manualshive.com logo in svg

THOMSON SpeedTouch 605, User Manual

The THOMSON SpeedTouch 605 is a versatile and easy-to-use networking device. To ensure you make the most of its features, don't forget to refer to the comprehensive user manual. You can effortlessly download the manual for free from our website manualshive.com, providing all the information you need for a seamless experience.

Share
Download
background image

Chapter 4

Basic Configuration

E-DOC-CTC-20050429-0104 v1.0

75

Redirecting all web

sites

Proceed as follows:

1

Type “*” in the 

Web Site

 box.

2

Click 

Redirect

 in the 

Action list

.

3

Type the URL of the web site you want to redirect to (for example 
“mycompany.com/internetpolicy.htm”) in the 

Redirect

 box.

4

Click 

Add

.

5

Type the URL of the web site you want to redirect to (for example 
“mycompany.com/internetpolicy.htm”) in the 

Web Site 

box.

6

Click 

Allow

 in the 

Action list

.

7

Click 

Add

.

Configure content

based filtering settings

Under 

Content Based Filtering

 you are able to:

Enable/disable content based filtering.

Allow/block uncategorized web sites.

Select a content level in the 

Content Level

 list.

To change a content level definition, click the 

Edit

 link of the content 

level you want to change. For more information, see 

“4.5.8 Content 

Level” on page 77

.

Summary of Contents for SpeedTouch 605

Page 1: ...SpeedTouch 608WL and SpeedTouch 620 only SpeedTouch 605 608 608 WL 620 Wireless Business DSL Routers User s Guide Release R5 3 1 ...

Page 2: ......

Page 3: ...SpeedTouch 605 608 608 WL 620 User s Guide R5 3 1 ...

Page 4: ...ntries UNIX is a registered trademark of UNIX System Laboratories Incorporated Apple and Mac OS are registered trademarks of Apple Computer Incorporated registered in the United States and other countries Adobe the Adobe logo Acrobat and Acrobat Reader are trademarks or registered trademarks of Adobe Systems Incorpo rated registered in the United States and or other countries Netscape and Netscape...

Page 5: ...the Web Interface 12 1 3 2 Access via CLI 13 1 3 3 Access via FTP 15 1 3 4 Remote Assistance 18 2 Local Network Setup 19 2 1 Wired Ethernet 20 2 2 Wireless Ethernet 21 2 2 1 Wireless Basics 22 2 2 2 Connecting First time Wireless Clients 24 2 2 3 Wireless Security 27 2 2 4 Connecting Additional Wireless Clients 29 2 2 5 Extending the Range of Your Wireless Network 31 3 Internet Connectivity Dial I...

Page 6: ...tion Bar 49 4 1 4 Notification Area 50 4 1 5 Tasks 51 4 2 Home 52 4 3 SpeedTouch 53 4 3 1 Information 54 4 3 2 SpeedTouch Easy Setup 55 4 3 3 Restart 56 4 3 4 Configuration 57 4 3 5 Backup Restore 58 4 3 6 Reset to Factory Defaults 59 4 3 7 Event Logs 60 4 3 8 Update 61 4 4 Broadband Connection 62 4 4 1 Connectivity Check 63 4 4 2 DSL Connection 64 4 4 3 Internet Services 65 4 4 4 Internet Service...

Page 7: ...Content Level 77 4 5 9 New Content Level 78 4 5 10 Firewall 80 4 5 11 Intrusion Detection 81 4 5 12 Dynamic DNS 82 4 5 13 User Management 83 4 5 14 Edit User 84 4 5 15 Change Default User 85 4 5 16 Add User 86 4 6 Office Network 87 4 6 1 Devices 88 4 6 2 Device Settings 89 4 6 3 Assign Public IP 90 4 6 4 Wireless Device Settings 91 4 6 5 Access Point Settings 92 4 6 6 Configuring WDS 95 4 6 7 Inte...

Page 8: ...Addresses 124 5 3 2 Expressions 125 5 3 3 Classification 127 5 3 4 IP Routing 129 5 3 5 RIP 130 5 3 6 NAT 131 5 3 7 IP QoS 133 5 4 Connections 135 5 4 1 ATM 136 5 4 2 Routed PPPoE 138 5 4 3 Routed PPPoA 140 5 4 4 Routed PPPoI 142 5 4 5 Bridged Ethernet 144 5 4 6 Routed Ethernet 147 5 4 7 Routed IPoA 148 5 4 8 PPTP to PPP Relay 149 5 4 9 Virtual LAN 150 5 5 Local Networking 151 5 5 1 DHCP 152 5 5 2...

Page 9: ...ftware Keys 181 7 Software Upgrade 183 7 1 Embedded Update Page 184 7 2 Upgrade Wizard on Setup CD 186 7 3 Upgrade via a BOOTP TFTP Server 189 8 Troubleshooting 191 8 1 General SpeedTouch Troubleshooting 192 8 1 1 Wired Ethernet Troubleshooting 193 8 1 2 Wireless Ethernet Troubleshooting 194 8 1 3 Upgrade Troubleshooting 195 8 2 UPnP on Windows XP Systems 197 8 3 Reset to Factory Defaults 199 ...

Page 10: ...Contents E DOC CTC 20050429 0104 v1 0 vi ...

Page 11: ...re added in italics Example Documentation and software updates THOMSON continuously develops new solutions but is also committed to improve its existing products For more information on THOMSON s latest technological innovations documents and software releases visit us at www speedtouch com A note provides additional information about a topic A tip provides an alternative method or shortcut to per...

Page 12: ...About this User s Guide E DOC CTC 20050429 0104 v1 0 2 ...

Page 13: ...ired and wireless devices and surf the Internet at high speed all combined in one device Installation For more information on how to set up your SpeedTouch installation and wiring and how to do a first Internet connection setup refer to the provided Installation and Setup Guide Contents This User s Guide will assist you in configuring your SpeedTouch Safety instructions Before connecting the Speed...

Page 14: ...C CTC 20050429 0104 v1 0 4 1 1 SpeedTouch Features Introduction Your SpeedTouch offers you a wide range of outstanding features In this section you will find a comprehensive overview of the Hardware Specifications Software Features ...

Page 15: ...ED indicators for all interfaces Reset button One programmable recessed reset button for restoring the factory default settings Association button One push button for wireless association and registration on the SpeedTouch 608 WL 620 Wireless performance On the SpeedTouch 608 WL 620 Typical indoor coverage 60m Dynamic rate switching Manual Automatic channel selection Manual Automatic selection of ...

Page 16: ...dging features Multiport self learning transparent bridge per IEEE 802 1D for LAN interconnect Remote bridge ports are isolated from each other Pre defined bridge filters to WAN no filter no CPE to WAN broadcast PPPoE only and to LAN no filter multicast filter Routing features Multi port up to 16 PVCs router Static routing automatic routes PPP LAN IP address multi homing Packet classified routing ...

Page 17: ...AN DMZ mirroring Service Level Agreement services Integrated Dynamic DNS client Security PAP RFC1334 CHAP RFC1994 for PPP session Integrated Stateful Inspection Firewall Intrusion Detection Website Filtering URL Filtering Wireless security on SpeedTouch 608 WL 620 64 128bit WEP encryption WPA PSK Wireless client registration access control with physical push button Multi level SpeedTouch access po...

Page 18: ...2011 2012 2013 traps MIB RFC1215 bridge MIB RFC1286 1493 ATM TC MIB RFC2514 ATM MIB RFC1695 2515 ADSL MIB RFC2662 SHDSL MIB RFC3276 Ethernet MIB RFC1398 1623 1643 1650 2358 2665 Medium Attachment Units MIB RFC1515 2239 2668 interface MIB RFC1229 1573 2233 2863 IPSec MIB RMON MIB RFC1757 PING Traceroute MIB RFC2925 Firmware upgradeable via web or via FTP or via upgrade wizard on Setup CD Dual firmw...

Page 19: ...n Orange On Bootloader active Off Power off Ethernet Green Flashing Ethernet activity On Ethernet connection no activity Off No Ethernet connection WLAN Green Flashing Wireless activity WPA encryption On No wireless activity WPA encryption Amber Flashing Wireless activity WEP encryption On No wireless activity WEP encryption Red Flashing Wireless activity no security On No wireless activity no sec...

Page 20: ...Off No ISDN line DSL Green Flashing Pending DSL line synchronisation On DSL line synchronised Off No DSL line Internet Green Flashing Internet activity On Internet connectivity no activity Red On Internet connection setup failed Off No Internet connection Indicator Description Name Colour State Indicator Description Name LED Status A Optional Integrity Activity Off No connection on this port On Et...

Page 21: ...information see 1 3 1 Access via the Web Interface on page 12 Command Line Interface CLI Fine tune your SpeedTouch configuration For more information see 1 3 2 Access via CLI on page 13 File Transfer Protocol FTP Backup and restore data on your SpeedTouch For more information see 1 3 3 Access via FTP on page 15 Remote Assistance Allow a remote user to help you configuring your SpeedTouch For more ...

Page 22: ...1 254 3 As a result the SpeedTouch Home page appears from where you can navigate to all the configurable aspects of the SpeedTouch For more information on the web pages see 4 Basic Configuration on page 45 You can access the pages via the http protocol For remote assistance the secure version https in combination with certificates is used provide your ISP with the https link user name and password...

Page 23: ...guration on page 101 A Telnet session This requires that TCP IP connectivity exists between the host from which the Telnet session is opened and the SpeedTouch Your SpeedTouch and the connected PC must have an IP address in the same subnet The serial Console interface Quote site commands over FTP For more information see Quote site command on page 17 For information on CLI commands see the SpeedTo...

Page 24: ...indows XP for instance 1 On the Windows task bar click Start 2 Select All Programs Accessories Command Prompt In the Command Prompt window At the prompt type telnet followed by the IP address of your SpeedTouch default is 192 168 1 254 The default user is Administrator and the default password is blank Username Administrator ______ SpeedTouch ___ _____ Version 5 3 _____ __ _ _____ ___ Copyright c ...

Page 25: ...your SpeedTouch security user name and password 4 The example below shows an FTP session to the SpeedTouch file system File system structure The structure of the file system is very simple It consists of a single root directory called root and two subdirectories called active and dl The root directory contains all the necessary files for the SpeedTouch to boot correctly the active and the dl direc...

Page 26: ...ctive read only dl read write Command You can use to cd access another directory than the one currently open Example ftp cd dl dir list the directory files Example ftp dir bin set the transfer mode to binary hash turn on the hashing option put upload files Example ftp put C MyBackupFiles user ini A configuration file must be uploaded to the dl directory get download files Example ftp get user ini ...

Page 27: ...CLI Reference Guide Turn on the hashing option to see the progression of the file transfer At the ftp prompt type hash and press Enter home doejohn 1 ftp 192 168 1 254 Connected to 192 168 1 254 220 Inactivity timer 120 seconds Use site idle secs to change Name 192 168 1 254 doejohn 331 SpeedTouch 00 90 D0 01 02 03 User doejohn OK Password requir ed Password 330 OK ftp ftp bin 200 TYPE is now 8 bi...

Page 28: ...mote Assistance 3 Click Enable Remote Assistance 4 Provide the following parameters to your helpdesk URL the HTTPS link User name Password 5 Your ISP is now able to access your SpeedTouch via the secure HTTPs link in combination with the provided certificate a secure authentication mechanism Disabling remote access To disable remote assistance 1 Go to the SpeedTouch pages as described in 1 3 1 Acc...

Page 29: ...e you ve connected a device you are able to personalise its settings 1 Go to the SpeedTouch web pages 2 In the menu select Home Network Devices 3 Click the name of your device or if the device s settings haven t been personalised yet click the MAC address of the device 4 On the top right click Configure 5 Now you can change the device s name lock its IP address and assign applications and services...

Page 30: ...cted a device you are able to personalise its settings For more information see Device settings on page 19 Managed Ethernet switch Your SpeedTouch intelligently switches data between the devices on your LAN using priority queuing to ensure that higher priority messages are delivered first and in real time This feature maximizes your network performance The managed Ethernet switch allows you to con...

Page 31: ... able to use WDS you will need to introduce an additional WDS enabled access point into your wireless network To be able to connect the computers make sure that a wireless client adapter WLAN client is installed on each computer you want to connect via the WLAN Wireless client requirements All wireless client adapters compliant to 802 11g and or 802 11b will be able to communicate with the SpeedTo...

Page 32: ...LAN radio link This is done by the Service Set ID SSID also referred to as Network Name Wireless clients must be part of this SSID environment in order to be able to communicate with other clients on the W LAN including the SpeedTouch Radio channels The 802 11g standard allows several WLAN networks using different radio channels to be co located The SpeedTouch supports multiple radio channels and ...

Page 33: ...plane are favoured Please note that the antenna characteristics are influenced by the environment that is by reflections of the radio signal against walls or ceilings It is advisable to use the received signal strength as indicated by the wireless client manager to optimize the antenna position for the link to a given client Concrete walls will die down the radio signal strength and thus affect th...

Page 34: ...h is in its default configuration If needed reset the SpeedTouch to its default configuration See 8 3 Reset to Factory Defaults on page 199 for more information A wireless client adapter is installed on your computer The wireless client adapter s IP configuration is set to dynamically obtain its IP configuration DHCP this is usually the default For more information see the documentation of your wi...

Page 35: ...The Wireless Network Connection window appears In the Choose a wireless network list select the SpeedTouch wireless network and click Connect 3 Following window appears Click Connect Anyway 4 Your computer is now connected to the SpeedTouch wireless network For other Operating Systems the wireless client will in most cases be configured via dedicated client managers ...

Page 36: ...0429 0104 v1 0 26 Wireless device settings Once you ve connected a device you are able to personalise its settings For more information see Device settings on page 19 To add a wireless device to the Access Control List ACL select Allowed on WLAN ...

Page 37: ... Security settings Network Name SSID On the Wireless Access Point page you can give a new name to your Network Name SSID Under Security you can clear Broadcast Network Name SSID to prohibit the Network Name from being broadcasted Access Control List ACL The SpeedTouch features a managed Access Control List ACL and a physical registration mechanism in the form of the Association Registration button...

Page 38: ...ey for secure communication with legacy 802 11b clients High Use WPA PSK Wi Fi Protected Access Pre Shared Key encryption the highest form of security available but make sure that your wireless client and client manager are compatible with it The default 64 bits hexadecimal WEP key is printed on the identification label located at the bottom of the SpeedTouch and is unique for each device The defa...

Page 39: ...vice will be able to access the SpeedTouch WLAN In case New stations are allowed via registration you will need to register Follow the procedure as described in Registering clients via association button on page 30 In case New stations are not allowed you will not be able to access the SpeedTouch Registering wireless clients In case New stations are allowed via registration you can add a wireless ...

Page 40: ...network key within the time frame of one minute will be added to the table The SpeedTouch automatically saves your current configuration at the end of the registration phase 2 Successfully registered stations are associated to the SpeedTouch WLAN Depending on your WLAN client adapter a wireless icon may become green or a message similar to the following may appear Successfully joined Wireless netw...

Page 41: ...Touch 180 The following illustration depicts two WDS enabled devices communicating via WDS Preconditions Check on following Your wireless repeater must be WDS enabled Both your SpeedTouch and your wireless repeater must use The same WEP key if WEP is enabled The same fixed channel The SpeedTouch allows you to add up to four wireless repeaters Repeaters extend the coverage area of your wireless LAN...

Page 42: ...the Pick a task list click Configure WDS 6 Select WDS Enabled 7 In the Pick a task list click Scan for wireless access points 8 A warning will be displayed Click OK 9 The SpeedTouch will scan for access points on the same radio channel 10 Select your repeater in the List of Accessible Access Points and click Apply If not already done set a fixed channel and check whether the security settings WEP ...

Page 43: ...e service profile you selected to configure the SpeedTouch and should correspond with the Service Provider s requirements If your ISP provides PPPoE for instance you should configure PPPoE More information on connection protocols can be found in the Internet Connection Configuration Guide Dial in clients There are different ways of dialling in depending on the operating system on your PC and your ...

Page 44: ...viour over the virtual Ethernet segment To be able to use a broadband dial in application on your computer for connecting to the Internet the SpeedTouch needs to be configured for Bridged Ethernet or Routed PPPoE with PPPoE relay via the SpeedTouch Home Install Wizard on the Setup CD or the embedded Easy Setup If this computer runs MS Windows XP you can use the MS Windows XP broadband dial in clie...

Page 45: ...puter and browse to the SpeedTouch web pages see 1 3 1 Access via the Web Interface on page 12 for more information By default the SpeedTouch shows you the Home page 2 Click Connect at the appropriate broadband connection You might be requested to enter your user name and password As a result SpeedTouch s embedded PPP dial in client establishes the Internet connection 3 Now you can surf the Intern...

Page 46: ...t session To close an active PPP connection 1 Go to the SpeedTouch Home page 2 Click Disconnect at the appropriate broadband connection As a result the SpeedTouch s embedded PPP dial in client will close the Internet connection The Internet Link status will change to Disconnected and your PC is off line ...

Page 47: ... page 198 UPnP must be enabled on your SpeedTouch To enable UPnP see 4 5 2 Game Application Sharing on page 69 Starting an Internet session Proceed as follows 1 In the Windows task bar click Start 2 Select Settings Control Panel 3 The Control Panel window appears Go to Network and Internet Connections Network Connections 4 The Network Connections window appears You will find an Internet Gateway ic...

Page 48: ...llows 1 In the Windows task bar click Start 2 Select Settings Control Panel Network and Internet Connections Network Connections 3 In the Network Connections window right click the Internet Connection icon and select Disconnect to close the session 4 As a result the SpeedTouch s embedded PPP dial in client will close the Internet connection The Internet Gateway icon displays Disconnected and your ...

Page 49: ...1 On the Start menu click Settings Control Panel 2 The Control Panel window appears Go to Network and Internet Connections Network Connections 3 In the Network Tasks menu click Create a new connection The New Connection Wizard appears Click Next 4 Select Connect to the Internet and click Next 5 Select Set up my connection manually and click Next 6 Select Connect using a broadband connection that r...

Page 50: ...ion will be available to any user or only to yourself 9 Fill in the Internet account information This information should be provided by your service provider 10 At the end of the configuration the following window appears Click Finish to complete the configuration The Connect YourISP window see below appears ...

Page 51: ...rISP 2 The Connect YourISP window appears 3 If requested enter user name and password for your user account at the Service Provider 4 Click Connect 5 As soon as the connection is established the Connection message box and Dialup window are minimised into an icon in the notification area 6 You can open your web browser and surf the Internet If you are using the Classic Start menu click Start Settin...

Page 52: ...On the Start menu point Connect To and click the name of the connection you ve created for example YourISP 2 The YourISP Status window appears 3 Click Disconnect 4 The connection is released As a result no Internet connectivity exists any more If you are using the Classic Start menu go to Start Settings Network and Dial up connections YourISP ...

Page 53: ...On the Apple menu click System Preferences 2 In the System Preferences window click the Network icon 3 The Network window appears Make sure Built in Ethernet is selected in the Show list and click the PPPoE tab 4 Enter the Account Name and Password provided by your Service Provider 5 Click Apply Now Select Save password in case you want the computer to remember the password for this account name O...

Page 54: ...an open your web browser and surf the Internet Terminating a broadband Internet session Proceed as follows 1 Click the Internet Connect dockling 2 The following window appears Make sure Built in Ethernet is selected in the Configuration list 3 Click Disconnect 4 The connection is released As a result no Internet connectivity exists any more If the Internet Connect dockling is not available go to t...

Page 55: ...3 1 Access via the Web Interface on page 12 to access the pages Basic and Expert Mode The pages are grouped in Basic Mode offering the main configuration tasks Expert Mode adding advanced features to the basic mode and presenting the Command Line Interface CLI commands in a graphical user interface SpeedTouch documentation Consult The SpeedTouch Installation and Setup Guide for more information on...

Page 56: ...CTC 20050429 0104 v1 0 46 4 1 Navigation Navigation components The SpeedTouch web interface consists of following components Menu Language Bar Navigation Bar Notification Area Tasks Menu Tasks Navigation bar Notification area Language bar ...

Page 57: ... view configure your broadband connections Toolbox Allows you to assign games or applications to a device and secure your Internet connection Office Network Allows you to manage your local network Expert Configuration Mode Allows you to go to Expert Configuration mode for advanced configuration and maintenance of your SpeedTouch device Collapsing and expanding the menu You are able to collapse exp...

Page 58: ...429 0104 v1 0 48 4 1 2 Language Bar Language bar The language bar is located under the SpeedTouch logo and allows you to change the language of the SpeedTouch web interface The language bar will only be shown if more than one language is available ...

Page 59: ...change your password or switch to another user View the current position on the SpeedTouch web interface Get context related Help information Display level Depending on the page you are viewing following buttons will be available Overview to view a summary of the current status or configuration Details to view more detailed information on the current status or configuration Configure to change the...

Page 60: ...n area The notification area is located under the Navigation Bar and is used to display Error messages indicated by a red traffic light Warnings indicated by an orange traffic light Information indicated by a green traffic light If none of these events occur the notification area will not be shown ...

Page 61: ... E DOC CTC 20050429 0104 v1 0 51 4 1 5 Tasks Tasks To allow a swift configuration of your SpeedTouch some pages may offer you a number of related tasks These tasks will guide you to the page where you can perform the selected task ...

Page 62: ...ration E DOC CTC 20050429 0104 v1 0 52 4 2 Home SpeedTouch home page The SpeedTouch home page gives you a short overview of all the configurable aspects of the SpeedTouch SpeedTouch Broadband Connection Toolbox Office Network ...

Page 63: ... 0 53 4 3 SpeedTouch The SpeedTouch menu The SpeedTouch menu consists of following items Information Configuration Event Logs Update The SpeedTouch page The SpeedTouch page gives you some basic information on the SpeedTouch Product Information Configuration ...

Page 64: ...sic Configuration E DOC CTC 20050429 0104 v1 0 54 4 3 1 Information Information The Information page summarizes important information on your SpeedTouch You may need this information when you contact your helpdesk ...

Page 65: ...izard This wizard helps you configure your SpeedTouch Internet connection To configure the SpeedTouch using the SpeedTouch Easy Setup wizard 1 On the left menu click SpeedTouch 2 In the Pick a task list click Set up 3 The Easy Setup wizard will now guide you through the configuration of your SpeedTouch ...

Page 66: ...art Accessing the Restart page Proceed as follows 1 On the left menu click SpeedTouch 2 In the Pick a task list click Restart Restarting your SpeedTouch Proceed as follows 1 Click Yes restart my SpeedTouch 2 The SpeedTouch restarts 3 The SpeedTouch returns to the Home page ...

Page 67: ...edTouch Click Configuration Wizard under Service Configuration For more information see 4 3 2 SpeedTouch Easy Setup on page 55 Configure the time settings of your SpeedTouch Select Auto configuration if you want the SpeedTouch to use a time server to synchronise its clock to a dedicated time server Clear Auto configuration to manually configure the SpeedTouch time settings Disable enable web brows...

Page 68: ...he Pick a task list click Save or Restore Configuration Saving your current configuration Proceed as follows 1 Click Backup Configuration Now 2 Click Save 3 Choose a location to save your backup file and click Save Restoring a previously saved configuration Proceed as follows 1 Click Browse 2 Select the configuration file you want to restore and click Open 3 Click Restore Configuration Now 4 The S...

Page 69: ...hanges will be deleted Accessing the Reset to Factory Defaults page Proceed as follows 1 On the left menu click SpeedTouch 2 In the Pick a task list click Return to Factory Default Settings Resetting the SpeedTouch to factory defaults If you want to reset your SpeedTouch to factory defaults click Yes reset my SpeedTouch If you reset your SpeedTouch to factory default settings all active connection...

Page 70: ...e gives you an overview of the latest event logs that have been recorded since power on The first column of the table indicates the importance of the event log The Category list allows you to filter the events shown in the Recorded Events table For example by clicking Security you can view all security related events for example generated by the SpeedTouch firewall Indicator Description Informatio...

Page 71: ...you to View System Information View information on the current System Firmware Update your SpeedTouch from a remote server Use this option if you want to have yourSpeedTouch check on the internet for new firmware and update if it found one Update from a PC Use this option if you want to install on your SpeedTouch that is located on the PC ...

Page 72: ...tems DSL Connection Internet Services The Broadband Connection page The Broadband Connection page gives you a short status overview of the connections configured on the SpeedTouch Click View more to see more information on the selected broadband connection If you configured a dial up connection you are able to establish terminate the connection by clicking Connect Disconnect ...

Page 73: ... Broadband Connection 2 In the Pick a task list click Check connectivity to the Internet Checking you Internet Connectivity Proceed as follows 1 In the Internet Service to Check list click the Internet service that you want to check 2 Click Check Connectivity 3 The SpeedTouch lists the test results in the Test Results list Analysing the test results If the test is successful you will get a list of...

Page 74: ...onfiguration E DOC CTC 20050429 0104 v1 0 64 4 4 2 DSL Connection Overview Click Overview to view brief information on your DSL connection Details Click Details to view a more detailed information on your DSL connection ...

Page 75: ...n The Internet Services page displays information on your Internet Connection s To view more detailed information on a specific connection click the View more link of the corresponding connection If you configured a dial up connection you are able to establish terminate the connection by clicking Connect Disconnect ...

Page 76: ...e internet service you want to view Overview The Overview page gives you basic information on the selected Internet Service Details The Details page gives you more detailed information on the selected Internet Service If you configured a connection you are able to establish terminate the connection by clicking Connect Disconnect If you configured a dial up connection you are able to establish term...

Page 77: ...ing Allows you to block allow access to specific web sites Firewall Allows you to configure the security level of the SpeedTouch firewall Intrusion Detection Allows you to view the intrusions you are protected against Dynamic DNS Allows you to assign a DNS host name to your broadband connection s User Management Allows you to manage the users configured on your SpeedTouch The Toolbox page The Tool...

Page 78: ...Enable Remote Assistance 3 Pass the information listed under URL Username Password to your technical support in order for them to be able to access your SpeedTouch 4 The remote assistance session ends If the technical support disables remote assistance After 20 minutes of inactivity or after a reboot remote management You must be connected to the Internet to be able to enable remote assistance Onc...

Page 79: ...the Internet Configure The Configuration page allows you to Select Use UPnP to enable UPnP on the SpeedTouch Select Use Extended Security to only allow the creation of port maps Assign a game or application to a specific network device Universal Plug and Play is an architecture for transparent peer to peer connectivity of PCs intelligent appliances and wireless devices It enables seamless operatio...

Page 80: ...task list click Modify a game or application The Defined Games Applications page This page gives you an overview of the games and applications defined on your SpeedTouch Each game or application can be assigned to a device on your local network To View the translation rules of a game or application click the name of the rule Change the translation rules of a game or application click the Edit link...

Page 81: ...ally assigned using an outgoing trigger Configure Under Game or Application Name you can Change the name of the game or application Game or Application Definition you can Change the TCP UDP port definition for this game or application Adding a Port Translation rule Proceed as follows 1 In the Protocol list click the protocol the game or application uses 2 In the Port Range box type the port range ...

Page 82: ...ceed as follows 1 Type the name of the game or application in the Name box 2 Click Clone Existing Game or Application if you want to start from the port mappings of the selected game or application Manual Entry of Port Maps if you want to manually configure the port mapping for this game or application 3 The SpeedTouch creates the game or application and takes you to the Game or Application Defini...

Page 83: ...ontent levels Following content levels are available All Allow all categorized web sites Legal Allow all except illegal extreme spam and spyware web sites Teenagers Block illegal adult extreme online ordering gambling spam and spyware web sites Children Only allow children save web sites BlockAll Block all categorized web sites As within a web site lots of references can be made to other URLs it i...

Page 84: ...ect page in the Redirect box 3 Click Add Allow access to a specific web site Use this feature if Block is selected under Action for Unknown Sites Allow is selected under Action for Unknown Sites and you want to make an exception on a block redirect rule For example you are blocking bank com but you want to allow access to netbanking bank com A content category group is blocked by Content Based Fil...

Page 85: ...L of the web site you want to redirect to for example mycompany com internetpolicy htm in the Web Site box 6 Click Allow in the Action list 7 Click Add Configure content based filtering settings Under Content Based Filtering you are able to Enable disable content based filtering Allow block uncategorized web sites Select a content level in the Content Level list To change a content level definitio...

Page 86: ...Control 2 In the Pick a task list click Activate Web filtering License Web Filtering Activation page This page allows you to Activate a Web Filtering evaluation license Activate a free 30 days Web Filtering evaluation license Standard license activation Proceed as follows 1 Click Standard 2 In the License Key box type the license key provided by your ISP 3 Click Apply ...

Page 87: ...ntent level you want to edit Overview This page gives you an overview of the different categories and their rules Following icons indicate whether the content type is allowed or not Configure This page allows you to change The content level name The content level description The content level configuration Icon Description The category group is allowed The category group is not allowed The group i...

Page 88: ...o describe what this security level will do 3 Click Next Content level configuration Proceed as follows 1 The Configuration section becomes available 2 Click Clone Existing Level to start from a previously created content level Black List to allow all web sites by default White List to block all web sites by default 3 Click Next Content level definition Only web sites that match the selected conte...

Page 89: ...4 v1 0 79 Content level activation To activate your new content level 1 On the Toolbox menu click Parental Control 2 In the upper right corner click Configure 3 In the Content Level list select your new content level 4 The new content level is now active ...

Page 90: ...plication sharing is allowed by the firewall Standard Use this Security Level to allow all outgoing connections and block all incoming traffic Game and Application sharing is allowed by the firewall Low Use this Security Level to allow all outgoing connections and block all incoming traffic except Internet Control Management Protocol ICMP Game and Application sharing is allowed by the firewall Dis...

Page 91: ...n Detection Your SpeedTouch is protecting your network against malicious intrusions This page shows you the intrusions you are protected against The Protected Intrusions table shows the number of times the SpeedTouch actively protected your network against each intrusion since last statistics reset ...

Page 92: ...onfigure The Configure page allows you to assign a Dynamic DNS host name to a broadband connection 1 Create an account at the Dynamic DNS service of your choice for example www dyndns org www no ip com www dtdns com GnuDIP for Linux 2 On the Dynamic DNS page click Configure 3 Select Enabled 4 If needed click the broadband connection to which you want to assign the Dynamic DNS hostname in the Inter...

Page 93: ...verview page gives you an overview of the currently configured users and their privileges Clicking the name of a user allows you to edit his user account Configure The Configure page allows you to Click Add to create a new user account Click Delete to remove a user Click Edit to change a user account ...

Page 94: ...ata click on the name of the user you want to edit Editing a user account The Edit User page allows you to Click Reset Password to reset the password of the selected user to the user name So if you reset the password of John his password will be John Change the administration privileges of the selected user You can not change the administration privileges of the account you are logged on to ...

Page 95: ...ging the default user This page allows you to change the default user If users browse to the SpeedTouch web pages they will be automatically logged in under this account To allow users to automatically log on under this account this default user account must be configured with a blank password ...

Page 96: ...gure The name of the new user The administration privileges of the new user The password of the new user will be equal to the user name for example if the user name is John Doe the password will be John Doe Also when resetting a user the password will be changed into the user name You can only add users with less than or equal administration privileges as yourself ...

Page 97: ...ur local network Interfaces Allows you to view configure the interfaces that are available on the SpeedTouch The Office Network page The Office Network gives you an overview of your SpeedTouch network Viewing wireless client information If you click a on wireless client you will be able to View the wireless client s network settings Configure the wireless client s network settings by clicking Conf...

Page 98: ...onfigure page gives you an overview of the devices that are currently connected to the SpeedTouch network To Get more information on a specific device click on the name of the device See 4 6 2 Device Settings on page 89 for more information Edit a device from the Detected Device s list click Edit Delete a device from the Detected Device s list click Delete Once a device connects to the SpeedTouch ...

Page 99: ...erface to which the device is currently connected Addressing allows you to view Physical Address shows the MAC address of the device IP Address Assignment shows whether the device is using a static or dynamic IP address IP Address shows the current IP address of the device Connection Sharing Gives you an overview of the games or services that are currently assigned to this device Click the name of...

Page 100: ...n the Pick a task list click Assign the public IP address of a connection to a device Assigning the public IP address to a device Proceed as follows 1 Click the Edit link of your Internet connection 2 In the Device list select the device you want to assign the public address to 3 Click Apply 4 The SpeedTouch prompts you that you will have to make some adjustments as a result of the new configurati...

Page 101: ...ysical Address displays the MAC address of the device IP Address Assignment displays whether the device is using a static or dynamic IP address IP Address displays the current IP address of the device Always use the same address indicates whether the wireless client has a static DHCP lease or not DHCP Lease Time displays the time for which the wireless client can use this IP address Connection Sha...

Page 102: ...ays the Base Service Set Identifier BSSID of the selected Access Point Network Name SSID Allows you to change the network name of your WLAN Interface Type Allows you to choose between 802 11b 802 11b legacy g 802 11b g 802 11g Actual Speed Displays the current transmission speed Channel Selection Allows you to select a fixed channel or let the SpeedTouch automatically select a channel for you Regi...

Page 103: ...ey are transmitted I e during transmission between client and AP in the air the information in the packets is encrypted To enable WEP 1 Select Use WPA PSK Encryption 2 In the WEP Key Length list click the desired Data Security level either 64 bit or 128 bit and Alphanumeric or Hexadecimal 3 In the Encryption key box type a Network key of your choice In case of 64 bits Alphanumeric The 40 bits Netw...

Page 104: ...on list click select the desired Encryption method either TKIP or AES 4 Optionally select the rekeying interval 5 Click Apply to immediately apply your changes 6 Configure your wireless client s with the same settings Access control on the SpeedTouch Following modes are available New stations are allowed automatically All New stations can access the SpeedTouch WLAN New stations are allowed via reg...

Page 105: ...r Pick a task list click Configure WDS SpeedTouch configuration Proceed as follow 1 Under Pick a task click Scan for wireless accesspoints 2 The SpeedTouch prompts you that all associated stations will loose connectivity for a few seconds Click OK 3 The SpeedTouch lists the results in the Accessible Access Points table 4 Select the Access Point to which you want to establish a WDS connection 5 Cli...

Page 106: ...29 0104 v1 0 96 4 6 7 Interfaces Interfaces overview This page gives you an overview of the interfaces used on your SpeedTouch If you want to know more on the network settings of a specific interface click the name of the interface you want to view ...

Page 107: ...ess pool settings Assigning a new IP address to the SpeedTouch Under IP Addresses 1 Type the IP address of your choice for example 192 168 1 1 in the left text box 2 Type subnet mask in the right text box for example 255 255 255 0 3 Click Add 4 Network devices using the same subnet mask can now access the SpeedTouch using this IP address Before changing the DHCP pools make sure that at least one I...

Page 108: ...ows 1 On the Office Network menu click Interfaces 2 Click on the name of the interface of which you want to change the DHCP pool settings 3 Click Configure 4 Under DHCP Pools click Add if you want to add a new DCHP pool Edit if you want to edit an existing DHCP pool Delete if you want to delete an existing DHCP pool This link will only be shown if there are more than one DHCP pools ...

Page 109: ...ssigned to the DHCP clients as their default gateway Primary DNS The IP address of the primary DNS server Secondary DNS The IP address of the secondary DNS server Primary WINS The IP address of the primary WINS server Secondary WINS The IP address of the secondary WINS server Lease Time The time for which the DHCP client is allowed to use the assigned IP address Always give same address to DHCP cl...

Page 110: ...Chapter 4 Basic Configuration E DOC CTC 20050429 0104 v1 0 100 ...

Page 111: ...verview The following Site Map gives you an overview of all available menus in Expert Mode Click To SpeedTouch view information on your SpeedTouch configure or upgrade it IP Router view configure the SpeedTouch IP interfaces IP routing table and NAT entries Connections view configure a broadband connection Local Networking view configure the SpeedTouch DHCP server client the DNS configuration the ...

Page 112: ...ollowing action buttons are always available on every page Click To Save All force a save of the current configuration of your SpeedTouch CLI access the complete SpeedTouch Command Line Interface in a graphical way Help open the SpeedTouch help pages If available on your SpeedTouch you are able to change the language of your SpeedTouch web pages via the language action buttons in the top right cor...

Page 113: ...ome Overview The Expert Mode Home page is in fact the same as the SpeedTouch Home page in Basic Mode it provides an instant overview of all aspects of your SpeedTouch configuration and operational status For more information see Home of Basic Configuration web interface ...

Page 114: ...uration information of the SpeedTouch and perform IP connectivity checks on WAN connections Syslog view configure the SpeedTouch system logging engine System Update manage various kinds of system configuration files and to perform a system upgrade SpeedTouch Services view configure existing SpeedTouch services or to add new ones SNTP view configure SpeedTouch s real time clock engine SLA access th...

Page 115: ...rd provides an easy way to prepare the SpeedTouch for Internet connectivity Depending on the installed wizard templates see Manage configuration files on page 113 for more information you can select from one or more semi automatic scripts helping you to fully configure most aspects of the SpeedTouch with a minimum of effort and risk of wrong or insufficient configurations ...

Page 116: ...f the DSL link in both up and downstream direction Uptime The duration of the current Enabled Line Status kBytes Tx Rx the amount of kilobytes kBytes sent Tx and received Rx since the establishment of the DSL link In addition per configured Internet Service interface you van view The interface s currently assigned or configured local WAN IP address The interface s currently assigned or configured ...

Page 117: ...of the SpeedTouch The System table lists the SpeedTouch s Product Name Physical Address This worldwide unique hardware address is also called Medium Access Control MAC address Software Release Board Name Serial Number Product Code Most of the information is also listed on the identification label on the bottom of the SpeedTouch ...

Page 118: ... on demand the session is automatically started as soon as outgoing traffic has been generated Link the actual PPP link status being either idle no PPP link set up connecting PPP link set up pending connected PPP link set up empty in case of an idle listening PPP connection State the PPP connection interface state being either up WAN connectivity on this interface achieved down no WAN connectivity...

Page 119: ...s displayed Following action buttons are provided If the status is Then the overall status of the particular category is healthy an error situation has been detected for that category the overall status of the category could not be determined Click To Expand All expand all collapsed categories Collapse All collapse all expanded categories IP Connectivity check all connections on IP connectivity Re...

Page 120: ...shing of the table The Message buffer view options menu becomes accessible to Select the Facility level of syslog messages to show in the table Select the Severity level of syslog messages to show in the table Change the Refresh rate of the table As long as AutoRefresh is disabled you can manually refresh the table by clicking Refresh Click AutoRefresh to apply your changes and to start automatic ...

Page 121: ...yslog 40 Line printer subsystem lpr 48 Network news subsystem news 56 UUCP subsystem uucp 64 Clock daemon cron 72 Security messages security 80 FTP daemon ftp 88 NTP subsystem ntp 96 Log audit audit 104 Log alert alert 112 Clock daemon clock 120 Local use messages local0 local7 128 184 Severity Following priority severities are possible for a syslog message generated by the SpeedTouch SpeedTouch T...

Page 122: ...re allowed ini Files with extension ini are SpeedTouch configuration files These files are intended for backing up configurations to back up your current configuration see 4 3 5 Backup Restore on page 58 tpl Files with extension tpl are configuration templates used by the SpeedTouch Home Install Wizard available on the SpeedTouch Setup CD or the embedded Easy Setup wizard lng Files with extension ...

Page 123: ...ation on the selected configuration file 2 Click Backup to store the file on a location on your local disk Delete to remove the file from your SpeedTouch Cancel to return to the configuration file overview Manage language packs Your SpeedTouch is able to display its web interface embedded Easy Setup and this Help in various languages Each file requires an amount of memory Make sure to limit the nu...

Page 124: ...load the system software to your SpeedTouch If the upload was successful the uploaded system software will be listed as Passive system software version Switch to another system software version To upgrade your SpeedTouch system software to a new version or in some cases roll back to a previous version 1 Make sure that a Passive system software is correctly uploaded to your SpeedTouch it should be ...

Page 125: ...at accept relay or initiate IP traffic The SpeedTouch Service table provides an overview of registered services and some additional information Optionally you can click Show Hide Dynamic SpeedTouch services to show hide SpeedTouch services that have been dynamically created by the SpeedTouch Show Hide members of service groups to show hide all the individual SpeedTouch services that are member of ...

Page 126: ...e Type a new Internal TCP UDP port 3 In External TCP UDP Port optionally Clear existing External TCP UDP ports if applicable Type the port number of an additional external TCP UDP port to add 4 In Allow service via Interface optionally Clear existing interfaces if applicable Type the name of the additional interface 5 In Accept service from Remote IP optionally Clear existing remote IP addresses i...

Page 127: ...on Proxy is a responder on the LAN side and originator on the WAN side of the SpeedTouch Relay is a responder on one side LAN or WAN and re originates on the other side WAN resp LAN of the SpeedTouch Group is an assembly of SpeedTouch services Editing such kind of entries will edit all members of that Group Transparent Map uses transparent NAT port mappings Dynamic has been dynamically created or ...

Page 128: ...ation is most likely provided with the NTP server s IP address 4 Click Apply You can add multiple NTP servers This ensures that the SpeedTouch SNTP client will always be able to contact at least one NTP server to synchronize the SpeedTouch real time clock with Manual You can manually configure the SpeedTouch s real time clock in case no connection to an NTP server is available To manually configur...

Page 129: ... a ping test Select a ping test entry to Modify ping test properties Perform a ping test and view test results and history see Ping tests and results Delete the entry see Add delete a ping test Add delete a ping test To add a ping test entry 1 Click New if an entry is currently selected click Cancel first 2 Type a name for the ping test entry 3 Type the host name or IP address of the target to pin...

Page 130: ...le provides a list of configured traceroute test entries By default no traceroute tests are configured To add a traceroute test see Add delete a traceroute test below Per traceroute test entry following information is shown in the table an intuitive Test name of the traceroute Test the traceroute test entry Owner the traceroute Target Address host or IP address the traceroute test Status being eit...

Page 131: ...test entry 1 Select the traceroute test entry 2 Click Modify 3 Make your changes 4 Click Apply to apply your changes to the traceroute test entry traceroute tests and results To start stop a traceroute test 1 Select the traceroute test entry 2 Click Activate to start the traceroute test Deactivate a traceroute test that is currently running To view the results of the traceroute test 1 Select the t...

Page 132: ...rating and downloading the software activation key 3 If required paste the obtained software key in the Software Activation Code Input display box 4 Click Add to process the software activation key 5 Click Restart to restart the SpeedTouch This allows the SpeedTouch system software to validate the software activation key and to activate the corresponding module t For more information refer to 6 So...

Page 133: ...faces Expressions view configure interface or IP or Service related expressions Classification view configure packet classification and handling IP Routing view configure the SpeedTouch IP forwarding and routing table RIP view configure the SpeedTouch Routing Information Protocol RIP engine NAT vie configure the SpeedTouch Address Translation information base IP QoS view configure the SpeedTouch I...

Page 134: ...manually configured IP address You can also assign additional new IP addresses to the SpeedTouch see Add change an IP address In case you select an IP address entry you can Make changes to the IP address configuration see Add change an IP address and click Apply Click Delete to delete the IP address Add change an IP address To add a new IP address to the SpeedTouch 1 Click New 2 Select the Interfa...

Page 135: ...The Name of the expression A Summary of the expression s configuration For more detailed information you can expand the expression click Adding an interface related expression To add a new interface related expression 1 Click New 2 In the Interface Expressions Properties table Type a Name for the expression Select the Interface group the expression should relate to For negative logic select Not Se...

Page 136: ...ssions that express a relation based on services The Expressions table provides following information per expression The Name of the expression A Summary of the expression s configuration For more detailed information you can expand the expression click Adding a service related expression To add a new service related expression 1 Click New 2 In the Service Expressions Properties table Type a Name ...

Page 137: ...flow by means of classification rules IPQoS Rules allow you to associate an IP QoS label used in IP QoS to a data flow by means of classification rules Labels The Labels section provides an overview of existing packet classification labels The Labels table provides following information per label the packet classification label Name the kind of packet Classification the Class of of classification ...

Page 138: ... if you add a route that uses that particular label as route criterion the effective classification based routing is applied Service The service or protocol e g smtp http telnet Source Interface The source interface e g _lan1 _wan1 _dmz1 Source IP Select The name of the source IP expression Destination IP Select The name of the destination IP expression State Select this check box to enable this r...

Page 139: ...Routed PPPoA s or Routed PPPoE s IPCP via the DHCP client e g for Routed Ethernet MER via pre configuration for example for Routed IPoA or by the Routing Information Protocol Adding an IP route To add an IP route 1 Click New in the bottom row of the table 2 Specify the Destination IP prefix 3 If needed select a packet classification routing Label in case the route applies for classified packets 4 ...

Page 140: ...ch as Override the master RIP status enable disable Override the master RIP version separately for receiving and sending RIP messages Specify whether authorization is needed or not and if so the required authorization string Specify whether routed must be included in RIP updates sent to a gateway from which the updates were learned Specify whether the interface should transmit RIP updates or not N...

Page 141: ...Depending on your needs following fields are available Interface The name of the IP interface that needs to be NAT ed Protocol The IP protocol on which address translation has to be applied This allows the SpeedTouch to link specific traffic protocol dependent to a chosen private host Outside address The outside typically public IP address es Inside address The inside typically private IP address ...

Page 142: ... which address translation has to be applied This allows the SpeedTouch to link specific traffic protocol dependent to a chosen private host Outside address The outside typically public IP address es Inside address The inside typically private IP address es Access list You can use the access list to define the address es that are allowed to use the outbound connections Foreign address Foreign addr...

Page 143: ... guarantee can both be applied to connection oriented networks connection based and to packet oriented networks data stream or data type based Quality of Service allows specifying a connection service guarantee via a set of connection parameters Throughout the network this set of connection parameters will be used to handle the connection data in a way to achieve the connection service guarantee T...

Page 144: ...The higher the queue number the higher the priority wrr Weighted Round Robin WRR is used for the four AF queues Each queue is scheduled in turn with a circular round wrapping WFQ queue Weight A number between 1 and 97 Represents the weight of the queue used for WFQ or WRR Max highest queue rate Represents a percentage of the interface bandwidth for rate limiting of the Real Time queue In case of c...

Page 145: ... view configure the Routed PPP over ATM PPPoA Internet services Routed PPPoI view configure the Routed PPP over ISDN PPPoI Internet services Bridged Ethernet view configure the Bridged Ethernet Internet services Routed Ethernet view configure the Routed Ethernet Internet services Routed IPoA view configure the Routed IP over ATM IPoA Internet service PPTP to PPP Relay view configure the PPTP to PP...

Page 146: ...entry 1 Click New 2 In the Name box type the Connection Service Name 3 In the Address box type the Virtual Channel Identifiers VPI and VCI for example 8 35 4 Click Apply Connection Service Name There are a few limitations on names A phonebook name cannot have spaces The name INCOMING is reserved for internal use For entries of connection service type PPPoA planned to be used for the Relayed PPPoA ...

Page 147: ...ok entry to apply on this ATM interface Encapsulation The type of encapsulation to be used for this ATM interface Choose between llc Logical Link Control LLC Sub Network Access Protocol SNAP vcmux Virtual Channel MUltipleXing VCMUX auto the SpeedTouch will determine the encapsulation method to use Number of retries A number between 0 and 65535 Represents the number of times the SpeedTouch retries ...

Page 148: ...estination indicated by the Routed Ethernet interface name 4 Type user name and password for the account at the ISP optional 5 If applicable type a Service name and or Access Concentrator optional 6 Click Apply Additional configuration Once created per Routed PPPoE connection additional configuration is possible by clicking Routing Other Routing Following fields are available Destination Controls ...

Page 149: ... PAP fails the connection will NOT be authenticated CHAP CHAP authentication is forced If not successful the connection will NOT be authenticated PAP PAP authentication is forced If not successful the connection will NOT be authenticated Local IP and Remote IP During PPP session setup IP addresses are negotiated Typically at the client side these fields are left empty This forces the client to ask...

Page 150: ...opriate Routed Ethernet destination indicated by the Routed Ethernet interface name 4 Type user name and password for the account at the ISP optional 5 Click Apply Additional configuration Once created per Routed PPPoA connection additional configuration is possible by clicking Routing Other Routing Following fields are available Destination Controls the networks that can be reached via this parti...

Page 151: ... PAP fails the connection will NOT be authenticated CHAP CHAP authentication is forced If not successful the connection will NOT be authenticated PAP PAP authentication is forced If not successful the connection will NOT be authenticated Local IP and Remote IP During PPP session setup IP addresses are negotiated Typically at the client side these fields are left empty This forces the client to ask...

Page 152: ... a profile if you want to use an existing profile New to create a new profile Type the name you want to assign to this profile in the Enter Name box These ISP profile contain the ISDN parameters 4 Type user name and password for the account at the ISP 5 If needed enter the ISDN parameters of your ISP 6 Click Apply Additional configuration Once created per Routed PPPoI connection additional configu...

Page 153: ... PAP fails the connection will NOT be authenticated CHAP CHAP authentication is forced If not successful the connection will NOT be authenticated PAP PAP authentication is forced If not successful the connection will NOT be authenticated Local IP and Remote IP During PPP session setup IP addresses are negotiated Typically at the client side these fields are left empty This forces the client to ask...

Page 154: ...t overview table are the parameters that are applicable for the Ethernet bridge itself Following parameters are configurable Aging time Using this input the aging timer of the bridge internal database can be changed If the aging time of a MAC entry has expired this entry will be removed from the database Virtual LAN By selecting this checkbox the SpeedTouch bridge will become fully VLAN ID aware T...

Page 155: ... the same VID as the packet 7 Mark the Accept VLAN only checkbox to no longer accept packets arriving on this interface without a VLAN tag 8 Choose your preferred Priority configuration from the list This will make the SpeedTouch to map the priority indication in the VLAN packet IEEE 802 1p value to an internal priority class This internal class can be taken into account in other modules of the Sp...

Page 156: ... from this VLAN none which means that this interface is not a member of the selected VLAN Tagged which means that this interface is a member of the selected VLAN and that packets coming in and going out of the SpeedTouch will be VLAN tagged Untagged which means that this interface is a member of the selected VLAN but that the VLAN functionality will be not visible outside the SpeedTouch This means...

Page 157: ...Routed Ethernet web page allows you to add and modify Routed Ethernet interfaces Routed Ethernet interfaces can be used for creating end to end MAC Encapsulated Routing MER connections or for creating a destination interface to create Routed PPPoE connections on or to apply a routed PPPoE Relay scenario ...

Page 158: ...rized into 20 0 0 0 22 or a specific network e g 20 0 0 0 24 Additional networks can be specified via entries in the forwarding table 3 In the Interface box type a unique interface name 4 In the Destination list select the interface you want to use for this connection 5 Assuming a numbered IPoA link configure the Local and Remote IP addresses 6 If required enable NAPT via the NAPT box by default u...

Page 159: ...from then on relays all PPP frames sourced by the PPTP application from the tunnel to the virtual channel identified by the phonebook entry and vice versa At the remote end of the virtual channel the BRAS extracts the PPP frames reconstructs the encapsulated IP packets and forwards these to the Internet If at the end of a session the user disconnects the PPTP application it destroys the tunnel and...

Page 160: ...common physical network the traffic of each VLAN is isolated from the other VLANs The Virtual LAN page The Virtual LAN page gives you an overview of the Virtual LANs currently defined on the SpeedTouch It also allows you to add new VLANs and delete existing VLANs Creating a new VLAN To add a Virtual LAN 1 Click New 2 In the Name box type a unique name that describes the use of the VLAN 3 In the VI...

Page 161: ...iew The Connections menu consists of the following topics Click To DHCP View configure the SpeedTouch DHCP settings DNS View configure the SpeedTouch DNS settings Managed Switch View configure the SpeedTouch Managed Switch Wireless View configure the SpeedTouch wireless access point settings ...

Page 162: ...overview and add delete DHCP address pools for the SpeedTouch DHCP server As mentioned before the SpeedTouch DHCP server configuring local network hosts can be run in conjunction with one or more SpeedTouch DHCP clients or SpeedTouch DHCP Relay agents each created on behalf of a wide area connection I e for WAN interfaces the SpeedTouch offers DHCP client or DHCP relay support to configure MAC Enc...

Page 163: ...g unused DHCP server leases No DHCP request from this particular Client ID has been received by the DHCP server yet Used Indicating assigned DHCP leases A DHCP lease has been assigned to this Client ID in the past actually Pool lease time TTL seconds ago As soon as a DHCP request is received the SpeedTouch DHCP server will assign the IP address matching the DHCP client s identity to this client e ...

Page 164: ... SpeedTouch IP address used as DHCP server address applicable for SpeedTouch multi homing Primary DNS Server The IP address of the primary DNS server Secondary DNS Server The IP address of the secondary DNS server The table header shows following pool properties in addition State the current DHCP server s address pool state PPP the PPP interface used to fill the DHCP server s address pool dynamica...

Page 165: ...ddress of the DHCP server 3 In the Interface list click the appropriate relay interface click None to indicate no interface is specified 4 In the Gateway Address giaddr box type the Gateway IP address to be used for the giaddr field in relayed DHCP packets 5 Click Apply Relay Interfaces The Relay Interfaces table allows you to configure interface specific DHCP relay settings as Enable disable the ...

Page 166: ...ient requests a known server to extend its lease rebinding The DHCP client searches a server to extend its lease The Timeout column is filled in for each DHCP client which is currently in the bound state It indicates the lease time of the assigned IP address For each of these interfaces you can configure following fields IP Address The preferred IP address to be assigned to the DHCP client If not ...

Page 167: ...ver is active on the local network as well If required however you can disable the SpeedTouch DNS server by clearing Activate Server and Apply Hostname Table The Hostname Table shows all DNS host names with respective IP address the SpeedTouch DNS server is aware of for example entries created via DHCP server replies to leases If not all computers reveal their hostname in the DHCP request or even ...

Page 168: ... per Ethernet port to configure some Ethernet port properties Mirror Configuration allows you to configure port mirroring and traffic capturing Managed Ethernet Switch Under Managed Ethernet Switch you can select a port to change State Allows you to enable disable the interface Speed Duplex Select either auto Auto negotiation of Ethernet communication speed 10Mb s or 100Mb s and Duplex mode half d...

Page 169: ...mirrored port to another port called mirror capture port This functionality allows any port s Ingress and or Egress traffic to be monitored to a pre defined mirror capture port Depending on your configuration you can mirror from mirror port to mirror capture port The outgoing traffic The incoming traffic Both incoming and outgoing traffic ...

Page 170: ...s of four sections Access point settings to configure the basic settings of the SpeedTouch wireless access point Security to overview and control the security settings and wireless client access to the SpeedTouch s wireless network segment Associated stations to overview the wireless stations currently associated with the SpeedTouch wireless access point Networks to scan for wireless clients in yo...

Page 171: ...ce Interoperability Mode Channel Selection allows you to choose between Auto The best communication channel is automatically selected by the SpeedTouch recommended setting The Current Channel displays the channel currently in use A specific channel Regulatory Domain displays the access point s Regulatory Domain Only stations with correct Network name SSID can connect If this check box is Cleared t...

Page 172: ...SpeedTouch wireless network will no longer be visible in the list of available networks of your wireless client Interoperability Mode By default the interoperability mode allows for both IEEE 802 11g complaint wireless clients and IEEE 802 11b compliant wireless clients to connect to the SpeedTouch To change the interoperability mode 1 Select the desired option 802 11g and b to allow both IEEE802 ...

Page 173: ...edTouch and the clients by sharing a pre defined 64 bit or 128 bit Network key level 2 WPA PSK is the highest form of security available but make sure that your wireless client and client manager are compatible with it By default the SpeedTouch access point uses security level 0 implying that no encryption is used for wireless networking In case security level 1 or 2 is active select Security Leve...

Page 174: ...which has 3 improvements regarding to WEP Authentication via a 4 way handshake to check whether the Pre Shared Keys PSKs are the same Stronger encryption types Temporal Key Integrity Protocol TKIP default Instead of using a fixed WEP key TKIP uses in pairs temporary session keys which are derived from the PSK during the 4 way handshake For each packet it uses a different key TKIP also provides a m...

Page 175: ...dTouch or on the Access Control tab Pressing this button triggers the SpeedTouch to unlock the access control list for a time frame of one minute after which the access control list is locked again Any wireless clients trying to associate with the SpeedTouch having the correct wireless settings Network Name and if required Network key will be added to the table Per wireless client present in the a...

Page 176: ...ly deny the station to associate with the SpeedTouch 5 Click Apply to immediately apply your changes Networks The Networks tab allows you to Scan for Other Networks Enable WDS connections with other wireless devices Other Networks The Other Networks tab allows you to overview the wireless networks in your neighbourhood To scan for other wireless networks 1 Click Scan 2 The SpeedTouch scans all cha...

Page 177: ... of the following topics Click To Expressions view configure interface or IP or Service related expressions For more information see 5 3 2 Expressions on page 125 Policy view configure the SpeedTouch Stateful Inspection Firewall security level and its policies Log view log messages for SpeedTouch firewall events ...

Page 178: ...known applications DNS HTTP HTTPS FTP TELNET IMAP POP and block all incoming connections Game Application sharing is not allowed by the firewall Medium Use this Security Level to allow all outgoing connections except Windows protocols Netbios RPC SMB and block all incoming connections Game and Application sharing is allowed by the firewall Standard Use this Security Level to allow all outgoing con...

Page 179: ...lications like Peer to Peer file sharing PtoP Internet Games Web serving FTP serving WebCams IRC DDC and Instant Messaging such as AIM ICQ Yahoo and MS Messenger Proxying allowed Select this check box to allow the firewall to act as a proxy server A proxy server acts both as a server and a client for the purpose of making requests on behalf of other clients Requests are serviced internally or by p...

Page 180: ...1 _dmz1 Source IP Select The name of the source IP expression Destination Interface The destination interface e g _lan1 _wan1 _dmz1 Destination IP Select The name of the destination IP expression Service The service or protocol e g smtp http telnet Flags Enable To enable the rule or not Log To log the actions concerning this rule You can see the result in Firewall Log Action Accept The connection ...

Page 181: ...4 v1 0 171 5 6 2 Log Introduction The Log page allows you to view log messages when a firewall rule is hit the firewall is enabled or disabled the firewall level is changed a firewall rule is created a firewall rule is modified a firewall rule is deleted ...

Page 182: ...view The VPN menu consists of following items Click To LAN to LAN connect your LAN with a remote LAN through an IPSec VPN tunnel VPN Client set up a connection between the SpeedTouch and a remote VPN server VPN Server set up the SpeedTouch as a VPN server Certificates manage your authentication certificates Advanced configure VPN tunnels with a component oriented environment Debug see status stati...

Page 183: ...edTouch only needs to have responder capability By not specifying the Remote Gateway Address you allow additional sites to join the VPN without requiring any modification to the configuration of your SpeedTouch Configuration procedure Perform the following steps to configure your LAN to LAN application 1 On the LAN to LAN web page select either Remote Gateway Address Known or Remote Gateway Addres...

Page 184: ...ns in Initiator mode This means that the VPN client takes the initiative to set up a secure connection to a remote VPN server Configuration procedure Perform the following steps to configure your VPN client 1 Select VPN VPN Client 2 Fill out the various parameter fields in the VPN Client web page 3 Select the IKE Authentication method Either Preshared Key or Certificate Authentication can be selec...

Page 185: ...o the VPN The SpeedTouch can establish a secure connection with any Remote Gateway that meets the VPN settings regardless its location in the public network The use of the Extended Authentication protocol can optionally be configured In this case a list of authorized users is composed and stored in the SpeedTouch Configuration procedure Perform the following steps to configure your VPN server 1 Se...

Page 186: ...es Secure Storage page This page shows the list of certificates stored in the SpeedTouch Request Import page This page allows importing new certificates from a Certificate Authority into the SpeedTouch CRL page This page allows managing the use of Certificates Revocation Lists CEP page This page allows configuring the Certificates Enrollment Protocol settings ...

Page 187: ...uired to set up an IKE Security Association to this Security Gateway A Connection represents the IPSec connection and all its associated parameters All parameters of an IPSec configuration can be adjusted so the functionality of these web pages corresponds to the Command Line Interface CLI Choices have to be made in accordance to the data known to the user and the VPN layout It is highly recommend...

Page 188: ...ws the amount of traffic carried over the IKE Security Association Phase 1 and the IPSec Security Association s Phase 2 Logging page On the Logging page you can monitor the received and transmitted messages of the IKE and IPSec negotiations Proceed as follows 1 Browse to Expert mode VPN Debug Logging 2 Select the desired level of Trace Detail Select high to see the most detailed level of logging 3...

Page 189: ...tion blocking sessions screening sessions logging The added value of a PBX is now available in a SIP enabled network Enabling the SIP PBX To enable the SIP PBX 1 On the SpeedTouch menu click SpeedTouch Services 2 Select the SIP PBX registrar entry 3 Under Service properties click Service enabled 4 Optionally you can change the SIP port in the Internal TCP UDP port box Overview The SIP PBX menu con...

Page 190: ...rom the SpeedTouch web interface This is a useful tool to supervise the SIP communications involving your LAN User Agents The Syslog Settings tab allows you to log SIP call information to the syslog Call Screening To increase SIP communications security it may make sense to block sessions originating from either side of the network that are associated with particular users or groups on account of ...

Page 191: ...VPN16 4 VPN16 1 Integrated VPN IPSec capability SpeedTouch 608 WL 620 ISDN Integrated ISDN Modem full capacity SpeedTouch 608 WL 620 SIP256 SIP Multi Media PBX capability SpeedTouch 620 How to activate a Software module Proceed as follows to activate a software module 1 Browse to the SpeedTouch web pages at http 192 168 1 254 The SpeedTouch Home Page appears 2 Select Expert Mode SpeedTouch Add On ...

Page 192: ...quest a new software Key 4 Select the Request Software Key button to proceed As a result you will get a text box with the key in it 5 Copy the key and past it into the Software Activation Code Input Display and click the Add button 6 Click the Restart button to restart the SpeedTouch and activate the software module A progress bar will show indicating the time needed ...

Page 193: ...he SpeedTouch or its service can never be corrupted or lost System software upgrades Depending on the Operating System your computer is running you can upgrade your SpeedTouch via The SpeedTouch Update page all Operating Systems see 7 1 Embedded Update Page on page 184 for more information The SpeedTouch Upgrade Wizard Microsoft Windows or Mac OS X see 7 2 Upgrade Wizard on Setup CD on page 186 fo...

Page 194: ...d web pages 2 In the menu select SpeedTouch Update 3 Choose a way to update your SpeedTouch This can be done From a remote server From a PC From a remote server You can upgrade your SpeedTouch from a remote server 1 Click Check For Updates 2 In the Pick a task list click Update software 3 The new software is retrieved and stored on the SpeedTouch remembering the current configuration and connectio...

Page 195: ...ile and click Open 3 The new software is retrieved and stored on the SpeedTouch without being activated passive build 3 To load the new software 1 Click Proceed 2 Your SpeedTouch performs firmware switch over active build will become passive and vice versa and automatically restarts and restores the current configuration and connections 4 At the end of the procedure the SpeedTouch returns to the H...

Page 196: ...pop up automatically 2 Optionally in the Choose Language window select the language of your choice and click OK 3 The SpeedTouch safety instructions will be displayed in your default web browser Close the window 4 Select I have read and I fully understand the Safety Instructions and Regularity Information and click Continue 5 In the SpeedTouch CD Menu click SpeedTouch Maintenance 6 Click Upgrade M...

Page 197: ...rd should find your SpeedTouch device on the local network This is indicated by the following window If more than one device is found a list of available devices will be provided If this is the case select your SpeedTouch device and click Next 5 Enter your SpeedTouch security User name and Password If you accepted this License Agreement in a previous upgrade this window will not be shown If the wi...

Page 198: ...inish to close the wizard System software downgrade Via the identical procedure it is also possible although not recommended to downgrade the SpeedTouch by uploading an older system software than the current running version However be aware that functionality added by previous upgrades may be lost that system password settings may be lost as well as end to end connectivity and other configuration ...

Page 199: ... factory default settings Therefore prior to performing an upgrade of the system software it is recommended to back up the SpeedTouch configuration See Accessing the Backup Restore page on page 58 on how to make a backup Before you start You need a third party BOOTP TFTP server installed on the computer from which you want to perform the SpeedTouch system software upgrade Make sure That the SpeedT...

Page 200: ...OTP server you might also need to specify its MAC address can be found on the web pages see 4 3 1 Information on page 54 4 Start a telnet session as described in Telnet session on page 14 5 Put the SpeedTouch in BOOTP with the following CLI command 6 The SpeedTouch reboots and starts sending BOOTP requests 7 The BOOTP server will reply to the BOOTP requests and will perform the required operations...

Page 201: ...utions for problems you may encounter while installing or configuring your SpeedTouch If the suggestions do not resolve the problem look at the support pages on http www speedtouch com support or contact your service provider For Internet connection troubleshooting refer to the provided Installation and Setup Guide ...

Page 202: ... via the rocker switch on the back panel SpeedTouch unreachable In case your SpeedTouch is unreachable due to misconfiguration you might consider a hardware reset to factory defaults as described in 8 3 Reset to Factory Defaults on page 199 Poor SpeedTouch performance Make sure that the SpeedTouch is installed and configured as instructed in the Installation and Setup Guide or as instructed by the...

Page 203: ...v1 0 193 8 1 1 Wired Ethernet Troubleshooting LAN LED does not light up Make sure that The LAN cable is securely connected to the 10 100Base T port You are using the correct cable type for your Ethernet equipment that is UTP CAT5 with RJ 45 connectors ...

Page 204: ...e WLAN client is configured for the correct wireless settings SSID security settings Check the signal strength indicated by the wireless client manager If the signal is low try to place the SpeedTouch or to direct the SpeedTouch s antenna for optimal performance Make sure that the wireless client adapter is enabled message like radio on Poor wireless connectivity or reach Check following Choose au...

Page 205: ...onnectivity Try again later Could not install the new software version If problem persists contact your helpdesk An internal error switchover from active to passive build failed out of disk space occurred Try again later If the problem persists contact your helpdesk Message Due to Failed to upload new software version from your computer If problem persists contact your helpdesk Loss of connectivit...

Page 206: ...has a valid IP address To check this in MS Windows 1 In the Windows task bar click Start 2 Select Run 3 Type cmd in the Open field 4 Click OK A black window will appear with a flashing cursor 5 Type ipconfig and then press Enter 6 Verify that your computer has a valid IP address that is any address but 0 0 0 0 No dedicated firewall device or router is placed between your PC and the SpeedTouch No p...

Page 207: ... you are running Microsoft Windows XP it is recommended to add the UPnP component to your system Proceed as follows 1 On the Start menu click Settings Control Panel 2 The Control Panel window appears Click Add or Remove Programs 3 In the Add or Remove Programs window appears click Add Remove Windows Components 4 In the Windows Components Wizard select Networking Services in the Components list and...

Page 208: ...tart 2 Select Settings Control Panel Add or Remove Programs 3 In the Add or Remove Programs window click Add Remove Windows Components 4 The Windows Components Wizard appears Select Networking Services in the Components list and click Details 5 In the Networking Services window Select Internet Gateway Device Discovery and Control Client and click OK 6 Click Next to start the installation and follo...

Page 209: ...st time Wireless Clients on page 24 Hardware reset Proceed as follows 1 Make sure the SpeedTouch is powered on 2 Use a pen or an unfolded paperclip to push the recessed reset button on the back panel The reset button is marked with a red circle Keep it pushed until the power LED lights red this will take about 7 seconds 3 Release the reset button 4 The SpeedTouch restarts Be aware that a reset to ...

Page 210: ... 2 In the menu select SpeedTouch Configuration 3 In the Pick a task list click Reset my SpeedTouch to default settings 4 The SpeedTouch restarts 5 The SpeedTouch returns to the SpeedTouch Home page unless the IP address of your computer is not in the same subnet as the default IP address of the SpeedTouch being 192 168 1 254 ...

Page 211: ......

Page 212: ...Need more help Additional help is available online at www speedtouch com THOMSON 2005 All rights reserved E DOC CTC 20050429 0104 v1 0 ...

Reviews:

No comments

Related manuals for SpeedTouch 605

3xLogic V250 Quick Start Manual preview
V250
Brand: 3xLogic Pages: 2
Patton electronics 2888 Getting Started Manual preview
2888
Brand: Patton electronics Pages: 51
Zhone 6211 Product Manual preview
6211
Brand: Zhone Pages: 7
Zhone 6211 Quick Installation Instructions preview
6211
Brand: Zhone Pages: 1
Javad TRIUMPH-3NR User Manual preview
TRIUMPH-3NR
Brand: Javad Pages: 35
Allied Telesis AR725 Quick Start Manual preview
AR725
Brand: Allied Telesis Pages: 22
SMC Networks Barricade SMC7901WBRA2 Installation Manual preview
Barricade SMC7901WBRA2
Brand: SMC Networks Pages: 2
Netis DL4305D Quick Installation Manual preview
DL4305D
Brand: Netis Pages: 16
LevelOne FSW-1641TX User Manual preview
FSW-1641TX
Brand: LevelOne Pages: 26
Netequalizer NE3000-10 Quick Start Manual preview
NE3000-10
Brand: Netequalizer Pages: 14
Ceragon Fibe-Air IP-10G Installation Manual preview
Fibe-Air IP-10G
Brand: Ceragon Pages: 71
Enterasys GPIM-08 Reference Sheet preview
GPIM-08
Brand: Enterasys Pages: 2
DELTA GROUP LOYTEC LIP‑3ECTC Installation Instructions preview
LOYTEC LIP‑3ECTC
Brand: DELTA GROUP Pages: 4
Patton electronics OnSite 9100 Quick Start Manual preview
OnSite 9100
Brand: Patton electronics Pages: 8
NCD Gen3 Ethernet Module Quick Start Manual preview
Gen3 Ethernet Module
Brand: NCD Pages: 18
3Com Router 3033 Configuration Manual preview
Router 3033
Brand: 3Com Pages: 63
Martin 90523000 User Manual preview
90523000
Brand: Martin Pages: 41
Weidmüller IE-SW-AL18M-16TX-2GC Hardware Installation Manual preview
IE-SW-AL18M-16TX-2GC
Brand: Weidmüller Pages: 2

Brands by name

Popular brands

Load more brands