TeleWell TW-EA510v4 User Manual Download Page 1

Page: 1 / 110

TW-EA510v4

ADSL2+ WLAN 802.11g

VPN Firewall Router

User’s Manual

Summary of Contents for TW-EA510v4

Page 1: ...TW EA510v4 ADSL2 WLAN 802 11g VPN Firewall Router User s Manual...

Page 2: ...P Settings 16 ISP setting in WAN site 16 DHCP server 16 LAN and WAN Port Addresses 16 INFORMATION FROM YOUR ISP 17 CONFIGURING WITH YOUR WEB BROWSER 18 CHAPTER 4 CONFIGURATION 19 STATUS 20 ARP Table 2...

Page 3: ...tbound IP Throttling LAN to WAN 80 Inbound IP Throttling WAN to LAN 81 Virtual Server Port Forwarding 85 Add Virtual Server 86 Edit DMZ Host 88 Edit One to One NAT Network Address Translation 89 Time...

Page 4: ...and faster than ever It is compliant with Multi Mode standard ANSI T1 413 Issue 2 G dmt ITU G 992 1 G lite ITU G 992 2 G hs ITU G994 1 G dmt bis ITU G 992 3 G dmt bisplus ITU G 992 5 Virtual Private N...

Page 5: ...s When local machine sets its DNS server with this router s IP address every DNS conversion request packet from the PC to this router will be forwarded to the real DNS in the outside network Dynamic D...

Page 6: ...nage the local IP network Static and RIP1 2 Routing It has routing capability and supports easy static routing table or RIP1 2 routing protocol Simple Network Management Protocol SNMP It is an easy wa...

Page 7: ...ADSL2 WLAN 802 11g VPN Firewall Router Chapter 1 Introduction 6 TW EA510v4 ADSL Router Application Figure 1 1 Application Diagram of TW EA510v4 Thank you for your purchase and welcome to the world of...

Page 8: ...e antenna Manual Do not use this router in high humidity or high temperatures Do not use the same power source for this router as other equipment Do not open or repair the case yourself If this router...

Page 9: ...y connected to an ADSL DSLAM linesync 3 Ethernet Port 1X 4X RJ 45 connector Lit when the LAN link is connected to an Ethernet device Green for 100Mbps Orange for 10Mbps Blinking when data is Transmitt...

Page 10: ...uter or forgot your Username Password Press the button for more than 6 seconds Caution After pressing the RESET button for more than 6 seconds to be sure you power cycle the device again 4 Ethernet Po...

Page 11: ...using the proper cables Ensure that all other devices connected to the same telephone line as your router e g telephones fax machines analogue modems have a line filter connected between them and the...

Page 12: ...terface installed properly prior to connecting to the router device You ought to configure your PCs to obtain an IP address through a DHCP server or a fixed IP address that must be in the same subnet...

Page 13: ...Connection See Figure 3 1 3 In the LAN Area Connection Status window click Properties See Figure 3 2 4 Select Internet Protocol TCP IP and click Properties See Figure 3 3 5 Select the Obtain an IP ad...

Page 14: ...Connection See Figure 3 5 3 In the LAN Area Connection Status window click Properties See Figure 3 6 4 Select Internet Protocol TCP IP and click Properties See Figure 3 7 5 Select the Obtain an IP ad...

Page 15: ...lect TCP IP NE2000 Compatible or the name of any Network Interface Card NIC in your PC See Figure 3 9 3 Click Properties 4 Select the IP Address tab In this page click the Obtain an IP address automat...

Page 16: ...s NT4 0 1 Go to Start Settings Control Panel In the Control Panel double click Network and choose the Protocols tab 2 Select TCP IP Protocol and click Properties See Figure 3 12 3 Select the Obtain an...

Page 17: ...unts 100 LAN and WAN Port Addresses The parameters of LAN and WAN ports are pre set in the factory The default values are shown below LAN Port WAN Port IP address 192 168 0 254 Subnet Mask 255 255 255...

Page 18: ...tically assigned by your ISP when you connect or be set manually PPPoE PPPoE with Pass through VPI VCI VC LLC based multiplexing Username Password Service Name and Domain Name System DNS IP address it...

Page 19: ...n your web browser enter the IP address of your router which by default is 192 168 0 254 and click Go a user name and password window prompt will appear The default username and password are admin and...

Page 20: ...d links you directly to the desired setup page including Status ARP Table Wireless Association Routing Table DHCP Table PPTP Status Email Status Event Log Error Log NAT Sessions Diagnostic UPnP Portma...

Page 21: ...section of this manual for more information on this feature IP Address A list of IP addresses of devices on your LAN Local Area Network MAC Address The MAC Media Access Control addresses for each devi...

Page 22: ...s route will use Cost The number of hops counted as the cost of the route RIP Routing Table Destination The IP address of the destination network Netmask The destination netmask address Gateway The IP...

Page 23: ...ame The Host Name Computer Name of client Expiry The current lease time of client Expired Table Please refer the Leased Table Permanent Table Name The name you assigned to the Permanent configuration...

Page 24: ...in dial out Enable Whether the connection is currently enabled Active Whether the connection is currently active Tunnel Connected Whether the VPN Tunnel is currently connected Call Connected If the C...

Page 25: ...when the router s ADSL connection is disconnected as well as Firewall events when you have enabled Intrusion or Blocking Logging in the Configuration Firewall section of the interface Please see the...

Page 26: ...all current NAT sessions between interface of types external WAN and internal LAN Diagnostic It tests the connection to computer s which is connected to LAN ports and also the WAN Internet connection...

Page 27: ...ll Router Chapter 4 Configuration 26 UPnP Portmap The section lists all port mapping established using UPnP Universal Plug and Play Please see the Advanced section of this manual for more details on U...

Page 28: ...e able to supply all the details you need alternatively if you have deleted the current WAN Connection in the WAN ISP section of the interface you can use the router s PVC Scan feature to attempt to d...

Page 29: ...apter 4 Configuration 28 Select the desired option from the list and click Apply to return to the Quick Start interface to continue configuring your ISP connection Please note that the contents of thi...

Page 30: ...nt Filter Port Setting and DHCP Server Bridge Interface You can setup member ports for each VLAN group under Bridge Interface section From the example two VLAN groups need to be created Ethernet P1 Po...

Page 31: ...d IP Address Specify an IP address on this virtual interface SubNetmask Specify a subnet mask on this virtual interface Security Interface Specify the firewall setting on this virtual interface Intern...

Page 32: ...setting is set to Disable Allowed check to authorize specific device accessing your LAN by insert the MAC Address in the space provided or click Make sure your PC s MAC is listed Blocked check to pre...

Page 33: ...know or have both 11g and 11b devices in your network then keep the default in mixed mode From the drop down manual you can select 802 11g if you have only 11g card If you have only 11b card then sel...

Page 34: ...ccess network user premises environment and choose the most suitable level for your network Connected Representing in true or false That it is the connection status between the system and the build in...

Page 35: ...ning Message Authentication Code Protocol of the AES Advanced Encryption Security algorithms WPA Shared Key The key for network authentication The input format is in character style and key size shoul...

Page 36: ...128 will offer increased security over WEP 64 Passphrase This is used to generate WEP keys automatically based upon the input string and a pre defined algorithm in WEP64 or WEP128 Default Used WEP Key...

Page 37: ...he MAC Address in the space provided or click Make sure your PC s MAC is listed Blocked check to prevent unwanted device accessing the LAN by insert the MAC Address in the space provided or click Make...

Page 38: ...M half duplex 10M full duplex 100M half duplex 100M full duplex and Disable Sometimes there are Ethernet compatibility problems with legacy Ethernet devices and you can configure different types to so...

Page 39: ...can then configure parameters of the DHCP Server including the IP pool starting IP address and ending IP address to be allocated to PCs on your network lease time for each assigned IP address the per...

Page 40: ...Edit to input other parameters as below If your ISP does not use PPPoE you can change the default WAN connection entry by clicking Change Some of ISP may provide more service via different WAN connect...

Page 41: ...ion can be disabled Encapsulation method Selects the encapsulation format the default is LLC Bridged Select the one provided by your ISP IP Assignment Obtain an IP address automatically via DHCP clien...

Page 42: ...thod Select the encapsulation format this is provided by your ISP Acceptable Frame Type Specify what kind of traffic can through this connection all traffic or only VLAN tagged Filter Type Specify the...

Page 43: ...Internet directly the NAT function can be disabled Username Enter the username provided by your ISP You can input up to 128 alphanumeric characters case sensitive This will usually be in the format o...

Page 44: ...rnet Idle Timeout Auto disconnect the broadband firewall gateway when there is no activity on the line for a predetermined period of time Detail You can define the destination port and packet type TCP...

Page 45: ...an input up to 128 alphanumeric characters case sensitive This will usually be in the format of username ispname instead of simply username Password Enter the password provided by your ISP You can inp...

Page 46: ...he broadband firewall gateway when there is no activity on the line for a predetermined period of time Detail You can define the destination port and packet type TCP UDP without checking by timer It a...

Page 47: ...rovided by your ISP ATM Class The Quality of Service for ATM layer NAT The NAT Network Address Translation feature allows multiple users to access the Internet through a single ISP account sharing a s...

Page 48: ...blish the PPPoE session when disconnected by the ISP Connect on Demand If you want to establish a PPPoE session only when there is a packet requesting access to the Internet i e when a program on your...

Page 49: ...ss is hard to remember the DNS converts the friendly name into its equivalent IP Address You can obtain a Domain Name System DNS IP address automatically if your ISP has provided it when you logon che...

Page 50: ...ing false your ADSL line and making it active true again for taking effect with setting of Connect Mode Coding Gain It reduces router s transmit power which will effect to router s downstream performa...

Page 51: ...ative of DSL strength to Noise ratio This margin is measured in decibels dB Higher the dB figures better the DSL strength and better chance to get faster speed THE HIGHER THE BETTER Line Attenuation i...

Page 52: ...e SNTP server you have specified If you prefer to specify an SNTP server other than those in the list simply enter its IP address as shown above Your ISP may provide an SNTP server for you to use Dayl...

Page 53: ...vice Management options in the Advanced section of the GUI If you wish to permanently enable remote access choose a time period of 0 minutes Firmware Upgrade Your router s firmware is the software tha...

Page 54: ...e when saving if you wish to keep multiple backups Press Browse to select a file from your PC to restore You should only restore settings files that have been generated by the Backup function and that...

Page 55: ...sword You are able to Edit existing users and Create new users who are able to access the device s configuration interface Once you have clicked on Edit you are shown the following options You can cha...

Page 56: ...m the Internet Firewall Prevents access from outside your network The router provides three levels of security support NAT natural firewall This masks LAN users IP addresses which are invisible to out...

Page 57: ...outbound LAN to Internet packets will be blocked Users have to add their own filter rules for further access to the Internet High Medium Low security level the predefined port filter rules for High Me...

Page 58: ...fined port filter rules in the Packet Filter must modify accordingly to the level of Firewall which is selected See Table1 Predefined Port Filter for more detailed information Example Predefined Port...

Page 59: ...TP Network News Transfer Protocol TCP 6 119 119 NO YES NO YES NO NO RealAudio RealVideo 7070 UDP 17 7070 7070 YES YES YES YES NO NO PING ICMP 1 N A N A NO YES NO YES NO YES H 323 1720 TCP 6 1720 1720...

Page 60: ...nge you wish to allow block the traffic to or form set IP address and Subnet Mask to 0 0 0 0 to inactive the Address Filter rule Tip To block access to from a single IP address enter that IP address a...

Page 61: ...select existing predefined rules Time Schedule It is self defined time period You may specify a time schedule for your prioritization policy For setup and detail refer to Time Schedule section Protoco...

Page 62: ...a high medium or low security level To setup a web server located on the local network when the firewall is enabled you have to configure the Port Filters setting for HTTP As you can see from the diag...

Page 63: ...Click Delete to delete the existing HTTP rule 3 Click Add TCP UDP Filter 4 Input the Rule Name Time Schedule Source Destination IP Type Source Destination Port Inbound and Outbound Example Applicatio...

Page 64: ...er rule for HTTP is shown below 6 Configure your Virtual Server port forwarding settings so that incoming HTTP requests on port 80 will be forwarded to the PC running your web server Note For how to c...

Page 65: ...k Duration Victim Protection Block Duration This is the duration for blocking Smurf attacks Default value is 600 seconds Scan Attack Block Duration This is the duration for blocking hosts that attempt...

Page 66: ...Src IP Scan Yes Yes CharGen Scan UDP Dst Port CharGen 19 Src IP Scan Yes Yes X mas Tree Scan TCP Flag X mas Src IP Scan Yes Yes IMAP SYN FIN Scan TCP Flag SYN FIN DstPort IMAP 143 SrcPort 0 or 65535...

Page 67: ...ify the time period to check the URL filter rules i e during working hours For setup and detail refer to Time Schedule section Keywords Filtering Allows blocking by specific keywords within a particul...

Page 68: ...dropped because www google is in the forbidden list Example Andy wishes to disable all WEB traffic except for ones listed in the trusted domain which would prevent Bobby from accessing other web site...

Page 69: ...g The default is set to Disabled Disabled Instant Message blocking is not triggered No action will be performed Always On Action is enabled TimeSlot1 TimeSlot16 This is the self defined time period Yo...

Page 70: ...ll Router Chapter 4 Configuration 69 Firewall Log Firewall Log display log information of any unexpected action with your firewall settings Check the Enable box to activate the logs Log information ca...

Page 71: ...te Access and LAN to LAN please refer below for more information Click Create to configure a new VPN connection After you have created PPTP connection account status will be displayed See example abov...

Page 72: ...hake Authentication Protocol or PAP Password Authentication Protocol if you know which type the server is using when acting as a client or else the authentication type you want clients connecting to y...

Page 73: ...the default route Click Apply button to apply your changes Example Configuring a Remote Access PPTP VPN Dial out Connection A company s office establishes a PPTP VPN connection with a file server loc...

Page 74: ...Server IP Address or Domain name 69 121 1 33 An Dialed server IP Username username 3 Password 123456 A given username password Auth Type Chap Auto Data Encryption Auto Key Length Auto 4 Mode stateful...

Page 75: ...e Default is Auto if you want the router to determine the authentication type to use or else manually specify CHAP Challenge Handshake Authentication Protocol or PAP Password Authentication Protocol i...

Page 76: ...0 means this connection is always on Click Apply button to apply your changes Example Configuring a PPTP LAN to LAN VPN Connection The branch office establishes a PPTP VPN tunnel with head office to c...

Page 77: ...92 168 0 200 IP address assigned to branch office network Peer Network IP 192 168 0 0 Branch office network 3 Netmask 255 255 255 0 Username username 4 Password 123456 Input username password to authe...

Page 78: ...Dial out 2 Server IP Address or Domain name 69 121 1 33 IP address of the head office router in WAN side Peer Network IP 192 168 0 0 3 Netmask 255 255 255 0 Head office network Username username 4 Pas...

Page 79: ...nagement Prioritization There are three priority settings to be provided in the Router High Normal The default is normal priority for all of traffic without setting Low And the balances of utilization...

Page 80: ...ts to next Router See Table 4 Here is the DSCP Mapping Table Note To be sure the router s in the backbones network have the capability in executing and checking the DSCP through out the QoS network Ta...

Page 81: ...cation Time Schedule Scheduling your prioritization policy Refer to Time Schedule for more information Protocol The name of supported protocol Source Port The source port of packets to be monitored De...

Page 82: ...ation Time Schedule Scheduling your prioritization policy Refer to Time Schedule for more information Protocol The name of supported protocol Source Port The source port of packets to be monitored Des...

Page 83: ...r Chapter 4 Configuration 82 Example QoS for your Network Connection Diagram Information and Settings Upstream 928 kbps Downstream 8 Mbps VoIP User 192 168 0 1 Normal Users 192 168 0 2 192 168 0 5 Res...

Page 84: ...r preventing any other applications to saturate the bandwidth Voice application Voice is latency sensitive application Most VoIP devices are use SIP protocol and the port number will be assigned by SI...

Page 85: ...the same level Upstream 928kbps 29 32kbps Mission critical Application 192kbps 6 32kbps Voice Application 128kbps 4 32kbps Restricted Application 160kbps 5 32kbps Other Applications 448kbps 14 32kbps...

Page 86: ...P file sharing applications and are using NAT Network Address Translation then you will usually need to configure your router to forward these incoming connection attempts using specific ports to the...

Page 87: ...cified port is received it will be forwarded to the corresponding internal server Time Schedule A self defined time period to enable your virtual server You may specify a time schedule or Always on fo...

Page 88: ...k it to edit this virtual server application Delete Click it to delete this virtual server application If you have disabled the NAT option in the WAN ISP section the Virtual Server function will hence...

Page 89: ...port number used by any other Virtual Server entries Cautious This Local computer exposing to the Internet may face varies of security risks Disabled As set in default setting it disables the DMZ fun...

Page 90: ...NAT to utilize these IP addresses NAT Type Select desired NAT type As set in default setting it disables the One to One NAT function Global IP Address Subnet The subnet of the public WAN IP address g...

Page 91: ...rotocol for the virtual server In addition to specifying the port number to be used you will also need to specify the protocol used The protocol used is determined by the particular application Most a...

Page 92: ...hrough 65535 For further information please see IANA s website at http www iana org assignments port numbers For help on determining which private port numbers are used by common applications on this...

Page 93: ...h Sunday to restrict or allowing the usage of the Internet by users or applications This Time Schedule correlates closely with router s time since router does not have a real time clock on board it us...

Page 94: ...ot will be shown ID This is the index of the time slot Name A user define description to identify this time portfolio Day The default is set from Monday through Friday You may specify the days for the...

Page 95: ...r items within the Advanced section Static Route Dynamic DNS Check Email Device Management IGMP VLAN Bridge and WAN IP Alert Static Route Click on Routing Table and then choose Create Route add a rout...

Page 96: ...by your ISP You will first need to register and establish an account with the Dynamic DNS provider using their website for example http www dyndns org There are more than 5 DDNS services supported Dis...

Page 97: ...nable the routers Emailing checking function The following fields will be activated and required Account Name Enter the name login of the POP3 account you wish to check Normally it is the text in your...

Page 98: ...embedded web server for web based configuration will use The default value is the standard HTTP port 80 Users may specify an alternative if for example they are running a web server on a PC within the...

Page 99: ...ble the router s UPnP functionality Enable Check to enable the router s UPnP functionality UPnP Port Its default setting is 2800 It is highly recommended for users to use this port value If this value...

Page 100: ...standard SNMPv3 is a strong authentication mechanism authorization with fine granularity for remote monitoring Traps supported Cold Start Authentication Failure The following MIBs are supported From...

Page 101: ...onfiguration 100 From RFC 1472 PPP Security MIB PPP Security Group From RFC 1473 PPP IP MIB PPP IP Group From RFC 1474 PPP Bridge MIB PPP Bridge Group From RFC1573 IfMIB ifMIBObjects Group From RFC169...

Page 102: ...able VLAN Bridge This section allows you to create VLAN group and specify the member Edit Edit your member ports in selected VLAN group Create VLAN To create another VLAN group Advanced VLAN Setup Exa...

Page 103: ...ep 2 Create WAN Interface Go to Configuration WAN ISP wanlink is the factory default WAN interface which in service for data internet access If your ISP uses this access protocol click Edit to input o...

Page 104: ...hrough this connection all traffic or only VLAN tagged Filter Type Specify the type of ethernet filtering performed by the named bridge interface All Allows all types of ethernet packets through the p...

Page 105: ...for each VLAN From the example two VLAN groups are requested Data and Video To create another VLAN group for Video by clicking Create VLAN Given a name and ID PVID to identify the Video group The val...

Page 106: ...Snooping Enable Go Configuration Advanced IGMP IGMP Snooping must be enabled in order to allow video stream forwarding correctly Mail Alert for WAN IP Send a log via Email When WAN IP is changed Defa...

Page 107: ...gout Please ensure that you have saved the configuration settings before you logout Be aware that the router is restricted to only one PC accessing the configuration web pages at a time Once a PC has...

Page 108: ...the device again Problems with the WAN Interface Problem Corrective Action Initialization of the PVC connection linesync failed Ensure that the telephone cable is connected properly from the ADSL por...

Page 109: ...g any PCs on the LAN Check the Ethernet LEDs on the front panel The LED should be on for a port that has a PC connected If it is off check the cables between your router and the PC Make sure you have...

Page 110: ...rring to the Troubleshooting section in the User s Manual If you cannot resolve the problem with the Troubleshooting chapter please contact the dealer where you purchased this product Contact TeleWell...

Search results

Summary of Contents for TW-EA510v4

Reviews:

Related manuals for TW-EA510v4

Brands by name

Popular brands

TeleWell TW-EA510v4, User Manual

Search results

Summary of Contents for TW-EA510v4

Reviews:

Related manuals for TW-EA510v4

Brands by name

Popular brands