background image

                                                                                                                       

41

IP Filter Set Index:

 The IP Filter Set Index from 1 to 12 and each index can set up to 

6 IP Filter. 

Interface: 

Choices from

 PVC0

 to 

PVC7

 and 

LAN

Direction:

 Choices are 

Both

,

 Incoming

 and

 Outgoing

. Select which direction of data 

flow you wish to apply the filters to. 

Note

 that

 Incoming and Outgoing

 are from the 

point  of  view  of  your  router,  relative  to  the  interface  you  select. 

For  WAN

,  data 

coming  from  outside  your  system  is  considered  Incoming  and  data  leaving  your 
system is Outgoing. 

For LAN

, data leaving your system is considered Incoming and 

data entering your system is Outgoing. 

IP Filter Rule Editing:

 Select the IP Filter Rule Index you wish to modify. 

Active: 

Toggle this rule index on or off with Yes or No, respectively. 

Source  IP  Address: 

Enter  the  source  IP  address  you  wish  to  deny  access  to  your 

system. 

Subnet Mask: 

Enter the subnet mask of the source IP address. 

Port Number:

 Enter the port number of the source IP address. Note that 0 means all 

that ports are allowed. 

Destination  IP  Address: 

Enter  the  destination  IP  address  that  you  wish  to  deny 

access to your system. 

Subnet Mask: 

Enter the subnet mask of the destination IP address 

Port Number:

 Enter the port number of the destination IP address. Note that 0 means 

that all ports are allowed 

Protocol: 

Select the protocol to filter. Choices are TCP, UDP, and ICMP. 

Rule Unmatched:

 Choices are 

Forward

 and 

Next. 

Select what happens to the data in 

question if the rule you are currently editing is unmatched. Next means that the data is 
then compared to the next IP filter rule. Forward means that the data will be allowed 
into your system. Note that a Forward rule should be the last rule, as no data will be 
compared to rules after a Forward rule. 

IP Filter Set Index: 

Select the IP filter set you wish to view. 

Summary of Contents for 802.11g Wireless ADSL 2/2+ Router ADW-4401A/Bv2

Page 1: ...802 11g Wireless ADSL 2 2 Router ADW 4401A Bv2 User s Manual ...

Page 2: ... person of such revision or changes All brand and product names mentioned in this manual are trademarks and or registered trademarks of their respective holders Federal Communication Commission Interference Statement This equipment has been tested and found to comply with the limits for a Class B digital device pursuant to Part 15 of FCC Rules These limits are designed to provide reasonable protec...

Page 3: ...lies with all the requirements of DIRECTIVE 1999 5 EC OF THE EUROPEAN PARLIAMENT AND THE COUNCIL OF 9 March 1999 on radio equipment and telecommunication terminal Equipment and the mutual recognition of their conformity R TTE The R TTE Directive repeals and replaces in the directive 98 13 EEC Telecommunications Terminal Equipment and Satellite Earth Station Equipment As of April 8 2000 WEEE Regula...

Page 4: ...4 Revision User s Manual for 802 11g Wireless ADSL 2 2 Router Model ADW 4401 A Bv2 Rev 1 0 Dec 2006 Part No EM ADW4401v2_v1 ...

Page 5: ...DSL Router to your network 16 3 3 Configuring with Web Browser 16 3 3 1 Quick Setup Guide 17 3 4 Maintenance 20 3 4 1 System Time 20 3 4 2 Admin Setting 22 3 4 3 Firmware 22 3 4 4 SysRestart 23 3 5 Status 24 3 5 1 Device Info 24 3 5 2 System Log 25 3 5 3 Statistics 26 3 6 WAN Configuration 27 3 6 1 VC Configuration 27 3 6 2 WAN Configuration 28 3 6 2 1 Encapsulation 28 3 7 LAN Configuration 33 3 7...

