manualshive.com logo in svg

Fujitsu Siemens Computers CONNECT2AIR WLAN AP-600RP-USB, Manual

Share
Download
Fujitsu Siemens Computers CONNECT2AIR WLAN AP-600RP-USB Manual Download Page 47

CONNECT2AIR™ WLAN AP-600RP-USB

 

 

Page 46 / 62

  

8.5.2 Firewall 

The firewall is a set of programs located at the gateway, which limits the exposure of a 
computer or a group of computers to users in the WAN network or Internet. Based on the 
default policies and the specified rules, network administrators can easily manage the traf-
fic from any network access. The default policies allow you to accept or block all traffic. 
You can also define rules: these determine what to do with specific types of traffic where 
rules override the default policies. 
 
The firewall offers extended protection against DoS (denial of service) attacks. Clients 
connected to the Internet are exposed to attacks of this nature. Here, a third party attempts 
to render the client or the host network inaccessible by bombarding the client with count-
less IP packets until the client's resources become exhausted. With DDOS (distributed 
denial of service), the attacks come in groups, which increases the extent of the damage. 
 
The router is also equipped with NAT (Network Address Translation) to protect the local 
network by means of a special mechanism: clients are non-transparent to the Internet. 
This means that a local PC with the IP address 192.168.1.101 is not visible as the source 
of a message through its address. The message is "masked" by NAT and the WAN IP ad-
dress of the router (i.e., AccessPoint) appears as the source. The AccessPoint itself saves 
the data regarding the true identity of a message and can forward a reply from the Internet 
to the proper source if necessary. 
 

Increased firewall protection by closing the ports 

 
The security level of a firewall can be increased by successively closing one port after an-
other since hackers as well as viruses always look for opportunities to penetrate the fire-
wall through open ports. It is therefore also useful to close any ports that are not absolutely 
necessary. 
 

L

 

This method of increasing security is available to users who are familiar with the 
resources of the applications used. Remote administration programs, for example, 
in some cases use ports that have been reserved specially for the application. 
Please obtain details from the vendors regarding the software used. 

 

Service Function 

TCP 

UDP 

AUTH Authentication 

Service 

113 

113 

BOOTPC 

Bootstrap Protocol Client 

 

67 

DNS 

Domain Name Server 

 

53 

FTP 

File Transfer Protocol 

21 

 

HTTP 

Hyper Text Transfer Protocol 

80 

 

NETBIOS-SSN Netbios 

Session 

Service 

139 

 

NNTP 

Network News Transfer Protocol 

119 

 

NPP Network 

Printing 

Protocol 

92 

 

NTP 

Network Time Protokol 

123 

 

POP3 

Post Office Protocol V3 

110 

 

PPTP 

Point to Point Tunneling Protocol (VPN) 

1723 

 

SMTP 

Simple Mail Transfer Protocol 

25 

 

SNMP 

Simple Network Management Protocol 

 

161 

Telnet Terminal 

Emulation Protocol 

23 

 

TFTP 

Trivial File Transfer Protocol 

 

69 

 
Different applications are available on the Internet for checking the firewall from the Inter-
net. Also make inquiries at anti-virus SW vendors regarding ports that are attacked by vi-
ruses and take appropriate measures. 

Summary of Contents for CONNECT2AIR WLAN AP-600RP-USB

Page 1: ......

Page 2: ...ents of this publication may not in part or in full be reproduced stored transcribed in an information retrieval system translated into any language or transmitted in any form or by any means be it me...

Page 3: ...e separation between the equipment and receiver Connect the equipment to an outlet on a different circuit to that on which the receiver is connected Consult the dealer or an experienced radio TV techn...

Page 4: ...USB with ADSL Modem 18 6 4 AP 600RP USB with CABLE Modem 19 6 5 Two AP 600RP USB in repetition mode WDS 20 7 SOFTWARE INSTALLATION 21 7 1 Install AP Start up Tool 21 7 2 User Manual 21 8 ACCESSPOINT...

Page 5: ...8 5 2 Firewall 46 8 5 3 Time Zone 52 8 5 4 DMZ 52 8 6 Toolbox 53 8 6 1 Administrator Toolbox 53 8 6 2 Firmware Upgrade 53 9 ACCESS TO USB PRINTERS THROUGH WLAN 54 9 1 Configuration on Windows 2000 XP...

Page 6: ...ll and use this product please read this manual carefully to ensure that you take full advantage of its functionality 1 1 Five steps to success To enable smooth entry into the world of wireless LAN yo...

Page 7: ...stallation to help you to connect these devices properly Prepare your PCs and devices to connect to the AccessPoint Before an AccessPoint can be configured an initial connection must be established Se...

Page 8: ...clients Printer sharing wireless printing Integrated printer server to allow wireless printing for each networked computer see the list of compatible printers on the Internet DHCP server support All...

Page 9: ...ample 5 4 Mbps in 802 11g networks 3 1 IEEE Standards In order to guarantee a consistent and complete transmission of information from and to a source target WLAN device the manner of transmitting dat...

Page 10: ...ge of one AccessPoint it moves into the range of another As a result wireless clients can freely roam from one AccessPoint domain to another and still maintain seamless network connectivity 3 3 Servic...

Page 11: ...ry defaults please follow the steps 1 Press the reset button and hold it for more than 10 seconds 2 Release the button 3 After every LED has flashed more than one time and only the LEDs related to a s...

Page 12: ...s cable the AP can automatically detect either b Wireless LAN connection Move the AP to a proper position to ensure the best transmission performance Figure 4 3 Setup of the AP s LAN and WAN connectio...

Page 13: ...r ISP More precisely an IP address consists of a set of four numbers each 3 digits long and separated by a decimal point for example 192 168 100 200 These addresses can be set manually or be received...

Page 14: ...ies button Click the IP Address tab Select Obtain an IP Address automatically 5 Click the Gateway tab Clear and remove all of the gateway settings Click the OK button L All the necessary settings incl...

Page 15: ...ping 192 168 1 254 If a communication link between your computer and the AccessPoint has been established successfully the output will show four replies from your AP L If your request timed out no con...

Page 16: ...s and helps you in configuring your AccessPoint as well as other devices in the network like ADSL Routers Inexperienced users and professionals will the information they require according to their kno...

Page 17: ...o one of the LAN port not to the WAN port Additional network ing devices like network printers servers or scanners can be plugged to one of the free LAN ports and will be integrated in the IP segment...

Page 18: ...th the AccessPoint as well as the ADSL Router have routing capabilities This case de scribes using both devices in the router mode in order to have the full feature set of the AccessPoint active like...

Page 19: ...de vices like network printers servers or scanners can be plugged into one of the free LAN ports and will be integrated in the IP segment of 192 168 1 X Installation Note Most broadband Internet conn...

Page 20: ...CABLE Modem to the WAN port Additional networking devices like network printers servers or scanners can be plugged into one of the free LAN ports and will be integrated in the IP segment of 192 168 1...

Page 21: ...AP 600RP USB AP 600RP USB Floor 1 AP 600RP USB Floor 2 Connect the ADSL Modem to the WAN port of the AP1 otherwise the PPPoE session cannot be established and therefore the Internet service cannot be...

Page 22: ...shown on the left side and then AP 600RP USB You can then choose from the various options appearing on the right side of the panel 7 1 Install AP Start up Tool The AccessPoint start up tool will autom...

Page 23: ...he AccessPoint Start up Tool on your desktop or from Start Programs CONNECT2AIR WLAN AP 600RP USB ConfigStarter Activate your browser directly and type in the IP address of your AP in the Address fiel...

Page 24: ...will be displayed as well as the connection type Local Area Network LAN The IP address DHCP server and the firewall status are displayed Wireless Settings WLAN If enhanced security has been set it wi...

Page 25: ...der ISP It is vitally important that you read this chapter carefully in order to choose the right settings to connect to your ISP Internet Service Provider As described in the hardware installation yo...

Page 26: ...assigned to you For security this field appears blank If you don t want to change the password leave it empty MAC address If a specific MAC address is to be mirrored to the ISP only for the dura tion...

Page 27: ...not be disconnected i e the connection is permanent PPPoE Timeout The time of inactivity before disconnecting your PPPoE session Minimum value is 60 seconds No input is possible if Disconnect PPPOE Se...

Page 28: ...tings Without an ISP If you wish to use the device purely as an AccessPoint i e without connection to a provider select this option The routing functionality is disabled as a consequence The AccessPoi...

Page 29: ...802 11b devices 54 Mbps only cards com municate with each other at the high data rate L Note Because dramatic reductions in throughput will result from simply attaching legacy 802 11b clients to the 8...

Page 30: ...difficult to memorize this de vice offers a conversion utility from a simple word into the hexadecimal code Click the key you want to update enter your passphrase and press Generate Keys The key is t...

Page 31: ...address of this device The computers in your network must use this LAN IP address as their default gateway Subnet Mask Defines the size of the subnet mask range 255 255 255 0 default permits an addre...

Page 32: ...her within the address range 192 168 1 X Gateway The gateway represents the connection and exchange node AccessPoint through which IP networks are connected together For connections to a different net...

Page 33: ...been dis abled 8 4 5 DNS Settings As an alternative to the DNS address copied from the provider a manual DNS address can be provided to the clients through the DHCP server The AP 600RP does not have...

Page 34: ...fferent WAN types are described in Section 8 3 1 You can clone a MAC address by copying a specific address to the field and pressing Save Alternatively you can click on Clone MAC Address to have the M...

Page 35: ...802 11b devices 54 Mbps only cards com municate with each other at the high data rate L Note Because dramatic reductions in throughput will result from simply attaching legacy 802 11b clients to the 8...

Page 36: ...encrypted at the source and decrypted at the destination Two types of encryption are available within this device WEP Wired Equivalent Privacy and dynamic WEP with periodically changing keys WPA Wi F...

