SMC Networks 7901BRA2 - annexe 1 Manual Download | Manualshive

Page: 84 / 134

background image

C

ONFIGURING

THE

B

ARRICADE

4-40

FIREWALL

The Barricade’s firewall inspects packets at the application layer, maintains
TCP and UDP session information including time-outs and the number of
active sessions, and provides the ability to detect and prevent certain types
of network attacks.

Network attacks that deny access to a network device are called
Denial-of-Service (DoS) attacks. DoS attacks are aimed at devices and
networks with a connection to the Internet. Their goal is not to steal
information, but to disable a device or network so users no longer have
access to network resources.

The Barricade protects against the following DoS attacks: IP Spoofing,
Land Attack, Ping of Death, IP with zero length, Smurf Attack, UDP port
loopback, Snork Attack, TCP null scan, and TCP SYN flooding.
(For details see page 4-47.)

The firewall does not significantly affect system performance, so we advise
leaving it enabled to protect your network. Select

Enable

and click the

SAVE SETTINGS

button to open the Firewall submenus.

«
...
82
83
84
85
86
...
»

Summary of Contents for 7901BRA2 - annexe 1

Page 1: ......

Page 2: ......

Page 3: ...38 Tesla Irvine CA 92618 Phone 949 679 8000 Fast Ethernet Router with built in ADSL2 2 Modem From SMC s line of award winning connectivity solutions August 2006 R 01 f w 1 0 ...

Page 4: ...nse is granted by implication or otherwise under any patent or patent rights of our company We reserve the right to change specifications at any time without notice Copyright 2006 by SMC Networks Inc 38 Tesla Irvine CA 92618 All rights reserved Trademarks SMC is a registered trademark and Barricade is a trademark of SMC Networks Inc Other product and company names are trademarks or registered trad...

Page 5: ...ncorporates these newer technologies At that point the obsolete product is discontinued and is no longer an Active SMC product A list of discontinued products with their respective dates of discontinuance can be found at http www smc com index cfm action customer_service_warranty All products that are replaced become the property of SMC Replacement products may be either new or reconditioned Any r...

Page 6: ...CIDENT FIRE LIGHTNING OR OTHER HAZARD LIMITATION OF LIABILITY IN NO EVENT WHETHER BASED IN CONTRACT OR TORT INCLUDING NEGLIGENCE SHALL SMC BE LIABLE FOR INCIDENTAL CONSEQUENTIAL INDIRECT SPECIAL OR PUNITIVE DAMAGES OF ANY KIND OR FOR LOSS OF REVENUE LOSS OF BUSINESS OR OTHER FINANCIAL LOSS ARISING OUT OF OR IN CONNECTION WITH THE SALE INSTALLATION MAINTENANCE USE PERFORMANCE FAILURE OR INTERRUPTIO...

Page 7: ...ienced radio TV technician for help This device complies with Part 15 of the FCC Rules Operation is subject to the following two conditions 1 This device may not cause harmful interference and 2 this device must accept any interference received including interference that may cause undesired operation FCC Caution Any changes or modifications not expressly approved by the party responsible for comp...

Page 8: ...s equipment cannot be used on telephone company provided coin service Connection to Party Line Service is subject to state tariffs When programing and or making test calls to emergency numbers Remain on the line and briefly explain to the dispatcher the reason for the call Perform such activities in off peak hours such as early morning or late evenings The Telephone Consumer Protection Act of 1991...

Page 9: ...5022 EN 55024 EN 61000 3 2 EN 61000 3 3 EN 60950 1 CSA Statement This unit is to be used with an external power adaptor of a Class 2 or level 3 type and Approved type suitable for use in the North America of equipment installation having an output voltage rating of 12 V dc and output current rating of 1 0A or equivalent The external AC adapter must be complied with the requirements of LPS Limited ...

Page 10: ...geren Zeitraum nicht benutzt sollten Sie es vom Stromnetz trennen Somit wird im Falle einer Überspannung eine Beschädigung vermieden 12 Durch die Lüftungsöffnungen dürfen niemals Gegenstände oder Flüssigkeiten in das Gerät gelangen Dies könnte einen Brand bzw elektrischen Schlag auslösen 13 Öffnen sie niemals das Gerät Das Gerät darf aus Gründen der elektrischen Sicherheit nur von authorisiertem S...

Page 11: ... Power Adapter 2 7 Software Installation 2 8 Installing USB Driver 2 8 3 Configuring Client PC 3 1 TCP IP Configuration 3 2 Windows 98 Me 3 2 Disable HTTP Proxy 3 4 Obtain IP Settings from Your Barricade 3 6 Windows NT 4 0 3 7 Disable HTTP Proxy 3 9 Obtain IP Settings from Your Barricade 3 9 Windows 2000 3 11 Disable HTTP Proxy 3 12 Obtain IP Settings from Your Barricade 3 12 Windows XP 3 14 Disab...

Page 12: ...e Zone 4 3 ADSL Settings 4 4 Summary 4 5 ADSL Settings Country or ISP Not Listed 4 7 Configuration Parameters 4 15 System 4 17 WAN 4 20 LAN 4 29 NAT 4 30 Routing 4 35 Firewall 4 40 SNMP 4 53 UPnP 4 56 QoS 4 57 ADSL 4 60 DDNS 4 64 Tools 4 65 Status 4 70 Finding the MAC Address of a Network Card 4 73 Windows NT4 2000 XP 4 73 Macintosh 4 73 Linux 4 73 ...

Page 13: ...oubleshooting A 1 B Cables B 1 Ethernet Cable B 1 Specifications B 1 Wiring Conventions B 1 RJ 45 Port Connection B 2 Pin Assignments B 3 ADSL Cable Connection B 5 Specifications B 5 Wiring Conventions B 5 C Specifications C 1 ...

Page 14: ...TABLE OF CONTENTS x ...

Page 15: ...t and powerful solution About the Barricade The Barricade provides Internet access to multiple users by sharing a single user account Support is provided for 10 100Mbps Fast Ethernet devices It is simple to configure and can be up and running in minutes Features and Benefits Built in ADSL2 2 modem supports download speeds up to 24 Mbps Local network connection via 10 100 Mbps Ethernet port or USB ...

Page 16: ...tworking features are provided by the Barricade Internet Access This device supports Internet access through an ADSL connection Since many DSL providers use PPPoE or PPPoA to establish communications with end users the Barricade includes built in clients for these protocols eliminating the need to install these services on your computer Shared IP Address The Barricade provides Internet access for ...

Page 17: ...wing you to change internal IP addresses without affecting outside access to your network DMZ Host Support Allows a networked computer to be fully exposed to the Internet This function is used when NAT and firewall security prevent an Internet application from functioning correctly Security The Barricade supports security features that deny Internet access to specified users or filter all requests...

Page 18: ...INTRODUCTION 1 4 ...

Page 19: ... Package Contents After unpacking the Barricade check the contents of the box to be sure you have received the following items SMC7901BRA2 ADSL2 Barricade TM Power adapter One RJ 45 Ethernet cable One telephone patch cable RJ 11 Printed quick installation guide Documentation CD Warranty Registration Card Immediately inform your dealer in the event of any incorrect missing or damaged parts If possi...

Page 20: ...11 WAN port It can be connected directly to your PC or to a local area network using the Ethernet LAN port Also you can use the USB port for connecting this Barricade to your PC Access speed to the Internet depends on your service type Full rate ADSL provides up to 8 Mbps downstream and 1 Mbps upstream G lite or splitterless ADSL provides up to 1 5 Mbps downstream and 512 kbps upstream ADSL2 provi...

Page 21: ...L line to this port Ethernet Port Fast Ethernet port RJ 45 Connect the network device on your local area network to this port i e a PC hub or switch USB Port Connect your PC to this port for Internet access Reset Button Use this button to reset the power and restore the default factory settings To reset without losing configuration settings see Reset on page 4 69 Power Inlet Connect the included p...

Page 22: ... is sending or receiving data Off There is no LAN connection on the port USB On USB connection is established Flashing The USB port is sending or receiving data Off There is no connection on this port ADSL SYNC On ADSL connection is functioning correctly Flashing The SMC7901BRA2 ADSL Router is establishing an ADSL link Off ADSL connection is not established ADSL DATA Flashing The ADSL port is send...

Page 23: ...al wiring or cooling requirements are needed You should however comply with the following guidelines Keep the Barricade away from any heating devices Do not place the Barricade in a dusty or wet environment You should also remember to turn off the power remove the power cord from the outlet and keep your hands dry when you install the Barricade Connecting the ADSL Line Connect the splitter to the ...

Page 24: ...same phone line If you have a dedicated phone line for ADSL connect the Barricade directly to the phone line Note To prevent high frequency ADSL signals interfering with telephone calls each phone must be connected to the same phone line through a splitter also known as an ADSL microfilter Phone Line Splitter RJ 11 Ethernet ...

Page 25: ...e USB cable s Type A plug i e the flat plug into the USB port and press until it is firmly seated in the port 3 Insert the other end of the cable into the Barricade Connecting the Power Adapter Plug the power adapter into the power socket on the rear of the Barricade and the other end into a power outlet Check the power indicator on the front panel is lit If the power indicator is not lit refer to...

Page 26: ...s such as this may require the use of your original licensed copy of Windows Please have your Windows CD available BEFORE proceeding with the installation This installation method makes the process as simple and Plug and Play as possible Simply run the driver program and insert your USB connector 1 Insert the Installation Wizard and Documentation CD into your CD ROM drive 2 Click the Install USB D...

Page 27: ... all your network devices you need to configure your computer to connect to the Barricade See Windows 98 Me on page 3 2 Windows NT 4 0 on page 3 7 Windows 2000 on page 3 11 Windows XP on page 3 14 or Configuring Your Macintosh Computer on page 3 16 depending on your operating system ...

Page 28: ...requirements but you must first configure at least one computer to access the Barricade s web configuration interface in order to make the required changes See Configuring the Barricade on page 4 1 for instruction on configuring the Barricade Windows 98 Me You may find that the instructions in this section do not exactly match your version of Windows This is because these steps and screen shots we...

Page 29: ...Network window under the Configuration tab double click the TCP IP item listed for your network card 4 In the TCP IP window select the IP Address tab If Obtain an IP address automatically is already selected your computer is already configured for DHCP If not select this option ...

Page 30: ... need to verify that the HTTP Proxy feature of your web browser is disabled This is so that your browser can view the Barricade s HTML configuration pages The following steps are for Internet Explorer Internet Explorer 1 Open Internet Explorer 2 Click the Stop button then click Tools Internet Options TCP IP Configuration Setting Primary DNS Server ____ ____ ____ ____ Secondary DNS Server ____ ____...

Page 31: ...WS 98 ME 3 5 3 In the Internet Options window click the Connections tab Next click the LAN Settings button 4 Clear all the check boxes 5 Click OK and then click OK again to close the Internet Options window ...

Page 32: ...r correctly 1 On the Windows desktop click Start Run 2 Type WINIPCFG and click OK It may take a second or two for the IP Configuration window to appear 3 In the IP Configuration window select your network card from the drop down menu Click Release and then click Renew Verify that your IP address is now 192 168 2 xxx where x is between 2 and 254 your Subnet Mask is 255 255 255 0 and your Default Ga...

Page 33: ...WINDOWS NT 4 0 3 7 Windows NT 4 0 1 On the Windows desktop click Start Settings Control Panel 2 Double click the Network icon ...

Page 34: ... IP Address tab 5 In the Adapter drop down list be sure your Ethernet adapter is selected 6 If Obtain an IP address automatically is already selected your computer is already configured for DHCP If not select this option and click Apply 7 Click the DNS tab to see the primary and secondary DNS servers Record these values and then click Remove Click Apply and then OK ...

Page 35: ... to Internet Explorer on page 3 4 Obtain IP Settings from Your Barricade Now that you have configured your computer to connect to your Barricade it needs to obtain new network settings By releasing old DHCP IP settings and renewing them with settings from your Barricade you will verify that you have configured your computer correctly 1 On the Windows desktop click Start Programs Command Prompt TCP...

Page 36: ... press the Enter key Verify that your IP Address is now 192 168 2 xxx where x is between 2 and 254 your Subnet Mask is 255 255 255 0 and your Default Gateway is 192 168 2 1 These values confirm that your Barricade is functioning 4 Close the Command Prompt window Your computer is now configured to connect to the Barricade ...

Page 37: ... that corresponds to the connection to your Barricade 3 The connection status screen will open Click Properties 4 Double click Internet Protocol TCP IP 5 If Obtain an IP address automatically and Obtain DNS server address automatically are already selected your computer is already configured for DHCP If not select this option ...

Page 38: ...er on page 3 4 Obtain IP Settings from Your Barricade Now that you have configured your computer to connect to your Barricade it needs to obtain new network settings By releasing old DHCP IP settings and renewing them with settings from your Barricade you can verify that you have configured your computer correctly 1 On the Windows desktop click Start Programs Accessories Command Prompt 2 In the Co...

Page 39: ...P Address is now 192 168 2 xxx where x is between 2 and 254 your Subnet Mask is 255 255 255 0 and your Default Gateway is 192 168 2 1 These values confirm that your Barricade is functioning 4 Close the Command Prompt window Your computer is now configured to connect to the Barricade ...

Page 40: ...nfigured for DHCP If not select this option Disable HTTP Proxy You need to verify that the HTTP Proxy feature of your web browser is disabled This is so that your browser can view the Barricade s HTML configuration pages Determine which browser you use and refer to Internet Explorer on page 3 4 Obtain IP Settings from Your Barricade Now that you have configured your computer to connect to your Bar...

Page 41: ...press the Enter key Verify that your IP Address is now 192 168 2 xxx where x is between 2 and 254 your Subnet Mask is 255 255 255 0 and your Default Gateway is 192 168 2 1 These values confirm that your Barricade is functioning 4 Close the Command Prompt window Your computer is now configured to connect to the Barricade ...

Page 42: ...match your operating system This is because these steps and screenshots were created using Mac OS 10 2 Mac OS 7 x and above are similar but may not be identical to Mac OS 10 2 Follow these instructions 1 Pull down the Apple Menu Click System Preferences 2 Double click the Network icon in the Systems Preferences window ...

Page 43: ...ateway is 192 168 2 1 These values confirm that your Barricade is functioning 5 Close the Network window Now your computer is configured to connect to the Barricade Disable HTTP Proxy You need to verify that the HTTP Proxy feature of your web browser is disabled This is so that your browser can view the Barricade s HTML configuration pages The following steps are for Internet Explorer Internet Exp...

Page 44: ...CONFIGURING CLIENT PC 3 18 3 Uncheck all check boxes and click OK ...

Page 45: ...ser Internet Explorer 5 5 or above Netscape Navigator Mozilla Firefox and Opera are supported To access the management interface enter the default IP address of the Barricade ADSL2 Router in your web browser http 192 168 2 1 Enter the default password smcadmin and click LOGIN Note Passwords can contain from 3 12 alphanumeric characters and are case sensitive ...

Page 46: ...ings Go to Setup Wizard on page 4 3 for details Making Configuration Changes Configurable parameters have a dialog box or a drop down menu Once a configuration change has been made on a screen click the APPLY SAVE SETTINGS or NEXT button on the screen to enable the new setting Note To ensure proper screen refresh after a command entry be sure that Internet Explorer 5 5 is configured as follows Und...

Page 47: ...cal time zone from the drop down menu This information is used for log entries and client filtering If you want to automatically synchronize the Barricade ADSL2 Router with a public time server check the box to Enable Automatic Time Server Maintenance Select the desired servers from the drop down menu Click NEXT to continue ...

Page 48: ...ervice Provider is not listed in this screen you will need to manually enter the settings Go to ADSL Settings Country or ISP Not Listed on page 4 7 in the manual for details If your ISP uses Protocols PPPoA or PPPoE you will need to enter the username and password supplied by your ISP If your ISP uses Protocol RFC1483 Routed you will need to enter the IP address subnet mask default gateway and DNS...

Page 49: ...ary Server The time server that you selected when Automatic Time Server Maintenance is enabled Secondary Server The time server that you selected when Automatic Time Server Maintenance is enabled ADSL Operation Mode WAN ISP The name of ISP you have selected Protocol Indicates the protocol used VPI VCI Virtual Path Identifier VPI and Virtual Circuit Identifier VCI AAL5 Encapsulation Shows the packe...

Page 50: ...click Finish to save these settings Your Barricade ADSL2 Router is now set up Go to Troubleshooting on page A 1 if you cannot make a connection to the Internet ISP Parameters Username The ISP assigned user name Password The password hidden Parameter Description ...

Page 51: ...P settings For manual configuration you will need to know the protocol DNS server encapsulation and VPI VCI settings used by your ISP If you have a static IP address you will also need to know the IP address subnet mask and gateway address Please contact your ISP for these details After selecting Others you will need to select what protocol your ISP uses from the drop down menu ...

Page 52: ...ils about the settings Parameter Description VPI VCI Enter the Virtual Path Identifier VPI and Virtual Circuit Identifier VCI supplied by your ISP Encapsulation Select the encapsulation used by your ISP from the drop down menu Username Enter user name Password Enter password Confirm Password Confirm password ...

Page 53: ...ut the settings Parameter Description VPI VCI Enter the Virtual Path Identifier VPI and Virtual Circuit Identifier VCI supplied by your ISP Encapsulation Select the encapsulation used by your ISP from the drop down menu Username Enter user name Password Enter password Confirm Password Confirm password ...

Page 54: ... Domain Name Servers are used to map a domain name e g www somesite com to the equivalent numerical IP address Your ISP should provide the IP address of a Domain Name Server Enter the address here VPI VCI Enter the Virtual Path Identifier VPI and Virtual Circuit Identifier VCI supplied by your ISP Encapsulation Select the encapsulation used by your ISP from the drop down menu ...

Page 55: ...pplied static IP address here Subnet Mask Enter the subnet mask address provided by your ISP Default Gateway Enter the gateway address provided by your ISP DNS Server Enter the Domain Name Server address VPI VCI Enter the Virtual Path Identifier VPI and Virtual Circuit Identifier VCI supplied by your ISP Encapsulation Select the encapsulation used by your ISP from the drop down menu ...

Page 56: ... address provided by your ISP Subnet Mask Enter the subnet mask address provided by your ISP Default Gateway Enter the gateway address provided by your ISP DNS Server Enter the Domain Name Server address VPI VCI Enter the Virtual Path Identifier VPI and Virtual Circuit Identifier VCI supplied by your ISP Encapsulation Select the encapsulation used by your ISP from the drop down menu ...

Page 57: ...ils about the settings Parameter Description Management IP Address This is the management IP address of the Barricade VPI VCI Enter the Virtual Path Identifier VPI and Virtual Circuit Identifier VCI supplied by your ISP Encapsulation Select the encapsulation used by your ISP from the drop down menu ...

Page 58: ...5 in the manual for details about the settings Parameter Description DNS Server Enter the Domain Name Server address VPI VCI Enter the Virtual Path Identifier VPI and Virtual Circuit Identifier VCI supplied by your ISP Encapsulation Select the encapsulation used by your ISP from the drop down menu ...

Page 59: ... ADSL2 Router remotely WAN Specifies the Internet connection settings LAN Sets the TCP IP configuration for the Barricade ADSL2 Router LAN interface and DHCP clients NAT Configures Address Mapping virtual server and special applications Routing Sets the routing parameters and displays the current routing table Firewall Configures a variety of security and specialized functions including Access Con...

Page 60: ...onfiguration restore all configuration settings to the factory defaults update system firmware or reset the system Status Provides WAN connection type and status firmware and hardware version numbers system IP settings as well as DHCP NAT and firewall information Displays the number of attached clients the firmware versions the physical MAC address for each media interface and the hardware version...

Page 61: ...g entries and client filtering If daylight savings is applied in your area check the box to Enable Daylight Savings Select the start end dates If you want to automatically synchronize the Barricade with a public time server check the box to Enable Automatic Time Server Maintenance Select the desired servers from the drop down menu ...

Page 62: ... interface press the reset button on the rear panel holding it down for at least five seconds to restore the factory defaults The default password is smcadmin Enter a maximum Idle Time Out in minutes to define a maximum period of time for which the login session is maintained during inactivity If the connection is inactive for longer than the maximum idle time it will perform system logout and you...

Page 63: ...address of a remote computer on this screen Check the Enabled check box and enter the IP address of the remote host and click SAVE SETTINGS Note If you check Enabled and specify an IP address of 0 0 0 0 any remote host can manage the Barricade ADSL2 Router For remote management via WAN IP address you need to connect using port 8080 Simply enter WAN IP address followed by 8080 for example 211 20 16...

Page 64: ...CONFIGURING THE BARRICADE 4 20 WAN Specify the WAN connection parameters provided by your Internet Service Provider ISP The following three items are configurable ATM PVC Clone MAC DNS ...

Page 65: ...s Virtual Path Identifier VPI and Virtual Circuit Identifier VCI configured for corresponding VC Encapsulation Displays Encapsulation configured for corresponding VC VC MUX Point to Point Protocol over ATM Virtual Circuit Multiplexer null encapsulation allows only one protocol running per virtual circuit with less overhead LLC Point to Point Protocol over ATM Logical Link Control LLC allows multip...

Page 66: ...I Enter the Virtual Path Identifier VPI and Virtual Circuit Identifier VCI supplied by your ISP Encapsulation Select the encapsulation used by ISP from the drop down menu QoS Class ATM QoS classes including CBR UBR and VBR PCR SCR MBS QoS Parameters PCR Peak Cell Rate SCR Sustainable Cell Rate and MBS Maximum Burst Size are configurable ...

Page 67: ...Address Enter the IP address provided by your ISP For dynamic IP leave this field blank Subnet Mask Enter the subnet mask address provided by your ISP For dynamic IP leave this field blank Connect Type Sets connection mode to Always connected Auto Triggered by traffic or Manual connection For flat rate services use Always connected Idle Time Minute Enter the maximum idle time for the Internet conn...

Page 68: ...mask address provided by your ISP Default Gateway Enter the gateway address provided by your ISP VPI VCI Enter the Virtual Path Identifier VPI and Virtual Circuit Identifier VCI supplied by your ISP Encapsulation Select the encapsulation used by ISP from the drop down menu QoS Class ATM QoS classes including CBR UBR and VBR PCR SCR MBS QoS Parameters PCR SCR and MBS are configurable DHCP Client Ch...

Page 69: ...ess Select No if you have a static IP address IP Address Enter the IP address provided by your ISP For dynamic IP leave this field blank Subnet Mask Enter the Subnet Mask address provided by your ISP For dynamic IP leave this field blank Connect Type Sets connection mode to Always connected Auto Triggered by traffic or Manual connection For flat rate services use Always connected Idle Time Minute ...

Page 70: ...ress provided by your ISP Subnet Mask Enter the subnet mask address provided by your ISP Default Gateway Enter the gateway address provided by your ISP VPI VCI Enter the Virtual Path Identifier VPI and Virtual Circuit Identifier VCI supplied by your ISP Encapsulation Select the encapsulation used by ISP from the drop down menu QoS Class ATM QoS classes including CBR UBR and VBR PCR SCR MBS QoS Par...

Page 71: ...AMETERS 4 27 Clone MAC Address Some ISPs require you to register your MAC address with them If this is the case the MAC address of the Barricade must be changed to the MAC address that you have registered with your ISP ...

Page 72: ...main Name Servers DNS are used to map a domain name e g www smc com with the IP address e g 64 147 25 20 Your ISP should provide the IP address of one or more Domain Name Servers Enter those addresses on this screen and click SAVE SETTINGS ...

Page 73: ...erver function By default the DHCP server is enabled for automatic IP address assignment to client devices IP Address Pool Start IP Address Specify the start IP address of the DHCP pool Do not include the IP address of the Barricade in the client address pool If you change the pool range make sure the first three octets match the gateway s IP address i e 192 168 2 xxx End IP Address Specify the en...

Page 74: ...CONFIGURING THE BARRICADE 4 30 NAT Network Address Translation allows multiple users to access the Internet sharing one public IP ...

Page 75: ...P addresses to be shared by multiple internal users This also hides the internal network for increased privacy and security Enter the public IP address you wish to share into the Global IP field Enter a range of internal IPs that will share the global IP into the from field ...

Page 76: ...quest to the appropriate server located at another internal IP address For example if you set Type Public Port to TCP 80 HTTP or web and the Private IP Port to 192 168 2 2 80 then all HTTP requests from outside users will be transferred to 192 168 2 2 on port 80 Therefore by just entering the IP address provided by the ISP Internet users can access the service they need at the local address to whi...

Page 77: ...ch as Internet gaming video conferencing and Internet telephony These applications may not work when Network Address Translation NAT is enabled If you need to run applications that require multiple connections use these screens to specify the additional public ports to be opened for each application ...

Page 78: ...Table with the most updated values The content of the NAT Mapping Table is described as follows Protocol protocol of the flow Local IP local LAN host s IP address for the flow Local Port local LAN host s port number for the flow Pseudo IP translated IP address for the flow Pseudo Port translated port number for the flow Peer IP remote WAN host s IP address for the flow Peer Port remote WAN host s ...

Page 79: ...e and click Modify Clicking Delete will remove an entry from the list Parameter Description Index Listed number of the static router Network Address Enter the IP address of the remote computer for which to set a static route Subnet Mask Enter the subnet mask of the remote network for which to set a static route Gateway Enter the WAN IP address of the gateway to the remote network Configure Click t...

Page 80: ...ng table the router immediately begins transmitting routing updates to inform other network routers of the change Parameter Description General RIP Parameters RIP mode Globally enables or disables RIP Auto summary If Auto summary is disabled then RIP packets will include sub network information from all sub networks connected to the router If enabled this sub network information will be summarized...

Page 81: ...n to use on this interface Poison Reverse A method for preventing loops that would cause endless retransmission of data traffic Authentication Required None No authentication Password A password authentication key is included in the packet If this does not match what is expected the packet will be discarded This method provides very little security as it is possible to learn the authentication key...

Page 82: ...otocol Redirect route Network Address Destination IP address Netmask The subnetwork associated with the destination This is a template that identifies the address bits in the destination address used for routing to specific subnets Each bit that corresponds to a 1 is part of the subnet mask number each bit that corresponds to 0 is part of the host number Gateway The IP address of the router at the...

Page 83: ...ch the next hop of this route is reached Metric When a router receives a routing update that contains a new or changed destination network entry the router adds 1 to the metric value indicated in the update and enters the network in the routing table Parameter Description ...

Page 84: ...at devices and networks with a connection to the Internet Their goal is not to steal information but to disable a device or network so users no longer have access to network resources The Barricade protects against the following DoS attacks IP Spoofing Land Attack Ping of Death IP with zero length Smurf Attack UDP port loopback Snork Attack TCP null scan and TCP SYN flooding For details see page 4...

Page 85: ...he outgoing traffic permitted or not permitted through the WAN interface The default is to permit all outgoing traffic Parameter Description Enable Filtering Function Click Yes to turn on the filtering function Normal Filtering Table Displays a summary of the filtering rules configured ...

Page 86: ...E BARRICADE 4 42 To add the PC to the filtering table 1 Click Add PC on the Access Control screen 2 Define the appropriate settings for client PC services 3 Click OK and then click SAVE SETTINGS to save your settings ...

Page 87: ... local area network LAN The MAC Filtering Table allows the Barricade to enter up to 32 MAC addresses that are not allowed access to the WAN port Please note that this filter only applies to Ethernet clients Click Yes to enable or No to disable this function Enter the MAC address in the space provided ...

Page 88: ... The Barricade allows the user to block access to web sites by entering either a full URL address or just a keyword This feature can be used to protect children from accessing violent or pornographic web sites You can define up to 30 sites here ...

Page 89: ...hedule Rule You may filter Internet access for local clients based on rules Each access control rule may be activated at a scheduled time Define the schedule on the Schedule Rule screen and apply the rule on the Access Control screen ...

Page 90: ...RICADE 4 46 Follow these steps to add a schedule rule 1 Click Add Schedule Rule on the Schedule Rule screen 2 Define the appropriate settings for a schedule rule Click OK and then click SAVE SETTINGS to save your settings ...

Page 91: ...cked except for those types marked in the Stateful Packet Inspection section RIP Defect Default Enabled If an RIP request packet is not acknowledged to by the router it will stay in the input queue and not be released Accumulated packets could cause the input queue to fill causing severe problems for all protocols Enabling this feature prevents the packets from accumulating Discard Ping to WAN Def...

Page 92: ...CONFIGURING THE BARRICADE 4 48 ...

Page 93: ...ar types of traffic are checked only the particular type of traffic initiated from the internal LAN will be allowed For example if you only check FTP Service in the Stateful Packet Inspection section all incoming traffic will be blocked except for FTP connections initiated from the local LAN Stateful Packet Inspection allows you to select different application types that are using dynamic port num...

Page 94: ...CP SYN wait 30 sec Defines how long the software will wait for a TCP session to synchronize before dropping the session TCP FIN wait 5 sec Specifies how long a TCP session will be maintained after the firewall detects a FIN packet TCP connection idle timeout 3600 seconds 1 hour The length of time for which a TCP session will be managed if there is no activity UDP session idle timeout 30 sec The le...

Page 95: ...ete TCP UDP sessions per min HIGH 250 sessions Maximum number of allowed incomplete TCP UDP sessions per minute Incomplete TCP UDP sessions per min LOW 200 sessions Minimum number of allowed incomplete TCP UDP sessions per minute Maximumincomplete TCP UDP sessions number from same host 10 Maximum number of incomplete TCP UDP sessions from the same host Incomplete TCP UDP sessions detect sensitive ...

Page 96: ... properly from behind the firewall you can open the client up to unrestricted two way Internet access Enter the IP address of a DMZ Demilitarized Zone host on this screen Adding a client to the DMZ may expose your local network to a variety of security risks so only use this option as a last resort ...

Page 97: ...anagement Protocol SNMP Community A computer attached to the network called a Network Management Station NMS can be used to access this information Access rights to the agent are controlled by community strings To communicate with the Barricade ADSL2 Router the NMS must first submit a valid community string for authentication ...

Page 98: ...e Up to five community names may be entered Parameter Description Community A community name authorized for management access Access Management access is restricted to Read Only Read or Read Write Write Valid Enables disables the entry ...

Page 99: ...A community string password specified for trap management Enter a word something other than public or private to prevent unauthorized individuals from accessing information on your system Version Sets the trap status to disabled or enabled with V1 or V2c The V2c protocol was proposed in late 1995 and includes enhancements to V1 that are universally accepted These include a get bulk command to redu...

Page 100: ...ess devices UPnP enables seamless proximity network in addition to control and data transfer among networked devices in the office home and everywhere within your network UPnP allows the device to automatically join a network obtain an IP address convey its capabilities and learn about the presence and capabilities of other devices Check the Enable radio button to activate the function ...

Page 101: ...r gaming Parameter Description Enable or disable QoS module function Check to enable or disable this function Diffserv Forwarding Groups BE Best Effort forwarding set the percentage for this type of QoS AF1x AF2x AF3x AF4x Set the percentage for four different types of Assured Forwarding EF Expedited Forwarding is intended to provide low delay low jitter and low loss delivery of packets ...

Page 102: ...CONFIGURING THE BARRICADE 4 58 Traffic Mapping Use this screen to classify traffic into Diffserv forwarding groups and outgoing VCs Click Add traffic class to add a new forwarding rule ...

Page 103: ...CONFIGURATION PARAMETERS 4 59 Traffic Statistics This screen shows the WAN outbound traffic statistics of all the Diffserv forwarding groups in the last 12 hours Click Refresh to renew the list ...

Page 104: ...section is used to configure the ADSL operation type and shows the ADSL status ADSL Parameters This screen allows you to specify the ADSL standards to operate with You may explicitly set a specific standard or choose Automatic to automatically negotiate with remote DSLAM Parameter Description Operation Mode Automatic T1 413 Issue 2 G 992 1 G DMT G 992 2 G Lite G 992 3 ADSL2 G 992 5 ADSL2 ...

Page 105: ...CONFIGURATION PARAMETERS 4 61 ADSL Status The Status screen displays information on connection line status data rate operation data and defect indication and statistics ...

Page 106: ...trength of the upstream and downstream signal Fast Path FEC Correction There are two latency paths that may be used fast and interleaved For either path a forward error correction FEC scheme is employed to ensure higher data integrity For maximum noise immunity an interleaver may be used to supplement FEC Interleaved Path FEC Correction An interleaver is basically a buffer used to introduce a dela...

Page 107: ...eaved Path Cyclic Redundancy Check errors Loss of Signal Defect Momentary signal discontinuities Fast Path HEC Error Fast Path Header Error Concealment errors Interleaved Path HEC Error Interleaved Path Header Error Concealment errors Statistics Received Cells Number of cells received Transmitted Cells Number of cells transmitted Parameter Description ...

Page 108: ...ter or server DDNS allows your domain name to follow your IP address automatically by having your DNS records changed when your IP address changes This DDNS feature is powered by DynDNS org TZO com NO IP com With a DDNS connection you can host your own web site email server FTP site and more at your own location even if you have a dynamic IP address ...

Page 109: ...ration restore factory settings update firmware and reset the Barricade Ping Utility This tool allows you to test network connection status You can specify a domain name or a valid IP address of the remote host for ping test Enter the destination domain name or the IP address in the Destination Address field and click Execute ...

Page 110: ...et to its destination It can help you determine why your connections to a given server might be poor and can often help you figure out where exactly the problem is It also shows you how systems are connected to each other Enter the domain name or IP address in the IP Address or Domain Name field and click Traceroute The Barricade ADSL2 Router keeps a log of the traceroute test click CLEAR LOG to d...

Page 111: ...llows you to save the Barricade ADSL2 Router s configuration to a file Restore can be used to restore the previously saved backup configuration file Restore to Factory Defaults resets the Barricade back to the original settings Choose a function and click Next ...

Page 112: ...ce to the latest versions 1 Download the upgrade file from the SMC web site first and save it to your hard drive 2 In the Firmware file field click Browse to look for the downloaded file Click BEGIN UPGRADE 3 Check the Status screen Information section to confirm that the upgrade process was successful ...

Page 113: ...ops blinking If you perform a reset from this screen the configurations will not be changed back to the factory default settings Note If you use the Reset button on the back panel the Barricade performs a power reset If the button is pressed for over five seconds all the LEDs will illuminate and the factory default settings will be restored ...

Page 114: ...nnection status firmware and hardware version numbers illegal attempts to access your network as well as information on DHCP clients connected to your network The security log may be saved to a file by clicking Save and choosing a location Scroll down to view more information ...

Page 115: ...CONFIGURATION PARAMETERS 4 71 ...

Page 116: ... interface and for the Barricade ADSL2 Router as well as the hardware version and serial number ATM PVC Displays ATM connection type and status Disconnect Disconnect the ATM connection Connect Click on this button to establish a connection to the ATM connection Security Log Displays attempts to access your network Save Click on this button to save the security log file Clear Click on this button t...

Page 117: ...ck Start Programs Command Prompt Type ipconfig all and press ENTER The MAC address is listed as the Physical Address Macintosh Click System Preferences Network The MAC address is listed as the Ethernet Address on the TCP IP tab Linux Run the command sbin ifconfig The MAC address is the value after the word HWaddr ...

Page 118: ...CONFIGURING THE BARRICADE 4 74 ...

Page 119: ...ween the Barricade the external power supply and the wall outlet If the power indicator does not turn on when the power cord is plugged in you may have a problem with the power outlet power cord or external power supply However if the unit powers off after running for a while check for loose power connections power losses or surges at the power outlet If you still cannot isolate the problem then t...

Page 120: ...ns for possible defects Replace any defective adapter or cable if necessary Network Connection Problems Cannot ping the Barricade from the attached LAN Verify that the IP addresses are properly configured For most applications you should use the Barricade s DHCP function to dynamically assign IP addresses to hosts on the attached LAN However if you manually configure IP addresses on the LAN verify...

Page 121: ...y Check that you have a valid network connection to the Barricade and that the port you are using has not been disabled Check the network cabling between the management station and the Barricade Forgot or lost the password Press the Reset button on the rear panel holding it down for at least five seconds to restore the factory defaults Troubleshooting Chart Symptom Action ...

Page 122: ...TROUBLESHOOTING A 4 ...

Page 123: ... Ethernet connection a twisted pair cable must have two pairs of wires Each wire pair is identified by two different colors For example one wire might be red and the other red with white stripes Also an RJ 45 connector must be attached to both ends of the cable Cable Types and Specifications Cable Type Max Length Connector 10BASE T Cat 3 4 5 100 ohm UTP 100 m 328 ft RJ 45 100BASE TX Cat 5 100 ohm ...

Page 124: ... orientation when attaching the wires to the pins Figure B 1 RJ 45 Ethernet Connector Pin Numbers RJ 45 Port Connection Use the straight through CAT 5 Ethernet cable provided in the package to connect the Barricade to your PC When connecting to other network devices such as an Ethernet switch use the cable type shown in the following table Attached Device Port Type Connecting Cable Type MDI X Stra...

Page 125: ...t Through Wiring If the port on the attached device has internal crossover wiring MDI X then use straight through cable RJ 45 Pin Assignments Pin Number Assignment1 1 Tx 2 Tx 3 Rx 6 Rx 1 The and signs represent the polarity of the wires that make up each wire pair Straight Through Cable Pin Assignments End 1 End 2 1 Tx 1 Tx 2 Tx 2 Tx 3 Rx 3 Rx 6 Rx 6 Rx ...

Page 126: ...CABLES B 4 Crossover Wiring If the port on the attached device has straight through wiring MDI use crossover cable Crossover Cable Pin Assignments End 1 End 2 1 Tx 3 Rx 2 Tx 6 Rx 3 Rx 1 Tx 6 Rx 2 Tx ...

Page 127: ...different colors For example one wire might be red and the other red with white stripes Also an RJ 11 connector must be attached to both ends of the cable Each wire pair must be attached to the RJ 11 connectors in a specific orientation The following figure illustrates how the pins on the RJ 11 connector are numbered Be sure to hold the connectors in the same orientation when attaching the wires t...

Page 128: ... 3 Line 1 Ring Red or Blue White 4 Line 1 Tip Green or White Blue 5 Line 2 Ring Yellow or Orange White 6 Not used 1 2 3 4 5 6 Blue White White Blue R1 T1 1 2 3 4 5 6 Red Green R1 T1R2 T2 Black Yellow 1 2 3 4 5 6 Blue White White Blue R1 T1R2 T2 White Orange Orange White 6x2 Jack 6x4 Jack 6x4 Jack T Tip R Ring ...

Page 129: ...s downstream up to 1 Mbps upstream G 992 1 T1 413 Issue 2 Supports G Lite ADSL up to 1 5 Mbps downstream up to 512 Kbps upstream Supports ADSL2 2 up to 24 Mbps downstream up to 1 Mbps upstream Dying GASP support ATM Features RFC1483 Encapsulation IP Bridging and encapsulated routing PPP over ATM LLC VC multiplexing RFC2364 Classical IP RFC1577 Traffic shaping UBR CBR OAM F4 F5 support PPP over Eth...

Page 130: ... with PPP Firewall NAT NAPT VPN pass through LAN Features IEEE 802 1d self learning transparent Bridging DHCP Server DNS Proxy Static Routing RIPv1 and RIP Applications NetMeeting ICQ Real Player QuickTime DialPad PC Anywhere Telnet SNTP NNTP WAN Interface 1 ADSL RJ 11 port Indicator Panel Power LAN USB ADSL SYNC ADSL DATA Dimensions 130 5 x 98 0 x 66 5 mm 5 14 x 3 86 x 2 62 in Weight 0 194 kg 0 4...

Page 131: ... degree C Non operation Humidity 10 to 95 Noncondensing Vibration IEC 68 2 36 IEC 68 2 6 Shock IEC 68 2 29 Drop IEC 68 2 32 IEEE Standards IEEE 802 3 802 3u 802 11g 802 1D ITU G dmt ITU G Handshake ITU T 413 issue 2 ADSL full rate Electromagnetic Compatibility CE R TTE ETSI FCC Class B Safety EN 60950 1 ...

Page 132: ...SPECIFICATIONS C 4 Internet Standards RFC 826 ARP RFC 791 IP RFC 792 ICMP RFC 768 UDP RFC 793 TCP RFC 783 TFTP RFC 1483 AAL5 Encapsulation RFC 1661 PPP RFC 1866 HTML RFC 2068 HTTP RFC 2364 PPP over ATM ...

Page 133: ......

Page 134: ...Model Number SMC7901BRA2 Revision Number E082006 R01 ...

Reviews:

No comments

Related manuals for 7901BRA2 - annexe 1

Brand: Panasonic Pages: 24

Brand: Panasonic Pages: 2

BB-HCM381A - Network Camera

Brand: Panasonic Pages: 28

BB-HCM381A - Network Camera

Brand: Panasonic Pages: 2

Brand: Hama Pages: 10

Brand: LaCie Pages: 4

Brand: LaCie Pages: 4

Brand: LaCie Pages: 4

Brand: Valcom Pages: 3

Brand: Valcom Pages: 4

Brand: LaCie Pages: 22

Brand: Maipu Pages: 80

Brand: ZyXEL Communications Pages: 79

PXI PXITM -1000

Brand: National Instruments Pages: 55

Brand: KYLAND Technology Pages: 24

Brand: Edimax Pages: 15

Brand: Lanner Pages: 99

Brand: Rajant Pages: 93

Brands by name

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Popular brands

Load more brands