Funkwerk bintec R1200 Manual Download Page 352 | Manualshive

Page: 352 / 571

background image

Field

Description

The function is activated with

Enabled

.

The function is enabled by default.

Send Certificate Chains

Select whether complete certificate chains are to be sent during
IKE (phase 1).

The function is activated with

Enabled

.

The function is enabled by default.

Deactivate this function if you do not wish to send the peer the
certificates of all levels (from your level to the CA level).

Send CRLs

Select whether CRLs are to be sent during IKE (phase 1).

The function is activated with

Enabled

.

The function is disabled by default.

Send Key Hash Pay-
loads

Select whether key hash payloads are to be sent during IKE
(phase 1).

In the default setting, the public key hash of the remote end is
sent together with the other authentication data. Only applies for
RSA encryption; activate this function with

Enabled

to sup-

press this behaviour.

11.2 L2TP

The layer 2 tunnel protocol (L2TP) enables PPP connections to be tunnelled via a UDP
connection.

Your bintec device supports the following two modes:

• L2TP LNS Mode (L2TP Network Server): for incoming connections only

• L2TP LAC Mode (L2TP Access Concentrator): for outgoing connections only

Note the following when configuring the server and client: An L2TP tunnel profile must be
created on each of the two sides (LAC and LNS). The corresponding L2TP tunnel profile is
used on the initiator side (LAC) to set up the connection. The L2TP tunnel profile is needed
on the responder side (LNS) to accept the connection.

11 VPN

Funkwerk Enterprise Communications GmbH

338

bintec R1xxx/R3xxx/R4xxx

«
...
350
351
352
353
354
...
»

Summary of Contents for bintec R1200

Page 1: ...Manual bintec R1xxx R3xxx R4xxx Reference Copyright Version 5 0 2009 Funkwerk Enterprise Communications GmbH Funkwerk Enterprise Communications GmbH Manual bintec R1xxx R3xxx R4xxx 1...

Page 2: ...no responsibility for data loss unwanted connection costs and damage caused by un intended operation of the product Trademarks funkwerk trademarks and the funkwerk logo bintec trademarks and the binte...

Page 3: ...cting 14 2 5 Configuration of 15 2 5 1 Preparations 15 2 5 2 Setting up an ADSL connection 21 2 5 3 Setting up a wireless LAN only bintec R1200w R1200wu and R3000w 22 2 6 Support Information 23 Chapte...

Page 4: ...3 4 2 General Product Features 49 3 4 3 LEDs 51 3 4 4 Connections 53 3 4 5 Pin Assignments 53 3 5 bintec R3000w 56 3 5 1 Scope of supply 56 3 5 2 General Product Features 57 3 5 3 LEDs 59 3 5 4 Conne...

Page 5: ...LEDs 92 3 9 4 Connections 94 3 9 5 Pin Assignments 94 Chapter 4 Access and configuration 98 4 1 Access Options 98 4 1 1 Access via LAN 98 4 1 2 Access via the Serial Interface 101 4 1 3 Access over IS...

Page 6: ...4 1 Access 140 5 4 2 SSH 141 5 4 3 SNMP 145 5 5 Remote Authentication 146 5 5 1 RADIUS 146 5 5 2 TACACS 151 5 5 3 Options 154 Chapter 6 Physical interfaces 156 6 1 AUX 156 6 1 1 AUX 156 6 2 Ethernet P...

Page 7: ...Ns 189 7 2 2 Port Configuration 190 7 2 3 Administration 191 Chapter 8 Wireless LAN 192 8 1 WLAN1 192 8 1 1 Radio Settings 193 8 1 2 Virtual Service Sets 206 8 1 3 WDS Links 212 8 1 4 Client Link 215...

Page 8: ...50 Chapter 10 WAN 253 10 1 Internet Dialup 253 10 1 1 PPPoE 255 10 1 2 PPTP 260 10 1 3 PPPoA 265 10 1 4 ISDN 269 10 1 5 GPRS UMTS 277 10 1 6 AUX 281 10 1 7 IP Pools 288 10 2 ATM 289 10 2 1 Profiles 28...

Page 9: ...ns 348 11 3 PPTP 349 11 3 1 PPTP Tunnel 349 11 3 2 Options 356 11 4 GRE 357 11 4 1 GRE Tunnels 357 11 5 Certificates 359 11 5 1 Certificate list 360 11 5 2 CRLs 369 11 5 3 Certificate Servers 370 Chap...

Page 10: ...13 2 2 SIP Accounts 396 13 2 3 Call Routing 402 13 2 4 CLID Translation 405 13 2 5 Call Translation 407 13 2 6 Options 410 Chapter 14 Local services 413 14 1 DNS 413 14 1 1 Global Settings 415 14 1 2...

Page 11: ...4 6 1 Schedule 443 14 6 2 Options 447 14 7 Surveillance 448 14 7 1 Hosts 449 14 7 2 Interfaces 452 14 7 3 Ping Generator 454 14 8 ISDN Theft Protection 456 14 8 1 Options 456 14 9 Funkwerk Discovery 4...

Page 12: ...2 Options 478 16 3 E mail Alert 479 16 3 1 E mail Alert Server 479 16 3 2 E mail Alert Recipient 481 16 4 SNMP 483 16 4 1 SNMP Trap Options 483 16 4 2 SNMP Trap Hosts 484 16 5 Activity Monitor 485 16...

Page 13: ...ry 495 17 4 Interfaces 495 17 4 1 Statistics 496 17 5 WLAN 497 17 5 1 WLAN1 497 17 5 2 VSS 499 17 5 3 WDS 502 17 5 4 Client Links 504 Glossary 507 Index 548 Funkwerk Enterprise Communications GmbH Tab...

Page 14: ...Table of Contents Funkwerk Enterprise Communications GmbH xii bintec R1xxx R3xxx R4xxx...

Page 15: ...ing is explained in Configuration of on page 15 There we show you how to start up your device from a Windows PC and how to install other useful online assistants At the end of the chapter you will be...

Page 16: ...ce Provider or your head office and to find the most suitable routes for trans mission Conversely it receives information and routes it to its own network One gateway for everyone If you have a local...

Page 17: ...DNS function The implemented function enables you to use the DynDNS service of leading DynDNS providers and some providers have been preset The security features of the device also include optional co...

Page 18: ...nfiguration with the Funkwerk Configuration Interface is operating system independent Remote maintenance The devices can also be configured and maintained remotely As soon as your device is connected...

Page 19: ...ructions for how to set up and start up your device and create a basic configuration Technical data This section contains a description of all the device s technical properties Access and configura ti...

Page 20: ...cates a warning of risk level Attention points out possible dangers that may cause damage to property if not observed Indicates a warning of risk level Warning points out possible dangers that may cau...

Page 21: ...erms bold e g biboAdmLo ginTable Indicates fields in the Funkwerk Configuration Interface italic e g none Indicates values that you enter or that can be configured Online blue and italic e g www funkw...

Page 22: ...s useful applications for managing your device 2 2 System requirements Your bintec gateway contains extensive features for encrypted data transfer and Internet access for both individual users and com...

Page 23: ...asswords to prevent unauthorized access to your device Software update Your device contains the version of the system software available at the time of production More recent versions may have since b...

Page 24: ...e 2 4 1 Connections All connections are located on the back of the device Fig 4 Back of bintec R1200 1 I 0 Mains switch 2 PWR Socket for plug in power pack 3 DMZ ETH5 Ethernet interface 5 ETH2 ETH4 Et...

Page 25: ...interface function 7 ISDN 0 ISDN 1 ISDN interface Fig 6 Back of bintec R1200wu 1 I 0 Mains switch 2 PWR Socket for plug in power pack 3 DMZ ETH5 Ethernet interface 4 Main and AUX RSMA connection 5 ET...

Page 26: ...N 1 ISDN interface 8 ADSL ADSL interface Fig 8 Back of bintec R3000w 1 I 0 Mains switch 2 PWR Socket for plug in power pack 3 DMZ ETH5 Ethernet interface 4 Main and AUX RSMA connection 5 ETH2 ETH4 Eth...

Page 27: ...nction 7 ISDN ISDN interface 8 SHDSL SHDSL interface Fig 10 Back of bintec R4100 1 I 0 Mains switch 2 PWR Socket for plug in power pack 3 DMZ ETH5 Ethernet interface 5 ETH2 ETH4 Ethernet interface 6 E...

Page 28: ...erface of the computer hub or a WAN interface if available and the ISDN interface of the device only to the ISDN con nection Set up and connect in the following sequence 1 Antennas only R1200w R1200wu...

Page 29: ...modem not supplied via another Ethernet cable or with the Ethernet connection on your DMZ PRI only R4100 Connect the ISDN PRI interface PRI 0 or PRI 1 of the device to your PRI connection X 21 only R4...

Page 30: ...hould gather the data for the following purposes Basic configuration if your device is in the ex works state Internet access optional Wireless LAN optional only for R1200w R1200wu and R300w Connecting...

Page 31: ...yName Password TopSecret Some Internet Service Providers such as T Online require additional information Additional information for T Online Access data Example value Your values T Online number 08151...

Page 32: ...ice for Information Security see http www bsi bund de Data for the Wireless LAN configuration Access data Example value Your values Preshared key for WPA PSK without default Installation location of y...

Page 33: ...y head office 255 255 255 0 2 5 1 2 Configuring a PC In order to reach your device via the network and to be able to carry out configuration using the Express Setup Wizard the PC used for the configur...

Page 34: ...address and enter a suitable IP address Entering the gateway IP address in your PC Then continue by entering the IP address of the gateway in the configuration of your PC as follows 1 In Internet Prot...

Page 35: ...e it is terminated 11 Check Default Route and Create NAT Policy 12 Leave the default settings for all other values 13 Confirm with OK You return to the overview of PPPoE connections 14 If the connecti...

Page 36: ...nt 1 6 Under Security Mode select WPA PSK 7 Under Preshared Key enter a password of your choice This must be at least eight characters long and for security reasons should contain special characters n...

Page 37: ...upport Information If you have any questions on your new product or would like more information you can reach the Support Center of Funkwerk Enterprise Communications GmbH under the follow ing call nu...

Page 38: ...Plug in power pack bintec Companion CD Documentation Quick Install Guide printed User s Guide on CD Release Notes if required Safety precautions 3 1 2 General Product Features The general product fea...

Page 39: ...C 1 3 A EU PSU Environmental require ments Storage temperature 20 to 70 C Operating temperature 0 to 40 C Relative atmospheric hu midity 10 to 90 non condensing in operation 5 to 95 non condensing whe...

Page 40: ...CHAP MS CHAP MS CHAP v 2 PPTP PPPoE PPPoA Callback Access Control Lists CLID NAT SIF MPPE Encryption PPTP Encryption VPN with PPTP or IPSec Software supplied BRICKware for Windows BRICKtools for Unix...

Page 41: ...1 to 5 Top row on The device is connected to the Ethernet flashing Data traffic via the Ethernet interface ETH 1 to 5 Bottom row on Data traffic at 100 mbps off Data traffic at 10 mbps ISDN 0 B D Top...

Page 42: ...ec R1200 has a 4 port Ether net switch including a port with serial interface function a DMZ ETH5 interface and two ISDN interfaces The connections are arranged as follows Fig 13 Back of bintec R1200...

Page 43: ...ade via an RJ45 socket Fig 14 Ethernet 10 100 Base T interface RJ45 socket The pin assignment for the Ethernet 10 100 Base T interface RJ45 socket is as follows RJ45 socket for Ethernet connection Pin...

Page 44: ...ional ISDN So interfaces which can be used for back up func tions for example The connection is made via an RJ45 socket Fig 15 ISDN So BRI interface RJ45 socket The pin assignment for the ISDN So BRI...

Page 45: ...printed User s Guide on CD Release Notes if required Safety precautions 3 2 2 General Product Features The general product features cover performance features and the technical prerequisites for inst...

Page 46: ...vironmental require ments Storage temperature 20 to 70 C Operating temperature 0 to 40 C Relative atmospheric hu midity 10 to 90 non condensing in operation 5 to 95 non condensing when stored Room cla...

Page 47: ...PPTP or IPSec Software supplied BRICKware for Windows BRICKtools for Unix Printed documentation supplied Quick Reference Online documentation User s Guide BRICKware for Windows Engl Software Reference...

Page 48: ...Power on The power supply is connected State Permanently on or off Error flashing The device is active ETH 1 to 5 Top row on The device is connected to the Ethernet flashing Data traffic via the Ethe...

Page 49: ...logged in to the system e g over Tel net WLAN Top row on The WLAN module is active WLAN Bottom row flashing Data traffic via the WLAN interface 3 2 4 Connections All the connections are located on th...

Page 50: ...t interface with an integrated 4 port switch ETH1 ETH4 and a separate Ethernet interface DMZ ETH5 The 4 port switch is used to connect individual PCs or other switches The ETH1 Console interface can a...

Page 51: ...tion or serial interface console Pin Function 1 TD Ethernet 2 TD Ethernet 3 RD Ethernet 4 RX console 5 GND console 6 RD Ethernet 7 GND console 8 TX console The combined serial Ethernet 10 100 BASE T i...

Page 52: ...3 Transmit 4 Receive 5 Receive 6 Transmit 7 Not used 8 Not used 3 3 bintec R1200wu 3 3 1 Scope of supply Your device is supplied with the following parts Cable sets mains unit Ethernet cable ISDN cab...

Page 53: ...l Product Features Property Value Product name bintec R1200wu Dimensions and weights Equipment dimensions without cable B x H x D 295 mm x 45 mm x 160 mm 8 mm antenna socket Weight approx 1260 g Trans...

Page 54: ...0 Baud ISDN WAN S0 2 Built in DMZ ETH5 Additional Ethernet switch port WLAN interface antennas 802 11b 802 11g and 802 11a with Antenna Diversity CardBus interface PCMCIA Interface for integrating a U...

Page 55: ...ther is only used to receive During reception the AP Access Point checks which antenna is receiving a better signal This is then used for decoding 3 3 3 LEDs The device LEDs provide information on cer...

Page 56: ...t 10 mbps ISDN 0 B D Top row on ISDN D channel is active ISDN 0 B D Bottom row on One ISDN B channel is active flashing Both ISDN B channels are active ISDN 1 B D Top row on ISDN D channel is active I...

Page 57: ...DMZ ETH5 interface and two ISDN interfaces as well as a CardBus slot for a UMTS modem The connections are arranged as follows Fig 21 Back of bintec R1200wu Back of bintec R1200wu 1 I 0 Mains switch 2...

Page 58: ...made via an RJ45 socket Fig 22 Ethernet 10 100 Base T interface RJ45 socket The pin assignment for the Ethernet 10 100 Base T interface RJ45 socket is as follows RJ45 socket for Ethernet connection Pi...

Page 59: ...itional ISDN So interfaces which can be used for back up functions for example The connection is made via an RJ45 socket Fig 23 ISDN So BRI interface RJ45 socket The pin assignment for the ISDN So BRI...

Page 60: ...questions Fig 24 68 pin CardBus slot for UMTS modem card The pin assignment is as follows Pin assignment of the CardBus slot Pin Function Description 1 GND Ground 2 CAD0 Mpx address data 0 3 CAD1 Mpx...

Page 61: ...AD25 Mpx address data 25 29 CAD26 Mpx address data 26 30 CAD27 Mpx address data 27 31 CAD29 Mpx address data 29 32 RFU Reserved 33 CCLKRUN Start CardBus cycle 34 GND Ground 35 GND Ground 36 CCD1 Card...

Page 62: ...et CardBus 59 CSERR CardBus system error 60 CREQ CardBus request 61 CCBE3 Command Byte possible 3 62 CAUDIO CardBus audio 63 CSTSCHG CardBus status change 64 CAD28 Mpx address data 28 65 CAD30 Mpx add...

Page 63: ...installation and operation of your device The features are summarised in the following table General Product Features Property Value Product name bintec R3000 Dimensions and weights Equipment dimensio...

Page 64: ...nnex A and Annex B Ethernet IEEE 802 3 LAN 4 port switch a port with serial interface function Permanently installed twisted pair only 10 100 mbps auto sensing MDIX supports Baud rates 1200 2400 4800...

Page 65: ...tion User s Guide BRICKware for Windows Engl Software Reference Engl 3 4 3 LEDs The device LEDs provide information on certain activities and statuses of the device They are arranged as follows Fig 25...

Page 66: ...ng Both ISDN B channels are active ISDN 1 B D Top row on ISDN D channel is active ISDN 1 B D Bottom row on One ISDN B channel is active flashing Both ISDN B channels are active ADSL Top row flashing T...

Page 67: ...6 Back of bintec R3000 Back of bintec R3000 1 I 0 Mains switch 2 PWR Socket for plug in power pack 3 DMZ ETH5 Ethernet interface 5 ETH2 ETH4 Ethernet interface 6 ETH1 Console Ethernet interface with s...

Page 68: ...face RJ45 socket is as follows RJ45 socket for Ethernet connection Pin Function 1 TD 2 TD 3 RD 4 Not used 5 Not used 6 RD 7 Not used 8 Not used The Ethernet 10 100 BASE T interface does not have an Au...

Page 69: ...ug for Annex B The following pins are used for the ADSL connection Fig 28 ADSL interface RJ45 socket The pin assignment for the ADSL interface RJ45 socket is as follows RJ45 socket for ADSL connection...

Page 70: ...t 4 Receive 5 Receive 6 Transmit 7 Not used 8 Not used 3 5 bintec R3000w 3 5 1 Scope of supply Your device is supplied with the following parts Cable sets mains unit Ethernet cable ISDN cable Serial c...

Page 71: ...n the following table General Product Features Property Value Product name bintec R3000w Dimensions and weights Equipment dimensions without cable B x H x D 295 mm x 45 mm x 160 mm 8 mm antenna socket...

Page 72: ...on Permanently installed twisted pair only 10 100 mbps auto sensing MDIX supports Baud rates 1200 2400 4800 9600 19200 38400 57600 115200 Baud ISDN WAN S0 2 Permanently installed DMZ ETH5 Additional E...

Page 73: ...Windows Engl Software Reference Engl Note Antenna Diversity The two antennas do not have equality of access One is used both to transmit and re ceive marked as main primary or 1 the antenna next to th...

Page 74: ...ernet interface ETH 1 to 5 Bottom row on Data traffic at 100 mbps off Data traffic at 10 mbps ISDN 0 B D Top row on ISDN D channel is active ISDN 0 B D Bottom row on One ISDN B channel is active flash...

Page 75: ...ta traffic via the WLAN interface WLAN Bottom row slow flashing The WLAN module is active on At least one WLAN client is connected 3 5 4 Connections All the connections are located on the back of the...

Page 76: ...1 Ethernet interface The bintec R3000w has an Ethernet interface with an integrated 4 port switch ETH1 ETH4 and a separate Ethernet interface DMZ ETH5 The 4 port switch is used to connect individual...

Page 77: ...e console Pin Function 1 TD Ethernet 2 TD Ethernet 3 RD Ethernet 4 RX console 5 GND console 6 RD Ethernet 7 GND console 8 TX console The combined serial Ethernet 10 100Base T interface does not have a...

Page 78: ...5 3 ISDN So interface bintec R3000w has two additional ISDN So interfaces which can be used for back up functions for example The connection is made via an RJ45 socket Fig 34 ISDN So BRI interface RJ4...

Page 79: ...Plug in power pack bintec Companion CD Documentation Quick Install Guide printed User s Guide on CD Release Notes if required Safety precautions 3 6 2 General Product Features The general product fea...

Page 80: ...8 1x Power 1x Status 5x2 Ethernet 3x2 Function Power consumption of the device max 15 Watt normally 10 Watt Voltage supply 15 V AC 1 3 A EU PSU Environmental require ments Storage temperature 20 to 70...

Page 81: ...t switch port Available sockets Serial interface V 24 RJ45 socket Ethernet interface RJ45 socket ISDN interface RJ45 socket SHDSL interface RJ45 socket Standards Guidelines R TTE Directive 1999 5 EC C...

Page 82: ...evice LED status display LED State Information Power on The power supply is connected State Permanently on or off Error flashing The device is active ETH 1 to 5 Top row on The device is connected to t...

Page 83: ...ata traffic over the SHDSL wire pair 4 5 SHDSL 2 1 Top row on The wire pair 7 8 on the SHDSL line has suc cessfully synchronised with the DSLAM of the SHDSL provider flashing Data traffic over the SHD...

Page 84: ...e with an integrated 4 port switch ETH1 ETH4 and a separate Ethernet interface DMZ ETH5 The 4 port switch is used to connect individual PCs or other switches The ETH1 Console interface can also be use...

Page 85: ...Pin Function 1 TD Ethernet 2 TD Ethernet 3 RD Ethernet 4 RX console 5 GND console 6 RD Ethernet 7 GND console 8 TX console The combined serial Ethernet 10 100Base T interface does not have an Auto MDI...

Page 86: ...6 5 3 ISDN So interface bintec R3400 has an additional ISDN So interface which can be used for back up func tions for example The connection is made via an RJ45 socket Fig 39 ISDN So BRI interface RJ4...

Page 87: ...cable DSL cable Splitter Y adapter Plug in power pack bintec Companion CD Documentation Quick Install Guide printed User s Guide on CD Release Notes if required Safety precautions 3 7 2 General Produ...

Page 88: ...ry 32 MB SDRAM 8 MB flash ROM LEDs 20 1x Power 1x Status 5x2 Ethernet 4x2 Function Power consumption of the device max 15 Watt normally 12 Watt Voltage supply 15 V AC 1 3 A EU PSU Environmental requir...

Page 89: ...led DMZ ETH5 Additional Ethernet switch port Available sockets Serial interface V 24 RJ45 socket Ethernet interface RJ45 socket ISDN interface RJ45 socket SHDSL interface RJ45 socket Standards Guideli...

Page 90: ...mation for your device LED status display LED State Information Power on The power supply is connected State Permanently on or off Error flashing The device is active ETH 1 to 5 Top row on The device...

Page 91: ...4 5 SHDSL 2 1 Top row on The wire pair 7 8 on the SHDSL line has suc cessfully synchronised with the DSLAM of the SHDSL provider flashing Data traffic over the SHDSL wire pair 7 8 SHDSL 4 3 Top row on...

Page 92: ...ce 6 ETH1 Console Ethernet interface with serial interface function 7 ISDN ISDN interface 8 SHDSL SHDSL interface 3 7 5 Pin Assignments 3 7 5 1 Ethernet interface The bintec R3800 has an Ethernet inte...

Page 93: ...e does not have an Auto MDI X function The pin assignment for the Ethernet 10 100 Base T interface RJ45 socket is as follows RJ45 socket for Ethernet connection or serial interface console Pin Functio...

Page 94: ...assignment for the SHDSL interface RJ45 socket is as follows RJ45 socket for SHDSL connection Pin Function 1 Line a4 2 Line b4 3 Line a3 4 Line a1 5 Line b1 6 Line b3 7 Line a2 8 Line b2 3 7 5 3 ISDN...

Page 95: ...c R4100 3 8 1 Scope of supply Your device is supplied with the following parts Cable sets mains unit Ethernet cable ISDN cable Serial connecting cable Splitter Y adapter serial Ethernet Plug in power...

Page 96: ...ment dimensions without cable B x H x D 295 mm x 45 mm x 160 mm Weight approx 1260 g Transport weight incl documentation cables packaging approx 2 6 kg Memory 32 MB SDRAM 8 MB flash ROM LEDs 20 1x Pow...

Page 97: ...installed DMZ ETH5 Additional Ethernet switch port Available sockets Serial interface V 24 RJ45 socket Ethernet interface RJ45 socket ISDN interface RJ45 socket ISDN PRI interface RJ45 socket Standard...

Page 98: ...Ds display the following status information for your device LED status display LED State Information Power on The power supply is connected State Permanently on or off Error flashing The device is act...

Page 99: ...is active ISDN 3 2 Bottom row on ISDN 3 ISDN D channel is active flashing ISDN 3 At least one ISDN B channel is active PRI 1 0 Top row on PRI 0 ISDN D channel is active flashing PRI 0 At least one ISD...

Page 100: ...ETH1 Console Ethernet interface with serial interface function 7 ISDN 0 ISDN 3 ISDN interface 9 PRI 0 PRI 1 ISDN PRI interface 3 8 5 Pin Assignments 3 8 5 1 Ethernet interface The bintec R4100 has an...

Page 101: ...e does not have an Auto MDI X function The pin assignment for the Ethernet 10 100 Base T interface RJ45 socket is as follows RJ45 socket for Ethernet connection or serial interface console Pin Functio...

Page 102: ...ket for ISDN connection Pin Function 1 Not used 2 Not used 3 Transmit 4 Receive 5 Receive 6 Transmit 7 Not used 8 Not used 3 8 5 3 ISDN PRI interface Both of the ISDN PRI interfaces are connected via...

Page 103: ...many Transmit NT TE is often designated S2Mab a and b on the plug and Receive TE NT S2Man a and b 3 9 bintec R4300 3 9 1 Scope of supply Your device is supplied with the following parts Cable sets mai...

Page 104: ...mmarised in the following table General Product Features Property Value Product name bintec R4300 Dimensions and weights Equipment dimensions without cable B x H x D 295 mm x 45 mm x 160 mm Weight app...

Page 105: ...auto sensing MDIX supports Baud rates 1200 2400 4800 9600 19200 38400 57600 115200 Baud ISDN WAN S0 2 Permanently installed DMZ ETH5 Additional Ethernet switch port X 21 interface 2 Permanently insta...

Page 106: ...ovide information on certain activities and statuses of the device They are arranged as follows Fig 50 LEDs on bintec R4300 In operating mode the LEDs display the following status information for your...

Page 107: ...h ISDN B channels are active ISDN 1 B D Top row on ISDN D channel is active ISDN 1 B D Bottom row on One ISDN B channel is active flashing Both ISDN B channels are active X 21 2 1 Top row on X 21 1 Co...

Page 108: ...intec R4300 1 I 0 Mains switch 2 PWR Socket for plug in power pack 3 DMZ ETH5 Ethernet interface 5 ETH2 ETH4 Ethernet interface 6 ETH1 Console Ethernet interface with serial interface function 7 ISDN...

Page 109: ...ernet connection Pin Function 1 TD 2 TD 3 RD 4 Not used 5 Not used 6 RD 7 Not used 8 Not used The Ethernet 10 100 BASE T interface does not have an Auto MDI X function The pin assignment for the Ether...

Page 110: ...t for the ISDN So BRI interface RJ45 socket is as follows RJ45 socket for ISDN connection Pin Function 1 Not used 2 Not used 3 Transmit 4 Receive 5 Receive 6 Transmit 7 Not used 8 Not used 3 9 5 3 X 2...

Page 111: ...12 25 27 RTS A A 8 3 5 C D 7 9 CBS B A9 9 12 10 27 25 CBS A A10 10 5 3 D C 9 7 RxC B A11 11 13 14 X W 26 35 RxC A A12 12 6 7 V U 8 17 Mode DCE A13 13 8 B 19 Mode 0 B1 14 19 19 DTR B B2 15 30 29 DTR A...

Page 112: ...o access your device via Telnet or SSH 4 1 1 1 HTTP HTTPS With a current web browser you can use the HTML interfaces to configure your device For this enter the following in your web browser s address...

Page 113: ...ll the remote mainten ance options can be carried out securely The following preconditions must be met in order to connect to the device via SSH The encryption keys needed for the process must be avai...

Page 114: ...ement Administrative Access SSH menu If both keys are available you will see the Generated value in the two RSA key Status and DSA key Status fields 5 If one or both of these fields contains the value...