Page 37: ...ore needed at different levels of the AP s graphical user inter face GUI 8 4 9 Security begins when Changing the Standard Password The security of your WLAN begins when changing the standard password...

Page 38: ...rase and press Generate Keys The key is then updated Proceed likewise with the other three keys if necessary Manual entry of the keys in the client is recommended Once the WEP security settings are co...

Page 39: ...e provided no third party knows of it WPA Enterprise Mode Companies employing RADIUS based authentication can use WPA with 802 1x WPA EAP enterprise mode An EAP ex tensible authentication protocol is...

Page 40: ...d distribution of encryption keys from AP to the station as part of or after the authentication process A further factor here is dynamic WEP which is based on legacy RC4 WEP encryption and is availabl...

Page 41: ...a must do to accommodate the recently introduced Wi Fi Protected Access WPA EAP to wireless networks Setting up RADIUS information in your AccessPoint is quite simple just input the relevant IP addres...

Page 42: ...vate MAC address control All of the settings on this page will only take effect when Enable is ticked Note that all settings made to the AP are stored if you disable MAC address control The following...

Page 43: ...ynamic DNS The DDNS service enables you to access a local server in the LAN WLAN from the Inter net The service connects a static host name e g MyWebcam dyndns org with the dy namic IP address of the...

Page 44: ...mmunication and control motor zoom These must be added to the virtual server using Add The WEBcam can only be accessed over the Internet in this way As a result all IP packets with port 80 or 7070 at...

Page 45: ...ll then be listed in the table Assign a name to it in order to have it properly identified and press Save Repeat the pro cedure for all items The WDS link cannot be set up until all items have been co...

Page 46: ...sible Service Function TCP UDP AUTH Authentication Service 113 113 BOOTPC Bootstrap Protocol Client 67 DNS Domain Name Server 53 FTP File Transfer Protocol 21 HTTP Hyper Text Transfer Protocol 80 NETB...

Page 47: ...Point itself saves the data regarding the true identity of a message and can forward a reply from the Internet to the proper source if necessary Increased firewall protection by closing the ports The...

Page 48: ...ll In accordance with the source or destination of data the AccessPoint can accept or reject the data traffic Input Data traffic with the AccessPoint as destination Output Data traffic with the Access...

Page 49: ...ddress specifies the destination A rule can be used either for a particular address for example 192 168 1 100 or includes all IP addresses if All is selected Generally a rule applies to all protocols...

Page 50: ...ed for the function In order to be able to configure an AccessPoint over the Internet WAN port the firewall must be activated Initially the firewall is fully open i e it does not block any data traffi...

Page 51: ...ined for this purpose RULE 3 PC 2 in the Internet 192 35 35 10 with destination AP 600RP 212 35 65 205 ist allowed to ping and configure the AP Incoming data at the AP RULE 4 Data with AP 600RP as the...

Page 52: ...ping OK What effects do these settings have with regard to the security of your network environ ment The firewall is activated there is generally no connection between the local and public networks pr...

Page 53: ...ce Provider the clock cannot be adjusted 8 5 4 DMZ The Demilitarized Zone DMZ is used if you have received more than one fixed IP ad dress from your Internet Service Provider ISP This means that the A...

Page 54: ...tem settings for the AccessPoint can be saved in a file for input into the device at a later stage again if necessary For example if you accidentally exclude yourself using the ACL Access Control List...

Page 55: ...0 will continue to be so with future releases e g version 7 4 Multipurpose printing devices with integrated fax or scanner are only supported in certain conditions at the USB port of the AccessPoint A...

Page 56: ...en Standard TCP IP Port and press Next 5 Press Next Step 6 Step 7 6 Add the AccessPoints IP address in the first field Default value of the AP 600RP USB is 192 168 1 254 The port name will be generate...

Page 57: ...your connected printer If it is not listed use the CD ROM delivered with the device Press Next 11 Keep or change the listed printer name and press Next Step 12 Step 13 12 Tick Yes to have a test page...

Page 58: ...f the object code under the following address http www fujitsu siemens com wireless No Warranty The free software included in this product is distributed in the hope that it will be useful but WITHOUT...

Page 59: ...uced by others will not reflect on the original authors reputations Finally any free program is threatened constantly by software patents We wish to avoid the danger that redistributors of a free prog...

Page 60: ...modified work as a whole If identifiable sections of that work are not derived from the Program and can be reasonably considered inde pendent and separate works in themselves then this License and it...

Page 61: ...ibute the Program or its derivative works These actions are prohibited by law if you do not accept this License There fore by modifying or distributing the Program or any work based on the Program you...

Page 62: ...f the Program does not specify a version number of this License you may choose any version ever published by the Free Soft ware Foundation 10 If you wish to incorporate parts of the Program into other...

Page 63: ...CONNECT2AIR WLAN AP 600RP USB Page 62 62 ANY OTHER PROGRAMS EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES END OF TERMS AND CONDITIONS...

Reviews:

No comments

Brands by name

Popular brands

Load more brands