pl le e ip telnet 172 17 3 252 23 T Te el ln ne et t C Co om mm ma an nd d i ip p r ri ip p This command allows users to set the RIP routing information protocol of IP ip rip 0 ...

Page 203: ...specified WAN interface 1 Enable the function of setting RIP of WAN IP 0 Disable the function E Ex xa am mp pl le e ip wanrip Valid ex ip wanrip ifno e 0 1 ifno 1 WAN1 2 WAN2 3 PVC3 4 PVC4 5 PVC5 e 0 1 0 disable 1 enable Now status WAN 1 Rip Protocol disable WAN 2 Rip Protocol disable WAN 3 Rip Protocol disable WAN 4 Rip Protocol disable WAN 5 Rip Protocol disable ip wanrip 5 e 1 ip wanrip Valid e...

Page 204: ... the destination netmask It means the netmask of the specified IP address gateway It means the gateway of the connected router ifno It means the connection interface 3 WAN1 5 WAN3 6 WAN4 7 WAN5 However WAN3 WAN4 WAN5 are router borne WANs rtype It means the type of the route default default route static static route cnc It means current IP range for CNC Network default Set WAN1 WAN2 off as current...

Page 205: ...erver for using On off show help It means to turn on off display or get more information of the T_home service query It means to set IGMP general query interval The default value is 125000 ms ppp 0 No need to set IGMP with PPP header 1 Set IGMP with PPP header status It means to display current status for proxy server E Ex xa am mp pl le e ip igmp t_home on T Home Setting T Home Service is turned ...

Page 206: ... et t C Co om mm ma an nd d i ip p w wa an nt tt tr r This command is used to setup the time to return WAN1 from backup WAN ip wanttr time in seconds S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description time in seconds The available range is 0 600 seconds E Ex xa am mp pl le e ip ip wanttr 500 T Te el ln ne et t C Co om mm ma an nd d i ip p d dm mz z Specify MAC address of ce...

Page 207: ...of session num limit Defautlp2p num It means to set the default number of session num limit for p2p status It means to display the current settings show It means to display all session limit settings in the IP range timer num It means to set when the IP session block works The unit is second block unblock IP It means to block unblock the specified IP address Block The IP cannot access Internet thr...

Page 208: ...idth limit default tx_rate rx_rate It means to set default tx and rx rate of bandwidth limit The range is from 0 65535 Kpbs status It means to display the current settings show It means to display all the bandwidth limits settings within the IP range add It means to add the bandwidth within the IP range del It means to delete the bandwidth within the IP range IP1 IP2 It means the range of IP addre...

Page 209: ...all the bindmac policy strict_on It means that only those IP address in IP bindmac policy table can access into network show It means to display the IP address and MAC address of the pair of binded one add It means to add one ip bindmac del It means to delete one ip bindmac IP It means to type the IP address for binding with specified MAC address MAC It means to type the MAC address for binding wi...

Page 210: ...IPv6 address for your router ip6 addr s prefix prefix length LAN WAN1 WAN2 iface ip6 addr d prefix prefix length LAN WAN1 WAN2 iface ip6 addr a LAN WAN1 WAN2 iface S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description s It means to add a static ipv6 address d It means to delete an ipv6 address a It means to show current address es status u It means to show only unicast address...

Page 211: ...ask the SIP name d It means to ask the DNS setting D It means to ask the DNS name n It means to ask NTP i It means to ask NIS I It means to ask NIS name p It means to ask NISP P It means to ask NISP name b It means to ask BCMCS B It means to ask BCMCS name r It means to ask refresh time Parameter 1 the parameter related to the request will be displayed 0 the parameter related to the request will n...

Page 212: ...ace WAN2 has following DHCPv6 client settings DHCPv6 client enabled request IA_PD whose IAID equals to 2008 ip6 dhcp client WAN2 n 1023456 ip6 dhcp client WAN2 a Interface WAN2 has following DHCPv6 client settings DHCPv6 client enabled request IA_NA whose IAID equals to 2008 system reboot T Te el ln ne et t C Co om mm ma an nd d i ip p6 6 d dh hc cp p s se er rv ve er r This command allows you to ...

Page 213: ...er 1 Enable 0 Disable e parameter It means to enable or disable the DHCPv6 server 1 Enable 0 Disable E Ex xa am mp pl le e ip6 dhcp server d FF02 1 ip6 dhcp server i ff02 1 ip6 dhcp server x ff02 3 ip6 dhcp server a Interface LAN has following DHCPv6 server settings DHCPv6 server disabled maximum address of the pool FF02 3 minimum address of the pool FF02 1 1st DNS IPv6 Addr FF02 1 ...

Page 214: ...tatic n 7 6rd command parameter The available commands with parameters are listed below means that you can type in several commands in one line m n It means to set IPv6 MTU N any value 0 means unspecified u username It means to set Username username type a name as the username maximum 63 characters p password It means to set Password password type a password maximum 63 characters s server It means...

Page 215: ...N1 WAN2 ip6 neigh a inet6_addr N LAN WAN1 WAN2 S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description s It means to add a neighbour d It means to delete a neighbour a It means to show neighbour status inet6_addr Type an IPv6 address eth_addr Type submask address LAN WAN1 WAN2 Specify an interface for the neighbor E Ex xa am mp pl le e ip6 neigh s 2001 2222 3333 1111 00 50 7F 11...

Page 216: ...ed T Te el ln ne et t C Co om mm ma an nd d i ip p6 6 r ro ou ut te e This command allows you to ip6 route s prefix prefix length gateway LAN WAN1 WAN2 iface D ip6 route d prefix prefix length ip6 route a LAN WAN1 WAN2 iface S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description s It means to add a route d It means to delete a route a It means to show the route status D It mean...

Page 217: ... ip6 ping IPV6 address Host LAN WAN1 WAN2 S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description IPV6 address Host It means to specify the IPv6 address or host for ping LAN WAN1 WAN2 It means to specify LAN or WAN interface for such address E Ex xa am mp pl le e ip6 ping 2001 4860 4860 8888 WAN2 Pinging 2001 4860 4860 8888 with 64 bytes of Data Receive reply from 2001 4860 4860...

Page 218: ... A501 5169 1 330 ms 6 2001 4860 1 0 4B3 350 ms 7 2001 4860 8 0 2DAF 330 ms 8 2001 4860 2 0 66E 340 ms 9 Request timed out 10 2001 4860 4860 8888 350 ms Trace complete T Te el ln ne et t C Co om mm ma an nd d i ip p6 6 t ts sp pc c This command allows you to diplay TSPC status ip6 tspc ifno S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description ifno It means the connection inter...

Page 219: ...f 0 indicates that the router is not a default router and should not appear on the default router list Type the number unit second you want V It means to show the RADVD configuration r It means RA default test r num It means RA test for item num E Ex xa am mp pl le e ip6 radvd s 1 1800 ip6 radvd V IPv6 Radvd Config Radvd Enable Default Lifetime 1800 seconds T Te el ln ne et t C Co om mm ma an nd d...

Page 220: ...isable off the Internet accessing through http telnet ping E Ex xa am mp pl le e ip6 mngt list add 1 FE80 250 7FFF FE12 1010 128 ip6 mngt list add 2 FE80 250 7FFF FE12 1020 128 ip6 mngt list add 3 FE80 250 7FFF FE12 2080 128 ip6 mngt list IPv6 Access List Index IPv6 Prefix Prefix Length 1 FE80 250 7FFF FE12 1010 128 2 FE80 250 7FFF FE12 1020 128 3 FE80 250 7FFF FE12 2080 128 ip6 mngt status IPv6 R...

Page 221: ... aiccu ifno ip6 aiccu subnet add ifno prefix prefix length remove ifno show info S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description ifno It means the connection interface 1 WAN1 2 WAN2 add It means to add an IPv6 address which can be used to execute management through Internet prefix It means to type the IPv6 address which will be used for accessing Internet prefix length I...

Page 222: ... Co om mm ma an nd d i ip pf f v vi ie ew w IPF users to view the version of the IP filter to view set the log flag to view the running IP filter rules ipf view VcdhrtzZ S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description V It means to show the version of this IP filter c It means to show the running call filter rules d It means to show the running data filter rules h It mea...

Page 223: ...to setup Data Filter e g d 3 The range for the index number you can type is 0 to 12 0 means disable l VALUE It means to setup Log Flag e g l 2 Type 0 to disable the log flag Type 1 to display the log of passed packet Type 2 to display the log of blocked packet Type 3 to display the log of non matching packet p VALUE It means to setup actions for packet not matching any rule e g p 1 Type 0 to let a...

Page 224: ...7 139 to 53 Fragments Don t Care Pass or Block Pass Immediately Branch to Other Filter Set None Max Sessions Limit 12000 Current Sessions 0 Mac Bind IP Non Strict Qos Class None APP Enforcement None URL Content Filter None Load Balance policy Auto select Log Disable CodePage ANSI 1252 Latin I Window size 65535 Session timeout 1440 DrayTek Banner Enable Strict Security Checking APP Enforcement T Te...

Page 225: ...clude tcp udp icmp E Ex xa am mp pl le e ipf flowtrack set r Refresh the flowstate ok ipf flowtrack view f Start to show the flowtrack sessions state ORIGIN 192 168 1 11 59939 8 8 8 8 53 ifno 0 REPLY 8 8 8 8 53 192 168 1 11 59939 ifno 3 proto 17 age 93023180 3920 flag 203 ORIGIN 192 168 1 11 15073 8 8 8 8 53 ifno 0 REPLY 8 8 8 8 53 192 168 1 11 15073 ifno 3 proto 17 age 93025100 2000 flag 203 ORIG...

Page 226: ... 0 0 0 Relay agent IP 0 0 0 0 25 36 33 580 DHCP WAN 5 Len 548XID 0x7880fdd4 Client IP 0 0 0 0 Your IP 0 0 0 0 Next server IP 0 0 0 0 Relay agent IP 0 0 0 0 25 36 41 580 DHCP WAN 5 Len 548XID 0x7880fdd4 Client IP 0 0 0 0 Your IP 0 0 0 0 Next server IP 0 0 0 0 Relay agent IP 0 0 0 0 25 36 49 580 DHCP WAN 5 Len 548XID 0x7880fdd4 Client IP 0 0 0 0 Your IP 0 0 0 0 Next server IP 0 0 0 0 Relay agent IP ...

Page 227: ...ver port to 80 done T Te el ln ne et t C Co om mm ma an nd d m mn ng gt t h ht tt tp ps sp po or rt t This command allows users to set HTTPS port for management mngt httpsport Https port S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description Https port It means to type the number for HTTPS port The default setting is 443 E Ex xa am mp pl le e mngt httpsport 443 Set web server p...

Page 228: ... m mn ng gt t f ft tp ps se er rv ve er r This command can enable disable FTP server mngt ftpserver enable mngt ftpserver disable S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description enable It means to activate FTP server function disable It means to inactivate FTP server function E Ex xa am mp pl le e mngt ftpserver enable FTP server has been enabled mngt ftpserver disable F...

Page 229: ...arded from LAN PC to Internet off All PING packets will be blocked from LAN PC to Internet viewlog It means to display a log of ping action including source MAC and source IP clearlog It means to clear the log of ping action E Ex xa am mp pl le e mngt noping off No Ping Packet Out is OFF ...

Page 230: ...viewlog It means to display a log of defense worm packet including source MAC and source IP clearlog It means to remove the log of defense worm packet E Ex xa am mp pl le e mngt defenseworm add 21 Add TCP port 21 Block TCP port list 135 137 138 139 445 21 mngt defenseworm del 21 Delete TCP port 21 Block TCP port list 135 137 138 139 445 T Te el ln ne et t C Co om mm ma an nd d m mn ng gt t r rm mt...

Page 231: ...n enable It means to accept the echo ICMP packet disable It means to drop the echo ICMP packet E Ex xa am mp pl le e mngt echoicmp enable Echo ICMP packet enabled T Te el ln ne et t C Co om mm ma an nd d m mn ng gt t a ac cc ce es ss sl li is st t This command allows you to specify that the system administrator can login from a specific host or network A maximum of three IPs subnet masks is allowe...

Page 232: ...Enable the SNMP function 2 Disable the SNMP function g Community name It means to set the name for getting community by typing a proper character max 23 characters s Community name It means to set community by typing a proper name max 23 characters m IP address It means to set one host as the manager to execute SNMP function Please type in IPv4 address to specify certain host t Community name It m...

Page 233: ...he information of the specified object profile Example object ip obj 1 v n NAME It means to define a name for the IP object NAME Type a name with less than 15 characters Example object ip obj 9 n bruce i INTERFACE It means to define an interface for the IP object INTERFACE 0 means any INTERFACE 1 means LAN INTERFACE 3 means WAN Example object ip obj 8 i 0 s INVERT It means to set invert seletion f...

Page 234: ...CE object ip grp INDEX a IP_OBJ_INDEX S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description setdefault It means to return to default settings for all profiles INDEX It means the index number of the specified group profile v It means to view the information of the specified group profile Example object ip grp 1 v n NAME It means to define a name for the IP group NAME Type a nam...

Page 235: ...ct t s se er rv vi ic ce e o ob bj j This command is used to create service object profile object service obj setdefault object service obj INDEX v object service obj INDEX n NAME object service obj INDEX p PROTOCOL object service obj INDEX s CHK START_P END_P object service obj INDEX d CHK START_P END_P S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description setdefault It means...

Page 236: ...ing port and ending port values are the same it indicates all the ports except the port defined here when the starting port and ending port values are different it indicates that all the ports except the range defined here are available for this service type 2 larger the port number greater than this value is available 3 less the port number less than this value is available for this profile s CHK...

Page 237: ... to return to default settings for all profiles INDEX It means the index number of the specified group profile v It means to view the information of the specified group profile Example object service grp 1 v n NAME It means to define a name for the service group NAME Type a name with less than 15 characters Example object service grp 8 n bruce a SER_OBJ_INDEX It means to specify service object pro...

Page 238: ...tings for all profiles show PAGE It means to show the contents of the specified profile PAGE type the page number show It means to show the contents for all of the profiles INDEX It means the index number of the specified keyword profile v It means to view the information of the specified keyword profile n NAME It means to define a name for the keyword profile NAME Type a name with less than 15 ch...

Page 239: ...from 1 to 8 of the specified file extension object profile v It means to view the information of the specified file extension object profile n NAME It means to define a name for the file extension object profile NAME Type a name with less than 15 characters e It means to enable the specific CATEGORY or FILE_EXTENSION d It means to disable the specific CATEGORY or FILE_EXTENSION CATEGORY FILE_EXTE ...

Page 240: ...jpeg jpg jpg2 jp2 pct pcx pic pict png tif tiff Video category asf avi mov mpe mpeg mpg v mp4 qt rm v wmv 3gp 3gpp 3gpp2 3g2 Audio category v aac v aiff v au v mp3 v m4a v m4p v ogg v ra v ram v vox v wav v wma Java category class jad jar jav java jcm js jse jsp jtk ActiveX category alx apb axs ocx olb ole tlb viv vrm Compression category ace arj bzip2 bz2 cab gz gzip rar sit zip Executation categ...

Page 241: ... Ex xa am mp pl le e port 1 100F Set Port 1 Force speed 100 Full duplex OK T Te el ln ne et t C Co om mm ma an nd d p po or rt tm ma ap pt ti im me e This command allows you to set a time of keeping the session connection for specified protocol portmaptime command parameter S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description command parameter The available commands with para...

Page 242: ... command parameter The available commands with parameters are listed below means that you can type in several commands in one line h Type it to display the usage of this command m mode It means to define which traffic the QoS control settings will apply to and eable QoS control 0 disable 1 in apply to incoming traffic only 2 out apply to outgoing traffic only 3 both apply to both incoming and outg...

Page 243: ...l WANs It means that you can type in several commands in one line E Ex xa am mp pl le e qos setup m 3 i 9500 o 8500 r 3 20 u 1 p 50 t 1 WAN1 QOS mode is both Wan 1 is XDSL model don t need to set up Wan 1 is XDSL model don t need to set up WAN1 class 3 ratio set to 20 WAN1 udp bandwidth control set to enable WAN1 udp bandwidth limit ratio set to 50 WAN1 Outbound TCP ACK Prioritizel set to enable Q...

Page 244: ...ode It means to enable or disable the specified rule 0 disable 1 enable l addr Set the local address Addr1 It means Single address Please specify the IP address directly for example l 172 16 3 9 addr1 addr2 It means Range address Please specify the IP addresses for example l 172 16 3 9 172 16 3 50 addr1 subnet It means the subnet address with start IP address Please type the subnet and the IP addr...

Page 245: ... 2 name set to draytek Add a rule in class2 Class2 the 1 rule enabled Set local address type to Range 192 168 1 50 192 168 1 80 T Te el ln ne et t C Co om mm ma an nd d q qo os s t ty yp pe e This command allows user to configure protocol type and port number for QoS qos type a service name e no d no S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description a name It means to add ...

Page 246: ...w lan1 1st subnet settings IP address 192 168 1 1 Subnet mask 255 255 255 0 RIP 1st Subnet T Te el ln ne et t C Co om mm ma an nd d s sh ho ow w l la an n2 2 This command displays current status of LAN2 IP address settings E Ex xa am mp pl le e show lan2 2nd subnet settings Status Active IP address 192 168 2 5 Subnet mask 255 255 0 0 RIP 1st Subnet T Te el ln ne et t C Co om mm ma an nd d s sh ho ...

Page 247: ... el ln ne et t C Co om mm ma an nd d s sh ho ow w o op pe en np po or rt t This command displays current status of open port setting E Ex xa am mp pl le e show openport Openport settings Index Status Comment Local IP Address No data entry T Te el ln ne et t C Co om mm ma an nd d s sh ho ow w n na at t This command displays current status of NAT E Ex xa am mp pl le e show nat Port Redirection Runni...

Page 248: ... sessions are smaller than the eighth of the default setting E Ex xa am mp pl le e show pmtime Level0 TCP 86400001 UDP 300001 ICMP 10001 Level1 TCP 600000 UDP 90000 ICMP 7000 Level2 TCP 60000 UDP 30000 ICMP 5000 T Te el ln ne et t C Co om mm ma an nd d s sh ho ow w s se es ss si io on n This command displays current status of current session E Ex xa am mp pl le e show session Maximum Session Numbe...

Page 249: ...terleave Depth 0 NE Current Attenuation 0 dB Cur SNR Margin 0 dB DS actual PSD 0 0 dB US actual PSD 0 0 dB ADSL Firmware Version 05 04 04 04 00 01 ATU C Info Far Current Attenuation 0 dB Far SNR Margin 0 dB CO ITU Version 0 00000000 CO ITU Version 1 00000000 DSLAM CHIPSET VENDOR ADI T Te el ln ne et t C Co om mm ma an nd d s sh ho ow w s st ta at ti is st ti ic c This command displays statistics f...

Page 250: ...ss Specify an IP address as the starting point in the IP address pool cnt IP counts It means the IP count number IP counts Specify the number of IP addresses in the pool The maximum is 10 status It means the execution result of this command add MAC Addr XX XX XX XX XX XX It means creating a list of hosts to be assigned MAC Addr XX XX XX XX XX XX Specify MAC Address of the host del MAC Addr XX XX X...

Page 251: ... Now 168 95 1 1 IP Routed Subnet dns same as NAT Subnet dns Telnet Command srv dhcp dns2 This command allows users to set Secondary IP Address for DNS Server in LAN srv dhcp dns2 srv dhcp dns2 DNS IP address S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description It means to display current IP address of DNS 2 for the DHCP server DNS IP address It means the IP address that you w...

Page 252: ...cp frcdnsmanl on Domain name server now is using manual settings srv dhcp frcdnsmanl off Domain name server now is using auto settings Telnet Command srv dhcp gateway This command allows users to specify gateway address for DHCP server srv dhcp gateway srv dhcp gateway Gateway IP S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description It means to display current gateway that you...

Page 253: ...s reboot command to reboot router Telnet Command srv dhcp on This function allows users to turn on DHCP server It needs rebooting router please type sys reboot command to reboot router Telnet Command srv dhcp relay This command allows users to set DHCP relay setting srv dhcp relay servip server ip srv dhcp relay subnet index S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Descriptio...

Page 254: ...the starting point E Ex xa am mp pl le e srv dhcp startip 192 168 1 53 This setting will take effect after rebooting Please use sys reboot command to reboot the router Telnet Command srv dhcp status This command can display general information for the DHCP server such as IP address MAC address leased time host ID and so on E Ex xa am mp pl le e srv dhcp status DHCP server Relay Agent Default gatew...

Page 255: ...ns the lease time that DHCP server can use The unit is second E Ex xa am mp pl le e srv dhcp leasetime srv dhcp leasetime Lease Time sec Now 86400 Telnet Command srv dhcp nodetype This command can set the node type for the DHCP server srv dhcp nodetype count S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description count It means to specify a type for node 1 B node 2 P node 4 M no...

Page 256: ...hcp primWINS 192 168 1 88 srv dhcp primWINS srv dhcp primWINS WINS IP address srv dhcp primWINS clear Now 192 168 1 88 Telnet Command srv dhcp secWINS This command can set the secondary IP address for the DHCP server srv dhcp secWINS WINS IP address srv dhcp secWINS clear S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description WINS IP address It means the IP address of secondary...

Page 257: ...nd can set the TFTP server as the DHCP server srv dhcp tftp TFTP server name S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description TFTP server name It means to type the name of TFTP server E Ex xa am mp pl le e srv dhcp tftp TF123 srv dhcp tftp srv dhcp tftp TFTP server name Now TF123 Telnet Command srv dhcp option This command can set the custom option for the DHCP server srv...

Page 258: ...It means to set option number Available number ranges from 0 to 255 v It means to set option number by typing string a It means to set the option value by specifying the IP address x It means to set option number with the format of Hexadecimal characters u It means to update the option value of the sepecified index idx number It means the index number of the option value E Ex xa am mp pl le e srv ...

Page 259: ...AN IP alias has been configured then the number of DMZ host can be added more e It means to enable disable such feature 1 enable 0 disable i It means to specify the private IP address of the DMZ host r It means to remove DMZ host setting v It means to display current status E Ex xa am mp pl le e srv nat dmz mapping 1 1 i 192 168 1 96 Telnet Command srv nat ipsecpass This command allows users to en...

Page 260: ...ort rule profile 0 disable 1 enable c comment It means to type the description less than 23 characters for the defined network service i local ip It means to set the IP address for local computer Local ip Type an IP address in this field w idx It means to specify the public IP 1 WAN1 Default 2 WAN1 Alias 1 and so on p protocol Specify the transport layer protocol Available values are TCP UDP and A...

Page 261: ... proto srv nat portmap flush srv nat portmap table S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description Add idx It means to add a new port redirection table with an index number Available index number is from 1 to 10 serv name It means to type one name as service name proto It means to specify TCP or UDP as the protocol pub port It means to specify which port can be redirecte...

Page 262: ... 192 168 1 11 100 1 2 0 0 0 2 3 0 0 0 2 4 0 0 0 2 5 0 0 0 2 6 0 0 0 2 7 0 0 0 2 8 0 0 0 2 9 0 0 0 2 10 0 0 0 2 11 0 0 0 2 12 0 0 0 2 13 0 0 0 2 14 0 0 0 2 15 0 0 0 2 16 0 0 0 2 17 0 0 0 2 18 0 0 0 2 19 0 0 0 2 20 0 0 0 2 Protocol 0 Disable 6 TCP 17 UDP Telnet Command srv nat status This command allows users to view NAT Port Redirection Running Table E Ex xa am mp pl le e srv nat status NAT Port Re...

Page 263: ... 0 0 0 0 80 192 168 1 11 100 Y O01 TCP 0 0 0 0 23 83 192 168 1 100 23 83 Y D01 All 0 0 0 0 192 168 1 96 Y R Port Redirection O Open Ports D DMZ T Te el ln ne et t C Co om mm ma an nd d s sy ys s c cf fg g This command reset the router with factory default settings When a user types this command all the configuration will be reset to default setting sys cfg default sys cfg status S Sy yn nt ta ax x...

Page 264: ...em off It means to turn off the FTP server of the system E Ex xa am mp pl le e sys ftpd on sys ftpd turn on T Te el ln ne et t C Co om mm ma an nd d s sy ys s d do om ma ai in nn na am me e This command can set and remove the domain name of the system when DHCP mode is selected for WAN sys domainname wan1 wan2 Domain Name Suffix sys domainname wan1 wan2 S Sy yn nt ta ax x D De es sc cr ri ip pt ti...

Page 265: ...Vigor130 Series User s Guide 255 sys domainname wan1 wan2 Domain Name Suffix max 40 characters sys domainname wan1 wan2 clear Now wan1 clever wan2 intelligent ...

Page 266: ...nterface 4 Ethernet Status DOWN IP Address 0 0 0 0 Netmask 0x00000000 MAC 00 50 7F 00 00 02 Interface 5 Ethernet Status DOWN IP Address 0 0 0 0 Netmask 0x00000000 MAC 00 50 7F 00 00 03 Interface 6 Ethernet Status DOWN IP Address 0 0 0 0 Netmask 0x00000000 MAC 00 50 7F 00 00 04 Interface 7 Ethernet Status DOWN IP Address 0 0 0 0 Netmask 0x00000000 MAC 00 50 7F 00 00 05 Interface 8 Ethernet Status D...

Page 267: ...me sys name wan1 wan2 ASCII string max 20 characters sys name wan1 wan2 clear Now wan1 drayrouter wan2 Note Such name can be used to recognize router s identification in SysLog dialog T Te el ln ne et t C Co om mm ma an nd d s sy ys s p pa as ss sw wd d This command allows users to set password for the administrator sys passwd ASCII string S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Param...

Page 268: ...xa am mp pl le e sys autoreboot on autoreboot is ON sys autoreboot 2 autoreboot is ON autoreboot time is 2 hour s T Te el ln ne et t C Co om mm ma an nd d s sy ys s c co om mm mi it t This command allows users to save current settings to FLASH Usually current settings will be saved in SRAM Yet this command will save the file to FLASH E Ex xa am mp pl le e sys commit T Te el ln ne et t C Co om mm m...

Page 269: ...ge list E Ex xa am mp pl le e sys qrybuf System Memory Status and Leakage List Buf sk_buff 200B used 1647 cached 30 Buf KMC4088 4088B used 0 cached 8 Buf KMC2552 2552B used 1641 cached 42 Buf KMC1016 1016B used 7 cached 1 Buf KMC504 504B used 8 cached 8 Buf KMC248 248B used 26 cached 22 Buf KMC120 120B used 67 cached 61 Buf KMC56 56B used 20 cached 44 Buf KMC24 24B used 58 cached 70 Dynamic memory...

Page 270: ...es User s Guide 260 Parameter Description on It means to turn on pulling buffer off It means to turn off pulling buffer E Ex xa am mp pl le e sys pollbuf on Buffer polling is on sys pollbuf off Buffer polling is off ...

Page 271: ... tr069 get parm option sys tr069 set parm value sys tr069 getnoti parm sys tr069 setnoti parm value sys tr069 log sys tr069 debug on off sys tr069 save sys tr069 inform event code sys tr069 port port num sys tr069 cert_auth on off S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description get parm option It means to get parameters for tr 069 option nextlevel only gets nextlevel for...

Page 272: ...s 915 InternetGatewayDevice LANDeviceNumberOfEntries InternetGatewayDevice WANDeviceNumberOfEntries InternetGatewayDevice DeviceInfo InternetGatewayDevice ManagementServer InternetGatewayDevice Time InternetGatewayDevice Layer3Forwarding InternetGatewayDevice LANDevice InternetGatewayDevice WANDevice InternetGatewayDevice Services InternetGatewayDevice X_00507F_InternetAcc InternetGatewayDevice X_...

Page 273: ...n ns se e This command can process the system license sys license licmsg sys license licauth sys license regser sys license licera sys license licifno sys license lic_wiz set reg qry sys license dev_chg sys license dev_key S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description licmsg It means to display license message licauth It means the license authentication time setting re...

Page 274: ...e function of diag_log disable It means to disenable the function of diag_log flush It means the flush log buffer lineno w It means the total lines for displaying message w Available value ranges from 100 to 50000 level x It determines the level of data displayed x Available value ranges from 0 to 12 The larger the number is the detailed the data is displayed feature on off It is used to specify t...

Page 275: ...was switched Restart 10 to FirmwareRequest 1 0 00 02 DSL Line state has changed 00000000 000000FF 0 00 02 DSL Entering VDSL2 mode 0 00 03 DSL modem code 05 04 08 00 00 06 0 00 05 DSL Status was switched FirmwareRequest 1 to firmwareReady 3 0 00 05 DSL Status was switched firmwareReady 3 to Init 5 0 00 05 DSL nXtseA 0d nXtseB 00 nXtseV 07 nFwFeatures 5 0 00 05 DSL nHsToneGroupMode 0 nHsToneGroup 10...

Page 276: ...n nd d u up pn np p o on n This command can enable UPnP function E Ex xa am mp pl le e upnp on UPNP start T Te el ln ne et t C Co om mm ma an nd d u up pn np p n na at t This command can display IGD NAT status E Ex xa am mp pl le e upnp nat IGD NAT Status 0 InternalClient 192 168 1 10 RemoteHost 0 0 0 0 InternalPort 21 ExternalPort 21 PortMapProtocol TCP The tmpvirtual server index 0 PortMapLeaseD...

Page 277: ... OSInfo1 eventURL OSInfoEvent1 UDN uuid 774e9bbe 7386 4128 b627 001daa843464 SERVICE TABLE2 serviceType urn schemas upnp org service WANCommonInterfaceConfig 1 serviceId urn upnp org serviceId WANCommonIFC1 SCPDURL upnp WComIFCX xml controlURL upnp control WANCommonIFC1 eventURL upnp event WANCommonIFC1 UDN uuid 2608d902 03e2 46a5 9968 4a54ca499148 T Te el ln ne et t C Co om mm ma an nd d u up pn ...

Page 278: ... ln ne et t C Co om mm ma an nd d u up pn np p t tm mp pv vs s This command can display current status of temp Virtual Server of your router E Ex xa am mp pl le e Vigor upnp tmpvs Temp virtual server status 0 real_addr 192 168 1 10 pseudo_addr 172 16 3 229 real_port 0 pseudo_port 0 hit_portmap_index 0 The protocol TCP time 0 1 real_addr 0 0 0 0 pseudo_addr 0 0 0 0 real_port 0 pseudo_port 0 hit_por...

Page 279: ... C Co om mm ma an nd d v vi ig gb br rg g o on n This command can make the router to be regarded as a modem but not a router E Ex xa am mp pl le e vigbrg on Enable Vigor Bridge Function T Te el ln ne et t C Co om mm ma an nd d v vi ig gb br rg g o of ff f This command can disable vigor bridge function E Ex xa am mp pl le e vigbrg off Disable Vigor Bridge Function T Te el ln ne et t C Co om mm ma a...

Page 280: ... w wa an n1 1o on n This command is used to enable the bridge WAN1 management E Ex xa am mp pl le e vigbrg wan1on Enable Vigor Bridge Wan1 management T Te el ln ne et t C Co om mm ma an nd d v vi ig gb br rg g w wa an n1 1o of ff f This command is used to disable the bridge WAN1 management E Ex xa am mp pl le e vigbrg wan1off Disable Vigor Bridge Wan1 management T Te el ln ne et t C Co om mm ma an...

Page 281: ...c IP DHCP the maximum number will be 1500 For PPPoE the maximum number will be 1492 For PPTP L2TP the maximum number will be 1460 E Ex xa am mp pl le e wan mtu 1100 wan mtu Static IP DHCP Max MSS 1500 PPPoE Max MSS 1492 PPTP L2TP Max MSS 1460 wan ppp_mss MSS size 1000 1500 Now 1100 T Te el ln ne et t C Co om mm ma an nd d w wa an n D DF F_ _c ch he ec ck k This command allows you to enable or disa...

Page 282: ...itted between different WANs wan forward on off S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description on off It means to enable or disable WAN forward E Ex xa am mp pl le e wan forward WAN forwarding is Disable wan forward on WAN forwarding is enable T Te el ln ne et t C Co om mm ma an nd d w wa an n s st ta at tu us s This command allows you to display the status of WAN conne...

Page 283: ...e for WAN connection wan vdsl show basic wan vdsl fbk_mode S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description Show basic It means to display current VDSL status Fbk_mode It means to display current status of Fallback Mode used Available modes to be set as fallback mode include Auto Vdsl_only Adsl_only E Ex xa am mp pl le e wan vdsl show basic ADSL Link Status TRAINING Firmw...

Page 284: ...le ARP detection default always_on disable link detect always connected only support static IP target It means to set the ping target ip addr It means the IP address used for detection Type an IP address in this field ttl It means to set the ping TTL value work as trace route If you do not set any value for ttl here or just type 0 here the system will use default setting 255 as the ttl value statu...

Page 285: ...figure multi VLAN for WAN and LAN It supports pure bridge mode modem mode between Ethernet WAN and LAN port 2 4 wan mvlan pvc_no status save enable disable on off clear tag tag_no service type vlan priority px S Sy yn nt ta ax x D De es sc cr ri ip pt ti io on n Parameter Description pvc_no It means index number of PVC There are 8 PVC 0 Channel 1 to 7 Channel 8 allowed to be configured However onl...

Page 286: ...priority for the VALN setting Range is from 0 to 7 px It means LAN port Available setting number is from 2 to 4 Port number 1 is locked for NAT usage E Ex xa am mp pl le e PVC 7 will map to LAN port 2 3 4 in bridge mode service type is Normal No tag added wan mvlan 7 on 0 p2 p3 p4 PVC Bridge p1 p2 Service Type Tag Priority 7 ON 0 1 Normal 0 OFF 0 ...

Page 287: ...De es sc cr ri ip pt ti io on n Parameter Description channel There are 4 channels including VLAN and PVC Available settings are 1 Channel 1 3 Channel 3 4 Channel 4 5 Channel 5 WAN interface Type a number to indicate the WAN interface 1 WAN1 status It means to display current bridge status E Ex xa am mp pl le e wan multifno 5 1 Configured channel 5 uplink to WAN1 wan multifno status Channel 3 upli...

Page 288: ...t ta ax x D De es sc cr ri ip pt ti io on n Parameter Description It means the number of WAN interface 1 means WAN1 2 means WAN2 value It means the number to be tagged on packets The range of the value is between 32 4095 enable disable It means to enable or disable the WAN interface for VLAN stat It means to display the table of WAN VLAN status E Ex xa am mp pl le e wan vlan stat Interface Pri Tag...

Reviews:

No comments

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands