manualshive.com logo in svg

SMC Networks 7204BRA, User Manual

The SMC Networks 7204BRA product comes with a Quick Installation Manual that guides users through the setup process. You can easily download this manual for free from manualshive.com, ensuring a hassle-free experience with your new device. Get all the essential information you need to get started right away.

Share
Download
background image

Terminology

194

POTS splitter 
See splitter.

PPP (Point-to-Point Protocol)
A protocol for serial data transmission that is used to carry IP 
(and other protocol) data between your ISP and your computer. 
The WAN interface on the ADSL Barricade uses two forms of PPP 
called PPPoA and PPPoE. See also PPPoA, PPPoE.

PPPoA (Point-to-Point Protocol over ATM)
One of the two types of PPP interfaces you can define for 
a Virtual Circuit (VC), the other type being PPPoE. You can 
define only one PPPoA interface per VC.

PPPoE (Point-to-Point Protocol over Ethernet)
One of the two types of PPP interfaces you can define for 
a Virtual Circuit (VC),the other type being PPPoA. You can 
define one or more PPPoE interfaces per VC.

protocol
A set of rules governing the transmission of data. In order for 
a data transmission to work, both ends of the connection have 
to follow the rules of the protocol.

remote
In a physically separate location. For example, an employee away 
on travel who logs in to the company's intranet is a remote user.

RIP (Routing Information Protocol)
The original TCP/IP routing protocol. There are two versions 
of RIP: version I and version II. 

Summary of Contents for 7204BRA

Page 1: ......

Page 2: ...ADSL BarricadeTM 4 Port ADSL Router with Built in Annex A ADSL Modem User Guide February 2004 ...

Page 3: ...ck Start 7 Connecting the Hardware 7 Step 1 Connect the ADSL cable 8 Step 2 Connect the Ethernet cable 9 Step 3 Attach the power connector 9 Step 4 Power up your systems 9 Configuring Your Computers 9 Before you begin 9 Windows XP 10 Windows 2000 11 Windows Me 12 Windows 95 98 13 Windows NT 4 0 15 Assigning static Internet Information to your PCs 16 Configuring the ADSL Barricade 17 Logging into t...

Page 4: ...ss 33 Viewing System IP Addresses and IP Performance Statistics 39 Viewing the ADSL Barricade s IP Addresses 39 Viewing IP Performance Statistics 41 Configuring Dynamic Host Configuration Protocol 43 Overview of DHCP 43 What is DHCP 43 Why use DHCP 44 ADSL Barricade DHCP modes 44 Configuring DHCP Server 45 Guidelines for creating DHCP server address pools 45 Adding DHCP Server Address Pools 47 Vie...

Page 5: ...slations 76 The Pass rule Allowing specific addresses to pass through untranslated 78 Configuring DNS Server Addresses 81 About DNS 81 Assigning DNS Addresses 81 Configuring DNS Relay 82 Configuring IP Routes 85 Overview of IP Routes 85 IP routing versus telephone switching 85 Hops and gateways 86 Using IP routes to define default gateways 87 Do I need to define IP routes 87 Viewing the IP Routing...

Page 6: ...21 Viewing Your IPoA Interface Setup 121 Adding IPoA Interfaces 123 Configuring Bridging 125 Overview of Bridges 125 When to Use the Bridging Feature 127 Defining Bridge Interfaces 127 Deleting a Bridge Interface 129 Configuring Firewall Settings 131 Configuring Global Firewall Settings 131 Managing the Black List 134 Configuring IP Filters and Blocked Protocols 135 Configuring IP Filters 135 View...

Page 7: ... Upgrading the Software 160 Using Diagnostics 161 Modifying Port Settings 163 Overview of IP port numbers 163 Modifying the ADSL Barricade s port numbers 164 Appendix A 167 IP Addresses 167 Structure of an IP address 167 Network classes 169 Subnet masks 170 Appendix B 173 Binary Numbers 173 Bits and bytes 174 Troubleshooting 175 Technical Specifications 181 Terminology 185 Compliances i Legal Info...

Page 8: ... its configuration to get the most out of your new product Features External ADSL modem for high speed Internet access 10 100Base T Ethernet router to provide Internet connectivity to all computers on your LAN Network address translation NAT Firewall and IP filtering functions to provide security for your LAN Network configuration through DHCP Server and DHCP Relay Services including IP route and ...

Page 9: ... you are connecting the device to more than one computer on an Ethernet network For system configuration using the supplied web based program a web browser such as Internet Explorer V5 0 or later or Netscape V6 1 or later Using this Document Notational conventions Acronyms are defined the first time they appear in the text and in the Terminology For brevity the ADSL Barricade is referred to as the...

Page 10: ...is document uses the following statement to call your attention to specific instructions or explanations Note Provides clarifying or non essential information on the current topic Definition Explains terms or acronyms that may be unfamiliar to many readers These terms are also included in the Terminology Warning Provides messages of high importance including messages relating to personal safety or...

Page 11: ...TO KNOW THE ADSL BARRICADE Package Contents One ADSL Barricade One Power adapter One RJ 45 Ethernet cable One RJ 11 Standard phone DSL line cable Installation utility and Documentation CD Quick Installation Guide ...

Page 12: ...On ADSL line is trained DSL Transmitting Receiving Link Green Blink N A Training TX RX Transmitting Receiving Yellow Steady N A N A N A Link Yellow Blink N A N A N A Transmitting Receiving OFF Power Off No Connection No TX RX No Connection Rear Panel Connector Description Power Supply 12V 1 2A Reset and Restore Factory Defaults Button If depressed for 1 2 seconds reset If depressed for 5 seconds o...

Page 13: ... connected to the Internet This Quick Start assumes that you have already established an ADSL service with your Internet service provider ISP These instructions provide a basic configuration that should be compatible with your home or small office network setup Refer to the subsequent chapters for additional configuration instructions Connecting the Hardware You connect the device to the wall phon...

Page 14: ...y convenient wall phone jack If desired connect the telephone cable to the port labeled Phone Warning Although you use the same type of cable the ADSL and Phone ports are not interchangeable Do not route the ADSL connection through the Phone port Note ADSL splitters microfilters are included with some models Wall Jack To a hub use cross over cable to uplink port or straight cable to standard port ...

Page 15: ... of the device and plug in the adapter to a wall outlet or power strip Step 4 Power up your systems Turn on and boot up your computer s and any LAN devices such as hubs or switches Configuring Your Computers This section provides instructions for configuring the Internet settings on your computers to work with the ADSL Barricade Before you begin By default the ADSL Barricade automatically assigns ...

Page 16: ...ing to your network interface card NIC and select Properties Often this icon is labeled Local Area Connection The Local Area Connection dialog box displays a list of currently installed network items 4 Ensure that the check box to the left of the item labeled Internet Protocol TCP IP is checked and click Properties 5 In the Internet Protocol TCP IP Properties dialog box click the radio button labe...

Page 17: ...en enabled Skip to Step 10 4 If Internet Protocol TCP IP does not appear as an installed component click Install 5 In the Select Network Component Type dialog box select Protocol and then click Add 6 Select Internet Protocol TCP IP in the Network Protocols list and then click OK You may be prompted to install files from your Windows 2000 installation CD or other media Follow the instructions to in...

Page 18: ...ial up Connections icon 3 In the Network and Dial up Connections window right click the Network icon and then select Properties The Network Properties dialog box displays a list of currently installed network components If the list includes Internet Protocol TCP IP then the protocol has already been enabled Skip to Step 11 4 If Internet Protocol TCP IP does not appear as an installed component cli...

Page 19: ...radio button labeled Server assigned IP address Also click the radio button labeled Server assigned name server address 13 Click OK twice to confirm and save your changes and then close the Control Panel Windows 95 98 First check for the IP protocol and if necessary install it 1 In the Windows task bar click the Start button point to Settings and then click Control Panel 2 Double click the Network...

Page 20: ...n Next configure the PCs to accept IP information assigned by the ADSL Barricade 8 Open the Control Panel window and then click the Network icon 9 Select the network component labeled TCP IP and then click Properties If you have multiple TCP IP listings select the listing associated with your network card or adapter 10 In the TCP IP Properties dialog box click the IP Address tab 11 Click the radio...

Page 21: ...y be prompted to install files from your Windows NT 4 0 installation CD or other media Follow the instructions to install the files After all files are installed a window appears to inform you that a TCP IP service called DHCP can be set up to dynamically assign IP information 6 Click Yes to continue and then click OK if prompted to restart your computer Next configure the PCs to accept IP informa...

Page 22: ...sk you will assign to each PC which will be assigned static IP information The IP address of the default gateway for your LAN In most cases this is the address assigned to the LAN port on the ADSL Barricade By default the LAN port is assigned this IP address 192 168 1 1 You can change this number or another number can be assigned by your ISP See Configuring the LAN Ports on page 33 for more inform...

Page 23: ...s step Logging into the ADSL Barricade Quick Configuration Page The ADSL Barricade provides a preinstalled software program called Configuration Manager which enables you to configure the operation of the device via your Web browser The settings that you most likely need to change before using the device are grouped onto one single Quick Configuration page Follow these instructions to configure th...

Page 24: ...an one ATM interface if you are using different types of services with your ISP Operation Mode This setting enables or disables the ADSL Barricade When set to No the device cannot be used to provide Internet connectivity for your network Set it to Enabled if necessary Encapsulation This setting determines the type of data link your ISP uses to communicate with your ADSL Barricade Contact them to d...

Page 25: ...ridging between the ADSL Barricade and your ISP Your ISP may also refer to this as RFC 1483 or Ethernet over ATM IGMP You may select Enabled or Disabled to set the Internet Group Management Protocol which some ISPs use to perform remote configuration of your device IP Address Subnet Mask If your ISP has assigned a public IP address to your LAN enter the address and the associated subnet mask in th...

Page 26: ...eeds of your network Follow the instructions and change them if necessary If you are unfamiliar with these settings try to use the device without modification or contact your ISP for assistance Before modifying any settings review the Getting Started section with the Configuration Manager We strongly recommend that you contact your ISP prior to changing the default configuration Option Default Set...

Page 27: ...henever they access the Internet See Configuring the LAN Ports on page 33 for a description of the NAT service LAN Port IP Address Assigned static IP address 192 168 1 1 Subnet mask 255 255 255 0 This is the IP address of the LAN port on the device The LAN port connects the device to your Ethernet network Typically you will not need to change this address See Configuring the LAN Ports on page 33 f...

Page 28: ... program is preinstalled in the ADSL Barricade memory To access the program you need the following A PC or laptop connected to the LAN port on the device as described in the Quick Start section A web browser installed on the PC The program is designed to work best with Microsoft Internet Explorer version 5 0 Netscape Navigator version 6 1 or later versions You can access the program from any compu...

Page 29: ... The first time you log into the program use these default values Default User Name smc Default Password smcadmin Note You can change the password at any time See Configuring User Names and Passwords on page 157 for instructions The System View page on the Home tab appears each time you log into the program shown in Figure 4 ...

Page 30: ...propriate For example the Lan Config task appears in both the LAN tab and the Routing tab Commonly used buttons The following buttons are used throughout the application Button Function Submit This button stores in the temporary system memory any changes you have made on the current page See Committing your changes on page 30 for instructions on how to store changes permanently Refresh This button...

Page 31: ...in the Home tab the other is the Quick Configuration page as described in Quick Start Logging into the ADSL Barricade Figure 4 System View Table The System View table provides a snapshot of your system configuration Note that some of the settings are links to the software pages that enable you to configure those settings The following table describes each section of the System View table ...

Page 32: ...hat communicates with your ISP via DSL Even if you only have one physical DSL port multiple software defined interfaces can be configured to use it See the ATM VC PPP EOA and IPoA chapters for more information about the WAN interfaces defined on your system For each interface a Lower Interface name such as aal5 0 should appear You can click on the Lower Interface name to view or change the ATM VC ...

Page 33: ... to your public IP address Configuring Network Address Translation IP Filter to set up the filtering rules that accept or deny incoming or outgoing data Configuring IP Filters and Blocking Protocols RIP to enable router to router communication Configuring the Routing Information Protocol DHCP Relay to enable dynamic assignment of IP information from your ISP to your computers Configuring Dynamic H...

Page 34: ...k the respective check boxes and select the appropriate values from the drop down lists The time appears in military format Time Zone DST Daylight Savings Time You can select your time zone from the drop down list and then click the appropriate radio button to indicate whether Daylight Savings Time is currently in effect After you initially set the time turning DST On or Off will adjust the curren...

Page 35: ...r Web browser instead of typing the digital IP address For example if you have entered myrouter in this field and have left the Domain Name field blank then you can type the following in your Web browser to access the Configuration Manager http myrouter Note This will only work if you are using the ADSL Barricade s DNS relay feature This feature is automatically enabled when the DNS server address...

Page 36: ... page appears Figure 6 Commit Reboot Page 2 Click Commit Disregard the selection in the Reboot Mode drop down list it does not affect the commit process These changes are saved to a permanent storage The previous settings are copied to a backup storage so that they can be recalled if your new settings do not work properly see the below rebooting instructions Rebooting the device using Configuratio...

Page 37: ...is option is to reboot the device using the current settings in the permanent memory including any changes you have just committed Reboot from Backup Configuration This option is to reboot the device using settings stored in the backup memory These are the settings that were effective before you committed new settings in the current session Reboot from Default Configuration This option is to reboo...

Page 38: ...ort using an Ethernet cable You must assign a unique IP address to each device port that you use Configuring the LAN Port IP Address The LAN IP address identifies the LAN port eth 0 as a node on your network that is its IP address must be in the same subnet as the PCs on your LAN Definition A network node can be thought of as any interface where a device connects to the network such as the ADSL Ba...

Page 39: ... from the ISP s server In this mode the ADSL Barricade is considered as a DHCP client of your DHCP or ISP s server Note The ADSL Barricade itself can function as a DHCP server for your LAN computers as described in Configuring Dynamic Host Configuration Protocol but not for its own LAN port Follow the following steps to change the default LAN IP address or to configure the LAN port as a DHCP clien...

Page 40: ...dging mode or both modes simultaneously This setting is not user configurable Get LAN Address This setting provides options for how the device s LAN port is assigned an IP address Manual indicates that you will be assigning a static IP address which you can enter in the fields below External DHCP Server indicates that your ISP will be assigning an IP address from their own DHCP server to the port ...

Page 41: ...sk field will be dimmed and made unavailable for entry The LAN IP Address field will remain editable however The address that you specify here will be used as a request to the DHCP server This is referred to as a Configured IP Address in the program If the configured IP address is not available from the DHCP server then the system will accept another assigned address Even after another number is a...

Page 42: ...he same subnet as the new IP address of the LAN port See Quick Start Configuring Your Computers on page 9 for instructions 5 Log into Configuration Manager by typing the new IP address in your Web browser s address location box 6 If the new settings work properly click the Admin tab and then click Commit Reboot in the task bar 7 Click Commit to save your changes to the permanent memory ...

Page 43: ... device uses and to view other system and network performance data See IP Addresses Network Masks and Subnets for a description of IP addresses and masks Viewing the ADSL Barricade s IP Addresses To view the ADSL Barricade s IP addresses click the Routing tab and then click IP Address in the task bar The IP Address Table page appears Figure 8 IP Address Table Page The table lists the IP address th...

Page 44: ...ntify your network It may be identified in the Configuration Manager by the names ppp 0 eoa 0 or ipoa 0 depending on the protocol your device uses to communicate with your ISP Your ISP may assign the same address each time or it may change each time you reconnect The loopback IP address named lo 0 of 127 0 0 1 This special address enables the device to keep any data addressed directly to it rather...

Page 45: ...sion You will not typically need to view thi s data but you may find it helpful when working with your ISP to diagnose network and Internet data transmission problems To view global IP statistics click Global Stats on the IP Address Table page Below shows the IP Global Statistics page Figure 9 IP Global Statistics Page To display updated statistics showing any new data since you opened the page cl...

Page 46: ...enable DHCP on a network you allow a device such as the ADSL Barricade or a router located with your ISP to assign temporary IP addresses to your computers whenever they connect to your network The assigning device is called a DHCP server and the receiving device is a DHCP client Note If you used the Quick Start instructions you configured each LAN PC with an IP address or you specified that it wi...

Page 47: ...ated information DHCP is commonly used with large networks and those that are frequently expanded or otherwise updated ADSL Barricade DHCP modes The device can be configured as a DHCP server relay agent or client If you configure the device as a DHCP server it will maintain the pool of addresses and distribute them to your LAN computers If the pool of addresses includes private IP addresses you mu...

Page 48: ...te Before you begin be sure to configure your PCs to accept DHCP information assigned by a DHCP server For detailed instructions see Quick Start Configuring Your Computers on page 9 To set up DHCP server you first define the ranges of IP addresses that you want to be distributed to your PCs called DHCP server address pools Guidelines for creating DHCP server address pools IP address pools can cont...

Page 49: ...ly one subnet but the addresses you want to distribute are not in a continuous range Alternatively you can exclude particular addresses from distribution from a single pool see page 50 The DHCP server will distribute addresses to the computers connected to a given device interface only when that interface is in the same subnet as the pool addresses For example assume that the Ethernet interface is...

Page 50: ...anager click the LAN tab and then click DHCP Server in the task bar The Dynamic Host Configuration Protocol DHCP Server Configuration page appears Figure 10 Dynamic Host Configuration Protocol DHCP Server Configuration Page Depending on your preconfigured settings the table may display one or more address pools each in a row or may be empty ...

Page 51: ...sses in the pool up to a maximum range of 254 addresses For example if the LAN port is assigned IP address 192 168 1 1 then you could create a pool with address range 192 168 1 2 192 168 1 254 for distribution to your LAN computers Mac Address A MAC address is a manufacturer assigned hardware ID that is unique for each device on a network Use this field only if you want to assign a specific IP add...

Page 52: ...address of the default gateway for computers that receive IP addresses from this pool If no value is specified then the appropriate LAN eth 0 or USB usb 0 port address on the device will be distributed to each PC as its gateway address depending on how each is connected See Hops and gateways on page 86 for an explanation of gateway addresses DNS Address SDNS Address These fields indicate the IP ad...

Page 53: ...it and Commit your changes To view details on an IP address pool click A page appears with the same information that you entered when you added the pool To modify the pool click The DHCP Server Pool Modify page appears as shown in Figure 12 Figure 12 DHCP Server Pool Modify Page You can change the Domain Name associated with an IP address pool When you are done making modifications click Submit Us...

Page 54: ...in the Excluded IP field and click Add When you are done specifying excluded addresses click Submit and then use the Commit function to save your changes to the permanent memory see Committing your changes on page 30 Viewing current DHCP address assignments When the ADSL Barricade functions as a DHCP server for your LAN it keeps a record of any addresses currently leased to your computers To view ...

Page 55: ...ress that has been leased from the pool Netmask This is the network mask associated with the leased address This identifies the network ID and host ID portions of the address see IP Addresses Network Masks and Subnets for an explanation of these terms Mac Address This field indicates the unique hardware ID of the computer to which the IP address has been assigned Pool Start This is the lower bound...

Page 56: ...ddress of the DHCP server and select the interfaces on your network that will be using the relay service 2 Log into the Configuration Manager click the LAN tab Then click DHCP Relay in the task bar The Dynamic Host Configuration Protocol DHCP Relay Configuration page appears Figure 14 Dynamic Host Configuration Protocol DHCP Relay Configuration Page 3 In the DHCP Server Address fields type the IP ...

Page 57: ...m your changes and then the program returns to the Dynamic Host Configuration Protocol DHCP Relay Configuration page 6 Follow the instructions in Setting the DHCP Mode to set the DHCP mode to DHCP Relay Setting the DHCP Mode You must enable the appropriate DHCP mode to activate your DHCP relay or DHCP server settings Follow these instructions to set the DHCP mode 1 Click the LAN tab and then click...

Page 58: ... choose DHCP Server DHCP Relay or None If you choose None your LAN computers must be configured with static IP addresses 3 Click Submit 4 Click the Admin tab and then click Commit Reboot in the task bar 5 Click Commit to save your changes to the permanent memory ...

Page 59: ...net Corporation for Assigned Names and Numbers ICANN for use on the Internet Typically your ISP provides a public IP address for your entire LAN and you define the private addresses for computers on your LAN In a typical NAT setup your ISP provides you with a single public IP address to use for your entire network Then you assign each computer on your LAN a unique private IP address Or you define ...

Page 60: ...ating from the computer assigned your public IP address in this case the ADSL Barricade The NAT rule could further be defined to disguise the source port in the data packet i e change it to another number so that outside computers will not be able to determine the actual port from which the packet originated Data packets that arrive in response contain the public IP address as the destination IP a...

Page 61: ...nction described above is called Network Address Port Translation NAPT You can use other types called flavors of NAT for other purposes for example providing outside access to your LAN or translating multiple private addresses to multiple public addresses Viewing NAT Global Settings and Statistics To view your NAT settings log into the Configuration Manager click the Services tab The NAT Configura...

Page 62: ...ted between them to control the exchange of data packets The TCP session can be viewed as being in one of three states depending on the types of packets being transferred The establishing state where the connection is being set up The active state where the connection is being used to transfer data The closing state in which the connection is being shut down When a NAT rule is effective on a TCP s...

Page 63: ...Statistics Page The table provides basic information for each NAT rule you have set up You can click Clear to restart the accumulation of the statistics at their initial values GRE Timeout sec Same as TCP Idle Timeout but for GRE based communication sessions Default Nat Age sec For all other NAT translation sessions the number of seconds after which a translation session will no longer be valid if...

Page 64: ...n Page The Network Address Translation NAT Rule Configuration table displays a row containing basic information for each rule For a description of these fields refer to the instructions for adding rules pages 66 through 79 From the Network Address Translation NAT Rule Configuration page you can click Add to add a new rule or use the icons in the right column to delete or view details on a rule To ...

Page 65: ...ns are using this rule You can click Clear to reset the statistics to zeros and Refresh to display newly accumulated data Viewing Current NAT Translations To view a list of NAT Translations that have recently been performed and which remain effective for any of the defined rules select NAT Translations from the NAT Options drop down list Figure 20 NAT Translations Page ...

Page 66: ...eld indicates the IP protocol used by the data packets that are undergoing translations from the rule definition Example TCP UDP ICMP Alg Type This is the Application Level Gateway ALG if any that was used to enable this NAT translation ALGs are special settings that certain applications require in order to work while NAT is enabled NAT Direction This field indicates the direction Inside or Outsid...

Page 67: ...n Address This field indicates the private IP address that was translated Out Address This field indicates the IP address of the outside destination web ftp site etc In Packets Out Packets These fields indicate the number of incoming and outgoing IP packets that have been translated in this translation session In Ports This is the actual port number corresponding to the LAN computer Out Ports This...

Page 68: ... configuration The NAPT flavor translates private source IP addresses to a single public IP address The NAPT rule also translates the source port numbers to port numbers that are defined on the NAT Global Configuration page see Viewing NAT Global Settings and Statistics on page 59 The Introduction to NAT describes how the NAPT rule works 1 Click the NAT tab then select NAT Rule Entry from the NAT ...

Page 69: ...he future you can insert a rule between two existing rules Once a data packet matches a rule the data is acted upon according to that rule and is not subjected to higher numbered rules 5 From the IF Name drop down list select the interface on the device to which this rule applies Typically NAT rules are used for communication between your LAN and the Internet Because the device uses the WAN interf...

Page 70: ...the NAT Rule Configuration table 10 Ensure that the Enable radio button is selected and then click Submit A page appears to confirm your changes 11 Click the Admin tab and then click Commit and Reboot in the task bar 12 Click Commit to save your changes to the permanent memory The RDR rule Allowing external access to a LAN computer You can create an RDR rule to make a computer on your LAN such as ...

Page 71: ...ts with destination port 80 the device recognizes the data as a request for Web server access The device changes the packet s destination address to the private IP address of your Web server and forwards the data packet to it Your Web server sends data packets in response Before the ADSL Barricade forwards them on to the Internet it changes the source IP address in the data packets from the Web se...

Page 72: ...ssigned Numbers Authority IANA specified protocol number 4 In the Local Address From and Local Address To fields type the same private IP address or the lowest and highest addresses in a range If you type the same IP address in both fields incoming traffic that matches the criteria you specify in steps 5 and 6 will be redirected to that IP address If you type a range of addresses incoming traffic ...

Page 73: ...ge using the From To fields if you want the rule to apply to a range of port types or enter the same port number in both fields A port ID identifies the specific function of the computer connected to it and therefore can limit the types of data that pass to and from the computer For example Web HTTP servers are usually identified by port number 80 packets containing traffic destined for a Web serv...

Page 74: ...ort 2000 The packet will then be routed appropriately to the web server 8 Follow steps 8 12 under The NAPT Rule on page 68 to submit your changes The Basic rule Performing 1 1 translations The Basic flavor translates the private LAN side IP address to a public WAN side address like NAPT rules However unlike NAPT rules Basic rules do not translate the port numbers in the packet header they are pass...

Page 75: ...ocal Address From and Local Address To fields type the starting and ending IP addresses that identify the range of private address you want to be translated Or type the same address in both fields If you specify a range each address will be translated in sequence to a corresponding address in a range of Global Addresses which you specify in step 5 You can create a BASIC rule for each specific addr...

Page 76: ...ses on a one to one basis The Filter flavor extends the capability of the BASIC rule Refer to The BASIC Rule on page 72 for a general description You can use the Filter rule if you want an address translation to occur only when your LAN computers initiate access to specific destinations The destinations can be identified by their IP addresses the port type which identifies it as a FTP or Web serve...

Page 77: ... number 4 In the Local Address From and Local Address To fields type the starting and ending IP addresses that identify the range of private addresses you want to have translated Or type the same address in both fields If you specify a range each address will be translated in sequence to a corresponding address in a range of Global Addresses which you specify in step 5 The address or range of addr...

Page 78: ...ng an RDR Rule on page 71 for an explanation of port IDs 9 Follow steps 8 12 under The NAPT Rule on page 68 to submit your changes The Bimap rule Performing two way translations Unlike the other NAT flavors the Bimap flavor performs address translations in both the outgoing and incoming directions In the incoming direction when the specified ADSL Barricade interface receives a packet with your pub...

Page 79: ...vor Follow these instructions to add a Bimap rule see steps 1 4 under The NAPT Rule on page 66 for specific instructions corresponding to steps 1 and 2 below 1 Display the NAT Rule Add Page select BIMAP as the Rule Flavor and enter a Rule ID 2 Select the interface on which this rule will be effective 3 In the Local Address field type the private IP address of the computer to which you are granting...

Page 80: ... a lower number than the ID assigned to the rule it is intended to pass If you want a specific IP address or range of addresses not to be subject to an existing rule say rule ID 5 then you can create a Pass rule with ID 1 through 4 Follow these instructions to add a Pass rule see steps 1 4 under The NAPT Rule on page 66 for detailed instructions corresponding to steps 1 and 2 below 1 Display the N...

Page 81: ...e the lowest and highest IP addresses that define the range of private address you want to be passed without translation If you want the Pass rule to act on only one address type that address in both fields 4 Follow steps 7 12 under The NAPT Rule on page 68 to submit your changes ...

Page 82: ...ll communicate with higher level DNS servers when the name cannot be found locally When the address is found it is sent back to the requesting PC and is referenced in IP packets for the remainder of the communication Assigning DNS Addresses Multiple DNS addresses are useful to provide alternatives when one of the servers is down or is encountering heavy traffic ISPs typically provide primary and s...

Page 83: ... the DHCP pool the DNS relay feature is not used Configuring DNS Relay When you specify the ADSL Barricade s LAN port IP addresses as the DNS addresses then the device automatically performs DNS relay i e because the device itself is not a DNS server it forwards domain name lookup requests it receives from the LAN PCs to a DNS server at the ISP It then relays the DNS server s response to the PC Wh...

Page 84: ...arned through PPP If Use DNS is not enabled or if a protocol other than PPP is used such as EoA then these configured addresses will be used as the primary and secondary DNS addresses Follow these steps to configure DNS relay 1 Configure the LAN PCs to use the ADSL Barricade s LAN IP addresses as their DNS server addresses by assigning the LAN IP address statically to each PC or by inputting the L...

Page 85: ...d then click Submit 3 Click the Admin tab and then click Commit Reboot in the task bar 4 Click Commit to save your changes to the permanent memory Note DNS addresses that are assigned to LAN PCs prior to enabling DNS relay will remain in effect until the PC is rebooted DNS relay will only take effect when a PC s DNS address is the LAN IP address Similarly if after enabling DNS relay you specify a ...

Page 86: ...ards that handle telephone calls When you dial a long distance telephone number you are first connected to a switchboard operated by your local phone service carrier All calls you initiate go first to this main switchboard If the phone number you dialed is outside your calling area the switchboard opens a connection to a higher level switchboard for long distance calls That switchboard looks at th...

Page 87: ...ll transactions are initially sent to the same switchboard or router which serves as a gateway to other higher or lower level devices No single device knows at the outset the eventual path the data will take but each uses a specific part of the destination address phone number to make a decision about which device to connect to next Hops and gateways Each time Internet data are passed from one Int...

Page 88: ...t device will forward the data to its default gateway Eventually a high level device using a predefined IP route will be able to forward the data along a path to its destination Do I need to define IP routes Most users do not need to define IP routes On a typical small home or office LAN the existing routes that set up the default gateways for your LAN computers and for the ADSL Barricade provide ...

Page 89: ... two or more networks or subnets if you connect to two or more ISP services or if you connect to a remote corporate LAN Viewing the IP Routing Table All IP enabled computers and routers maintain a table of IP addresses that are commonly accessed by their users For each of these destination IP addresses the table lists the IP address of the first hop the data should take This table is known as the ...

Page 90: ...of network masks NextHop This field specifies the next IP address to send data to when its final destination is that shown in the Destination column IFName This field displays the name of the interface on the device through which data is forwarded to the specified next hop Route Type This field displays whether the route is Direct or Indirect In a Direct route the source and destination computers ...

Page 91: ...tion of these fields refer to the table on page 89 To create a route that defines the default gateway for your LAN enter 0 0 0 0 in both the Destination and Netmask fields Enter your ISP s IP address in the Gateway NextHop field Note You cannot specify the interface name route type or route origin These parameters are used only for routes that are identified automatically as the device communicate...

Page 92: ...Confirmation page click Close to return to the IP Route Table page The IP Routing Table will now display the new route 5 Click the Admin tab and then click Commit Reboot in the task bar 6 Click Commit to save your changes to the permanent memory ...

Page 93: ...cation or on remote networks connected to your network via the ADSL line Generally RIP is used to enable communication on autonomous networks An autonomous network is one in which all of the computers are administered by the same entity An autonomous network may be a single network or a grouping of several networks under the same administration An example of an autonomous network is a corporate LA...

Page 94: ...DSL Barricade The ADSL Barricade and the router will need to communicate via RIP to share their routing tables Your network connects via the ADSL line to a remote network such as a corporate network In order for your LAN to learn the routes used within your corporate network they should both be configured with RIP Your ISP requests that you run RIP for communication with devices on their network C...

Page 95: ...r Enable or Disable the RIP feature and a table listing interfaces on which the protocol is currently running The first time you open this page the table may be empty 2 If necessary change the Age seconds and Update Time seconds These are global settings for all interfaces that use RIP Age seconds is the amount of time in seconds that the device s RIP table will retain each route that it learns fr...

Page 96: ...ith the lowest hop count is considered the fastest path For example if you assign this port a metric of 1 then RIP will add 1 to the hop count when calculating a route that passes through this port If you know that communication via this interface is slower than through other interfaces on your network you can assign it a higher metric value than the others You can select any integer from 1 to 15 ...

Page 97: ...IP entry will display in the table 7 Click the Enable radio button to enable the RIP feature Note If you disable the RIP feature the interface settings you have configured will remain available for future activation 8 When you are finished defining RIP interfaces click Submit A page appears to confirm your changes 9 Click the Admin tab and then click Commit Reboot in the task bar 10 Click Commit t...

Page 98: ...ation page you can click Global Stats to view statistics on attempts to send and receive route table data over RIP enabled interfaces on the ADSL Barricade Figure 32 RIP Global Statistics Page You can click Clear to reset all statistics to zero and Refresh to display any newly accumulated data ...

Page 99: ...ide Area Network WAN that connects you to your ISP the ATM protocol performs functions like those that the Ethernet protocol performs on your LAN This section describes how to configure the ATM virtual circuit VC The VC properties define the path the ADSL Barricade uses to communicate with your ISP over the ATM network Viewing Your ATM VC To view your current configuration log into the Configurati...

Page 100: ...gs identify a unique ATM data path for communication between your ADSL Barricade and your ISP Max Proto per AAL5 If you are using an AAL5 type of interface this setting indicates the number of higher level interfaces that the VC can support the higher level interfaces can be PPP EoA or IPoA interfaces Contact your ISP to determine which connection protocol s they require Action s This field displa...

Page 101: ...the ATM VC Configuration page click Add The ATM VC Add page appears as shown in Figure 34 Figure 34 ATM VC Add Page 2 Select an interface name from the VC Interface drop down list 3 Enter the VPI and VCI values assigned by your ISP and select the Mux Type from the drop down list 4 In the Max Proto per AAL5 text box enter the number of protocols that the ISP indicated that you will need to configur...

Page 102: ... from a LAN computer Contact your ISP for troubleshooting assistance 7 When you have verified that the new settings work properly click the Admin tab and then click Commit Reboot in the task bar 8 Click Commit to save your changes to the permanent memory Modifying ATM VCs Your device may already be preconfigured with the necessary ATM VC properties or the table may contain placeholder values that ...

Page 103: ... you want to change the interface type you must delete the existing interface create a new one and select the desired interface type 3 Click Submit 4 On the Confirmation page click Close to return to the ATM VC Configuration page 5 Click the Admin tab and then click Commit Reboot in the task bar 6 Click Commit to save your changes to permanent memory You can verify that the new settings work by at...

Page 104: ...trol various communication properties including Identifying the type of service the ISP provides to a given customer Identifying the customer to the ISP through a username and password login Enabling the ISP to assign Internet information to the customer s computers Your ISP may or may not use the PPP protocol Contact your ISP to determine if you will need to change the default settings in order t...

Page 105: ...ined with more than one group of PPP settings Each group of settings is called a PPP interface and is given a name such as ppp 0 ppp 1 etc You can configure the following settings on the Point to Point Protocol PPP Configuration page Inactivity TimeOut mins This is the time in minutes that must elapse before a PPP connection times out due to inactivity Ignore WAN to LAN traffic while monitoring in...

Page 106: ... your LAN such as the Ethernet interface Packets received on a private interface are subject to a less restrictive set of protections because they originate within the network The term DMZ de militarized zone in Internet networking terms refers to computers that are available for both public and in network accesses such as a company s public Web server Packets incoming on a DMZ interface whether f...

Page 107: ...types WINS SMTP POP3 etc these server types are listed on the DHCP Server Configuration page Use DNS When set to Enable the DNS address learned through the PPP connection will be distributed to clients of the device s DHCP server This option is useful only when the ADSL Barricade is configured to act as a DHCP Server for your LAN When set to Disable LAN hosts will use the DNS address preconfigured...

Page 108: ...Viewing PPP Interface Details 109 Viewing PPP Interface Details When you click to view additional details the PPP Interface Detail page appears as shown in Figure 37 Figure 37 PPP Interface Detail Page ...

Page 109: ...ebooted Disabled The PPP interface cannot currently be used Start The PPP connection will be made only when data is sent to the interface e g when a LAN user attempts to use the Internet Service Name This feature is available with PPPoE interfaces but not with PPPoA interfaces The name of the ISP service you are using with this PPP connection ISPs may offer different types of services for example ...

Page 110: ...age Auth Failure The ISP could not authorize the connection based on the user name and or password provided PADT Recvd The ISP issued a special packet type to terminate the PPP connection VC down The Virtual Circuit between the unit and the ISP is down Internal failure A system software failure occurred DNS This is the IP address of the DNS server located with your ISP used on this PPP connection ...

Page 111: ...int to Point Protocol PPP Configuration Page click Add The PPP Interface Add page appears as shown in Figure 38 Figure 38 PPP Interface Add Page 2 Select a PPP interface name from the drop down list and then enter or select data for each field Note You can create multiple PPP interfaces only if you are using the PPPoA protocol only one PPP interface can be defined if you are using PPPoE Check with...

Page 112: ... 5 Click the Admin tab and then click Commit Reboot in the task bar 6 Click Commit to save your changes to the permanent memory Modifying and Deleting PPP Interfaces To modify a PPP interface display the Point to Point Protocol PPP Configuration page and click in the Action column for the interface you want to modify The PPP Interface Modify page appears as shown in Figure 39 Figure 39 PPP Interfa...

Page 113: ...page and click in the Action column for the interface you want to delete You should not delete a PPP Interface unless you have received instructions to do so from your ISP Without an appropriately defined PPP Interface you may not be able to connect to your ISP You can recreate the PPP interface with the same name later After modifying or deleting a PPP Interface click Submit Then click the Admin ...

Page 114: ...ISP In a bridged connection data is shared between the ISP s network and their customer s as if the networks were on the same physical LAN Bridged connections do not use the IP protocol EOA can also be configured to provide a routed connection with the ISP which uses the IP protocol to exchange data Before creating an EOA interface or modifying the default settings contact your ISP to determine wh...

Page 115: ...483 Ethernet over ATM EOA Config page Figure 40 RFC1483 Ethernet over ATM EOA Config Page The EOA table contains a row for each EOA interface currently defined on the device The table may contain no entries if your ISP does not use the EOA protocol The following table describes the fields on this page Field Description Interface This is the name the software uses to identify the EOA interface ...

Page 116: ...e defined in software and then associated with lower level software and hardware structures at the lowest level they are associated with a physical port the WAN port This field should reflect an interface name defined in the next lower level of software over which the EOA interface will operate This will be an ATM VC interface such as aal5 0 as described in Configuring the ATM Virtual Circuit Conf...

Page 117: ...e only one default route Gateway Address The external IP address that the ADSL Barricade communicates with via the EOA interface to gain access to the Internet This is typically an ISP server Status A green or red ball will display to indicate that the interface is currently up or down respectively You cannot manually enable or disable the interface a red ball may indicate a problem with the DSL c...

Page 118: ... used on this interface as defined on page 116 5 In the Lower Interface field select the lower level interface name over which this protocol is being configured If you are using the ADSL Barricade as a bridge only skip to step 10 6 If you are using the ADSL Barricade as a router on your LAN enter the IP address for the interface in the Conf IP Address field and enter the network in the Netmask Thi...

Page 119: ...ve as the default route for Internet access for your LAN click the Enable radio button in the Default Route field 9 In the Gateway IP Address field enter the address of the Internet computer to contact in order to gain initial access to the Internet 10 Click Submit A Confirmation page appears to confirm your changes 11 Click Close to return to the RFC1483 Ethernet over ATM EOA Config page and view...

Page 120: ...ed only in product development and test environments to eliminate unneeded variables when evaluating IP layer processing Viewing Your IPoA Interface Setup To configure an IPoA interface log into Configuration Manager click the WAN tab and then click IPoA in the task bar The IP over ATM IPoA Configuration page appears as shown in Figure 42 Figure 42 IP over ATM IPoA Configuration Page The IPoA tabl...

Page 121: ...of security protections in effect on the interface Public Private or DMZ A Public interface connects to the Internet IPoA interfaces are typically public Packets received on a public interface are subject to the most restrictive set of firewall protections defined in the software A Private interface connects to your LAN such as the Ethernet interface Packets received on a private interface are sub...

Page 122: ...external IP address that the ADSL Barricade communicates with via the IPoA interface to gain access to the Internet This is typically an ISP server Status A green or red ball will appear to indicate that the interface is currently up or down respectively You cannot manually enable or disable the interface a down interface may indicate a problem with the DSL connection Action This field displays ic...

Page 123: ...therwise click the Non 1577 radio button then click Add 6 If you want the IPoA interface to serve as the default route for your LAN click the Enable radio button in the Default Route field 7 In the Gateway IP Address field enter the address of the Internet computer to contact to gain initial access to the Internet 8 Select the Lower Interface from the Lower Interface drop down list 9 Click Add 10 ...

Page 124: ...mputer or device on both or all networks it is attached to It learns that some of the IDs represent computers attached via one of the device s interfaces and others represent computers connected via other interfaces For example the hardware IDs of your home computers are attached via the Ethernet port and the hardware IDs of your ISP s computers are attached via the WAN DSL port It stores the ID l...

Page 125: ...mine which next router to send the data to if the destination is not on a connected network Bridges cannot read IP information but instead refer to the hardware ID of the destination computer which is also included in data packets Hardware IDs are unique numbers that manufacturers assign to each piece of hardware they sell A bridge learns to recognize the hardware IDs accessible through each of it...

Page 126: ...rovide router functionality for your LAN Your LAN may include computers that communicate using layer 3 protocols other than the Internet Protocol These include IPX and AppleTalk In this case the device can be configured to act as a bridge for packets that use these protocols while continuing to serve as a router for IP data Defining Bridge Interfaces To enable bridging you have to specify the devi...

Page 127: ...eives You can determine whether the Ethernet eth 0 and USB usb 0 interfaces have to be assigned IP addresses by displaying the IP Address Table display the Routing tab and click IP Address The interfaces will appear in the table only if they have been assigned IP addresses You can check whether the eoa 0 interface has been assigned an IP address by displaying the EOA Configuration Table click the ...

Page 128: ...rface To make an interface non bridgeable display the Bridge Configuration page and click next to the interface you want to delete Click OK to confirm the deletion The interface remains defined in the system but is no longer capable of performing bridging ...

Page 129: ...es to your LAN You can also specify how to monitor attempted attacks and who should be automatically notified Configuring Global Firewall Settings Follow these instructions to configure global firewall settings 1 Log into the Configuration Manager click the Services tab Then click Firewall in the task bar The Firewall Configuration page appears as shown in Figure 45 Figure 45 Firewall Configuratio...

Page 130: ... LAN IP address as the source address Tear Drop Sending packets that contain overlapping fragments Smurf and Fraggle Sending packets that use the WAN or LAN IP broadcast address as the source address Land Attack Sending packets that use the same address as the source and destination address Ping of Death Illegal IP packet length Dos Protection Click the Enable radio button to use the following den...

Page 131: ...l settings will be tracked Records of such events can be sent via Ethernet to be handled by a system utility Ethernet to Trace or be e mailed to specified administrators E mail ID of Admin 1 E mail ID of Admin 2 E mail ID of Admin 3 This field specifies the e mail addresses of the administrators who should receive notices of any attempted firewall violations Type the addresses in standard internet...

Page 132: ... page The Firewall Blacklisted Hosts page appears as shown in Figure 46 Figure 46 Firewall Blacklisted Hosts Page The table displays the following information for each entry Field Description Host IP Address This is the IP address of the computer that sent the packet s that caused the violation Reason This is a short description of the type of violation If the packet violated an IP filter rule the...

Page 133: ...otocols feature enables you to simply select from a predefined list the protocol that you want to block All data passed to the ADSL Barricade using a blocked protocol will be discarded without consideration of the source computer destination computer or the device interface on which it was received Configuring IP Filters When you define an IP filter rule and enable the feature you instruct the ADS...

Page 134: ...ger click the Services tab and then click IP Filter in the task bar The IP Filter Configuration page appears as shown in Figure 47 Figure 47 IP Filter Configuration Page The IP Filter Configuration page displays global settings that you can modify and the IP filter rule table which shows all currently established rules See Creating IP Filter Rules on page 138 for a description of the items that ma...

Page 135: ...the filtering rules You can specify a different default action for each interface type You specify an interface s type when you create the interface see the PPP configuration page for example A Public interface typically connects to the Internet PPP EoA and IPoA interfaces are typically public Packets received on a public interface are subject to the most restrictive set of firewall protections de...

Page 136: ...rotections that is in between Public and Private interfaces in terms of restrictiveness The global setting for DMZ type interfaces may be set to Deny so that all attempts to access these servers are denied by default the administrator may then configure IP filter rules to allow accesses of certain types Creating IP Filter Rules To create an IP filter rule you set various criteria that must be met ...

Page 137: ... IDs in multiples of 5 or 10 e g 10 20 30 so that you leave enough room between them for inserting a new rule if necessary Action The action that will be taken when a packet matches the rule criteria The action can be Accept forward to destination or Deny discard the packet Direction This field specifies whether the rule should apply to data packets that are incoming or outgoing on the selected in...

Page 138: ...n is valid only for the outgoing direction Log Option When Enable is selected a log entry will be created on the system each time this rule is invoked The log entry will include the time of the violation the source address of the computer responsible for the violation the destination IP address the protocol being used the source and destination ports and the number violations occurring in the prev...

Page 139: ... will be inactive Blacklist Status This field specifies whether or not a violation of this rule will result in the offending computer s IP address being added to the Blacklist which blocks the ADSL Barricade from forwarding packets from that source for a specified period of time See Configuring Firewall Settings on page 131 for instructions Log Tag This is a description of up to 16 characters to b...

Page 140: ...out of range any source IP address that is outside the specified range self the IP address of the ADSL Barricade interface on which this rule takes effect bcast destination address only specifies that the rule will be invoked for any packets sent to the broadcast address for the receiving interface The broadcast address is used to send packets to all hosts on the LAN or subnet connected to the spe...

Page 141: ...lected TCP or UDP as the protocol See the description of Src IP Address for the statement options any eq gt etc TCP Flag This field specifies whether the rule should apply only to TCP packets that contain the synchronous SYN flag only to those that contain the non synchronous NOT SYN flag or to all TCP packets This field will be dimmed unavailable for entry unless you selected TCP as the protocol ...

Page 142: ...eir packet headers Yes The rule will be applied only to packets that contain header options No The rule will be applied only to packets that do not contain header options Ignore Default The rule will be applied to packets whether or not they contain header options assuming that they match the other criteria Packet Size This field specifies that the IP filter rule will take affect only on packets w...

Page 143: ...erent from the globally configured level 4 Make sure that the Security Level the Private Default Action Public Default Action and DMZ Default Action settings on the IP Filter Configuration page are configured as needed then click Submit A page appears to confirm your changes 5 Click the Admin tab and then click Commit Reboot in the task bar 6 Click Commit to save your changes to the permanent memo...

Page 144: ...ate Default Action and the Public Default Action to Accept 8 Click Submit and commit your changes Figure 48 shows the configuration for this rule The specified computer will not be able to access the Web but will be able to access FTP Internet sites and any others that use destination port numbers other than 80 Example 2 Blocking Telnet accesses to the ADSL Barricade 1 Add a new rule for packets i...

Page 145: ...be configured Figure 49 IP Filter Rule Add page Viewing IP Filter Statistics For each rule you can view statistics on how many packets were accepted or denied Display the IP Filter Configuration page and then click Stats in the row corresponding to the rule The IP Filter Rule Statistics page appears as shown in Figure 50 ...

Page 146: ...computers communicate using the IP protocol an IP session is created for the duration of the communication The ADSL Barricade allows a fixed number of concurrent IP sessions You can view information about each current IP session and delete sessions for security reasons for example To view all current IP sessions display the IP Filter Configuration page and then click Session The IP Filter Session ...

Page 147: ...he number of seconds in which the connection will automatically expire Protocol This field displays the underlying IP protocol used on the connection such as TCP UDP IGMP etc I F This is the interface on which the IP filter rule is effective IP Address This is the IP addresses involved in the communication The first one shown is the initiator of the communication Port This field displays the hardw...

Page 148: ...and then click Blocked Protocols in the task bar The Blocked Protocols page appears as shown in Figure 52 Figure 52 Blocked Protocols Page Warning Blocking certain protocols may disrupt or disable your network communication or Internet access If you are unfamiliar with how your network or Internet connection uses these protocols contact your ISP before disabling The following list describes each o...

Page 149: ...s Certain types of computers such as diskless workstations must use RARP to determine their IP address before communicating with other network devices AppleTalk This is a networking protocol used for Apple Macintosh networks NetBEUI This is the abbreviation of NetBIOS Enhanced User Interface On many LAN operating systems the NetBEUI protocol provides the method by which computers identify themselv...

Page 150: ...r then click Commit to save your changes to the permanent memory IPV6 Multicast This field displays IP Multicasting under IP Protocol version 6 See IP Multicast above 802 1 Q This IEEE specification defines a protocol for virtual LANs on Ethernet networks A virtual LAN is a group of PCs that function as a local area network even though the PCs may not be physically connected They are commonly used...

Page 151: ...tus Page The DSL Status page displays current information on the DSL line performance The page refreshes according to the setting in the Refresh Rate drop down list which you can configure In the DSL Status table the Operational Status setting displays a red orange or green ball to indicate that the DSL line is idle starting up or up and running respectively You can click Loop Stop to end the DSL ...

Page 152: ...zero and Refresh to display the page with newly accumulated values You can click DSL Param to display data about the configuration of the DSL line as shown in Figure 54 Figure 54 DSL Parameter Page The DSL Parameters and Status table displays settings preconfigured by the product manufacturer or your ISP The Config Data table lists various types of error and defects measurements found on the DSL l...

Page 153: ... Status page you can click Stats to display DSL line performance statistics as shown in Figure 55 Figure 55 DSL Statistics Page The DSL Statistics page reports error data relating to the last 15 minute interval the current day and the previous day ...

Page 154: ...rs table displays links you can click on to display detailed data for each 15 minute interval in the past 24 hours For example when you click on 1 4 the data appear for the 16 intervals 15 minutes each that make up the previous 4 hours Figure 56 shows an example Figure 56 DSL Interval Statistics Page ...

Page 155: ...ab Configuring User Logon Committing and Rebooting are described in Getting Started with the Configuration Manager Configuring User Names and Passwords The ADSL Barricade is configured with a default user name and password combination or login for accessing the Configuration Manager Changing Login Passwords You can change your own log in password Follow these instructions to change a login passwor...

Page 156: ...Page 2 Type the Old Password then type the New Password in exactly the same way in both text boxes The password can be up to eight ASCII characters long When logging in you must type the New Password in the same upper and lower case characters that you use here 3 Click Submit 4 Click the Admin tab and then click Commit Reboot in the task bar 5 Click Commit to save your changes to the permanent mem...

Page 157: ...t all alarms indicate problems in the functioning of the system Viewing the Alarm Table To display the Alarm page log into the Configuration Manager click the Admin tab and then click Alarm in the task bar The Alarm page is shown in Figure 58 Figure 58 Alarm Page Each row in the table displays the time and date that an alarm occurred the type of alarm and a brief statement indicating its cause You...

Page 158: ... easy way to upload a new software image or a specific part of the image to the memory on the ADSL Barricade To upgrade the image follow this procedure 1 Log into the Configuration Manager click the Admin tab Then click Image Upgrade in the task bar The Image Upgrade page is shown in Figure 59 Figure 59 Image Upgrade Page 2 In the Upgrade File text box type the path and file name of the file as pr...

Page 159: ...for the new image to take effect Turn power to the unit off wait a few seconds and turn it on again The new software will now be running If the system fails to boot or is not working properly contact your ISP for troubleshooting assistance Using Diagnostics The diagnostics feature executes a series of tests of your system software and hardware connections Use this feature when working with your IS...

Page 160: ...n a series of test to check whether the device s connections are up and working This takes only a few seconds and the results for each test are displayed on screen A test may be skipped if the program determines that no suitable interface is configured on which to run the test You can click Help to display an explanation of each test Work with your ISP to interpret the results of the diagnostic te...

Page 161: ...ives from the Internet specify the same IP address your public IP address as the destination However depending on the port number contained in the data packets the ADSL Barricade may pass the packet on to its embedded Web or Telnet servers or to another computer on the network The Internet community has developed a list of common server types such as HTTP Telnet e mail and many others and has assi...

Page 162: ...cenario that you also want to enable external access to the ADSL Barricade s Configuration Manager so that your ISP can log in and manager your system for example Accessing the Configuration Manager requires accessing the ADSL Barricade s own Web server also called its HTTP server In this case you would want to use the Port Settings feature to assign a non standard port number to the ADSL Barricad...

Page 163: ...1 Port Settings Page 2 Type the new port number s in the appropriate text box es and click Submit The default port numbers are shown in Figure 61 You can enter non standard port numbers in the range 61000 62000 3 Click Commit Reboot in the task bar and click Commit to save your changes to the permanent memory 4 On the Commit Reboot page click Reboot Note The new settings will not be effective unti...

Page 164: ...ed from left to right field1 field2 field3 and field4 This style of writing IP addresses as decimal numbers separated by dots is called dotted decimal notation The IP address 20 56 0 211 is read twenty dot fifty six dot zero dot two eleven Structure of an IP address IP addresses have a hierarchical design similar to that of telephone numbers For example a 7 digit telephone number starts with a 3 d...

Page 165: ...llowing section Figure 62 shows the structure of an IP address Table 4 IP Address structure Here are some examples of valid IP addresses Class A 10 30 6 125 network 10 host 30 6 125 Class B 129 88 16 49 network 129 88 host 16 49 Class C 192 60 201 11 network 192 60 201 host 11 Field 1 Field 2 Field 3 Field 4 Class A Network ID Host ID Class B Network ID Host ID Class C Network ID Host ID ...

Page 166: ...t still quite large each capable to hold over 65 000 hosts There can be up to 16 384 class B networks in existence A class B network might be appropriate for a large organization such as a business or government agency Class C networks are the smallest only able to hold 254 hosts at most but the total possible number of class C networks exceeds 2 million 2 097 152 to be exact LANs connected to the...

Page 167: ...would use the subnet mask 255 255 255 128 It s easier to see what s happening if we write this in binary 11111111 11111111 11111111 10000000 As with any class C address all of the bits in field1 through field3 are part of the network ID but note how the mask specifies that the first bit in field4 is also included Since this extra bit has only two values 0 and 1 this means there are two subnets Eac...

Page 168: ...al network ID bits and thus no subnets Such a mask is called a default subnet mask These masks are Class A 255 0 0 0 Class B 255 255 0 0 Class C 255 255 255 0 These are called default because they are used when a network is initially configured at which time it has no subnets ...

Page 169: ...ink grade school Base ten is just another name for decimal Similarly base two is binary Just as each digit in a decimal number represents a multiple of 10 1 10 100 1000 10 000 etc each digit in a binary number represents a multiple of 2 1 2 4 8 16 etc For example Decimal Binary 1 000 s 100 s 10 s 1 s 8 s 4 s 2 s 1 s 1 3 1 1 0 1 Also since binary uses only two digits to represent all numbers a bina...

Page 170: ...it is a single binary digit i e 0 or 1 A byte is a group of eight consecutive bits the number of bits can vary with computers but is almost always eight e g 11011001 The value of a byte ranges from 0 00000000 to 255 11111111 The following shows the values of the eight digits in a byte along with a sample value 128 s 64 s 32 s 16 s 8 s 4 s 2 s 1 s 1 0 1 0 1 1 0 1 The decimal value of this byte is 1...

Page 171: ...is turned on Verify that you are using a straight through type Ethernet cable to the uplink port on a hub If you connected the device to an ordinary hub port not Uplink you must use a straight through cable To check hold the connectors at each end of the cable side by side with the plastic spring facing down Looking at the wires from left to right if the first second third and sixth wires are the ...

Page 172: ...t the address or configure the PC to receive IP information automatically Verify with your ISP that the DNS server specified for the PC is valid Correct the address or configure the PC to receive this information automatically Verify that a Network Address Translation rule has been defined on the ADSL Barricade to translate the private address to your public IP address The assigned IP address must...

Page 173: ...ch as a pen tip Then type the default User ID and password shown above Warning Resetting the device removes the custom settings and returns all settings to their default values o Use the ping utility discussed in the following section to check whether your PC can communicate with the ADSL Barricade s LAN IP address by default 192 168 1 1 If it cannot check the Ethernet cabling Verify that you are ...

Page 174: ... which you are trying to communicate On Windows based computers you can execute a ping command from the Start menu Click the Start button and then click Run In the Open text box type a statement such as the following ping 192 168 1 1 Click OK You can substitute any private IP address on your LAN or a public IP address for an Internet site if known If the target computer receives the message a Comm...

Page 175: ...t a Command Prompt or through a system administration utility o Nslookup You can use the nslookup command to determine the IP address associated with an internet site name You specify the common name and the nslookup command looks up the name in on your DNS server usually located with your ISP If that name is not an entry in your ISP s DNS table the request is then referred to another higher level...

Page 176: ...igure 63 Using the nslookup Utility There may be several addresses associated with an Internet name This is common for web sites that receive heavy traffic they use multiple redundant servers to carry the same information To exit from the nslookup utility type exit and press Enter at the command prompt ...

Page 177: ...2 Mbps downstream 1024 Kbps upstream Software ATM Subsystem Supports up to 64 Virtual Channel Connections VCCs Supports UBR GFR CBR and VBR service classes Provides adaptation layer AAL5 functionality Performs the traffic shaping and scheduling per ATM port Supports PPP encapsulation over ATM PPPoA and PPP over Ethernet PPPoE Supports IP over ATM IPoA Support for F5 AIS RDI and loopback cells Data...

Page 178: ...2 Embedded firewall prevents DOS IP spoofing and other common types of attacks TFTP client server DHCP client server Telnet server HTTP server FTP client server Network Management lDSL Forum TR37 compliant auto configuration using ILMI to set up access protocols and other settings lAutoDetect feature enabling automatic configuration of VCI VPI values lSNMP v1 over DSL or Ethernet for access to the...

Page 179: ... 3u 100 Base Tx Fast Ethernet Operating System Support Windows 98 first and second edition Windows Me Windows 2000 Windows XP Windows NT Environmental Operating Range Operating temperature 0 40 degrees Celsius Humidity 0 90 non condensing Power Dissipation The typical approximated power dissipation is as below Power Dissipation for RL800G Active typical 0 5A ...

Page 180: ...Technical Specifications 184 Power Input 12V 1 2A Weight 545g Dimensions 20 x 14 8 x 3 9 cm LxWxH Electromagnetic Compatibility CE R TTE FCC part 15 class B and FCC part 68 Safety CSA UL 1950 EN60950 ...

Page 181: ...symmetrical refers to its unequal data rates for downloading and uploading the download rate is higher than the upload rate The asymmetrical rates benefit home users because they typically download much more data from the Internet than they upload analog Of data having a form is analogous to the data s original waveform The voice component in DSL is an analog signal See also digital ATM Asynchrono...

Page 182: ...are addresses of the devices at each location Bridging contrasts with routing which can add more intelligence to data transfers by using network addresses instead The ADSL Barricade can perform both routing and bridging Typically when both functions are enabled the device routes IP data and bridges all other types of data See also routing broadband A telecommunications technology that can send dif...

Page 183: ...HCP server Dynamic Host Configuration Protocol server A DHCP server is a computer that is responsible for assigning IP addresses to the computers on a LAN See DHCP digital Of data having a form based on discrete values expressed as binary numbers 0 s and 1 s The data component in DSL is a digital signal See also analog DNS Domain Name System The DNS maps domain names into IP addresses DNS informat...

Page 184: ...net to the user DSL Digital Subscriber Line A technology that allows both digital data and analog voice signals to travel over existing copper telephone lines Ethernet The most commonly installed computer network technology usually using twisted pair wiring Ethernet data rates are 10 Mbps and 100 Mbps See also BASE T 100BASE T twisted pair filtering To screen out selected types of data based on fi...

Page 185: ...teway routers communicate with each other Gbps Abbreviation for Gigabits GIG uh bits per second or one billion bits per second Internet data rates are often expressed in Gbps GRE Generic Routing Encapsulation TCP IP protocol suite transport layer encapsulation protocol hop When you send data through the Internet it is sent first from your computer to a router and then from one router to another un...

Page 186: ...ormation about its membership in multicast groups with adjacent routers A multicast group of computers is one whose members have designated as interested in receiving specific content from the others Multicasting to an IGMP group can be used to simultaneously update the address books of a group of mobile computer users or to send company newsletters to a distribution list in line filter See Microf...

Page 187: ...e difficult to remember they usually have an associated domain name that can be specified instead See also domain name network mask ISP Internet Service Provider A company that provides Internet access to its customers usually for a fee LAN Local Area Network A network limited to a small geographic area such as a home office or small building LED Light Emitting Diode An electronic light emitting d...

Page 188: ... microfilter See also splitterless NAT Network Address Translation A service performed by many routers that translates your network s publicly known IP address into a Private IP address for each computer on your LAN Only your router and your LAN know these addresses the outside world sees only the public IP address when talking to a computer on your LAN NAT rule A defined method for translating be...

Page 189: ... Ethernet NICs is typically an RJ 45 connector See Ethernet RJ 45 packet Data transmitted on a network consists of units called packets Each packet contains a payload the data plus overhead information such as where it came from source address and where it should go destination address ping Packet Internet or Inter Network Groper A program used to verify whether the host associated with an IP addr...

Page 190: ... only one PPPoA interface per VC PPPoE Point to Point Protocol over Ethernet One of the two types of PPP interfaces you can define for a Virtual Circuit VC the other type being PPPoA You can define one or more PPPoE interfaces per VC protocol A set of rules governing the transmission of data In order for a data transmission to work both ends of the connection have to follow the rules of the protoc...

Page 191: ...e SDNS Secondary Domain Name System server A DNS server that can be used if the primary DSN server is not available See DNS SNMP Simple Network Management Protocol The TCP IP protocol used for network management splitter A device that splits off the voice component of the DSL signal to a separate line so that data and telephone service each have their own wiring and jacks The splitter is installed...

Page 192: ...others The subnet s computers remain physically connected to the rest of the parent network but they are treated as though they were on a separate network See also network mask subnet mask A mask that defines a subnet See also network mask TCP See TCP IP TCP IP Transmission Control Protocol Internet Protocol The basic protocols used on the Internet TCP is responsible for dividing data up into pack...

Page 193: ...resented instead as a maximum hop count each router that receives a packet decrements this field by one When the TTL reaches zero the packet is discarded twisted pair The ordinary copper telephone wiring long used by telephone companies It contains one or more wire pairs twisted together to reduce inductance and noise Each telephone line uses one pair In homes it is most often installed with two p...

Page 194: ...arricade WAN refers to the Internet Web browser A software program that uses Hyper Text Transfer Protocol HTTP to download information from and upload to web sites and displays the information which may consist of text graphic images audio or video to the user Web browsers use Hyper Text Transfer Protocol HTTP Popular web browsers include Netscape Navigator and Microsoft Internet Explorer See also...

Page 195: ...nformation from remote users through web browsers A web site typically consists of web pages that contain text graphics and hyperlinks See also hyperlink web page WWW World Wide Web Also called the Web Collective term for all web sites anywhere in the world that can be accessed via the Internet ...

Page 196: ...equipment into an outlet on a circuit different from that to which the receiver is connected Consult the dealer or an experienced radio TV technician for help Note In order to maintain compliance with the limits for a Class B digital device you are required to use a quality interface cable when connecting to this device Changes or modifications not expressly approved by our company could void the ...

Page 197: ...elephone network the telephone company may request you to remove the equipment from the network until the problem is resolved No repairs may be done by the customer This equipment cannot be used on telephone company provided coin service Connection to Party Line Service is subject to state tariffs When programming and or making test calls to emergency numbers Remain on the line and briefly explain...

Page 198: ...mily standard according to EN 55024 1998 Electrostatic Discharge according to EN 61000 4 2 1995 Contact Discharge 4 kV Air Discharge 8 kV Radio frequency electromagnetic field according to EN 61000 4 3 1996 80 1000 MHz with 1 kHz AM 80 Modulation 3 V m Electrical fast transient burst according to EN 61000 4 4 1995 AC DC power supply 1 kV Data Signal lines 0 5 kV Surge immunity test according to EN...

Page 199: ... die Netzanschlußleitung so daß niemand darüber fallen kann Es sollte auch nichts auf der Leitung abgestellt werden 10 Alle Hinweise und Warnungen die sich am Gerät befinden sind zu beachten 11 Wird das Gerät über einen längeren Zeitraum nicht benutzt sollten Sie es vom Stromnetz trennen Somit wird im Falle einer Überspannung eine Beschädigung vermieden 12 Durch die Lüftungsöffnungen dürfen niemal...

Page 200: ...fweist 15 Stellen Sie sicher daß die Stromversorgung dieses Gerätes nach der EN 60950 geprüft ist Ausgangswerte der Stromversorgung sollten die Werte von AC 7 5 8V 50 60Hz nicht über oder unterschreiten sowie den minimalen Strom von 1A nicht unterschreiten Der arbeitsplatzbezogene Schalldruckpegel nach DIN 45 635 Teil 1000 beträgt 70dB A oder weniger ...

Page 201: ...nty The Limited Lifetime warranty covers a product during the Life of that Product which is defined as a period of 5 years from the date of purchase of the product from SMC or its authorized reseller All products that are replaced become the property of SMC Replacement products may be either new or reconditioned Any replaced or repaired product carries either a 30 day limited warranty or the remai...

Page 202: ... OTHER HAZARD LIMITATION OF LIABILITY IN NO EVENT WHETHER BASED IN CONTRACT OR TORT INCLUDING NEGLIGENCE SHALL SMC BE LIABLE FOR INCIDENTAL CONSEQUENTIAL INDIRECT SPECIAL OR PUNITIVE DAMAGES OF ANY KIND OR FOR LOSS OF REVENUE LOSS OF BUSINESS OR OTHER FINANCIAL LOSS ARISING OUT OF OR IN CONNECTION WITH THE SALE INSTALLATION MAINTENANCE USE PERFORMANCE FAILURE OR INTERRUPTION OF ITS PRODUCTS EVEN I...

Page 203: ...All information is subject to change without notice Limitation of Liability In no event whether based in contract or tort including negligence shall SMC be liable for incidental consequential indirect special or punitive damages of any kind or for loss of revenue loss of business or other financial loss arising out of or in connection with the sale installation maintenance use performance failure ...

Page 204: ......

Reviews:

No comments

Related manuals for 7204BRA

Baracoda All in One Printer Communication Protocol Manual preview
All in One Printer
Brand: Baracoda Pages: 42
D-Link xStack Storage DSN-4000 Series Datasheet preview
xStack Storage DSN-4000 Series
Brand: D-Link Pages: 5
F5 WANJet 500 Quick Start Card preview
WANJet 500
Brand: F5 Pages: 2
F5 ARX-500 Hardware Reference Manual preview
ARX-500
Brand: F5 Pages: 90
F5 ARX-4000 Parts Replacement Manual preview
ARX-4000
Brand: F5 Pages: 47
TC Electronic DB6 User Manual preview
DB6
Brand: TC Electronic Pages: 174
Observint NVR4 Firmware User Manual preview
NVR4
Brand: Observint Pages: 117
8e6 Technologies ER3-100 (5K02-55) Quick Start Manual preview
ER3-100 (5K02-55)
Brand: 8e6 Technologies Pages: 74
Abocom WM3111 Specification preview
WM3111
Brand: Abocom Pages: 1
ZyXEL Communications P-974H - V3.70 Manual preview
P-974H - V3.70
Brand: ZyXEL Communications Pages: 116
Xantech CC12 Installation Instructions preview
CC12
Brand: Xantech Pages: 4
Juniper E SERIES BROADBAND SERVICES ROUTERS 11.3.X - ERX MODULE GUIDE REV 27-9-2010 Manual preview
E SERIES BROADBAND SERVICES ROUTERS 11.3.X - ERX MODULE GUIDE REV 27-9-2010
Brand: Juniper Pages: 122
Delta Electronics LonWorks Communication Module LN-01 Instruction Sheet preview
LonWorks Communication Module LN-01
Brand: Delta Electronics Pages: 1
ZyXEL Communications P-2602H Series Specifications preview
P-2602H Series
Brand: ZyXEL Communications Pages: 2
Chaparral FS1310 User Manual preview
FS1310
Brand: Chaparral Pages: 96
Vivint AirBridge VS-YOFIMN-000 Quick Reference preview
AirBridge VS-YOFIMN-000
Brand: Vivint Pages: 2
Allied Telesis CentreCOM AT-3716XL Quick Install Manual preview
CentreCOM AT-3716XL
Brand: Allied Telesis Pages: 2
Multi-Link Power Stone Programming Manual preview
Power Stone
Brand: Multi-Link Pages: 31

Brands by name

Popular brands

Load more brands