Page 115: ...o to configure your device in this way Access via the serial interface is ideal if you are setting up an initial configuration of your device and a LAN access is not possible via the pre configured IP...

Page 116: ...ab Emulation VT100 5 Click on OK The changes to the terminal program settings do not take effect until you disconnect the connection to your device and then make the connection again If you use HyperT...

Page 117: ...cted to the ISDN connection and switched on To reach your device over ISDN Login proceed as follows 1 Connect your device to the ISDN 2 Log in as administrator on your device in the remote LAN in the...

Page 118: ...ser and subsequently log in with admin and make changes to the configuration Caution All bintec devices are delivered with the same username and password As long as the password remains unchanged they...

Page 119: ...llowing ways Funkwerk Configuration Interface Setup Tool for experts SNMP shell commands The configuration options available to you depend on the type of connection to your device Types of connections...

Page 120: ...68 of www funkwerk ec com and installed on your device To do this proceed as described in The settings you make with the Funkwerk Configuration Interface are applied with the OK or Apply button of the...

Page 121: ...tings of the PC from which you want to configure your device see Con figuring a PC on page 19 3 Open a web browser 4 Enter http 192 168 0 254 in the address field of the web browser 5 Enter admin in t...

Page 122: ...face Header Fig 57 Funkwerk Configuration Interface header Funkwerk Configuration Interface header Menu Function Language selection From the dropdown menu select the lan guage in which the Funkwerk Co...

Page 123: ...nd the configuration click this button to log out of your device A window is opened offering you the fol lowing options Continue with the configuration Save the configuration and close the window Exit...

Page 124: ...ll the other sub menus will be closed You can see at a glance the sub menu you are in Status page If you call the Funkwerk Configuration Interface after you log in the status page of your device is di...

Page 125: ...uttons for special functions Button Function In the Access Point Search menu you use this button to start automatic detection of all the access points available and con nected by Ethernet in the netwo...

Page 126: ...or an interface or connection Indicates Blocked status for an interface or connection Indicates Going up status for an interface or connection Indicates that data traffic is encrypted Triggers a WLAN...

Page 127: ...Structure of the Funkwerk Configuration Interface configuration menus The menus of the Funkwerk Configuration Interface contain the following basic struc tures Funkwerk Configuration Interface menu st...

Page 128: ...y text field Text field with hidden input Enter the data Radio buttons e g Select the corresponding option Checkboxes e g activation by selecting checkbox Selection of several possible options Dropdow...

Page 129: ...alues were entered or selected incorrectly Pay particular attention to the following message Warning changes not supported by the Setup Tool If you makes these changes with the Funkwerk Configuration...

Page 130: ...ative Access In this menu you configure the access options for the individual interfaces Remote Authentication In this menu you configure the authentication via a RADIUS server or TACAS server Physica...

Page 131: ...the CardBus interface of your device Here you specify that UMTS is enabled LAN Menu Function IP Configuration In this menu you carry out the IP configuration of the LAN inter faces for your device VLA...

Page 132: ...t configuration of the ATM profiles that are needed for all the ADSL connections and also connection monitoring OAM and ATM QoS Leased line In this menu the permanent connections of two communication...

Page 133: ...ation networks Local services Menu Function DNS In this menu you configure the name resolution DynDNS Client In this menu you configure the dynamic name resolution DHCP Server In this menu you configu...

Page 134: ...e device External Reporting Menu Function Syslog In this menu you configure the host to which the data logged in ternally on the device is forwarded for saving and further pro cessing IP Accounting In...

Page 135: ...s a detailed knowledge of our devices 4 4 BOOTmonitor The BOOTmonitor is only available over a serial connection to the device The BOOTmonitor provides the following functions which you select by ente...

Page 136: ...de The BOOTmonitor prompt is displayed if you are serially connected to your device After display of the BOOTmonitor prompt press the space bar within four seconds to use the functions of the BOOTmoni...

Page 137: ...lowing data System status Your device s activities Resource utilisation active sessions and tunnels Status and basic configuration of the LAN WAN ISDN WLAN and ADSL interfaces Information on plugged a...

Page 138: ...vice was rebooted System Date Displays the current system date and system time Serial Number Displays the device serial number BOSS Version Displays the currently loaded version of the system software...

Page 139: ...ive IPSec tunnels in relation to the number of configured IPSec tunnels Fields in the Status Module menu Field Value DSP Module Shows the type of plugged DSP module if any Other fields in the Status m...

Page 140: ...The channel used on this wireless module Number of configured bridge links Software version of the wireless card Interface specifics for relay Configured Mode Recent System Logs Displays the last 10...

Page 141: ...e device type is entered as the default value Location Enter the location of your device Contact Enter the relevant contact person Here you can enter the e mail address of the system administrator for...

Page 142: ...or ity are recorded Errors Messages with emergency alert critical and error priority are recorded Warning Messages with emergency alert critical error and warning priority are recorded Notice Messages...

Page 143: ...t Status appears the warning System password not changed The System Management Global Settings Passwords menu consists of the follow ing fields Fields in the Passwords System Password menu Field Value...

Page 144: ...with Show The function is disabled by default If you activate the function all passwords and keys in all menus are displayed and can be edited in plain text The WLAN and IPSec keys are one exception...

Page 145: ...vice Note If a method for automatically deriving the time is defined on the device the values ob tained in this way automatically have higher priority A manually entered system time is therefore overw...

Page 146: ...fault Primary Timeserver Enter the first time server by using either a domain name or an IP address Also select the protocol for the time server query Possible values SNTP default value This server us...

Page 147: ...me server query Possible values SNTP default value This server uses the simple network time protocol with UDP port 123 Time Service UDP This server uses the Time service with UDP port 37 Time Service...

Page 148: ...he value Endless Internal Time Server Select whether the internal time server is to be used The function is activated by choosing Enabled Time requests from a client will be answered with the current...

Page 149: ...ystem Licenses New menu In the System Management Global Settings System Licenses menu a list of all re gistered licenses is shown Description License Type License Serial Number Status Possible values...

Page 150: ...ic Parameters menu Field Value Licence Serial Number Enter the licence serial number you received when you bought the licence Licence Key Enter the licence key you received by e mail Note If Not OK is...

Page 151: ...igher level protocols and trans mit data packets using MAC addresses Data transmission is transparent which means the information contained in the data packets is not interpreted With routing differen...

Page 152: ...pe b Number of the wireless module on which the WDS link or bridge link is configured c Number of the WDS link or bridge link Example wds1 0 first WDS link or bridge link on the first wireless module...

Page 153: ...eld Description The serial number of the interface is displayed here Interface Description The name of the interface is displayed here Mode Bridge Group Here you select whether you want to run the int...

Page 154: ...e group 5 4 Administrative Access In this menu you can configure the administrative access to the device 5 4 1 Access In the Administrative Access Access menu a list of all IP configurable interfaces...

Page 155: ...in the Access menu Field Description Interface Select the interface for which administrative access is to be con figured 5 4 2 SSH Your devices offers encrypted access to the shell You can enable enab...

Page 156: ...ll of your device via an SSH client make sure the settings for the SSH Daemon and SSH client are the same Note If configuration of an SSH connection is not possible restart the device to initialise th...

Page 157: ...errors of the SSH Daemon and information messages are recorded Fatal Only fatal errors of the SSH Daemon are recorded Errors Fatal and simple errors of the SSH Daemon are re corded Debug All messages...

Page 158: ...status Unknown is displayed generation of a key is not possible for example because there is not enough space in the FlashROM DSA Key Status The status of the DSA key is displayed here If a DSA key h...

Page 159: ...s and variables and defined in the MIB Management Information Base This contains all the configuration and status variables of the device SNMP can be used to perform the following network management t...

Page 160: ...transmit all data unencrypted 5 5 Remote Authentication This menu contains the settings for user authentication 5 5 1 RADIUS RADIUS Remote Authentication Dial In User Service is a service that enables...

Page 161: ...ESS_REQUEST Client Server If an access request is received by your device a request is sent to the RADIUS server if no corresponding connection part ner has been found on your device ACCESS_ACCEPT Ser...

Page 162: ...istered RADIUS servers is displayed 5 5 1 1 Edit New Choose the icon to edit existing entries Choose the New button to add RADIUS serv ers Fig 73 System Management Remote Authentication RADIUS New The...

Page 163: ...ter the shared password used for communication between the RADIUS server and your device Priority If a number of RADIUS server entries were created the server with the highest priority is used first I...

Page 164: ...lliseconds After timeout the request is repeated according to Retries or the next configured RADIUS server is requested Possible values are whole numbers between 50 and 50000 The default value is 1000...

Page 165: ...function is activated by choosing Enabled The function is disabled by default If the function is active you can enter the following options Reload Interval Enter the time period in seconds between th...

Page 166: ...e New button to add TACACS serv ers Fig 74 System Management Remote Authentication TACACS New The System Management Remote Authentication TACACS New menu con sists of the following fields Fields in th...

Page 167: ...Entry active Select whether this server is to be used for login authentication The function is activated by choosing Enabled The function is enabled by default The Advanced Settings menu consists of...

Page 168: ...ncryption Select whether data exchange between the TACACS server and the NAS is to be encrypted with MD5 The function is activated by choosing Enabled The function is enabled by default If the functio...

Page 169: ...nce is used for in coming calls with RADIUS First CLID then PPP and then PPP with RADIUS Options Inband Only inband RADIUS requests PAP CHAP MS CHAP V1 V2 i e PPP requests without CLID are sent to the...

Page 170: ...orts connections for analogue and GSM modems e g as backup In principle you can use any Hayes or GSM07 07 compatible modem with a serial interface for this purpose The following mo dems have been test...

Page 171: ...disabled by default Line Speed Here you select the speed at which the gateway addresses the modem in bps Possible values Default The Baud rate of the serial terminal connection is retained 9600 in ex...

Page 172: ...modem is different Modem Init Sequence Here you can enter an initialization string for your modem The command ATX3 K3 V1 is the default setting the modem does not wait for a free signal before dialli...

Page 173: ...Ethernet port ETH5 which can be used to set up a DMZ for example This is assigned by default to Ethernet interface en1 4 To ensure your device can be reached when splitting ports make sure that Ethern...

Page 174: ...s available for all the ports together Fig 78 Physical Interfaces Ethernet Ports Port Configuration The Physical Interfaces Ethernet Ports Port Configuration menu consists of the following fields Fiel...

Page 175: ...l Duplex 100 mbps Half Duplex 10 mbps Full Duplex 10 mbps Half Duplex Inactive 6 3 ISDN Ports In this menu you configure the ISDN interfaces of your gateway Here you enter data such as the type of ISD...

Page 176: ...guration menu a list of all ISDN ports and their configurations is shown 6 3 1 1 Working with Choose the button to edit the configuration of the ISDN port ISDN BRI interface You can use the ISDN BRI i...

Page 177: ...lues ISDN Configtype Point to Point See ISDN Protocol and ISDN Configuration Type ISDN Configtype Point to Multipoint See ISDN Protocol and ISDN Configuration Type Autoconfiguration Disabled Manual se...

Page 178: ...80 kbps Leased Line B2 64S Leased line over B channel 2 64 kbps The Advanced Settings menu consists of the following fields Fields in the Advanced Settings menu Field Description X 31 X 25 in D Chan...

Page 179: ...set in the CAPI application is used For CAPI Default the value of the CAPI application is ignored and the default value set here is always used Set Packet Switch if you wish to use X 31 TEI for the X...

Page 180: ...me of the ISDN port Port Usage Select whether the ISDN switch type D channel detection for switched line is to be automatically identified Possible values None default value ISDN connection is not use...

Page 181: ...rovided for Port Usage Euro ISDN S2m TE If you set the switch type appropriately you can select a value for the variable Channel Selection This defines how the B chan nel is selected for an outgoing c...

Page 182: ...s can be configured for leased lines to different destin ations Leased Line 1 Hyperchannel G 703 G 704 1984 kbps structured Leased Line Unstructured G 703 2048 kbps unstruc tured Custom Time Slots Onl...

Page 183: ...combined to form this channel bundle From Shows the first of the channels used for this channel bundle Possible values 1 to 31 to Shows the last of the channels used for this channel bundle Possible...

Page 184: ...tec devices support the DynDNS service to enable hosts without fixed IP ad dresses to obtain a secure connection over the Internet With the IPSec Callback function and using a direct ISDN call to an I...

Page 185: ...st of all MSNs is shown 6 3 2 1 New Choose the New button to edit MSNs Fig 81 Physical Interfaces ISDN Ports MSN Configuration New The Physical Interfaces ISDN Ports MSN Configuration New menu consist...

Page 186: ...120 MSN Enter the number used to check the called party number For the call to be accepted it is sufficient for the individual numbers in the entry to agree taking account of MSN Recognition MSN Recog...

Page 187: ...ls including hardware ac celeration Up to 100 additional IPSec tunnels can also be enabled if licensed The integ rated second ISDN S0 interface can also be enabled by licence if required Fig 82 Physic...

Page 188: ...in the receive direction direction from CO DSLAM to CPE router in bits per second The value cannot be changed Upstream Displays the data rate in the send direction direction from CPE router to CO DSLA...

Page 189: ...to be re duced This is only needed in a few cases for special DSLAMs Possible values Default Line Speed The data rate in the send direc tion is not reduced 128 000 bps to 2 048 000 bps The data rate i...

Page 190: ...special features of your SHDSL connection Note Agree the connection conditions for back to back connections campus connect with your remote terminal The SHDSL interfaces can be configured separately...

Page 191: ...Rate Define whether the clock rate should be negotiated Possible values Fixed The clock rate is predefined Adaptive default value The clock rate is negotiated de pending on the line quality Wire Mode...

Page 192: ...k rate of 768 kbps to 9248 kbps 8 wire IMA Eight wires are used with IMA for a clock rate of 768 kbps to 9248 kbps Additional Wire Pairs Only for Wire Mode 4 wire 4 wire standard 4 wire IMA 6 wire 6 w...

Page 193: ...an also be set manually You can purchase a suitable cable from your dealer Choose the button to edit the configuration of the serial port Fig 84 Physical Interfaces Serial Ports Options The Physical I...

Page 194: ...must set the interface type field manually Possible values None The port is not used X 21 with Termination V 11 on all lines 120 ohm ter minating resistor on critical input lines V 35 V 35 on critica...

Page 195: ...e g for ac cess to a public data network such as Datex P DTE The address field has the value for DTE DCE The address field has the value for DCE Interface Leads Define whether the gateway checks the s...

Page 196: ...UMTS HSDPA HSUPA Basic Settings menu Field Description UMTS HSDPA HSUPA Status Select whether or not UMTS HSDPA HSUPA is to be enabled on your device The function is activated with Enabled The functi...

Page 197: ...ntry is corrected Modem Init Sequence Only for UMTS HSDPA HSUPA Status Enabled Here you can enter an initialization string for your modem You can add other AT commands if required by separating them w...

Page 198: ...button to create virtual interfaces However this is only needed in special applications e g BRRP Depending on the option selected different fields and options are available All the config uration opt...

Page 199: ...Based on Ethernet Inter face This field is only displayed if you are editing a virtual routing in terface Select the Ethernet interface for which the virtual interface is to be configured Address Mode...

Page 200: ...sociated with the interface is used For virtual interfaces you can use the MAC address of the physical interface under which the virtual interface was created but this is not necessary You can also al...

Page 201: ...Clamping Select whether your device is to apply MSS Clamping To pre vent IP packets fragmenting the MSS Maximum Segment Size is automatically decreased by the device to the value set here The functio...

Page 202: ...VLAN menu you can make all the settings needed for this and query their status Caution For interfaces that operate in Routing mode you only assign a VLAN ID to the inter face You define this via the p...

Page 203: ...LAN VLAN VLANs Edit New menu consists of the following fields Fields in the VLANs Configure VLAN menu Field Description VLAN Identifier Enter the number that identifies the VLAN In the Edit menu you c...

Page 204: ...figuration menu consists of the following fields Fields in menu Port Configuration Field Description Interface Shows the port for which you define the PVID and processing rules PVID Assign the selecte...

Page 205: ...idge group Fig 90 LAN VLAN Administration The LAN VLAN Administration menu consists of the following fields Fields in the Administration Bridge Group br ID VLAN Options menu Field Description Enable V...

Page 206: ...which ensures that parts of the building are penetrated as effect ively as possible with a low transmission power that poses no health risks A 802 11g compatible standard is 802 11b which operates in...

Page 207: ...Settings menu an overview of all the configura tion options for the WLAN module is shown Fig 91 Wireless LAN WLAN1 Radio Settings 8 1 1 1 Radio Settings In this menu you change the settings for the w...

Page 208: ...following fields Fields in the Radio Settings WLAN Settings menu Field Description Radio Select whether you want to enable the radio The function is activated by choosing Enabled The function is enab...

Page 209: ...ommunication between the individual clients Ad Hoc In ad hoc mode an access client can be used as central interface between a number of terminals In this way devices such as computers and printers can...

Page 210: ...untry information is used None The system s own country information is used Strict The country information of the access point is used Channel The number of channels you can selected depends on the co...

Page 211: ...ient mode In Access Client mode you can only select the required channel in Client Mode Ad Hoc Possible values For Frequency Band 2 4 GHz In Outdoor Possible values are 1 to 13 and Auto default value...

Page 212: ...ted The maximum value for Transmit Power is country dependent Possible values max default value The maximum antenna power is used User Defined Enter the required maximum value in dBm in the input fiel...

Page 213: ...ckets are sent one after the other without a waiting period This is par ticularly effective in 11b g mixed operation The function is activated with Enabled The function is activated by default If prob...

Page 214: ...Link are activated The Advanced Settings menu consists of the following fields Fields in the Advanced Settings menu Field Description Beacon Period Only for Operation Mode Access Point or Select one...

Page 215: ...ter this many failed attempts the packet is dis carded Possible values are 1 to 255 The default value is 7 Long Retry Limit Enter the maximum number of attempts to send a data packet of length less th...

Page 216: ...fragment of a data pack et as of which no further send attempts are made The data packet is discarded Possible values are 1 to 4294967295 The default value is 512 msec Fields in the Advanced Settings...

Page 217: ...s networks in the background The value can only be changed for Roaming Profile Custom Roaming The default value is 70 dBm Scan Interval Indicates the interval in milliseconds after which the system sc...

Page 218: ...o the signal strength indic ator RSSI of the BSS The value can only be changed for Roaming Profile Custom Roaming The default value is 10 Weight of Age Indicates the priority of the age of the BSS The...

Page 219: ...led attempts the packet is dis carded Possible values are 1 to 255 The default value is 4 Fragmentation Threshold Enter the maximum size as of which the data packets are to be fragmented i e split int...

Page 220: ...New menu Setting network names In contrast to a LAN set up over Ethernet a wireless LAN does not have any cables for set ting up a permanent connection between the server and clients Access violation...

Page 221: ...the use of the ad vanced encryption standard AES to encrypt data WPA WPA Wi Fi Protected Access offers additional protection by means of dynamic keys based on the Temporal Key Integrity Protocol TKIP...

Page 222: ...key should be changed regularly To do this change the Data Transfer Key Select the longer 104 Bit WEP key For the transfer of highly security critical information Security Mode WPA Enterprise should...

Page 223: ...ion is activated by choosing Visible The function is enabled by default Intra cell Repeating Select whether communication between the WLAN clients is to be permitted within a radio cell The function i...

Page 224: ...entiated Services Code Point or IEEE802 1d The function is activated by choosing Enabled The function is enabled by default Fields in the Virtual Service Sets Security Settings menu Field Description...

Page 225: ...ly WPA is used WPA 2 Only WPA2 is used WPA Cipher Only for Security Mode WPA PSK and WPA Mode WPA or WPA and WPA2 Select which encryption method should be used Possible values TKIP default value Tempo...

Page 226: ...point mode Wireless LAN WLANx Radio Set tings Operating Mode Access Point you can set up and edit the desired WDS links in the Wireless LAN WLANx WDS links New menu Important Select the channel to be...

Page 227: ...d as a transit network this relates to a point to point connection or point to multipoint connection between two access points that are included in different networks 8 1 3 1 WDS Links New Choose the...

Page 228: ...c on this WDS link is encrypted with WEP104 In WEP Key 1 4 enter the key for this WDS link and in Transmission Key select the default key Transmit Key Only if Privacy WEP40 WEP104 Select one of the ke...

Page 229: ...tings Operating Mode Access Client you can set up and edit the available Client Links in the Wireless LAN WLAN1 Client Links menu The client mode can be operated in infrastructure mode or in ad hoc m...

Page 230: ...of the wireless network SSID Enter an ASCII string with a maximum of 32 characters Fields in the Client Link Security Settings menu Field Description Security Mode Select the security mode encryption...

Page 231: ...nd WPA Enterprise Select whether you want to use WPA with TKIP encryption or WPA 2 with AES encryption or both Possible values WPA default value Only WPA is used WPA 2 Only WPA2 is used Preshared Key...

Page 232: ...con is shown in the list You use this icon to open the Scan menu Fig 96 Wireless LAN WLAN1 Client Link Scan After successful scanning a selection of potential scan partners is displayed in the scan li...

Page 233: ...s the MAC address of the remote client Network Name SSID Displays the name of the remote client Channel Shows the Channel used Mode Shows the security mode encryption and authentication for the wirele...

Page 234: ...Field Description Region Select the country in which the access point is to be run Possible values are all the countries configured on the gate way s wireless module The range of channels available f...

Page 235: ...routes is shown 9 1 1 1 New Choose the New button to create routes Fig 98 Routing Routes IP Routes New with Extended Route Not Enabled If the Extended Route option is selected for Route Class an extra...

Page 236: ...unction is active a route is created with extended routing parameters such as source interface and source IP ad dress as well as protocol source and destination port type of service TOS and the status...

Page 237: ...twork Type Not for Route Type Standard Route Also select the network type Possible values Direct default value in the LAN You define another IP address for the interface in the WAN You define a route...

Page 238: ...Only if Layer 4 Protocol TCP or UDP Enter the source port First select the port number range Possible values Any default value The route is valid for all port numbers Single Enables the entry of a po...

Page 239: ...5 Enter the appropriate values for the individual port or start port of a range in Port and for a range the end port in to Port DSCP TOS Value Select the Type of Service TOS Possible values Ignore def...

Page 240: ...erface is dormant then dial and wait until the interface is up In this case an alternative interface with a poorer metric is used for routing until the interface is up 9 1 2 Options Back Route Verify...

Page 241: ...cific interfaces Displays the serial number of the list entry Interface Only for Mode Enable for Specific Interfaces Displays the name of the interface Back Route Verify Only for Mode Enable for Speci...

Page 242: ...age 229 In the Routing NAT NAT Interfaces menu a list of all NAT interfaces is shown Fig 101 Routing NAT NAT Interfaces For each NAT interface you can select the options NAT Active Silent Deny and PPT...

Page 243: ...k are also to be permitted if NAT is activated The function is disabled by default If PPTP Passthrough is enabled the device itself cannot be configured as a tunnel endpoint Portforwardings Shows the...

Page 244: ...terface Select the interface for which portforwarding is to be configured Fields in the Portforwarding Select traffic Field Description Service Select the service for which address mapping is defined...

Page 245: ...nly if Service User defined Select the protocol Possible values Any ICMP GGP IP TCP EGP IGP PUP Chaos UDP HMP XNS IDP RDP IPv6 RSVP GRE ESP AH TLSP Skip Kryptolan ISO IP IGRP Funkwerk Enterprise Commu...

Page 246: ...an enter the IP address manually Port Only if Service User defined First select whether all connections are to be permitted or whether a certain port or port range is to be defined Possible values All...

Page 247: ...devices This ex change is controlled by a Routing Protocol e g RIP Routing Information Protocol By de fault about every 30 seconds this value can be changed in Update Timer a device sends messages to...

Page 248: ...f all RIP interfaces is shown Fig 103 Routing RIP RIP Interfaces 9 3 1 1 Edit For each RIP interface you can in the menu select the options Send Version Re ceive Version and Route Announce 9 Routing F...

Page 249: ...not enabled RIP V1 Enables sending and receiving of version 1 RIP packets RIP V2 Enables sending and receiving of version 2 RIP packets RIP V1 V2 Enables sending and receiving of both version 1 and ve...

Page 250: ...is option if you want to set the time at which any activ ated routing protocols e g RIP are to propagate the IP routes defined for this interface Note This setting does not affect the interface specif...

Page 251: ...entry this corresponds to the IP address 0 0 0 0 with Netmask 255 255 255 255 In the Routing RIP RIP Filters menu a list of all RIP filters is shown Fig 105 Routing RIP RIP Filters You can use the bu...

Page 252: ...for incoming and outgoing RIP packets import or ex port for the same IP address must be separately configured You can enter individual host addresses or network addresses Direction Select whether the...

Page 253: ...e is 0 9 3 3 RIP Options Fig 107 Routing RIP RIP Options The Routing RIP RIP Options menu consists of the following fields Fields in the RIP Options Global RIP Parameters menu Field Description RIP UD...

Page 254: ...disabled by default RFC 2453 Variable Timer For the timers described in RFC 2453 select whether the same values that you can configure in the Timer for RIP V2 RFC 2453 menu The function is activated...

Page 255: ...the invalid route is deleted from the IPROUTETABLE if no update is carried out for the route The default value is 120 seconds Fields in the RIP Options Timer for Triggered RIP RFC 2091 menu Field Des...

Page 256: ...cing also functions with accounts with different providers Session based load balancing is achieved Related dependent sessions are always routed over the same interface A decision on distribution is o...

Page 257: ...ased on the data traffic is decisive in both the send and receive direction Consider Only for Distribution Policy Load dependent Bandwidth Choose the direction in which the current data rate is to be...

Page 258: ...y voice video data Multicast is a cost effective solution for effective use of bandwidth because the sender of the data packet which can be received by several re cipients only needs to send the packe...

Page 259: ...P for IPv6 Membership Management protocol In IPv4 IGMP Internet Group Management Protocol is a protocol that hosts can use to provide the router with multicast membership information IP addresses of t...

Page 260: ...nter faces of your device 9 5 1 1 New Choose the New button to create forwarding rules for new multicast groups Fig 109 Routing Multicast Forwarding New The Routing Multicast Forward New menu consists...

Page 261: ...mbership in a subnet As a result only the packets explicitly wanted by a host enter the subnet Special mechanisms ensure that the requirements of the individual clients are taken into consideration At...

Page 262: ...econds in which IGMP queries are to be sent Possible values are 0 to 600 The default value is 125 Maximum Response Time For the sending of queries enter the time interval in seconds within which hosts...

Page 263: ...r this group should be forwarded to this interface Maximum number of IG MP status messages Limit the number of reports queries per second for the selected interface Mode Specify whether the interface...

Page 264: ...n the subnet via its defined Proxy Interface Proxy Interface Select the interface on your device via which queries are to be received and collected 9 5 3 Options In this menu you can enable and disabl...

Page 265: ...hosts open applications that use multicast Active Multicast is always on Inactive default value Multicast is always off Mode Only for IGMP Status Up or Auto Select Multicast Mode Possible values Comp...

Page 266: ...urces Enter the maximum number of sources that are specified in ver sion 3 reports and the maximum number of internally managed sources per group IGMP State Limit Enter the maximum permitted total num...

Page 267: ...cols You can also configure Internet access over ISDN Note Note your provider s instructions Dialin connections over ISDN are used to establish a connection to networks or hosts out side your LANs All...

Page 268: ...f for example you configure both Internet access and a corporate network connection enter a default route to the ISP and a network route to the head office You can enter several default routes on your...

Page 269: ...ffic drops the additional B channels are closed again Static In static channel bundling you specify right from the start how many B channels your device is to use for connections regardless of the tra...

Page 270: ...Description Enter a name to uniquely identify the PPPoE partner The first character in this field must not be a number and no special characters or umlauts must be used either PPPoE Mode Select whethe...

Page 271: ...ode Standard Select the Ethernet interface specified for a standard PPPoE connection If you want to use an external DSL modem select the Ethernet port to which the modem is connected When using the in...

Page 272: ...hether your device is to be assigned a static IP address or whether it should be assigned this dynamically Possible values Get IP Address default value Your device is dynamic ally assigned an IP addre...

Page 273: ...n has failed The de fault value is 60 Maximum Number of Di alup Retries Enter the number of unsuccessful attempts to setup a connec tion before the interface is blocked Possible values are 0 to 100 Th...

Page 274: ...etrical bandwidths ADSL The function is activated with Enabled The function is disabled by default LCP Alive Check Check whether the availability of the remote terminal is to be checked by sending LCP...

Page 275: ...the internet connection The first character in this field must not be a number and no special characters or umlauts must be used either PPTP Interface Select the IP interface over which packets are to...

Page 276: ...idle interval in seconds This determines how many seconds should pass between sending the last traffic data pack et and clearing the connection Possible values are 0 to 3600 seconds 0 deactivates the...

Page 277: ...partner Add a new entry with Add Remote IP Address IP address of the destination host or destination network Netmask Netmask of Remote IP Address If no entry is made your device uses a default netmas...

Page 278: ...cation protocol required by the PPTP partner MSCHAP version 1 or 2 possible MS CHAPv2 Run MS CHAP version 2 only DNS Negotiation Select whether your device receives IP addresses for primary DNS server...

Page 279: ...vated with Enabled The function is disabled by default 10 1 3 PPPoA In the WAN Internet Dialup PPPoA menu a list of all PPPoA interfaces is shown In this menu you configure a xDSL connection used to s...

Page 280: ...ter in this field must not be a number and no special characters or umlauts must be used either ATM PVC Select an ATM profile created in the ATM Profiles menu in dicated by the global identifiers VPI...

Page 281: ...TP transmission 20 for LAN to LAN transmis sion 90 for Internet connections Fields in the PPPoA IP Mode and Routes menu Field Description IP Address Mode Choose whether your device has a static IP add...

Page 282: ...ck after connection failure for Enter the wait time in seconds before the device should try again after an attempt to set up a connection has failed The de fault value is 60 Maximum Number of Di alup...

Page 283: ...ACK Packets Select whether the TCP download is to be optimised in the event of intensive TCP upload This function can be specially applied for asymmetrical bandwidths ADSL The function is activated wi...

Page 284: ...f the ISDN Callback function 10 1 4 1 New Choose the New button to set up new ISDN interfaces Fig 116 WAN Internet Dialup ISDN New 10 WAN Funkwerk Enterprise Communications GmbH 270 bintec R1xxx R3xxx...

Page 285: ...data connections User Name Enter your device code local PPP user name Remote User for Dialin only Enter the code of the remote terminal remote PPP user name Password Enter the password Always on Selec...

Page 286: ...default route The function is activated with Enabled The function is disabled by default Create NAT Policy Only if IP Address Mode Static and Get IP Address When you configure an ISDN Internet connec...

Page 287: ...iled The default value is 300 Maximum Number of Di alup Retries Enter the number of unsuccessful attempts to setup a connec tion before the interface is blocked Possible values are 0 to 100 The defaul...

Page 288: ...ction If Encryption is set the remote terminal must also sup port it otherwise a connection cannot be set up Possible values None default value MPP encryption is not used Enabled MPP encryption V2 wit...

Page 289: ...d maintaining the initial connection to your device without call back This only applies if no fixed outgoing number has been configured for the connection partner This is done by pressing CANCEL to cl...

Page 290: ...tgoing calls where you dial your connec tion partner The calling party number of the incoming call is compared with the number entered under Subscriber Number MSN Call Number Enter the connection part...

Page 291: ...e responds to an ARP request only if the status of the connection to the connection partner is Up active i e a connection already exists to the connection partner DNS Negotiation Select whether your d...

Page 292: ...nterfaces Fig 117 WAN Internet Dialup GPRS UMTS New The WAN Internet Dialup GPRS UMTS New menu consists of the following fields Fields in the GPRS UMTS Basic Parameters menu Field Description Descript...

Page 293: ...ng the last traffic data packet and clearing the connection Possible values are 0 to 3600 seconds 0 deactivates the short hold The default value is 300 Fields in the GPRS UMTS IP Mode and Routes menu...

Page 294: ...value the higher the priority of the route possible values 0 15 The default value is 1 The Advanced Settings menu consists of the following fields Fields in the Advanced Settings menu Field Descriptio...

Page 295: ...server from the connection partner or sends these to the connection partner The function is activated with Enabled The function is enabled by default Prioritize TCP ACK Packets Select whether the TCP...

Page 296: ...up cable to connect an external analogue modem to the AUX port on a bintec gate way 10 1 6 1 New Choose the New button to set up new AUX interfaces Fig 118 WAN Internet Dialup AUX New The WAN Internet...

Page 297: ...tic short hold setting determines how many seconds should pass between sending the last traffic data packet and clearing the connection Possible values are 0 to 3600 seconds 0 deactivates the short ho...

Page 298: ...mask of Remote IP Address If no entry is made your device uses a default netmask Metric The lower the value the higher the priority of the route possible values 0 15 The default value is 1 IP Assignme...

Page 299: ...e values PAP CHAP MS CHAP Primarily run CHAP on denial the au thentication protocol required by the PPTP partner MSCHAP version 1 or 2 possible PAP Only PAP default value PPP Password Authentica tion...

Page 300: ...ve Select one of the following options No PPP Negotiation Your device calls the connection partner to request a callback Windows Client Mode Your device calls the connection partner to request a callb...

Page 301: ...s Dial Numbers menu Field Description Entries Add new entries with Add Fields in the Dial Number Configuration Entry 1 menu only shown for Entries Add Field Description Mode Only if Entries Add Select...

Page 302: ...rver for PPP connections You can use this function by providing one or more pools of IP addresses These IP addresses can be assigned to dialling in connection partners for the duration of the connecti...

Page 303: ...field enter the last IP address of the range 10 2 ATM 10 2 1 Profiles In the WAN ATM Profiles menu a list of all ATM profiles is shown If the connection for your Internet access is set up using the in...

Page 304: ...he WAN ATM Profile New menu consists of the following fields Fields in the Profile ATM Profiles Parameter menu Field Description Provider Select one of the preconfigured ATM profiles for your provider...

Page 305: ...s the iden tification number of the virtual path to be used Note your pro vider s instructions Possible values are 0 to 255 The default value is 8 Virtual Channel Identifier VCI Only for Provider User...

Page 306: ...Type Ethernet over ATM Select whether this Ethernet over ATM interface is to be used for all PPPoE connections The function is activated with Enabled The function is disabled by default Address Mode...

Page 307: ...r the host name registered with the provider to be used by your device for DHCP requests The maximum length of the entry is 45 characters Fields in the Settings for Routed Protocols over ATM menu only...

Page 308: ...parameters is shown Your device supports QoS Quality of Service for ATM interfaces Caution ATM QoS should only be used if your provider specifies a list of data traffic parameters traffic contract The...

Page 309: ...y a priority is implicitly assigned from CBR highest priority through VBR 1 VBR 3 to VBR lowest priority Possible settings Unspecified Bit Rate UBR default value Unspecified Bit Rate A particular data...

Page 310: ...network i e is discarded if ne cessary The Peak Cell Rate PCR represents the maximum possible data rate This category is suitable for critical applica tions with burst data traffic Peak Cell Rate PCR...

Page 311: ...ed This is ensured without a specific OAM configuration for both flow level 4 and flow level 5 Two mechanisms are available for monitoring the ATM connection Loopback Tests and OAM Continuity Check OA...

Page 312: ...nel default value f4 virtual path level The OAM settings are used for the vir tual path Virtual Channel Connec tion VCC Only for OAM Flow Level f5 Select the already configured ATM connection to be mo...

Page 313: ...ed as in terrupted down Possible values are 1 to 99 The default value is 5 Loopback Segment Select whether you want to activate the loopback test for the segment connection segment connection of the l...

Page 314: ...c tion field OAM CC requests are either sent and or responded to There is no CC negotiation None The function is disabled Also select whether the test cells of the OAM CC are to be sent or received Po...

Page 315: ...le settings Both default value CC data is both received and generated Sink CC data is received Source CC data is generated None The function is disabled 10 3 Leased line A leased line is a permanent f...

Page 316: ...list of all automatically generated leased line connections is shown Automatic generation requires the corresponding ISDN interface to be configured Fig 123 WAN Leased Line Interfaces 10 WAN Funkwerk...

Page 317: ...ameters menu Field Description Description Enter the desired description for the connection Fields in the Interfaces IP Mode and Routes menu Field Description Default Route Select whether the route to...

Page 318: ...th Enabled The function is disabled by default Compression If necessary select the type of encryption that should be used for data traffic to the connection partner If encryption is set the remote ter...

Page 319: ...values Inactive default value Deactivates Proxy ARP for this connection partner Active or Idle Your device only responds to an ARP re quest if the status of the connection to the connection partner is...

Page 320: ...Fields in the Interfaces IP Mode and Routes menu Field Description Default Route Select whether the route to this connection partner is to be defined as the default route The function is activated wit...

Page 321: ...on partner If encryption is set the remote terminal must also support it otherwise a connection cannot be set up Possible values None default value Encryption is not used STAC MS STAC MPPC Microsoft P...

Page 322: ...RP re quest if the status of the connection to the connection partner is Up or Dormant In the case of Idle your device only re sponds to the ARP request the connection is not set up until someone actu...

Page 323: ...efine other routing entries for this connection class Add a new entry with Add The Advanced Settings menu consists of the following fields Fields in the Advanced Settings menu Field Description LCP Al...

Page 324: ...tion to the connection partner is Up or Dormant In the case of Idle your device only re sponds to the ARP request the connection is not set up until someone actually wants to use the route Active Only...

Page 325: ...me Jitter Control Controlled Interfaces New menu consists of the following fields Fields in the Real Time Jitter Control Basic Settings menu Field Description Interface Define for which interfaces voi...

Page 326: ...Voice data transmission is not optimised Always Voice data transmission is always optimised Maximum Upload Speed Enter the maximum available upstream bandwidth in kbps for the selected interface 10 W...

Page 327: ...ts The IPSec implementation can also be smoothly integrated in a Public Key Infrastructure PKI The funkwerk IPSec implementation achieves this firstly by using the Authentication Header AH protocol an...

Page 328: ...n the list IPSec Tunnels on page 491 11 1 1 1 New Choose the New button to set up more IPSec peers Fig 129 VPN IPSec IPSec Peers New The VPN IPSec IPSec Peers New menu consists of the following fields...

Page 329: ...try can be omitted in certain configurations whereby your device then cannot initiate an IPSec connection Peer ID Select the ID type and enter the peer ID This entry is not necessary in certain config...

Page 330: ...cal IP Address Only if Standard Route is not enabled Enter the WAN IP address of your IPSec connection It could be the same as a LAN IP address configured at this router Route Entries Define routing e...

Page 331: ...nction is activated with Enabled The function is disabled by default Proxy ARP Select whether your device is to respond to ARP requests from its own LAN on behalf of the specific connection partner Po...

Page 332: ...try ensures that incoming calls for this number are routed to the IPSec service If callback is active the peer is caused to initiate setting up an IPSec tunnel by an ISDN call as soon as this tunnel i...

Page 333: ...ted by the remote station and therefore incurs costs If a peer whose IP address has been assigned dynamically wants to arrange for another peer to set up an IPSec tunnel it can transfer its own IP add...

Page 334: ...all in the D channel can also incur costs An incorrect configuration at the called side can mean that the called side opens the B channel the calling side incurs costs Fields in the Advanced Settings...

Page 335: ...r its IP address to the peer Possible values Autodetect Best Mode Your device automatically de termines the most favourable mode It first tries all D channel modes before switching to the B channel Co...

Page 336: ...D channel SUBADDR The IP address is transferred in the subaddress in formation elements of the D channel LLC and SUBADDR The IP address is transferred in both the LLC and subaddress information eleme...

Page 337: ...uniquely defines the type of rule Proposals In this field you can select any combination of encryption and message hash algorithms for IKE phase 1 on your device The combination of six encryption algo...

Page 338: ...of secur ity against attacks and general speed Here it is used with a key length of 128 bits AES 192 Rijndael has been nominated as AES due to its fast key setup low memory requirements high level of...

Page 339: ...ation at 1024 bits is used to create the en cryption material 5 1536 bit During the Diffie Hellman key calculation modular exponentiation at 1536 bits is used to create the en cryption material Lifeti...

Page 340: ...field is only shown for authentication settings based on certificates and indicates that a certificate is essential Mode Select the phase 1 mode Possible values Aggressive default value The Aggressive...

Page 341: ...l Alive Check During communication between two IPSec peers one of the peers may become unavail able e g due to routing problems or a reboot However this can only be detected when the end of the lifeti...

Page 342: ...oth sides This option only checks the availability of the peer if data is to be sent to it Dead Peer Detection Idle Use DPD dead peer de tection in accordance with RFC 3706 DPD uses a request reply pr...

Page 343: ...by default CA Certificates Only if Authentication Method DSA Signature RSA Sig nature or RSA Encryption If you enable the Trust following CA certificates option you can select up to three additional C...

Page 344: ...ndard column you can mark the profile to be used as the default profile 11 1 3 1 New Choose the New button to set up new profiles Fig 133 VPN IPSec Phase 2 Profiles New 11 VPN Funkwerk Enterprise Comm...

Page 345: ...uirements high level of secur ity against attacks and general speed Here it is used with a key length of 128 bits AES 192 Rijndael has been nominated as AES due to its fast key setup low memory requir...

Page 346: ...used to protect the keys of a renewed phase 2 SA even if the keys of the phase 1 SA have become known The field has the following options 1 768 bit During the Diffie Hellman key calculation modular e...

Page 347: ...can be significantly affected by the increased effort during compression The function is activated with Enabled The function is disabled by default Alive Check Select whether and how IPSec heartbeats...

Page 348: ...Enabled The function is enabled by default 11 1 4 IP Pools In the IP Pools menu a list of all IP pools for your configured IPSec connections is dis played If have set IP Address Assignment IKE Config...

Page 349: ...he VPN IPSec Options menu consists of the following fields Fields in the Options Global Options menu Field Description Enable IPSec Select whether you want to activate IPSec The function is activated...

Page 350: ...debug The Advanced Settings menu is for adapting certain functions and features to the special requirements of your environment i e mostly interoperability flags are set The default val ues are globa...

Page 351: ...cookie In this case choose Enabled Zero Cookie Size Only if Use Zero Cookies activated Enter the length in bytes of the zeroed SPI used in IKE propos als The default value is 32 Dynamic RADIUS Au the...

Page 352: ...key hash of the remote end is sent together with the other authentication data Only applies for RSA encryption activate this function with Enabled to sup press this behaviour 11 2 L2TP The layer 2 tun...

Page 353: ...P Tunnel Profiles New The VPN L2TP Tunnel Profiles New menu consists of the following fields Fields in the Tunnel Profiles Basic Parameters menu Field Description Description Enter a description for t...

Page 354: ...ty on the LNS the related profile qualifies as the standard entry and is used for all incoming calls for which a profile with a matching Remote Hostname can be found Password Enter the password to be...

Page 355: ...Description Local IP Address Enter the IP address to be used as the source address for all L2TP connections based on this profile If this field is left empty your device uses the IP address of the in...

Page 356: ...which is received no response The available values are 8 to 255 the default value is 5 Data Packets Sequence Numbers Select whether your device is to use sequence numbers for data packets sent through...

Page 357: ...a name for uniquely identifying the L2TP partner The first character in this field must not be a number and no special characters or umlauts must be used either The maxim um length of the entry is 25...

Page 358: ...evice Password Enter the password Always on Select whether the interface should always be activated The function is activated with Enabled The function is disabled by default Connection Idle Timeout O...

Page 359: ...f IP Address Mode Get IP Address and Static Specify whether Network Address Translation NAT is to be ac tivated for this connection The function is activated with Enabled The function is disabled by d...

Page 360: ...run MS CHAP version 1 PPP Microsoft Challenge Handshake Authentication Protocol MS CHAPv2 Run MS CHAP version 2 only Encryption If necessary select the type of encryption that should be used for data...

Page 361: ...in formation and propagated over active interfaces Active OSPF is activated for this interface i e routes are propagated or OSPF protocol packets sent over this interface Down OSPF is disabled for thi...

Page 362: ...Fig 138 VPN L2TP Options The VPN L2TP Options menu consists of the following fields Fields in the Options Global Options menu Field Description UDP Destination Port Enter the port to be monitored by...

Page 363: ...ites Once these connections are available a tunnel is set up to the PPTP partner over the Internet using PPTP The PPTP subsystem sets up a control connection between the endpoints of the tunnel This i...

Page 364: ...PTP Tunnel New The VPN PPTP PPTP tunnel New menu consists of the following fields Fields in the PPTP Tunnel PPTP Partner Parameter menu Field Description Description Enter a unique name for the tunnel...

Page 365: ...fault Connection Idle Timeout Only if Always up is disabled Enter the idle interval in seconds This determines how many seconds should pass between sending the last traffic data pack et and clearing t...

Page 366: ...for IP Address Mode Static Assign the IP address from your LAN to the ISDN interface which is to be used as your device s internal source address Route Entries Only if IP Address Mode Static Define ro...

Page 367: ...o CHAP if refused use the authentication protocol requested by the PPTP partner MSCHAP version 1 or 2 possible MS CHAPv2 default value Run MS CHAP version 2 only Encryption If necessary select the typ...

Page 368: ...r APR requests from your LAN on behalf of the specific PPTP partner Possible values Inactive default value Disables Proxy ARP Address Resolution Protocol for this PPTP partner Up or Dormant Your devic...

Page 369: ...cations Incoming ISDN Number Only if Callback is enabled Enter the ISDN number from which the remote device calls the local device calling party number Outgoing ISDN Number Only if Callback is enabled...

Page 370: ...1 from the Microsoft Windows XP page and installed it Since in SP 1 Microsoft has changed the confirma tion algorithm in the GRE protocol the automatic window adapt ation for GRE must be turned off o...

Page 371: ...ol is available in two versions GRE V 1 for use in PPTP connections RFC 2637 configuration in the PPTP menu GRE V 0 RFC 2784 for general encapsulation using GRE In this menu you can configure a virtua...

Page 372: ...no IP address is given this corresponds to IP address 0 0 0 0 the source IP address of the GRE packets is selected automatically from one of the addresses of the interface via which the GRE partner i...

Page 373: ...ult value is 1 MTU Enter the maximum packet size Maximum Transfer Unit MTU in bytes that is allowed for the GRE connection between the partners Possible values are 1 to 8192 The default value is 1500...

Page 374: ...themselves cannot be changed but a few external attributes can be changed depending on the type of the selected entry The VPN Certificates Certificate List menu consists of the following fields Field...

Page 375: ...ficate content Use Settings from superior certificate The set tings of the higher level certificate are used if one exists It is does not the same procedure is used as that described under Only if a C...

Page 376: ...h separate keys and to delegate the operation to separate registration authorities if applicable When a certificate is downloaded automatically i e if CA Certificates Download is selected all the cert...

Page 377: ...on Enter a unique description for the certificate Mode Select the way in which you want to request the certificate Possible settings Manual default value Your device generates a PKCS 10 for the key Th...

Page 378: ...server e g ht tp scep funkwerk de 8080 scep scep dll Your CA administrator can provide you with the necessary data CA Certificate Only if Mode SCEP Select the CA certificate Download In CA Name enter...

Page 379: ...n Certificate i e the same certificate is used as for signing Password Only if Mode SCEP You may need a password from the certification authority to ob tain certificates for your keys Enter the passwo...

Page 380: ...isational unit according to CA Organisation Only for Custom disabled Enter the organisation according to CA Locality Only for Custom disabled Enter the location according to CA State Province Only for...

Page 381: ...her your device automatically stores the various steps of the enrolment internally This is an advantage if enrol ment cannot be concluded immediately If the status has not been saved the enrolment can...

Page 382: ...browser Local Certificate De scription Enter a unique description for the certificate File Encoding Select the type of coding so that your device can decode the certificate Possible values auto defaul...

Page 383: ...Ls CRL Import menu Field Description External Filename Enter the file path and name of the CRL to be imported or use Browse to select it from the file browser Local Certificate De scription Enter a un...

Page 384: ...cates Certificate Servers menu a list of all certificate servers is shown 11 5 3 1 New Choose the New button to set up new certificate servers Fig 146 VPN Certificates Certificate Servers New The VPN...

Page 385: ...ld Description Description Enter a unique description for the certificate server LDAP URL Path Enter the LDAP URL of the server Funkwerk Enterprise Communications GmbH 11 VPN bintec R1xxx R3xxx R4xxx...

Page 386: ...nfiguration The configuration work for the SIF is com paratively straightforward with systems like Network Address Translation NAT and IP Ac cess Lists IPAL As SIF NAT and IPAL are active in the syste...

Page 387: ...is informed of the packet rejection The incoming packets are processed as follows The SIF first checks if an incoming packet can be assigned to an existing connection If so it is forwarded If the pack...

Page 388: ...e packet is rejected A deny rule also has no effect if a relevant packet has previously been allowed by another filter rule In the Firewall Policies Filter Rules menu a list of all configured filter r...

Page 389: ...wall Interfaces Groups addresses see Firewall Addresses Address List and address groups see Firewall Addresses Groups for selection The value Any means that neither the source interface nor the source...

Page 390: ...roups configured in Firewall Ser vices Groups can be selected Action Select the action to be applied to a filtered packet Possible values Access default value The packets are forwarded on the basis of...

Page 391: ...t value No priority Low Latency Low Latency Transmission LTT i e hand ling of data with the lowest possible latency e g suitable for VoIP data High Medium Low 12 1 2 QoS More and more applications nee...

Page 392: ...led The function is disabled by default Specify bandwidth Only for Traffic Shaping Enabled Enter the maximum available bandwidth in kbps for the selected interface Filter Rules This field contains a l...

Page 393: ...ccordance with the priority defined in the firewall policy The option is deactivated by default 12 1 3 Options Fig 150 Firewall Policies Options The Firewall Policies Options menu consists of the foll...

Page 394: ...ble values are 30 to 86400 The default value is 180 TCP Inactivity Enter the inactivity time after which a TCP session is to be re garded as expired in seconds Possible values are 30 to 86400 The defa...

Page 395: ...ce groups Fig 151 Firewall Interfaces Groups New The Firewall Interfaces Groups New menu consists of the following fields Fields in the Groups Basic Parameters menu Field Description Description Enter...

Page 396: ...enu consists of the following fields Fields in the Address List Basic Parameters menu Field Description Description Enter the desired description of the address Address Type Select the type of address...

Page 397: ...2 Groups In the Firewall Addresses Groups menu a list of all configured address groups is shown You can group together addresses This makes it easier to configure firewall rules 12 3 2 1 New Choose th...

Page 398: ...vices Service List menu a list of all available services is shown 12 4 1 1 New Choose the New button to set up new services Fig 154 Firewall Services Service List New The Firewall Services Service Lis...

Page 399: ...to 65535 Source Port Range Only if Protocol TCP UDP TCP or UDP In the first field enter the source port to be checked if applic able If a port number range is specified in the second field enter the l...

Page 400: ...Port Unreachable Fragmentation Needed Communication with Destination Network is Ad ministratively Prohibited Communication with Destination Host is Admin istratively Prohibited 12 4 2 Groups In the F...

Page 401: ...he Groups Basic Parameters menu Field Description Description Enter the desired description of the service group Members Select the members of the group from the available service ali ases To do this...

Page 402: ...ephones to connect by SIP to a VoIP Provider your device has an Applica tion Level Gateway ALG i e an appropriate proxy that implements the necessary NAPT and firewall releases Note The Application Le...

Page 403: ...escription Enter the name of the application level gateway Administrative Status Select whether the SIP proxy should be enabled or disabled The function is activated by choosing Enabled The function i...

Page 404: ...ssion does not have to be switched on if the media gateway supervises the VoIP connec tion The function is activated by choosing Enabled The function is disabled by default 13 1 2 SIP Endpoints Shows...

Page 405: ...phones are used Server a server is used so that termin als can register from outside Protocol Select the protocol to be used for data transmission Possible values UDP default value or TCP If a protoco...

Page 406: ...ices connected to the media gateway i e the subscriber numbers of the SIP terminals and the subscriber num bers of the ISDN or analogue terminals depending on the available PSTN interfaces In the VoIP...

Page 407: ...f the terminal Extension User Name Enter the subscriber number A maximum of 40 characters can be entered Interface Type Select the interface type to be used The selection depends on the interfaces ava...

Page 408: ...ime in seconds after which the current registration be comes invalid and a new registration request is therefore sent For clients the external port is recognised automatically and should not be change...

Page 409: ...and so on Possible values Standard default value the codec in the first position in the menu shown will be used if possible Quality the codecs are sorted by quality If possible the codec with the bes...

Page 410: ...ise Generation in troduces a low level of background noise to avoid the impres sion that during pauses at the other end the connection is lost The function is activated with Enabled The function is en...

Page 411: ...Accounts Basic Parameters menu Field Description Description Enter the name of the account Administrative Status Select whether the administrative status of the account should be enabled or disabled T...

Page 412: ...enter a name only if for all SIP sessions the communication is not to be direct but via a further proxy Enter a name or IP address only if this is explicitly specified by the provider Realm Enter a n...

Page 413: ...the REGISTRAR server and queried by other proxies to find the user The function is activated with Enabled The function is enabled by default Expire Time Only if Registration is enabled Enter the time...

Page 414: ...oved from the sender address for incoming calls This corresponds to the trunk exchange number of an exchange Fields in the Advanced Settings Codec Settings menu Field Description Codec Proposal Se que...

Page 415: ...Law and G 729 are enabled by default Fields in the Advanced Settings Voice Quality Settings menu Field Description Echo cancellation Select whether echo cancellation should be used Echo cancellation i...

Page 416: ...u a list of all existing entries is shown 13 2 3 1 Edit New Choose the icon to edit existing entries Select the New button to create new entries Fig 160 VoIP Media Gateway Call Routing Edit New The Vo...

Page 417: ...n NT mode FXS interfaces SIP trunking accounts in DDI server mode Deny For calls that are not to be routed to be blocked Calling Line You can restrict the routing entry to the line on which the call c...

Page 418: ...outing Rules menu only if Type is not Deny Field Description Priority Enter a whole number starting with 1 in ascending order to define the order of filter rules The rules are worked through in the or...

Page 419: ...234 manipulated number 4991196731234 13 2 4 CLID Translation Here you define the processing of the calling party number for incoming calls You can for example add a prefix to a received call number in...

Page 420: ...he interfaces available and on the SIP accounts that have been created Possible values PRI Restricts the entry to the selected PRI interface BRI Restricts the entry to the selected BRI interface FXO R...

Page 421: ...Called Address If the Called Address is used Called Line Any should be set Calling Address Transla tion Enter the transformation rule applied to the call numbers Notation a b i e a is replaced by b A...

Page 422: ...the VoIP Media Gateway Call Translation menu a list of all existing entries is shown on which the received number is edited 13 2 5 1 Edit New Choose the icon to edit existing entries Select the New b...

Page 423: ...ess field is translated to the Local Address For outgoing calls the signalled Calling Party Number corresponds in the menu to the Local Address field is translated to the External Address Numerical an...

Page 424: ...teway in accordance with the configured call routing and the local extensions For calls that are to be routed via a particular pro vider account you must configure a corresponding call rout ing entry...

Page 425: ...are controlled by the media gateway and routed via the media gateway The participating terminal devices e g SIP telephones are not connected dir ectly with one another Note that for VoIP to VoIP conne...

Page 426: ...Description ate Fields in the Advanced Settings menu Field Description Speed Dialing Click Add to configure new speeddial numbers 13 VoIP Funkwerk Enterprise Communications GmbH 412 bintec R1xxx R3xxx...

Page 427: ...view of DNS requests on your device Global Name Server The IP addresses of global name servers that are queried if your device is unable to an swer requests itself or by forwarding entries are entered...

Page 428: ...ervers can resolve the name the information is forwarded and a dy namic entry created in the cache 5 Otherwise if overwriting the addresses of the global name servers is allowed DNS Server Configurati...

Page 429: ...the standard domain name of your device DNS Server Configura tion Select whether the addresses of the global name server on your device can be overwritten by transferred name server ad dresses Possib...

Page 430: ...d The function is enabled by default Negative Cache Select whether the negative dynamic cache is to be activated i e whether queried names for which a DNS server has sent a negative response are store...

Page 431: ...tner configured in the system IP Address to use for DNS WINS Server As signment As DHCP Server Select which name server addresses are sent to the DHCP cli ent if your device is used as DHCP server Pos...

Page 432: ...tatic Hosts New The Local Services DNS Static Hosts New menu consists of the following fields Fields in the Static Hosts Basic Parameters menu Field Description Description Enter the host name to whic...

Page 433: ...None A DNS request is ignored no answer is given IP Address Only if Response Positive Enter the IP address assigned to Name TTL Enter the the time for which the assignment of Name to IP Ad dress is to...

Page 434: ...ain is to be forwarded Possible values Host default value Domain Host Only for Forward Host Enter the name of the host to be forwarded The entry can also start with the wildcard e g funkwerk com If a...

Page 435: ...the defined Interface DNS Server The request is forwarded to the defined DNS server Interface Only for Forward to Interface Select the interface via which the requests for the defined Do main are to b...

Page 436: ...ect All button A dynamic entry can be converted to a static entry by marking the entry and confirming with Set to Static This entry then disappears from the list and is included in the list in the Sta...

Page 437: ...ests Invalid DNS Packets Shows the number of invalid DNS packets received and ad dressed direct to your device DNS Requests Shows the number of valid DNS requests received and ad dressed direct to you...

Page 438: ...individual user name for the DynDNS service e g dyn_client The service providers offer various domain names for this so that a unique host name results for your device e g dyn_client provider com The...

Page 439: ...whose IP address is to be propagated over the DynDNS service e g the interface of the Internet Ser vice Provider User Name Enter the user name as registered with the DynDNS provider Password Enter th...

Page 440: ...forwarded if the host currently configured is not to receive mail Ask your provider about this forwarding service and make sure e mails can be received from the host entered as MX Wildcard Select whe...

Page 441: ...host name or IP address of the server on which the provider s DynDNS service runs Update Path Enter enter the path on the provider s server that contains the script for managing the IP address of you...

Page 442: ...ses to requesting PCs in the LAN from a predefined IP address pool A PC sends out an ARP re quest and in turn receives its IP address assigned by your device You therefore do not need to allocate fixe...

Page 443: ...HCP Server DHCP Pool New menu consists of the following fields Fields in the DHCP Pool Basic Parameters menu Field Description Interface Select the interface over which the addresses defined in IP Ran...

Page 444: ...owing fields Fields in the Advanced Settings menu Field Description Gateway Select which IP address is to be transferred to the DHCP client as gateway Possible values Use router as gateway The IP addr...

Page 445: ...g In the Local Services DHCP Server IP MAC Binding menu a list is shown of all cli ents that have received an IP address from your device via DHCP You can now allocate an IP address from a defined IP...

Page 446: ...n Enter the name of the host to the MAC Address of which the IP Address is to be bound A character string of up to 256 characters is possible IP Address Enter the IP address to be assigned to the MAC...

Page 447: ...client in the local network Fig 173 Local Services DHCP Server DHCP Relay Settings The Local Services DHCP Server DHCP Relay Settings menu consists of the fol lowing fields Fields in the DHCP Relay Se...

Page 448: ...b Filter The action resulting from the classification is configured on your device 14 4 1 Global Settings This menu contains the configuration of basic parameters for using the Proventia Web Fil ter F...

Page 449: ...to which a URL is to be checked by the Cobion Orange Filter Action if Server not reachable Select which is to be done with URL requests if the web filtering server cannot be reached Possible values A...

Page 450: ...nu configure which categories of In ternet pages are to be handled and how You configure the relevant filters for this purpose A list of filters already configured is dis played There are basically di...

Page 451: ...s are first the standard categories of the Proventia Web Filter default value Pornography Nudity Actions can also be defined for the following special cases e g Default behaviour This category applies...

Page 452: ...e at which the filter is to be deactiv ated The time is entered in the form hh mm The default value is 00 00 Action Select the action to be executed if the filter matches a call Possible values Block...

Page 453: ...iption URL IP Address You enter a URL or IP address The length of the entry is limited to 60 characters Blacklisted Whitelisted You can select whether a URL or IP address can always in the White List...

Page 454: ...sign user names and passwords to users of the CAPI applications on your device This makes sure that only authorised users can receive incoming calls and make outgoing calls via CAPI The CAPI service a...

Page 455: ...h password You should then delete the user default without password 14 5 1 User In the Local Services CAPI Server Users menu a list of all configured CAPI users is shown 14 5 1 1 New Choose the New bu...

Page 456: ...ce Access Select whether access to the CAPI service is to be permitted or denied for the user The function is activated by choosing Enable The function is enabled by default 14 5 2 Options Fig 179 Loc...

Page 457: ...ue is 2662 14 6 Scheduling Your device has a event scheduler which enables certain standard actions activation or deactivation of interfaces to be carried out on a time dependent basis Note To run the...

Page 458: ...le Action menu Field Description Select Action Select the desired action Possible values Reboot Device default value Your device is rebooted Activate Interface The interface defined in the Select Inte...

Page 459: ...face or if Select Action Activate WLAN or Deactivate WLAN Select which interface is to be activated or deactivated Source Location Only if Select action Trigger software update Select the desired sour...

Page 460: ...Settings with Condition Type Weekday Monday default value Sunday Possible values for Condition Settings with Condition Type Periods Daily The initiator becomes active daily default value Monday Friday...

Page 461: ...Local Services Scheduling Options menu you configure the schedule inter val Fig 181 Local Services Scheduling Options The Local Services Scheduling Options menu consists of the following fields Field...

Page 462: ...in this field the scheduler is deactivated 14 7 Surveillance In this menu you can configure an automatic availability check for hosts or interfaces and automatic ping tests Note This function cannot b...

Page 463: ...s the IP address to be monitored Status Displays the operating state of the monitored IP address Interface Action Shows the chosen interface action Interface Shows the interface to which the chosen in...

Page 464: ...255 If an entry has not yet been created a new group is created using the New ID option If entries have been created you can select one from the list of created groups Each host to be monitored must b...

Page 465: ...are 1 to 65536 The default value is 10 The smallest Interval of the group members is used within a group Trials Enter the number of pings that must remain unanswered for the host to be regarded as un...

Page 466: ...onitored Status Shows the operating status of the selected interface Trigger Displays the chosen state transition Interface Action Shows the interface action Interface Shows the interface to which the...

Page 467: ...t the state or state transition of Monitored Interfaces that is to trigger a particular Interface Action Possible values Interface goes up default setting Interface goes down Interface Action Select t...

Page 468: ...erator In the Local Services Monitoring Ping Generator menu a list is shown of all pings configured for automatic generation Fig 186 Local Services Surveillance Ping Generator Values in the list Ping...

Page 469: ...ig 187 Local Services Monitoring Ping Generator New The Local Services Monitoring Ping Generator New menu consists of the follow ing fields Fields in the Ping Generator Basic Parameters menu Field Des...

Page 470: ...tion he could dial in to the LAN by ISDN if under WAN Internet Dialup ISDN the field Always on is enabled 14 8 1 Options All interfaces for which the theft protection is enabled are administratively s...

Page 471: ...The function is disabled by default Dialling Number Only if ISDN theft protection service is enabled Enter the subscriber number that the gateway dials to call itself Incoming Number Only if ISDN thef...

Page 472: ...e values are 2 to 20 The default value is 5 14 9 Funkwerk Discovery 14 9 1 Device discovery The funkwerk Discovery protocol is used to identify and configure bintec access points that are in the same...

Page 473: ...t discovery is not active Discovery is displayed when dis covery is currently being carried out This discovery function also enables your device to be discovered and configured by other access points...

Page 474: ...ce of your device on which discovery is carried out MAC Address The value of this field can only be read Shows the MAC address of the discovered access point Node Name You can change the name of the d...

Page 475: ...point reported an authorisation error Check the authentication password Invalid IP Parameters There is a problem with the in tended IP parameters IP address netmask or gateway ad dress Destination Unr...

Page 476: ...e Local Services Funkwerk Discovery Options menu consists of the following fields Fields in the Options Discovery Server Options menu Field Description Enable Discovery Server Select whether your devi...

Page 477: ...the gateway is 5678 The LAN UPnP client acts as a so called service control point i e it re cognizes and controls the UPnP devices on the network The ports assigned dynamically by for example MSN Mess...

Page 478: ...articular interface from the local network The function is activated with Enabled The function is disabled by default Interface is UPnP con trolled Determine whether the NAT configuration of this inte...

Page 479: ...s with UPnP releases in accordance with the parameters con tained in the request from the LAN UPnP client independently of the IP address of the requesting LAN UPnP client The function is disabled by...

Page 480: ...system reboot in this menu 15 1 Diagnostics In the Maintenance Diagnosis menu you can test the accessibility of individual hosts the resolution of domain names and certain routes 15 1 1 Ping Test Fig...

Page 481: ...ain name of a particular host is correctly re solved The Output Results field shows the DNS test messages The DNS test is started by entering the domain name to be tested in DNS Address and clicking o...

Page 482: ...age the software version of your device your configuration files and the language of the Funkwerk Configuration Interface Your device contains the version of the system software available at the time...

Page 483: ...tored in the flash when your device is switched off RAM The current configuration and all changes you set on your device during operation are stored in the working memory RAM The contents of the RAM a...

Page 484: ...current version of the SHDSL logic loaded on your device ADSL Logic Shows the current version of the ADSL logic loaded on your device Fields in the Configuration Management Software and Configuration...

Page 485: ...which you can select the storage location on your PC and enter the desired file name Copy The configuration file in the Source File Name field is saved as Destination file name Rename The configuratio...

Page 486: ...configura tion file to be exported Include Certificates and Keys For Action Export configuration Export configur ation with status information select whether the se lected Action is also to apply for...

Page 487: ...the Technical Data chapter of the manual Note Before a reboot make sure you confirm your configuration changes by clicking the Save Configuration button so that these are not lost when you reboot Fig...

Page 488: ...a regu larly and ensure that there is always enough spare capacity available on the hard disk of your PC Syslog Daemon All Unix operating systems support the recording of syslog messages For Windows P...

Page 489: ...ds Fields in the Syslog Servers Basic Parameters menu Field Description IP Address Enter the IP address of the host to which syslog messages are passed Level Select the priority of the syslog messages...

Page 490: ...e default value is local0 Timestamp Select the format of the time stamp in the syslog Possible values None default value No system time indicated Time System time without date Date Time System time wi...

Page 491: ...ing function which enables you to collect a lot of useful information about the IP network traffic each individual IP session 16 2 1 Interfaces In this menu you can configure the IP Accounting functio...

Page 492: ...order sequences separated by a slash e g t or n or defined tags Possible format tags Format tags for IP accounting messages Field Description d Date of the session start in the format DD MM YY t Time...

Page 493: ...o P O s 16 3 E mail Alert It was previously possible to send syslog messages from the router to any syslog host De pending on the configuration E mails are sent to the administrator as soon as relevan...

Page 494: ...ng the mails The entry is limited to 40 characters SMTP Authentication Forward the incoming E mails Possible values None default value The E mails are not forwarded ESMTP The E mails are forwarded to...

Page 495: ...log messages is displayed 16 3 2 1 New Choose the New button to create new E mail Alert Recipients Fig 203 External Reporting E mail Alert E mail Alert Recipient The External Reporting E mail Alert E...

Page 496: ...e router must wait after a relevant event be fore it is forced to send the alert mail Possible values are 0 to 86400 The value 0 disables the timeout Number of Messages Enter the number of syslog mess...

Page 497: ...SNMP is a standard protocol you can use any other SNMP managers e g HPOpenView For more information on the SNMP versions see the relevant RFCs and drafts SNMP V 1 RFC 1157 SNMP V 2c RFC 1901 1908 SNMP...

Page 498: ...P traps Any whole number is possible The default value is 162 SNMP Trap Community Only if SNMP Trap Broadcasting is enabled Enter a new SNMP code This must be sent by the SNMP Man ager with every SNMP...

Page 499: ...Windows tool Activity Monitor part of BRICKware for Windows Purpose The Activity Monitor enables Windows users to monitor the activities of your device Im portant information about the status of phys...

Page 500: ...ys ac cording to the configuration Activate the Activity Monitor as follows configure the relevant device s to be monitored Start and configure the Windows application on your PC see BRICKware for Win...

Page 501: ...5 255 255 means that the broadcast ad dress of the first LAN interface is used Single Host The UDP packets are sent to the IP address entered in the adjacent input field Update Interval Enter the upda...

Page 502: ...he Monitoring Internal Log System Messages menu a list of all internally stored system messages is shown Above the table you will find the configured Maximum Num ber of Syslog Entries and the configur...

Page 503: ...stem message Date Displays the date of the record Time Displays the time of the record Level Displays the hierarchy level of the message Subsystem Displays which subsystem of the device generated the...

Page 504: ...of the remote IPSec peer Remote Networks Displays the currently negotiated subnets of the remote termin al Security Algorithm Displays the encryption algorithm of the IPSec connection Status Displays...

Page 505: ...D The ID of your device for this IPSec connection is displayed here Remote ID The peer ID is displayed here Negotiation Type The exchange type is entered here Authentication Method The authentication...

Page 506: ...Tunnels Shows the IPSec licenses currently in use In use and the maximum number of licenses usable Maximum Field in the IPSec Statistics Peers menu Field Description Status Displays the number of IPS...

Page 507: ...r outgoing Outgoing packets Passed Shows the number of incoming Incoming or outgoing Outgo ing packets forwarded in plain text Dropped Shows the number of rejected incoming Incoming or outgoing Outgoi...

Page 508: ...lls Interface Displays additional information for PPP connections Direction Displays the send direction Incoming Outgoing Charge Displays the costs of the current connection Duration Displays the dura...

Page 509: ...e call was connected PPP IPSEC X 25 POTS Remote Number Displays the number that was dialled in the case of outgoing calls or from which the call was made in the case of incoming calls Interface Displa...

Page 510: ...eld Description Shows the serial number of the interface Description Displays the name of the interface Type Displays the interface text Tx Packets Shows the total number of packets sent Tx Bytes Disp...

Page 511: ...the first interface are shown Fig 214 Monitoring WLAN WLAN1 Values in the list WLAN1 Field Description Mbps Displays the possible data rates on this radio module Tx Packets Shows the total number of...

Page 512: ...successfully Displays the number of MSDUs successfully sent to multicast addresses including the broadcast MAC address Transmitted MPDUs Displays the number of MPDUs received successfully Multicast MS...

Page 513: ...en crypted One reason for this could be that a suitable key was not entered RTS frames with no CTS received Displays the number of RTS frames for which no CTS was re ceived Invalid packets received D...

Page 514: ...ata rate Mbit s Shows the current transmission rate of data received by this cli ent in Mbit s The following transmission rates are possible IEEE 802 11b 11 5 5 2 and 1 Mbit s IEEE 802 11g a 54 48 36...

Page 515: ...eceived signal strength in dBm Noise dBm Shows the received noise strength in dBm SNR dB Signal to Noise Ratio in dB is an indicator of the quality of the wireless connection Values 25 dB excellent 15...

Page 516: ...Monitoring WLAN WDS menu the current values and activities of the con figured WDS links are shown Fig 218 Monitoring WLAN WDS Values in the list WDS Field Description WDS description Shows the name of...

Page 517: ...s active The link test provides all the data necessary for checking the quality of the WDS link The link test also helps you to align the antennas This option is only displayed if the link state is En...

Page 518: ...rate of data received on this WDS link in Mbit s Rate Shows separately for each of the stated data rates the values for Tx Packets and Rx Packets 17 5 4 Client Links In the Monitoring WLAN Client Link...

Page 519: ...rent transmission rate of data received on this cli ent link in Mbit s Client Link Details You can use the icon to open a summary of further details of the client links Fig 221 Monitoring WLAN Client...

Page 520: ...uality in dB Data rate Mbit s Shows the current transmission rate of data received on this cli ent link in Mbit s Rate Shows separately for each of the stated data rates the values for Tx Packets and...

Page 521: ...tone Busy On Busy Call to engaged team subscriber If one subscriber in a team has taken the receiver off the hook or is on the telephone you can de cide whether other calls are to be signalled for th...

Page 522: ...tion to be selected and set up parameters must be defined for all the required connections These parameters are stored in lists which together permit the right con nection to be set up The PBX uses th...

Page 523: ...well 802 11b g One of the IEEE standards for wireless network hardware Products that meet the same IEEE standard can communicate with each oth er even if they come from different hardware manufacturer...

Page 524: ...a number of computers that form an in dependent 802 11 WLAN each with a wireless adapter Ad hoc net works work independently without an access point on a peer to peer basis Ad hoc mode is also known a...

Page 525: ...ure on telephones By pressing a key or code the caller requests a call back from the engaged terminal If the subscriber you want is not at their desk or cannot take the call they are auto matically co...

Page 526: ...omatic redialling Performance feature of a terminal If the line is busy several redial attempts are made B channel Corresponds to a telephone line in T Net In T ISDN the basic con nection contains two...

Page 527: ...exchange data with each other without a fixed connection For example PCs notebooks or a PDA can access the Internet or a loc al network The appointments on a PDA can be synchronised with the appointme...

Page 528: ...l costs account You can set up a call costs account for a subscriber here The maximum available number of units in the form of a limit can be as signed to each subscriber on their personal call costs...

Page 529: ...s possible A call can only be picked up by subscribers terminals in the same pickup group The assignment of subscribers in pickup groups is not de pendent on the settings in the Day and Night team cal...

Page 530: ...ock Chaining CCITT Consultative Committee for International Telegraphy and Telephony CD Call Deflection The forwarding of calls This performance feature enables you to forward a call without having to...

Page 531: ...alogue Telephony or Telefax Group 3 can also be transmitted regardless of the configuration of the analogue con nection If 0 is dialled the service ID Analogue Telephony is also transmitted Conference...

Page 532: ...lude STAC VJHC and MPPC Data Link Layer DLL Data packet A data packet is used for information transfer Each data packet contains a prescribed number of characters information and control characters Da...

Page 533: ...Configuration Protocol Dial preparation On some telephones with a display you can first enter a telephone check it first and then dial it Dial in parameters Define the dial in parameters i e you enter...

Page 534: ...nction module can be installed on an analogue connection of your PBX If a door intercom DoorLine is connected to your PBX via a function module you can speak with a visitor at the door via every autho...

Page 535: ...face which is also called the E1 system ECB Electronic Code Book mode ECT Explicit Call Transfer This performance feature allows two external connections to be transferred without blocking the two B c...

Page 536: ...loaded the PBX functions are deleted Euro ISDN Harmonised ISDN standardised within Europe based on signalling protocol DSS1 the introduction of which network operators in over 20 European countries h...

Page 537: ...tion of telefax FHSS Frequency Hopping Spread Spectrum In a FHSS system the frequency spread is achieved through con stantly changing frequencies based on certain hopping patterns In contrast to DSSS...

Page 538: ...et switching methods such as X 25 Because of its properties frame relay is used for fast WAN connections with a high density of traffic Freecall Telephone number Previous service 0130 These telephone...

Page 539: ...m a text sequence with a different meaning Encryption methods use hashing to make sure that intruders cannot change transmitted messages HDLC High Level Data Link Control HDSL High Bit Rate DSL HDSL2...

Page 540: ...ure If you enter code 77 during a call or after the caller has ended a call you hear the engaged tone from the exchange the caller s tele phone number is stored in the exchange ISDN telephones can als...

Page 541: ...al and university networks The IP protocol is used for data transmission on the Inter net Internet time sharing Allows several users to surf the Internet simultaneously over an ISDN connection The inf...

Page 542: ...nsion number ISDN number The network address of the ISDN interface e g 4711 ISDN router A router that does not have network connections but provides the same functions between PC ISDN and the Internet...

Page 543: ...a button so that the people present in the room can also hear the telephone call MAC Address Every device in the network is defined by a fixed hardware address MAC address The network card of a device...

Page 544: ...tocol gate way A gateway that can route several protocols e g IP X 25 etc Music on hold MoH Your PBX has two internal music on hold melodies On delivery in ternal melody 1 is active You can choose bet...

Page 545: ...the point at which access to a communication network is provided to the terminal Netz Direkt keypad functions You can use the Netz Direkt keypad function automatic external line access to enter a key...

Page 546: ...of the connection you are calling from on their telephone display This telephone number transmitted during an external call is called the outgoing telephone number Packet switching Packet switching PA...

Page 547: ...int to multipoint Point to multipoint connection Point to multipoint Basic connection in T ISDN with three telephone numbers and two lines as standard The ISDN terminals are connected directly on the...

Page 548: ...e Protocol Protocols are used to define the manner and means of information exchange between two systems Protocols control and rule the course of data communication at various levels decoding address...

Page 549: ...ely usually in connection with other options such as deleting messages or changing recorded messages Repeater A device that transmits electrical signals from one cable connection to another without ma...

Page 550: ...Please read the information on the described functions in the user s guide Router A device that connects different networks at layer 3 of the OSI mod el and routes information from one network to the...

Page 551: ...rvice from T Com Replaces Service 0190 Service number 0180 Additional voice service 0180call from T Com to receive calls from a location dependent telephone number uniform across Germany starting with...

Page 552: ...th an SMS enabled terminal the telephone number 0193010 of the SMS server must be prefixed to the recipient num ber This telephone number is already stored in your PBX so manu al input of the server t...

Page 553: ...iber numbers are included as standard Specify own tele phone number for next call If you want to make a business call late in the evening from your private sphere say the living room for example you c...

Page 554: ...e number for a particular service In the called terminal e g a PC various applications can also be ad dressed and in some cases executed Costs are charged for the performance feature and it must be re...

Page 555: ...on process in which the sender and receiver operate with exactly the same clock signals in contrast to asynchronous trans mission Spaces are bridged by a stop code Syslog Syslog is used as the de fact...

Page 556: ...NetBox can store up to 30 messages T NetBox telephone number Enter the current T NetBox telephone number here if it differs from the 08003302424 entered ex works As soon as your T NetBox re ceives a...

Page 557: ...amily Telnet enables communic ation with a remote device in the network Terminal adapter Device for interface adaptation It enables different equipment to be connected to T ISDN The terminal adapter a...

Page 558: ...Digital Subscriber Line UDP User Datagram Protocol Update Update to a software program PBX firmware An update is the up dated version of an existing software product and is indicated by a new version...

Page 559: ...nalogue on one side of the modem provider as was the case with V 34 and earlier modems This makes higher transmission rates possible A maximum speed of 56 kbps can be achieved only under optimum condi...

Page 560: ...PSK Intended for private users or small businesses that do not run a central authentication server PSK stands for Pre Shared Key and means that AP and client use a fixed character string 8 to 63 char...

Page 561: ...users such as e mail addresses telephone numbers and postal ad dresses You can search these databases to obtain information about individuals X 509 ITU T standards that define the format of the certif...

Page 562: ...g entries 227 Allowed Addresses 212 Always Active 282 Always on 256 261 266 271 278 343 350 Answer to client request 464 Antenna Diversity 194 AP MAC Address 219 504 505 APN Access Point Name 157 182...

Page 563: ...Connected 219 Connection Idle Timeout 256 261 266 271 278 282 343 350 Connection Type 271 343 Connector Type 179 Consider 243 Contact 127 Continuity Check CC End to End 300 Continuity Check CC Segmen...

Page 564: ...non members 190 Drop untagged frames 190 Dropped 493 DSA Key Status 144 DSCP TOS Value 224 DSP Module 125 DTIM Period 200 Duplicate received MSDUs 498 Duration 494 495 Dynamic RADIUS Authentication 3...

Page 565: ...5 Interface Action 449 452 453 Interface Description 139 Interface is UPnP controlled 464 Interface Leads 179 Interface Mode 185 Interface Type 179 393 Internal IP Address 391 Internal Port 391 Intern...

Page 566: ...nger MX 426 Management VID 191 Map to host 233 Matching String 481 Max Receive Lifetime 200 Max Transmit MSDU Lifetime 200 Max link range 194 Max Receive Lifetime 202 Max Time Period for Active Scan 2...

Page 567: ...22 238 292 293 344 460 Network Name SSID 209 216 219 Network Quality 182 Network Type 222 New Date 132 New File Name 470 New Time 132 Nitro Mode 198 Nitro XM 198 Node Name 460 Noise dBm 499 501 502 50...

Page 568: ...94 RADIUS Dialout 149 RADIUS Secret 148 Rate 501 503 505 Realm 397 Receive Version 235 Received DNS Packets 423 Received MPDU that couldn t be de crypted 498 Recent System Logs 125 Recipient 481 Regio...

Page 569: ...umber 124 Server 427 Server Failures 423 Server IP Address 148 152 Server Timeout 149 Service 171 230 375 494 495 Session Border Controller Mode 410 Session Timeout 389 Severity 481 SHDSL Logic 470 SH...

Page 570: ...8 Traffic Priority 375 Traffic Shaping 378 Transfer Mode 320 Transfer Own IP Address over ISDN 320 Transmit Key 210 214 216 Transmit Power 194 Transmit Shaping 174 Transmitted MPDUs 498 Trials 450 Tri...

Page 571: ...ual Path Identifier VPI 290 VLAN ID 185 VLAN Identifier 189 VLAN Members 189 VLAN Name 189 W WDS Description 213 502 503 Weight of Age 202 Weight of Penalty 202 WEP Key 1 4 214 WEP Key 1 4 210 216 Whi...

Reviews:

No comments

Related manuals for bintec R1200

Brand: Net2Phone Pages: 23

WILOW-IOT-GATEWAY-4G

Brand: BEANAIR Pages: 29

Brand: Quadro Pages: 54

Brand: Samson Pages: 72

SpaceLink WL-500

Brand: Asus Pages: 8

Brand: Technica Engineering Pages: 7

WiSenMeshWAN 6003

Brand: Wisen Pages: 11

Brand: National Instruments Pages: 16

Brand: tiko Energy Solutions Pages: 36

Brand: tiko Energy Solutions Pages: 40

Firebox X Series

Brand: Watchguard Pages: 37

hotspot gateway

Brand: Jaze Pages: 102

Brand: SmartRG Pages: 158

Brand: HKBN Pages: 4

Brand: M2M Pages: 400

Brand: IFM Electronic Pages: 33

Brand: ProSoft Technology Pages: 64

Brand: Nateks Pages: 67

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands