NETGEAR DG834v2 - ADSL Modem Router Reference Manual Download

Page: 1 / 143

SM-DG834NA-1
August 2003

NETGEAR

, Inc.

4500 Great America Parkway
Santa Clara, CA 95054 USA
Phone 1-888-NETGEAR

Reference Manual for the
Model DG834 ADSL
Firewall Router

Summary of Contents for DG834v2 - ADSL Modem Router

Page 1: ...SM DG834NA 1 August 2003 NETGEAR Inc 4500 Great America Parkway Santa Clara CA 95054 USA Phone 1 888 NETGEAR Reference Manual for the Model DG834 ADSL Firewall Router ...

Page 2: ...cause harmful interference to radio communications However there is no guarantee that interference will not occur in a particular installation If this equipment does cause harmful interference to radio or television reception which can be determined by turning the equipment off and on the user is encouraged to try to correct the interference by one or more of the following measures Reorient or rel...

Page 3: ...ictions Please refer to the notes in the operating instructions Federal Office for Telecommunications Approvals has been notified of the placing of this equipment on the market and has been granted the right to test the series for compliance with the regulations Voluntary Control Council for Interference VCCI Statement This equipment is in the second category information equipment to be used in a ...

Page 4: ...iv ...

Page 5: ...llation and Management 2 4 What s in the Box 2 5 The Router s Front Panel 2 6 The Router s Rear Panel 2 7 Chapter 3 Connecting the Router to the Internet What You Need Before You Begin 3 1 ADSL Microfilter Requirements 3 1 ADSL Microfilter 3 1 ADSL Microfilter with Built In Splitter 3 2 Ethernet Cabling Requirements 3 2 Computer Hardware Requirements 3 2 LAN Configuration Requirements 3 2 Internet...

Page 6: ... Internet Connection Does Note Require A Login 3 18 ADSL Settings 3 19 Chapter 4 Protecting Your Network Protecting Access to Your DG834 ADSL Firewall Router 4 1 How to Change the Built In Password 4 1 Changing the Administrator Login Timeout 4 2 Configuring Basic Firewall Services 4 2 Blocking Keywords Sites and Services 4 3 How to Block Keywords and Sites 4 3 Firewall Rules 4 5 Inbound Rules Por...

Page 7: ...lecting What Information to Log 5 11 Saving Log Files on a Server 5 12 Examples of Log Messages 5 12 Activation and Administration 5 12 Dropped Packets 5 12 Enabling Security Event E mail Notification 5 13 Running Diagnostic Utilities and Rebooting the Router 5 14 Enabling Remote Management 5 14 Configuring Remote Management 5 15 Chapter 6 Advanced Configuration Configuring Advanced Security 6 1 S...

Page 8: ...DSL link 7 4 WAN LED Blinking Yellow 7 4 WAN LED Off 7 4 Obtaining a WAN IP Address 7 5 Troubleshooting PPPoE or PPPoA 7 6 Troubleshooting Internet Browsing 7 6 Troubleshooting a TCP IP Network Using the Ping Utility 7 7 Testing the LAN Path to Your Router 7 7 Testing the Path from Your Computer to a Remote Device 7 8 Restoring the Default Configuration and Password 7 9 Using the Reset button 7 9 ...

Page 9: ...ing Windows 95 98 and Me for TCP IP Networking C 2 Installing or Verifying Windows Networking Components C 2 Enabling DHCP to Automatically Configure TCP IP Settings in Windows 95B 98 and Me C 4 Selecting the Windows Internet Access Method C 6 Verifying TCP IP Properties C 6 Configuring Windows NT4 2000 or XP for IP Networking C 7 Installing or Verifying Windows Networking Components C 7 DHCP Conf...

Page 10: ...t C 18 Are Login Protocols Used C 18 What Is Your Configuration Information C 18 Obtaining ISP Configuration Information for Windows Computers C 19 Obtaining ISP Configuration Information for Macintosh Computers C 20 Restarting the Network C 21 Glossary Index ...

Page 11: ...is written for the DG834 router according to these specifications Table 1 Typographical conventions italics Emphasis books CDs URL names bold times roman User input courier font Screen text file and server names extensions commands IP addresses Note This format is used to highlight information of importance or special interest Table 1 1 Manual Specifications Product Version DG834 ADSL Firewall Rou...

Page 12: ...ate print pages and more The Show in Contents button locates the current topic in the Contents tab Previous Next buttons display the previous or next topic The PDF button links to a PDF version of the full manual The Print button prints the current topic Using this button when a step by step procedure is displayed will send the entire procedure to your printer you do not have to worry about specif...

Page 13: ... right of any page Click PDF of This Chapter link at the top right of any page in the chapter you want to print A new browser window opens showing the PDF version of the chapter you were viewing Click the print icon in the upper left of the window Tip If your printer supports printing two pages on a single sheet of paper you can save paper an printer ink by selecting this feature Printing the Full...

Page 14: ...Reference Manual for the Model DG834 ADSL Firewall Router 1 4 About This Guide ...

Page 15: ...gh the built in ADSL modem that otherwise is used by a single computer With minimum setup you can install and use the router within minutes The DG834 router provides multiple Web content filtering options plus e mail browsing activity reporting and instant alerts Parents and network administrators can establish restricted access policies based on time of day Web site addresses and address keywords...

Page 16: ...h as Ping of Death SYN Flood LAND Attack and IP Spoofing Blocks unwanted traffic from the Internet to your LAN Blocks access from your LAN to Internet locations or services that you specify as off limits Logs security incidents The DG834 will log security events such as blocked incoming traffic port scans attacks and administrator logins You can configure the router to email the log to you at spec...

Page 17: ...Ability to Enable or Disable IP Address Sharing by NAT The DG834 allows several networked PCs to share an Internet account using only a single IP address which may be statically or dynamically assigned by your Internet service provider ISP This technique known as Network Address Translation NAT allows the use of an inexpensive single user ISP account This feature can also be turned off completely ...

Page 18: ...ters provide broadband users at home and small businesses with a seamless way to participate in online games videoconferencing and other peer to peer services Easy Installation and Management You can install configure and operate the DG834 within minutes after connecting it to the network The following features simplify installation and management tasks Browser based management Browser based confi...

Page 19: ...Ds provide an easy way to monitor its status and activity Flash erasable programmable read only memory EPROM for firmware upgrade What s in the Box The product package should contain the following items DG834 ADSL Firewall Router AC power adapter varies by region Category 5 Cat 5 Ethernet cable Telephone cable Microfilters quantity and type vary by region ADSL Firewall Router Resource CD including...

Page 20: ... supplied to the router Power is not supplied to the router Test On Off The system is initializing The system is ready and running Internet Blink Amber On Green Blink Green Indicates ADSL training The Internet port has detected a link with an attached device Data is being transmitted or received by the Internet port LAN On Green Blink Green On Amber Blink Amber Off The Local port has detected link...

Page 21: ...all Router Figure 2 2 contains port connections Figure 2 2 DG834 Rear Panel Viewed from left to right the rear panel contains the following elements AC power adapter outlet Four Local Ethernet RJ 45 ports for connecting the router to the local computers Factory Default Reset push button ADSL port for connecting the router to an ADSL line ...

Page 22: ...Reference Manual for the Model DG834 ADSL Firewall Router 2 8 Introduction ...

Page 23: ...The router connected to an ADSL line and a computer properly connected to the router as explained below 2 Active Internet service such as that provided by an ADSL account 3 The Internet Service Provider ISP configuration information for your DSL account ADSL Microfilter Requirements ADSL technology uses the same wires as your telephone service However ADSL adds signals to the telephone lines which...

Page 24: ...wall outlet which must provide connectivity for both the DG834 and telephone equipment Ethernet Cabling Requirements The DG834 router connects to your Ethernet LAN via twisted pair cables If the computer will connect to your network at 100 Mbps you must use a Category 5 CAT5 cable such as the one provided with your router Computer Hardware Requirements To use the DG834 router on your network each ...

Page 25: ...t If you cannot locate this information you can ask your ISP to provide it or you can try one of the options below If you have a computer already connected using the active Internet access account you can gather the configuration information from that computer For Windows 95 98 ME open the Network control panel select the TCP IP entry for the Ethernet adapter and click Properties For Windows 2000 ...

Page 26: ...SPs If you use a login name and password then fill in the following Login Name ______________________________ Password ____________________________ Service Name _____________________________ Fixed or Static IP Address If you have a static IP address record the following information For example 169 254 141 148 could be a valid IP address Fixed or Static Internet IP Address ______ ______ ______ ____...

Page 27: ...et Follow the steps below to connect your router to your network Before you begin locate the ADSL configuration information from your Internet Service Provider ISP 1 CONNECT THE DG834 TO THE ADSL LINE a You need to install a filter on every telephone or device that shares the same phone number as your ADSL router Select the filter that came with your router Figure 3 3 ADSL microfilters Note If you...

Page 28: ...CONNECT THE DG834 TO THE INTERNET Note Improperly connecting a filter to your DG834 router will block your ADSL connection a Turn off your computer b Connect the ADSL port of the DG834 to the ADSL port B of the two line filter Figure 3 5 Connecting DG834 router to an ADSL microfilter and phone c Connect the Ethernet cable C from your DG834 s LAN port to the Ethernet adapter in your computer Figure...

Page 29: ...nk will accommodate either type of cable to make the right connection d Connect the power adapter to the router and plug it in to a power outlet Verify the following The power light is lit after turning on the router The ADSL link light is solid green indicating a link has been established to the ADSL network e Now turn on your computer If software usually logs you in to your Internet connection d...

Page 30: ... 192 168 0 1 in the address field of Internet Explorer or Netscape Navigator Figure 3 7 Log in to the router A login window opens as shown below Figure 3 8 Login window b When prompted enter admin for the user name and password for the password both in lower case letters After logging in you will see the menu below Figure 3 9 Setup Wizard ...

Page 31: ...ction type 1 If your router has not yet been configured the Setup Wizard shown in Figure 3 9 should launch automatically Note If instead of the Setup Wizard menu the main menu of the router s Configuration Manager as shown in Figure 3 15 appears click the Setup Wizard link in the upper left to bring up this menu 2 You must select a country and language Language choices are English French German an...

Page 32: ...he default values Incorrect VPI or VCI settings will prevent you from connecting to the Internet To change these settings click the ADSL Settings link on the main menu See ADSL Settings on page 3 19 for more details The procedures for filling in the configuration page for each type of connection follow below Wizard Detected PPPoE Login Account Setup If the Setup Wizard determines that your Interne...

Page 33: ...ted to the PPPoA page shown in Figure 3 10 below Figure 3 11 Setup Wizard menu for PPPoA login accounts Enter your login user name and password These fields are case sensitive Wizard Detected Dynamic IP Account Setup If the Setup Wizard determines that your Internet service account uses Dynamic IP assignment you will be directed to the page shown in Figure 3 12 below Figure 3 12 Setup Wizard menu ...

Page 34: ... by your ISP You need the configuration parameters from your ISP you recorded in Record Your Internet Connection Information on page 3 4 2 Enter the IP address of your ISP s Primary DNS Server If a Secondary DNS Server address is available enter it also DNS servers are required to perform the function of translating an Internet name such as www netgear com to a numeric IP address For a fixed IP ad...

Page 35: ...le to detect the gateway IP address but you still need to provide the router IP address 3 Enter your assigned IP Address Subnet Mask and the IP Address of your ISP s gateway router This information should have been provided to you by your ISP You need the configuration parameters from your ISP you recorded in Record Your Internet Connection Information on page 3 4 4 Enter the IP address of your IS...

Page 36: ...ooting Your router is now configured to provide Internet access for your network Your router automatically connects to the Internet when one of your computers requires access It is not necessary to run a dialer or login application such as Dial Up Networking or Enternet to connect log in or disconnect These functions are performed by the router as needed To access the Internet from any computer co...

Page 37: ...scribed in the previous section Figure 3 15 Basic Settings menu How to Perform Manual Configuration We recommend that you start the manual configuration from the Setup Wizard 1 Select your country and language Language choices are English French German and Italian After you change the language the remaining setup screens change to the language of your choice 2 Select No to manually configure your ...

Page 38: ...et When you start an Internet application your router automatically logs you in 2 Choose PPPoe for the encapsulation method your ISP uses 3 Enter the login name frequently the email address your ISP provided password and service name if required 4 If you want to change the login timeout enter a new value in minutes This determines how long the router keeps the Internet connection active after ther...

Page 39: ...zero means never log out 5 Internet IP Address Select Get Dynamically from ISP if your ISP uses DHCP to assign your IP address Your ISP will automatically assign these addresses Select Use Static IP Address if your ISP has assigned you a permanent fixed static IP address Enter the IP address that your ISP assigned 6 The DNS server is used to look up site addresses based on their names Select Get A...

Page 40: ...ses DHCP to assign your IP address Your ISP will automatically assign this address If you know that your ISP does not automatically transmit DNS addresses to the router during login select Use these DNS servers and enter the IP address of your ISP s Primary DNS Server If a Secondary DNS Server address is available enter it also A DNS server is a host on the Internet that translates Internet names ...

Page 41: ...se this MAC address and enter it 7 Click Apply to save your settings 8 Click the Test button to test your Internet connection If the NETGEAR Web site does not appear within one minute refer to Chapter 7 Troubleshooting ADSL Settings The default settings of your DG834 ADSL Firewall Router will work fine for most ISPs However some ISPs use a specific Multiplexing Method or a Virtual Circuit Number f...

Page 42: ...Reference Manual for the Model DG834 ADSL Firewall Router 3 20 Connecting the Router to the Internet ...

Page 43: ...ter s password and the amount of time for the administrator s login timeout Note The user name and password are not the same as any user name or password your may use to log in to your Internet connection NETGEAR recommends that you change this password to a more secure password The ideal password should contain no dictionary words from any language and should be a mixture of both upper and lower ...

Page 44: ... have backed up the router settings previously you should do a new backup so that the saved settings file includes the new password Changing the Administrator Login Timeout For security the administrator s login to the router configuration will timeout after a period of inactivity To change the login timeout period 1 In the Set Password menu type a number in Administrator login times out field The...

Page 45: ...ess from your LAN to Internet locations or services that you specify as off limits Denial of Service DoS protection Automatically detects and thwarts Denial of Service DoS attacks such as Ping of Death SYN Flood LAND Attack and IP Spoofing Blocks unwanted traffic from the Internet to your LAN The section below explains how to configure your router to perform these functions How to Block Keywords a...

Page 46: ...low If the keyword XXX is specified the URL http www badstuff com xxx html is blocked If the keyword com is specified only Web sites with other domain suffixes such as edu or gov can be viewed Enter the keyword to block all Internet browsing access Up to 32 entries are supported in the Keyword list 5 To delete a keyword or domain select it from the list click Delete Keyword then click Apply 6 To s...

Page 47: ...nd Block all access from outside except responses to requests from the LAN side Outbound Allow all access from the LAN side to the outside You can define additional rules that will specify exceptions to the default rules By adding custom rules you can block or allow access based on the service or application source or destination IP addresses and time of day You can also choose to log traffic that...

Page 48: ... any of your local computers However by defining an inbound rule you can make a local server for example a Web server or game server visible and available to the Internet The rule tells the router to direct inbound traffic for a particular service to one local server based on the destination port number This is also known as port forwarding Remember that allowing inbound services opens holes in yo...

Page 49: ...he parameters are Service From this list select the application or service to be allowed or blocked The list already displays many common services but you are not limited to these choices Use the Services menu to add any additional services or applications that do not already appear Action Choose how you want this type of traffic to be handled You can block or allow always or you can choose to blo...

Page 50: ... traffic for this service type will be logged Match traffic of this type which matches the parameters and action will be logged Not match traffic of this type which does not match the parameters and action will be logged Inbound Rule Example Allowing Videoconferencing If you want to allow incoming videoconferencing to be initiated from a restricted range of outside IP addresses such as from a bran...

Page 51: ...computer s IP address constant Local computers must access the local server using the computer s local LAN address 192 168 0 11 in the example in Figure 4 6 above Attempts by local computers to access the server using the external WAN IP address will fail Outbound Rules Service Blocking The DG834 allows you to block the use of certain Internet services by computers on your network This is called s...

Page 52: ...e router log any attempt to use Instant Messenger during that blocked period Figure 4 7 Rule example Blocking Instant Messenger The parameters are Service From this list select the application or service to be allowed or blocked The list already displays many common services but you are not limited to these choices Use the Add Custom Service feature to add any additional services or applications t...

Page 53: ...e which packets are covered by the rule based on their destination WAN IP address Select the desired option Any all IP addresses are covered by this rule Address range if this option is selected you must enter the Start and Finish fields Single address enter the required address in the Start fields Log You can select whether the traffic will be logged The choices are Never no log entries will be m...

Page 54: ... position in the table Services Services are functions performed by server computers at the request of client computers For example Web servers serve Web pages time servers serve time and date information and game hosts serve data about other players moves When a computer on the Internet sends a request for service to a server computer the requested service is identified by a service or port numbe...

Page 55: ...f admin default password of password or using whatever Password and LAN address you have chosen for the router 2 Select the Services link of the Security menu to display the Services menu shown in Figure 4 9 Figure 4 9 Services menu To create a new Service click the Add Custom Service button To edit an existing Service select its button on the left side of the table and click Edit Service To delet...

Page 56: ... must specify your Time Zone 1 Log in to the router at its default LAN address of http 192 168 0 1 with its default User Name of admin default password of password or using whatever Password and LAN address you have chosen for the router 2 Select the Schedule link of the Security menu to display menu shown below Figure 4 11 Schedule Services menu 3 Select your Time Zone This setting will be used f...

Page 57: ...occurs or when access is not restricted 1 Log in to the router at its default LAN address of http 192 168 0 1 with its default User Name of admin default password of password or using whatever Password and LAN address you have chosen for the router 2 Select the Schedule link of the Security menu to display menu shown above in the Schedule Services menu 3 To block Internet services based on a sched...

Page 58: ...Reference Manual for the Model DG834 ADSL Firewall Router 4 16 Protecting Your Network ...

Page 59: ...stored or reverted to factory default settings The procedures below explain how to do these tasks How to Back Up the Configuration to a File 1 Log in to the router at its default LAN address of http 192 168 0 1 with its default User Name of admin default password of password or using whatever User Name Password and LAN address you have chosen for the router 2 From the Maintenance heading of the Ma...

Page 60: ...on It is sometimes desirable to restore the router to the factory default settings This can be done by using the Erase function 1 To erase the configuration from the Maintenance menu Settings Backup link click the Erase button on the screen 2 The router will then reboot automatically After an erase the router s password will be password the LAN IP address will be 192 168 0 1 and the router s DHCP ...

Page 61: ... admin default password of password or using whatever User Name Password and LAN address you have chosen for the router 3 From the Main Menu of the browser interface under the Maintenance heading select the Router Upgrade heading to display the menu shown in Figure 5 2 Figure 5 2 Router Upgrade menu 4 In the Router Upgrade menu click the Browse to locate the binary BIN or IMG upgrade file 5 Click ...

Page 62: ...4 provides a variety of status and usage information which is discussed below Viewing Router Status and Usage Statistics From the Main Menu under Maintenance select Router Status to view the screen in Figure 5 3 Figure 5 3 Router Status screen The Router Status menu provides a limited amount of status and usage information ...

Page 63: ...in Name Server DNS This field displays the DNS Server IP addresses being used by the router These addresses are usually obtained dynamically from the ISP LAN Port These parameters apply to the Local ADSL port of the router MAC Address This field displays the Ethernet MAC address being used by the Local LAN port of the router IP Address This field displays the IP address being used by the Local LAN...

Page 64: ...t the screen displays Status The link status of the port TxPkts The number of packets transmitted on this port since reset or manual clear RxPkts The number of packets received on this port since reset or manual clear Collisions The number of collisions on this port since reset or manual clear Tx B s The current line utilization percentage of current bandwidth used on this port Rx B s The average ...

Page 65: ...stics Table 5 1 Connection Status Fields for Dynamic IP Field Description IP Address The IP Address assigned to the WAN port by the ADSL Internet Service Provider Subnet Mask Then Network Mask assigned to the WAN port by the ADSL Internet Service Provider Default Gateway Then default gateway router assigned to the WAN port by the ADSL Internet Service Provider DHCP Server The DHCP server s IP addr...

Page 66: ...he following statistics Table 5 1 Connection Status Fields for PPPoA Field Description Connection Time The time elapsed since the last connection to the Internet via the ADSL port Connection Method The method the ADSL port acquired its TCP IP configuration Negotiation ON or OFF Authentication ON or OFF IP Address The IP Address assigned to the WAN port by the ADSL Internet Service Provider Network...

Page 67: ...e Ethernet MAC address Note that if the router is rebooted the table data is lost until the router rediscovers the devices To force the router to look for attached devices click the Refresh button Viewing Selecting and Saving Logged Information The router will log security related events such as denied incoming service requests hacker probes and administrator logins If you enabled content filterin...

Page 68: ...Reference Manual for the Model DG834 ADSL Firewall Router 5 10 Managing Your Network An example of the logs file is shown below Figure 5 8 Security Logs menu ...

Page 69: ...ate and Time The date and time the log entry was recorded Description or Action The type of event and what action was taken if any Source IP The IP address of the initiating device for this log entry Source port and interface The service port number of the initiating device and whether it originated from the LAN or WAN Destination The name or IP address of the destination device or Web site Destin...

Page 70: ... IP 192 168 0 2 This entry shows an administrator logging in and out from IP address 192 168 0 2 Tue 2002 05 21 19 00 06 Login screen timed out IP 192 168 0 2 This entry shows a time out of the administrator login Wed 2002 05 22 22 00 19 Log emailed This entry shows when the log was emailed Dropped Packets Wed 2002 05 22 07 15 15 TCP packet dropped Source 64 12 47 28 4787 WAN Destination 134 177 0...

Page 71: ...alert messages will not be sent via e mail Send alert immediately Select a box if you would like immediate notification of a significant security event such as a known attack port scan or attempted access to a blocked site Send logs according to this schedule Specifies how often to send the logs Hourly Daily Weekly or When Full Day for sending log Specifies which day of the week to send the log Re...

Page 72: ...fy that the DNS server configuration is working Display the Routing Table to identify what other routers the router is communicating with Reboot the router to enable new network configurations to take effect or to clear problems with the router s network connection From the Main Menu of the browser interface under the Maintenance heading select the Router Diagnostics heading to display the menu sh...

Page 73: ...hat will be allowed access 5 Specify the Port Number that will be used for accessing the management interface Web browser access normally uses the standard HTTP service port 80 For greater security you can change the remote management Web interface to a custom port by entering that number in the box provided Choose a number between 1024 and 65535 but do not use the number of any common service por...

Page 74: ...Reference Manual for the Model DG834 ADSL Firewall Router 5 16 Managing Your Network ...

Page 75: ...Size The flexibility of configuring your LAN TCP IP settings Using the Router as a DHCP Server Configuring Dynamic DNS Configuring Static Routes These features are discussed below Setting Up A Default DMZ Server The Default DMZ Server feature is helpful when using some online games and videoconferencing applications that are incompatible with NAT The router is programmed to recognize some of these...

Page 76: ...s 1 Log in to the router at its default LAN address of http 192 168 0 1 with its default User Name of admin default password of password or using whatever Password and LAN address you have chosen for the router 2 From the Main Menu under Advanced click the WAN Setup link to view the page shown in Figure 6 1 Figure 6 1 WAN Setup Page 3 Click Default DMZ Server 4 Type the IP address for that server ...

Page 77: ...respond to a ping from the Internet select the Respond to Ping on Internet WAN Port check box This should only be used as a diagnostic tool since it allows your router to be discovered Do not select this box unless you have a specific reason to do so MTU Size The normal MTU Maximum Transmit Unit value for most Ethernet networks is 1500 Bytes or 1492 Bytes for PPPoE connections For some ISPs you ma...

Page 78: ...Subnet Mask This is the LAN Subnet Mask of the router Combined with the IP address the IP Subnet Mask allows a device to know which other addresses are local to it and which must be reached through a gateway or router RIP Direction RIP Router Information Protocol allows a router to exchange routing information with other routers The RIP Direction selection controls how the Router sends and receive...

Page 79: ...d to avoid duplicate addresses on the LAN For most applications the default DHCP and TCP IP settings of the router are satisfactory See IP Configuration by DHCP on page B 10 for an explanation of DHCP and information about how to assign IP addresses for your network Use Router as DHCP server If another device on your network will be the DHCP server or if you will manually configure the network set...

Page 80: ...addresses When you specify a reserved IP address for a computer on the LAN that computer will always receive the same IP address each time it access the router s DHCP server Reserved IP addresses should be assigned to servers that require permanent IP settings To reserve an IP address 1 Click the Add button 2 In the IP Address box type the IP address to assign to the computer or server Choose an I...

Page 81: ...P Setup Menu 3 Enter the TCP IP DHCP or Reserved IP parameters 4 Click Apply to save your changes Configuring Dynamic DNS If your network has a permanently assigned IP address you can register a domain name and have that name linked with your IP address by public Domain Name Servers DNS However if your Internet account uses a dynamically assigned IP address you will not know in advance what your I...

Page 82: ...f admin default password of password or using whatever User Name Password and LAN address you have chosen for the router 2 From the Main Menu of the browser interface under Advanced select Dynamic DNS to display the page below 3 Access the Web site of one of the dynamic DNS service providers whose names appear in the Service Provider box and register for an account For example for dyndns org go to...

Page 83: ...imary Internet access is through a cable modem to an ISP You have an ISDN router on your home network for connecting to the company where you are employed This router s address on your LAN is 192 168 0 100 Your company s network is 134 177 0 0 When you first configured your router two implicit static routes were created A default route was created with your ISP as the router and a second static ro...

Page 84: ...the number of routers between your network and the destination This is a direct connection so it is set to 1 Private is selected only as a precautionary security measure in case RIP is activated How to Configure Static Routes 1 Log in to the router at its default LAN address of http 192 168 0 1 with its default User Name of admin default password of password or using whatever User Name Password an...

Page 85: ...l not be reported in RIP d Select Active to make this route effective e Type the Destination IP Address of the final destination f Type the IP Subnet Mask for this destination If the destination is a single host type 255 255 255 255 g Type the Gateway IP Address which must be a router on the same LAN segment as the router h Type a number between 1 and 15 as the Metric value This represents the num...

Page 86: ...Reference Manual for the Model DG834 ADSL Firewall Router 6 12 Advanced Configuration ...

Page 87: ...nternet Go to Troubleshooting the ISP Connection on page 7 4 I can t remember the router s configuration password I want to clear the configuration and start over again Go to Restoring the Default Configuration and Password on page 7 9 Basic Functioning After you turn on power to the router the following sequence of events should occur 1 When power is first applied verify that the Power LED is on ...

Page 88: ...Test LED Never Turns On or Test LED Stays On When the router is turned on the Test LED turns on for about 10 seconds and then turns off If the Test LED does not turn on or if it stays on there is a fault within the router If you experience problems with the Test LED Cycle the power to see if the router recovers and the LED blinks for the correct amount of time If all LEDs including the Test LED ar...

Page 89: ...te If your computer s IP address is shown as 169 254 x x Recent versions of Windows and MacOS will generate and assign an IP address if the computer cannot reach a DHCP server These auto generated addresses are in the range of 169 254 x x If your IP address is in this range check the connection from the computer to the router and reboot your computer If your router s IP address was changed and you...

Page 90: ...ED Blinking Yellow If your WAN LED is blinking yellow then your router is attempting to make an ADSL connection with the service provider The LED should turn green within several minutes If the WAN LED does not turn green disconnect all telephones on the line If this solves the problem reconnect the telephones one at a time being careful to use a microfilter on each telephone If the microfilters a...

Page 91: ...the browser interface To check the WAN IP address from the browser interface 1 Launch your browser and select an external site such as www netgear com 2 Access the Main Menu of the router s configuration at http 192 168 0 1 3 Under the Maintenance heading check that an IP address is shown for the WAN Port If 0 0 0 0 is shown your router has not obtained an IP address from your ISP If your router i...

Page 92: ...1 2 Under the Maintenance heading select the Router Status link 3 Click the Connection Status button 4 If all of the steps indicate OK then your PPPoE or PPPoA connection is up and working 5 If any of the steps indicates Failed you can attempt to reconnect by clicking Connect The router will continue to attempt to connect indefinitely If you cannot connect after several minutes you may be using an...

Page 93: ...shooting a TCP IP Network Using the Ping Utility Most TCP IP terminal devices and routers contain a ping utility that sends an echo request packet to the designated device The device then responds with an echo reply Troubleshooting a TCP IP network is made very easy by using the ping utility in your computer Testing the LAN Path to Your Router You can ping the router from your computer to verify t...

Page 94: ...revious section are displayed If you do not receive replies Check that your PC has the IP address of your router listed as the default router If the IP configuration of your PC is assigned by DHCP this information will not be visible in your PC s Network Control Panel Verify that the IP address of the router is listed as the default router as described in Verifying TCP IP Properties on page C 6 Ch...

Page 95: ...ton on the rear panel of the router 1 Press and hold the Default Reset button until the Test LED turns on about 10 seconds 2 Release the Default Reset button and wait for the router to reboot Problems with Date and Time The E mail menu in the Content Filtering section displays the current date and time of day The DG834 router uses the Network Time Protocol NTP to obtain the current time from one o...

Page 96: ...Reference Manual for the Model DG834 ADSL Firewall Router 7 10 Troubleshooting ...

Page 97: ...ged or Routed Ethernet and RFC 1577 Classical IP over ATM Power Adapter North America 120V 60 Hz input United Kingdom Australia 240V 50 Hz input Europe 230V 50 Hz input Japan 100V 50 60 Hz input All regions output 15 V AC 1 0A output 30W maximum Physical Specifications Dimensions 10 x 6 7 x 1 3 255 mm x 169 mm x 34 mm Weight 1 4 lbs 0 62 kg Environmental Specifications Operating temperature 0 to 4...

Page 98: ...all Router A 2 Technical Specifications Meets requirements of FCC Part 15 Class B VCCI Class B EN 55 022 CISPR 22 Class B Interface Specifications LAN 10BASE T or 100BASE Tx RJ 45 WAN ADSL Dual RJ 11 pins 2 and 3 T1 413 G DMT G Lite ITU Annex A or B ...

Page 99: ...e documents are listed on the World Wide Web at www ietf org and are mirrored and indexed at many other sites worldwide Basic Router Concepts Large amounts of bandwidth can be provided easily and relatively inexpensively in a local area network LAN However providing high bandwidth between a local network and the Internet can be very expensive Because of this expense Internet access is usually prov...

Page 100: ...ing RIP routers periodically update one another and check for changes to add to the routing table The DG834 router supports both the older RIP 1 and the newer RIP 2 protocols Among other improvements RIP 2 supports subnet and multicast protocols RIP is not required for most home applications IP Addresses and the Internet Because TCP IP networks are interconnected across the world every machine on ...

Page 101: ...egins with a unique bit pattern which is used by the TCP IP software to identify the address class After the address class has been determined the software can correctly identify the host section of the address The follow figure shows the three main address classes including network and host sections of the address for each address type Figure 7 1 Three Main Address Classes The five address classe...

Page 102: ...ddress of all ones is not assigned but is used as the broadcast address for simultaneously sending a packet to all hosts with the same network address Netmask In each of the address classes previously described the size of the two parts network address and host address is implied by the class This partitioning scheme can also be expressed by a netmask associated with the IP address A netmask is a ...

Page 103: ...smaller multiple physical networks known as subnetworks Some of the node numbers are used as a subnet number instead A Class B address gives us 16 bits of node numbers translating to 64 000 nodes Most organizations do not use 64 000 nodes so there are free bits that can be reassigned Subnet addressing makes use of those bits that are free as shown below Figure 7 2 Example of Subnetting a Class B A...

Page 104: ...5 254 The following table lists the additional subnet mask bits in dotted decimal notation To use the table write down the original class netmask and replace the 0 value octets with the dotted decimal value of the additional subnet bits For example to partition your Class C network with subnet mask 255 255 255 0 into 16 subnets 4 bits the new subnet mask becomes 255 255 255 240 The following table...

Page 105: ...hosts without problems However the IANA has reserved the following three blocks of IP addresses specifically for private networks 10 0 0 0 10 255 255 255 172 16 0 0 172 31 255 255 192 168 0 0 192 168 255 255 NETGEAR recommends that you choose your private network number from this range The DHCP server of the DG834 router is preconfigured to automatically assign private addresses Regardless of your...

Page 106: ...PCs to share an Internet account using only a single IP address which may be statically or dynamically assigned by your ISP The router accomplishes this address sharing by translating the internal LAN IP addresses to a single address that is globally unique on the Internet The internal LAN IP addresses can be either private addresses or registered addresses For more information about IP address tr...

Page 107: ...Internet Protocol uses the Address Resolution Protocol ARP to resolve MAC addresses If a device sends data to another station on the network and the destination MAC address is not yet recorded ARP is used An ARP request is broadcast onto the network All stations on the network receive and read the request The destination IP address for the chosen station is included as part of the message so that ...

Page 108: ...address and one or more DNS server addresses As an alternative to manual configuration there is a method by which each PC on the network can automatically obtain this configuration information A device on the network may act as a Dynamic Host Configuration Protocol DHCP server The DHCP server stores a list or pool of IP addresses along with other information such as gateway and DNS addresses that ...

Page 109: ...yze groups of network connection states Using Stateful Packet Inspection an incoming packet is intercepted at the network layer and then analyzed for state related information associated with all network connections A central cache within the firewall keeps track of the state information associated with all network connections All traffic passing through the firewall is analyzed against the state ...

Page 110: ...0 5 inch 1 5 cm of untwist in the wire pair is allowed at any termination point A twisted pair Ethernet network operating at 10 Mbits second 10BASE T will often tolerate low quality cables but at 100 Mbits second 10BASE Tx the cable must be rated as Category 5 or Cat 5 by the Electronic Industry Association EIA This rating will be printed on the cable jacket A Category 5 cable will meet specified ...

Page 111: ...workstation adapter cards are usually media dependent interface ports called MDI or uplink ports Most repeaters and switch ports are configured as media dependent interfaces with built in crossover ports called MDI X or normal ports Auto Uplink technology automatically senses which connection MDI or MDI X is needed and makes the right connection Figure B 1 illustrates straight through twisted pair...

Page 112: ...Dependant Interface Crossover MDI X When connecting a PC to a PC or a hub port to another hub port the transmit pair must be exchanged with the receive pair This exchange is done by one of two mechanisms Most hubs provide an Uplink switch which will exchange the pairs on one port allowing that port to be connected to another hub using a normal Ethernet cable The second method is to use a crossover...

Page 113: ...atically sense whether the Ethernet cable plugged into the port should have a normal connection e g connecting to a PC or an uplink connection e g connecting to a router switch or hub That port will then configure itself to the correct configuration This feature also eliminates the need to worry about crossover cables as Auto UplinkTM will accommodate either type of cable to make the right connect...

Page 114: ...Reference Manual for the Model DG834 ADSL Firewall Router B 16 Network and Routing Basics ...

Page 115: ...e components for establishing a TCP IP network Windows 3 1 does not include a TCP IP component You need to purchase a third party TCP IP application package such as NetManage Chameleon Macintosh Operating System 7 or later includes the software components for establishing a TCP IP network All versions of UNIX or Linux include TCP IP components Follow the instructions provided with your operating s...

Page 116: ... following TCP IP configuration information automatically when the PCs are rebooted PC or workstation IP addresses 192 168 0 2 through 192 168 0 254 Subnet mask 255 255 255 0 Gateway address the router 192 168 0 1 These addresses are part of the IETF designated private address range for use in private networks Configuring Windows 95 98 and Me for TCP IP Networking As part of the PC preparation pro...

Page 117: ... Click the Add button b Select Adapter and then click Add c Select the manufacturer and model of your Ethernet adapter and then click OK If you need TCP IP a Click the Add button b Select Protocol and then click Add c Select Microsoft d Select TCP IP and then click OK Note It is not necessary to remove any other network components shown in the Network window in order to install the adapter TCP IP ...

Page 118: ...lest way to configure this information is to allow the PC to obtain the information from a DHCP server in the network You will find there are many similarities in the procedures for different Windows systems when using DHCP to configure TCP IP The following steps will walk you through the configuration process for each of these versions of Windows Locate your Network Neighborhood icon If the Netwo...

Page 119: ...g Your Network C 5 Verify the following settings as shown Client for Microsoft Network exists Ethernet adapter is present TCP IP is present Primary Network Logon is set to Windows logon Click on the Properties button The following TCP IP Properties window will display ...

Page 120: ...LAN Internet Configuration screen and click Next 6 Proceed to the end of the Wizard Verifying TCP IP Properties After your PC is configured and has rebooted you can check the TCP IP configuration using the utility winipcfg exe 1 On the Windows taskbar click the Start button and then click Run By default the IP Address tab is open on this window Verify the following Obtain an IP address automatical...

Page 121: ...u may need to install and configure TCP IP on each networked PC Before starting locate your Windows CD you may need to insert it during the TCP IP installation process Installing or Verifying Windows Networking Components To install or verify the necessary components for IP networking 1 On the Windows taskbar click the Start button point to Settings and then click Control Panel 2 Double click the ...

Page 122: ...the configuration process for each of these versions of Windows DHCP Configuration of TCP IP in Windows XP Locate your Network Neighborhood icon Select Control Panel from the Windows XP new Start Menu Select the Network Connections icon on the Control Panel This will take you to the next step Now the Network Connection window displays The Connections List that shows all the network connections set...

Page 123: ...dow This box displays the connection status duration speed and activity statistics Administrator logon access rights are needed to use this window Click the Properties button to view details about the connection The TCP IP details are presented on the Support tab page Select Internet Protocol and click Properties to view the configuration information ...

Page 124: ...and set to DHCP without your having to configure it However if there are problems follow these steps to configure TCP IP with DHCP for Windows 2000 Verify that the Obtain an IP address automatically radio button is selected Verify that Obtain DNS server address automatically radio button is selected Click the OK button This completes the DHCP configuration of TCP IP in Windows XP Repeat these step...

Page 125: ...nections Right click on Local Area Connection and select Properties The Local Area Connection Properties dialog box appears Verify that you have the correct Ethernet card selected in the Connect using box Verify that at least the following two items are displayed and selected in the box of Components checked are used by this connection Client for Microsoft Networks and Internet Protocol TCP IP Cli...

Page 126: ... Protocol TCP IP Properties dialogue box Verify that Obtain an IP address automatically is selected Obtain DNS server address automatically is selected Click OK to return to Local Area Connection Properties Click OK again to complete the configuration process for Windows 2000 Restart the PC Repeat these steps for each PC with this version of Windows on your network ...

Page 127: ...ard you need to configure the TCP IP environment for Windows NT 4 0 Follow this procedure to configure TCP IP with DHCP in Windows NT 4 0 Choose Settings from the Start Menu and then select Control Panel This will display Control Panel window Double click the Network icon in the Control Panel window The Network panel will display Select the Protocols tab to continue ...

Page 128: ...Reference Manual for the Model DG834 ADSL Firewall Router C 14 Preparing Your Network Highlight the TCP IP Protocol in the Network Protocols box and click on the Properties button ...

Page 129: ...on information will be listed and should match the values below if you are using the default TCP IP settings that NETGEAR recommends for connecting through a router or gateway The IP address is between 192 168 0 2 and 192 168 0 254 The subnet mask is 255 255 255 0 The TCP IP Properties dialog box now displays Click the IP Address tab Select the radio button marked Obtain an IP address from a DHCP ...

Page 130: ... networked Macintosh you need to configure TCP IP to use DHCP MacOS 8 6 or 9 x 1 From the Apple menu select Control Panels then TCP IP The TCP IP Control Panel opens 2 From the Connect via box select your Macintosh s Ethernet interface 3 From the Configure box select Using DHCP Server You can leave the DHCP Client ID box empty 4 Close the TCP IP Control Panel 5 Repeat this for each Macintosh on yo...

Page 131: ... IP configuration by returning to the TCP IP Control Panel From the Apple menu select Control Panels then TCP IP The panel is updated to show your settings which should match the values below if you are using the default TCP IP settings that NETGEAR recommends The IP Address is between 192 168 0 2 and 192 168 0 254 The Subnet mask is 255 255 255 0 The Router address is 192 168 0 1 If you do not se...

Page 132: ...et port is connected to the broadband modem the router appears to be a single PC to the ISP The router then allows the PCs on the local network to masquerade as the single PC to access the Internet through the broadband modem The method used by the router to accomplish this is called Network Address Translation NAT or IP masquerading Are Login Protocols Used Some ISPs require a special login proto...

Page 133: ... procedures are described next Obtaining ISP Configuration Information for Windows Computers As mentioned above you may need to collect configuration information from your PC so that you can use this information when you configure the DG834 router Following this procedure is only necessary when your ISP does not dynamically supply the account information To get the information you need to configur...

Page 134: ...cintosh so that you can use this information when you configure the DG834 router Following this procedure is only necessary when your ISP does not dynamically supply the account information To get the information you need to configure the router for Internet access 1 From the Apple menu select Control Panels then TCP IP The TCP IP Control Panel opens which displays a list of configuration settings...

Page 135: ... work with the router you must reset the network for the devices to be able to communicate correctly Restart any computer that is connected to the firewall After configuring all of your computers for TCP IP networking and restarting them and connecting them to the local network of your DG834 router you are ready to access and configure the router ...

Page 136: ...Reference Manual for the Model DG834 ADSL Firewall Router C 22 Preparing Your Network ...

Page 137: ...ain names are of the form of a registered entity name plus one of a number of predefined top level suffixes such as com edu uk etc For example in the address mail NETGEAR com mail is a server name and NETGEAR com is the domain Domain Name Server A Domain Name Server DNS resolves descriptive names of network resources such as www NETGEAR com to numeric IP addresses DSLAM DSL Access Multiplexor The ...

Page 138: ...rk devices such as storage and printers Although many technologies exist to implement a LAN Ethernet is the most common for connecting personal computers MAC address Media Access Control address A unique 48 bit hardware address assigned to every Ethernet node Usually written in the form 01 23 45 67 89 ab Mbps Megabits per second MSB See Most Significant Bit or Most Significant Byte MTU See Maximum...

Page 139: ...ction PPTP Point to Point Tunneling Protocol A method for establishing a virtual private network VPN by embedding Microsoft s network protocol into Internet packets PSTN Public Switched Telephone Network Point to Point Protocol PPP A protocol allowing a computer using TCP IP to connect directly to the Internet RFC Request For Comment Refers to documents published by the Internet Engineering Task F...

Page 140: ...data through the network WAN See wide area network wide area network WAN A long distance link used to extend or connect remotely located local area networks The Internet is a large WAN Windows Internet Naming Service WINS Windows Internet Naming Service is a server process for resolving Windows based computer names to IP addresses If a remote network contains a WINS server your Windows PCs can gat...

Page 141: ...ings time 4 14 Default DMZ Server 6 1 default reset button 7 9 Denial of Service DoS protection 2 2 4 3 denial of service attack B 11 DHCP 2 3 6 5 B 10 DHCP Client ID C 16 DHCP Setup field Ethernet Setup menu 5 5 DMZ Server 6 1 DNS Proxy 2 3 DNS server 3 18 C 20 DNS dynamic 6 7 domain C 20 Domain Name 3 18 domain name server DNS B 10 DoS attack B 11 Dynamic DNS 2 4 6 7 E EnterNet C 18 EPROM for fi...

Page 142: ...nfiguring for IP networking C 16 DHCP Client ID C 16 Obtaining ISP Configuration Information C 20 masquerading C 18 MDI MDI X B 15 MDI MDI X wiring B 14 metric 6 11 multicasting 6 5 N NAT C 18 NAT See Network Address Translation netmask translation table B 6 Network Address Translation 2 3 B 8 C 18 Network Time Protocol 4 14 7 9 NTP 4 14 7 9 O order of precedence 4 12 outbound rules 4 9 P Password...

Page 143: ...ers 4 12 Setup Wizard 3 1 SMTP 5 13 spoof MAC address 7 6 stateful packet inspection 2 2 B 11 Static Routes 6 7 subnet addressing B 5 subnet mask B 6 C 19 C 20 Syslog 5 12 T TCP IP configuring C 1 network troubleshooting 7 7 TCP IP properties verifying for Macintosh C 17 verifying for Windows C 6 C 15 time of day 7 9 time zone 4 14 timeout administrator login 4 2 time stamping 4 14 troubleshooting...

Search results

Summary of Contents for DG834v2 - ADSL Modem Router

Reviews:

Related manuals for DG834v2 - ADSL Modem Router

Brands by name

Popular brands

NETGEAR DG834v2 - ADSL Modem Router, Reference Manual

Search results

Summary of Contents for DG834v2 - ADSL Modem Router

Reviews:

Related manuals for DG834v2 - ADSL Modem Router

Brands by name

Popular brands