Page 6: ... 9 Access Management 39 3 9 1 ACL 39 3 9 2 IP Filtering 40 3 9 3 SNMP 42 3 9 4 UPNP 43 3 9 5 DDNS 44 3 10 Advanced Setup 45 3 10 1 NAT Setting 45 3 10 1 1 Virtual Server 49 3 10 1 2 DMZ 50 3 10 1 3 IP Address Mapping 51 3 10 2 ADSL Type Setting 52 3 10 3 Routing 53 3 10 3 1 Static Routing 53 3 10 3 2 Dynamic Routing 54 3 10 4 Firewall 55 Appendix A Glossary 56 ...

Page 7: ...ll users on the LAN or WLAN can access the Internet through the ADW 4401v2 using only a single external IP Address The local invalid IP Addresses are hidden from external sources This process is called NAT Network Address Translation Built in ADSL 2 2 Modem The ADW 4401v2 provides ADSL 2 2 modem and supports all common ADSL connections IPoA PPPoE PPPoA Direct Connection Support Various WAN connect...

Page 8: ...multaneously WEP support Support for WEP Wired Equivalent Privacy is included Key sizes of 64 Bit and 128 Bit are supported WPA PSK support WPA PSK_TKIP and WAP PSK_AES encryption are supported Wireless MAC Access Control The Wireless Access Control feature can check the MAC address hardware address of Wireless stations to ensure that only trusted Wireless Stations can access your LAN LAN Features...

Page 9: ...nt servers remote hard drives and anything else you want to put on your network Rear Panel Rear panel Port and Button Definition Connector Description POWER Power connector with 12V AC 1 0 A POWER Button The power button is for turn on or turns off the router ADSL Connector The RJ 11 connector allows data communication between the modem and the ADSL network through a twisted pair phone wire LAN 1 ...

Page 10: ...Step 1 Connect the ADSL Line Connect the router directly to the wall jack using the included ADSL cable Step 2 Connect a Workstation to the Router s LAN port There are two methods to connect the router and workstation The one use the crossover Ethernet cable to connect directly between them The other use straight Ethernet cable to connect router with hub or switch then go to the workstation Step 3...

Page 11: ...onfiguring the Network Properties Configuring PC in Windows XP 1 Go to Start Control Panel in Classic View In the Control Panel double click on Network Connections 2 Double click Local Area Connection 3 In the Local Area Connection Status window click Properties ...

Page 12: ...Obtain an IP address automatically and the Obtain DNS server address automatically radio buttons 6 Click OK to finish the configuration Configuring PC in Windows 2000 1 Go to Start Settings Control Panel In the Control Panel double click on Network and Dial up Connections ...

Page 13: ...al Area Connection Status window click Properties 4 Select Internet Protocol TCP IP and click Properties 5 Select the Obtain an IP address automatically and the Obtain DNS server address automatically radio buttons 6 Click OK to finish the configuration ...

Page 14: ...etwork and choose the Configuration tab 2 Select TCP IP NE2000 Compatible or the name of your Network Interface Card NIC in your PC 3 Select the Obtain an IP address automatically radio button 4 Then select the DNS Configuration tab 5 Select the Disable DNS radio button and click OK to finish the configuration ...

Page 15: ... 1 Go to Start Settings Control Panel In the Control Panel double click on Network and choose the Protocols tab 2 Select TCP IP Protocol and click Properties 3 Select the Obtain an IP address from a DHCP server radio button and click OK ...

Page 16: ...pt the IP Addresses the Router chooses to assign them Generally there are several different operating modes for your applications And you can know which mode is necessary for your system from ISP These modes are router bridge PPPoE NAT and PPPoA NAT 3 3 Configuring with Web Browser It is advisable to change the administrator password to safeguard the security of your network To configure the route...

Page 17: ...17 3 3 1 Quick Setup Guide You can use Quick Setup to setup the router as follows and the router will connect to the Internet via ADSL line Click Quick Start to get into the quick setup procedures ...

Page 18: ...18 Click RUN WIZARD to start up this procedure Step 1 Click Next to setup your new administrator s password ...

Page 19: ...Click Next to setup your time zone Step 3 Click Next to setup your Internet connection type You can have this information from your Internet Service Provider Enter the connection information provided by your ISP ...

Page 20: ...em Time Go to Maintenance Time Zone and select system time as you wish The system time is the time used by the device for scheduling services You can manually set the time or connect to a NTP Network Time Protocol server If an NTP ...

Page 21: ... difference between your time zone and Greenwich Mean Time GMT Daylight Saving Choose Enabled or Disabled to use daylight savings time NTP Server Address Type the IP address or domain name of your timeserver Check with your ISP network administrator if you are unsure of this information A Network Time Protocol NTP server can automatically set the router time for you If you use an NTP server you wi...

Page 22: ... Password are admin admin 3 4 3 Firmware Go to Maintenance Firmware to upgrade the firmware You can upgrade the firmware of the router in this page Make sure the firmware you want to use is on the local hard drive of the computer Click on Browse to browse the local had drive and locate the firmware to be used for the update Then press UPGRADE to upload new Firmware It might take several minutes do...

Page 23: ...s you to restart your router with either its current settings still in place or the factory default settings If you wish to restart the router using the factory default settings for example after a firmware upgrade or if you have saved an incorrect configuration select Factory Default Settings to reset to factory default settings Otherwise you can select Current Settings You may also reset your ro...

Page 24: ... not meant for diagnostic purposes Except the Virtual Circuit click the drop down list and select the name of the Virtual Circuit on which the system status is to be shown Device Information Firmware Version This filed displays current firmware version MAC Address The MAC Media Access Control or Ethernet address unique to your modem LAN IP Address The LAN port IP address Subnet Mask The LAN port I...

Page 25: ...l decrease Conversely if the SNR Margin is decreased bit error rate performance will decrease but the data rate will increase Line Attenuation Attenuation is the decrease in magnitude of the ADSL line signal between the transmitter Central Office DSLAM and the receiver Client ADSL Modem measured in dB It is measured by calculating the difference in dB between the signal power level received at the...

Page 26: ... of packets that passes through the Router on both the WAN port the LAN port The traffic counter will reset if the device is rebooted You can select Ethernet ADSL to view the statistics report of LAN WAN Ethernet The Ethernet screen gives you information on how much data your router has transmitted and received across the Ethernet connection Click on REFRESH to update the screen ...

Page 27: ...or the VPI is 0 to 255 VCI Virtual Channel Identifier The valid range for the VCI is 1 to 65635 0 to 31 is reserved for local management of ATM traffic ATM QoS Select the Quality of Service types for this Virtual Circuit The ATM QoS types include CBR Constant Bit Rate VBR Variable Bit Rate and UBR Unspecified Bit Rate These QoS types are all controlled by the parameters specified below including P...

Page 28: ...orry about in UBR is PCR rtVBR is for connections that while having variable traffic require precise timing between traffic source and destination PCR SCR and MBS must all be set for rtVBR nrtVBR is for connections that have variable traffic do not require precise timing but still require a set bandwidth availability PCR SCR and MBS must all be set for nrtVBR 3 6 2 WAN Configuration Go to Interfac...

Page 29: ...r TCP MTU Value here Dynamic Route Select the RIP type and direction from the dropdown lists Multicast Select the multicast protocol you wish to use from the dropdown list 2 Static IP Address Select this option to set static IP information You will need to enter in the encapsulation type 1483 Bridged IP LLC 1483 Bridged IP VC Mux 1483 Routed IP LLC IPoA 1483 Routed IP VC Mux IP address subnet mask...

Page 30: ...ect whether this PVC will be the default route for Internet data Dynamic Route Select the RIP type and direction from the dropdown lists Multicast Select the multicast protocol you wish to use from the dropdown list 3 PPPoA PPPoE Select this option if your ISP requires you to use a PPPoE connection This option is typically used for DSL service Select Dynamic PPPoE to obtain an IP address automatic...

Page 31: ...tion Enter the TCP MSS you wish to use here Get IP Address Choose whether the ROUTER obtains the IP address statically or dynamically Static IP Address Enter the static IP address here Only if you chose Static above IP Subnet Mask Enter the IP subnet mask here Only if you chose Static above Gateway Enter the gateway here Only if you chose Static above NAT Select whether NAT is Enabled or Disabled ...

Page 32: ...t this option to specify the RIP version including RIP1 RIP2 B and RIP2 M RIP2 B RIP2 M are both sent in RIP 2 format the difference is that RIP2 M using Multicast and RIP2 B using Broadcast format RIP Direction Select this option to specify the RIP direction None is for disabling the RIP function Both means the ADSL Router will periodically send routing information and accept routing information ...

Page 33: ...e labels in this screen LABEL DESCRIPTION Encapsulation Select your encapsulation type from the dropdown list 3 7 LAN Configuration 3 7 1 LAN Configuration Go to Interface Setup LAN The LAN option enables you to configure the LAN port There are the IP settings of the LAN Interface for the device These settings may be referred to as Private settings You may change the LAN IP address if needed The L...

Page 34: ...uted by the ADSL router Dynamic Route Select the Dynamic Route from RIP1 RIP2 B and RIP2 M Please refer to Dynamic Routing The only difference is the interface 3 7 1 2 DHCP Server The DHCP Server gives out IP addresses when a device is booting up and request an IP to be logged on to the network It must be set as a DHCP client to obtain the IP address automatically By default the DHCP Server is ena...

Page 35: ...rver Enter the secondary DNS server IP address you wish to use For user discovered DNS only 3 7 1 3 DHCP Relay A DHCP relay is a computer that forwards DHCP data between computers that request IP addresses and the DHCP server that assigns the addresses Each of the device s interfaces can be configured as a DHCP relay If it is enable the DHCP requests from local PCs will forward to the DHCP server ...

Page 36: ... and set both Primary and Secondary DNS Servers to 0 0 0 0 3 8 Wireless Configuration 3 8 1 Wireless Configuration Go to Interface Wireless to setup the wireless parameters SSID The SSID is a unique name to identify the ADSL Router in the Wireless LAN Wireless Clients associating to the ADSL Router must have the same SSID Broadcast SSID Select No to hide the SSID such that a station can not obtain...

Page 37: ...preceded by 0x for each key 1 4 If you choose 1280bit WEP then enter 26 hexadecimal digits 0 9 A F preceded by 0x for each key 1 4 The values must be set up exactly the same on the Access Points as they are on the wireless client stations The same value must be assigned to Key 1 on both access point your ADSL Router and the client adapters the same value must be assigned to Key 2 on both access po...

Page 38: ...nabling RTS CTS handshake Data with its frame size larger than this value will perform the RTS CTS handshake Set this attribute to be larger than the maximum MSDU MAC Service Data Unit size TURNS OFF the RTS CTS handshake Set this attribute to ZERO TURNS ON the RTS CTS handshake Enter a value between 0 and 2432 Fragment Threshold The threshold number of bytes for the fragmentation boundary for dir...

Page 39: ...be allowed to access the router Select Allow Association to permit access to the router MAC addresses not lusted will be denied access to the router 3 9 Access Management 3 9 1 ACL Go to Access Management ACL to enable remote management Access Control Listing ACL is a management tool that acts as a filter for incoming or outgoing packets based on application You may use telnet or Web to remotely m...

Page 40: ...ltering Go to Access Management IP Filtering to block some packets form WAN The Router provides extensive firewall protection by restricting connection parameters to limit the risk of intrusion and defending against a wide array of common hacker attackers Go to Access Management IP Filtering to set different IP filter rules of a given protocol TCP UDP or ICMP and a specific direction incoming outg...

Page 41: ...ish to deny access to your system Subnet Mask Enter the subnet mask of the source IP address Port Number Enter the port number of the source IP address Note that 0 means all that ports are allowed Destination IP Address Enter the destination IP address that you wish to deny access to your system Subnet Mask Enter the subnet mask of the destination IP address Port Number Enter the port number of th...

Page 42: ...etween network devices It enables a host computer to access configuration performance and other system data that resides in a database on the modem The host computer is called a management station and the modem is called an SNMP agent The data that can be accessed via SNMP is stored in a Management Information Database MIB on the modem ...

Page 43: ...pen networking standard that uses TCP IP for simple peer to peer network connectivity between devices An UPnP device can dynamically join a network obtain an IP address convey its capabilities and learn about other devices on the network In turn a device can leave a network smoothly an automatically when it is no longer in use UPnP broadcasts are only allowed on the LAN How do I know if I m using ...

Page 44: ...onfiguration changes through UPnP just choose Deactivated SAVE Click SAVE to save the setting to the ADSL Router 3 9 5 DDNS Go to Access Management DDNS to set DDNS account The Dynamic Domain Name System allows you to update your current dynamic IP address with one or many dynamic DNS services so that anyone can contact you in NetMeeting CU SeeMe etc You can also access your FTP server or Web site...

Page 45: ...ble to use for example www yourhost dyndns org and still reach your hostname SAVE Click SAVE to save your changes Note that you must enter the user name exactly as your ISP assigned it If the assigned name is in the form of user domain where domain identifies a service name enter it exactly as given When you are done making changes click on SAVE to save your changes 3 10 Advanced Setup 3 10 1 NAT ...

Page 46: ...since they have only one IP there is no need to individually define the Address Mapping rule What NAT Does NAT changes the source IP address in a packet received from a subscriber the inside local address to another the inside global address before forwarding the packet to the WAN side When the response comes back NAT translates the destination address the inside global address back to the inside ...

Page 47: ...et is on the WAN side The following table summarizes this information ITEM DESCRIPTION Inside This refers to the host on the LAN Outside This refers to the host on the WAN Local This refers to the packet address source or destination as the packet travels on the LAN Global This refers to the packet address source or destination as the packet travels on the WAN How NAT Works Each packet has two add...

Page 48: ...icate with three distinct WAN networks More examples follow at the end of this chapter NAT Mapping Types NAT supports five types of IP port mapping They are a One to One In One to One mode the TC3162 EVM maps one local IP address to one global IP address b Many to One In Many to One mode the TC3162 EVM maps multiple local IP addresses to one global IP address ...

Page 49: ... Many No Overload ILA1 IGA1 ILA2 IGA2 ILA3 IGA3 Server Server 1 IP IGA1 Server 2 IP IGA1 Server 3 IP IGA1 3 10 1 1 Virtual Server Go to Advanced Setup NAT Virtual Server to set virtual server as you need known as Port Mapping The Virtual Server is the server or server s behind NAT on the LAN for example Web server or FTP server that you can make visible to the outside world even though NAT makes y...

Page 50: ...parameters you set BACK to return to the previous screen or CANCEL to exit without saving 3 10 1 2 DMZ Setting Go to Advanced Setup NAT DMZ to set DMZ parameters A DMZ de militarized zone is a host between a private local network and the outside public network It prevents outside users from getting direct access to s server that has company data Users of the public network outside the company can ...

Page 51: ... to set IP Address mapping parameters The IP Address Mapping is for those VCs that with multiple IPs The IP Address Mapping rule is per VC based only for Multiple IPs VCs Rule Index The Virtual server rule index for this VC You can specify up to 10 rules All the VCs with single IP will use the same Virtual Server rules Rule Type There are 4 types of One to One Many to One Many to Many Overload ...

Page 52: ... you are done making changes click on SAVE to save your changes DELETE to delete the rule with the parameters you set BACK to return to the previous screen or CANCEL to exit without saving 3 10 2 ADSL Type Setting Go to Advanced Setup ADSL to set different ADSL connection Select this option to set ADSL Mode and ADSL Type information ADSL Mode Select which mode your ADSL connection uses from the dr...

Page 53: ... destination the device uses the Gateway IP to identify the first Internet router it should contact to route the data most efficiently Select this option will list the routing table information You can press ADD ROUTE to edit the static route As below screen Static Route Select this option to set Static Routing information Destination IP Address This parameter specifies the IP network address of t...

Page 54: ...e will be propagated to other hosts through RIP broadcasts If you choose No this route is kept private and is not included in the RIP broadcasts When you are done making changes click on SAVE to save your changes DELETE to delete the rule with the parameters you set BACK to return to the previous screen or CANCEL to exit without saving 3 10 3 2 Dynamic Routing Go to Interface Setup LAN to select t...

Page 55: ... Direction Select the RIP direction from None Both In Only and Out Only Multicast IGMP Internet Group Multicast Protocol is a session layer protocol used to establish membership in a multicast group The ADSL router supports both IGMP v1 and IGMP v2 Select None to disable it Please refer to Internet Multicast The only difference is the interface 3 10 4 Firewall Go to Advance Setup Firewall to set f...

Page 56: ...ernet address for subnet addressing The mask is 32 bits long and selects the network portion of the Internet address and one or more bits of the local portion Sometimes it called subnet mask AAL5 ATM Adaptation Layer This layer maps higher layer user data into ATM cells making the data suitable for transport through the ATM network ADSL Asymmetric digital subscriber line ATM Asynchronous Transfer ...

Page 57: ...ic from another Broadcast a packet delivery system where a copy of a given packet is given to all hosts attached to the network Example Ethernet CO Central Office Refers to equipment located at a Telco or service provider s office CPE Customer Premises Equipment located in a user s premises DHCP Dynamic Host Configuration Protocol DHCP is software that automatically assigns IP addresses to client ...

Page 58: ...lowed by a header from the network layer IP followed by a header from the transport layer TCP and followed by the application protocol data Ethernet One of the most common local area network LAN wiring schemes Ethernet has a transmission rate of 10 Mbps FTP File Transfer Protocol The Internet protocol and program transfer files between hosts Hop count A measure of distance between two points on th...

Page 59: ...classes A B and C depending on how many computers on the site are likely to be connected Internet Protocol IP The network layer protocol for the Internet protocol suite IP address The 32 bit address assigned to hosts that want to participate in a TCP IP Internet ISP Internet service provider A company allows home and corporate users to connect to the Internet MAC Media Access Control Layer A sub l...

Page 60: ... network computer allows a user to log on to the network from a distant location RFC Request for Comments Refers to documents published by the Internet Engineering Task Force IETF proposing standard protocols and procedures for the Internet RFC can be found at www ietf org Route The path that network traffic takes from its source to its destination The route a datagram may follow can include many ...

Page 61: ...or more LAN s segments are connected via bridges a loop can occur Because of a bridge forwards all packets that are not recognized as being local some packets can circulate for long periods of time eventually degrading system performance This algorithm ensures only one path connects any pair of stations selecting one bridge as the root bridge with the highest priority one as identifier from which ...

Page 62: ...dging The intelligence necessary to make relaying decisions exists in the bridge itself and is thus transparent to the communicating workstations It involves frame forwarding learning workstation addresses and ensuring no topology loops exist in conjunction with the Spanning Tree algorithm UDP User Datagram Protocol A connectionless transport protocol that runs on top of TCP IP s IP UDP like TCP u...

Page 63: ...f the options and the route is chosen only when a message is sent There is no pre arrangement so each virtual connection exists only for the duration of that one transmission WAN Wide area network A data communications network that spans any distance and is usually provided by a public carrier such as a telephone company or service provider ...

Reviews: