SMC Networks Barricade SMC7401BRA User Manual Download

Page: 1 / 212

Summary of Contents for Barricade SMC7401BRA

Page 1: ......

Page 2: ...ADSL Barricade 2 Port ADSL Router with Built in Annex A ADSL Modem User Guide February 2004 ...

Page 3: ...nnecting the Hardware 7 Step 1 Connect the ADSL cable 8 Step 2 Connect the Ethernet cable 9 Step 3 Attach the power connector 9 Step 4 Power up your systems 9 Installing USB Driver 9 Configuring Your Computers 15 Before you begin 15 Windows XP 16 Windows 2000 17 Windows Me 18 Windows 95 98 19 Windows NT 4 0 21 Assigning static Internet Information to your PCs 22 Configuring the ADSL Barricade 23 L...

Page 4: ...nfiguring the LAN Port IP Address 41 Viewing System IP Addresses and IP Performance Statistics 48 Viewing the ADSL Barricade s IP Addresses 48 Viewing IP Performance Statistics 51 Configuring Dynamic Host Configuration Protocol 53 Overview of DHCP 53 What is DHCP 53 Why use DHCP 54 ADSL Barricade DHCP modes 54 Configuring DHCP Server 55 Guidelines for creating DHCP server address pools 55 Adding D...

Page 5: ...iteria 85 The Bimap rule Performing two way translations 87 The Pass rule Allowing specific addresses to pass through untranslated 89 Configuring DNS Server Addresses 91 About DNS 91 Assigning DNS Addresses 91 Configuring DNS Relay 92 Configuring IP Routes 95 Overview of IP Routes 95 IP routing versus telephone switching 95 Hops and gateways 97 Using IP routes to define default gateways 98 Do I ne...

Page 6: ...and Deleting PPP Interfaces 126 Configuring EOA Interfaces 127 Overview of EOA 127 Viewing Your EOA Setup 128 Adding EOA Interfaces 131 Configuring IPoA Interfaces 133 Viewing Your IPoA Interface Setup 133 Adding IPoA Interfaces 135 Configuring Bridging 137 Overview of Bridges 137 When to Use the Bridging Feature 139 Defining Bridge Interfaces 139 Deleting a Bridge Interface 141 Configuring Firewa...

Page 7: ...Information 165 Administrative Tasks 169 Configuring User Names and Passwords 169 Creating and Deleting Logins 170 Changing Login Passwords 172 Viewing System Alarms 173 Viewing the Alarm Table 173 Upgrading the Software 174 Using Diagnostics 177 Modifying Port Settings 178 Overview of IP port numbers 178 Modifying the ADSL Barricade s port numbers 179 Appendix A 181 IP Addresses Network Masks and...

Page 8: ...Table of Contents vi Troubleshooting 189 Technical Specifications 195 Terminology 199 Compliances i Legal Information and Contacts vii ...

Page 9: ... get the most out of your new product Features External ADSL modem for high speed Internet access 10 100Base T Ethernet router to provide Internet connectivity to all computers on your LAN Optional USB port for connecting a USB enabled PC Network address translation NAT Firewall and IP filtering functions to provide security for your LAN Network configuration through DHCP Server and DHCP Relay Ser...

Page 10: ...hernet hub switch if you are connecting the device to more than one computer on an Ethernet network For system configuration using the supplied web based program a web browser such as Internet Explorer V5 0 or later or Netscape V6 1 or later Using this Document Notational conventions Acronyms are defined the first time they appear in the text and in the Terminology For brevity the ADSL Barricade i...

Page 11: ...is document uses the following statement to call your attention to specific instructions or explanations Note Provides clarifying or non essential information on the current topic Definition Explains terms or acronyms that may be unfamiliar to many readers These terms are also included in the Terminology Warning Provides messages of high importance including messages relating to personal safety or...

Page 12: ...Optional Installation utility and Documentation CD Quick Installation Guide Hardware Description Front Panel The front panel contains lights called LEDs that indicate the status of the unit Table 1 Front Panel and LEDs LED COLOR FUNCTION PW Power Green On Unit is powered on Off Unit is powered off LK Link Green Flashing when ADSL data activity occurs May be steady when data traffic is heavy ...

Page 13: ...tion Ethernet Connects the device to your PC s Ethernet port or to the uplink port on your LAN s hub using the cable provided Yellow LED On 10M LAN link established and active Off No 10M LAN link Green LED On 100M LAN link established and active Off No 100M LAN link USB optional For connection to the USB port on your PC Reset Resets the device to the factory default configuration Power For connect...

Page 14: ...ernet After having set up and configured the device please follow the instructions on page 27 to check whether it is working properly This Quick Start assumes that you have already established an ADSL service with your Internet service provider ISP These instructions provide a basic configuration that should be compatible with your home or small office network setup Refer to the subsequent chapter...

Page 15: ...nt wall phone jack If desired connect the telephone cable to the port labeled Phone Warning Although you use the same type of cable the ADSL and Phone ports are not interchangeable Do not route the ADSL connection through the Phone port ADSL Barricade Wall Jack Hub switch for local area network or To a hub use cross over cable to uplink port or straight cable to standard port To a PC use a cross o...

Page 16: ...irectly to the device The cable is wired differently than the cable you would use to connect to a hub Step 3 Attach the power connector Connect the AC power adapter to the Power connector on the back of the device and plug in the adapter to a wall outlet or power strip Step 4 Power up your systems Turn on and boot up your computer s and any LAN device such as hubs or switches Installing USB Driver...

Page 17: ...ocumentation CD into your CD drive 2 The USB driver is located in the USB Driver folder Browse to the USB driver folder and run Setup exe This will start the USB driver installation 3 Click Next to continue then click Accept to accept the license agreement ...

Page 18: ...Installing USB Driver 11 Note If you have Microsoft Windows 2000 or XP you will see the following message after you Accept the license agreement click Continue Anyway to continue ...

Page 19: ...Quick Start 12 4 When prompted by the SMC ADSL Barricade Setup Wizard connect the ADSL Barricade to your computer using the USB cable provided ...

Page 20: ... 13 5 After connecting the USB cable the Found New Hardware Wizard will appear click Next to continue Note If you have Microsoft Windows 2000 or XP you will see the following message again click Continue Anyway to continue ...

Page 21: ...Quick Start 14 6 Click Close to reboot your computer ...

Page 22: ...talled on your system Configuring Your Computers This section provides instructions for configuring the Internet settings on your computers to work with the ADSL Barricade Before you begin By default the ADSL Barricade automatically assigns all required Internet settings to your PCs You need only to configure the PCs to accept the information when it is assigned ...

Page 23: ...uble click the Network Connections icon 3 In the LAN or High Speed Internet window right click on the icon corresponding to your network interface card NIC and select Properties Often this icon is labeled Local Area Connection The Local Area Connection dialog box displays a list of currently installed network items 4 Ensure that the check box to the left of the item labeled Internet Protocol TCP I...

Page 24: ...en enabled Skip to Step 10 4 If Internet Protocol TCP IP does not appear as an installed component click Install 5 In the Select Network Component Type dialog box select Protocol and then click Add 6 Select Internet Protocol TCP IP in the Network Protocols list and then click OK You may be prompted to install files from your Windows 2000 installation CD or other media Follow the instructions to in...

Page 25: ...ial up Connections icon 3 In the Network and Dial up Connections window right click the Network icon and then select Properties The Network Properties dialog box displays a list of currently installed network components If the list includes Internet Protocol TCP IP then the protocol has already been enabled Skip to Step 11 4 If Internet Protocol TCP IP does not appear as an installed component cli...

Page 26: ...radio button labeled Server assigned IP address Also click the radio button labeled Server assigned name server address 13 Click OK twice to confirm and save your changes and then close the Control Panel Windows 95 98 First check for the IP protocol and if necessary install it 1 In the Windows task bar click the Start button point to Settings and then click Control Panel 2 Double click the Network...

Page 27: ...n Next configure the PCs to accept IP information assigned by the ADSL Barricade 8 Open the Control Panel window and then click the Network icon 9 Select the network component labeled TCP IP and then click Properties If you have multiple TCP IP listings select the listing associated with your network card or adapter 10 In the TCP IP Properties dialog box click the IP Address tab 11 Click the radio...

Page 28: ...y be prompted to install files from your Windows NT 4 0 installation CD or other media Follow the instructions to install the files After all files are installed a window appears to inform you that a TCP IP service called DHCP can be set up to dynamically assign IP information 6 Click Yes to continue and then click OK if prompted to restart your computer Next configure the PCs to accept IP informa...

Page 29: ...sk you will assign to each PC which will be assigned static IP information The IP address of the default gateway for your LAN In most cases this is the address assigned to the LAN port on the ADSL Barricade By default the LAN port is assigned this IP address 192 168 1 1 You can change this number or another number can be assigned by your ISP See Configuring the LAN Ports on page 40 for more inform...

Page 30: ...tep Logging into the ADSL Barricade Quick Configuration Page The ADSL Barricade provides a preinstalled software program called Configuration Manager which enables you to configure the operation of the device via your Web browser The settings that you most likely need to change before using the device are grouped onto one single Quick Configuration page Follow these instructions to configure the d...

Page 31: ...o use usually atm 0 Your system may be configured with more than one ATM interface if you are using different types of services with your ISP Operation Mode This setting enables or disables the ADSL Barricade When set to Disabled the device cannot be used to provide Internet connectivity for your network Set it to Enabled if necessary Encapsulation This setting determines the type of data link you...

Page 32: ...e provided boxes Note In some configurations the public IP address should be entered on your PC rather than on the ADSL Barricade please check with your ISP Use DHCP To Enable or Disable DHCP server function Default Route When Enabled is selected the IP address specified above will be used as the default route for your LAN Whenever one of your LAN computers attempts to access the Internet the data...

Page 33: ...Barricade can provide a variety of services to your network The device is preconfigured with default settings for use with a typical home or small office network The table of Figure 5 lists some of the most important default settings these and other features are fully described in the subsequent sections If you are familiar with network configuration review the settings in Figure 5 and check wheth...

Page 34: ...rule enabled Your computers private IP addresses see DHCP above will be translated to your public IP address whenever they access the Internet See Configuring the LAN Ports on page 40 for a description of the NAT service USB Port IP Address optional Assigned static IP address 192 168 1 2 Subnet mask 255 255 255 0 This is the IP address assigned to the USB port on the device if used Typically you w...

Page 35: ...SL Barricade memory To access the program you need the following A PC or laptop connected to the LAN port on the device as described in the Quick Start section A web browser installed on the PC The program is designed to work best with Microsoft Internet Explorer version 5 0 Netscape Navigator version 6 1 or later versions You can access the program from any computer connected to the ADSL Barricad...

Page 36: ... The first time you log into the program use these default values Default User Name smc Default Password smcadmin Note You can change the password at any time See Configuring User Names and Passwords on page 161 for instructions The System View page on the Home tab appears each time you log into the program shown in Figure 4 ...

Page 37: ...The left most task appears by default when you click on a new tab The same task may appear in more than one tab when appropriate For example the Lan Config task appears in both the LAN tab and the Routing tab Commonly used buttons The following buttons are used throughout the application Button Function Submit This button stores in the temporary system memory any changes you have made on the curre...

Page 38: ... 32 Clear On pages that display accumulated statistics this button resets the statistics to their initial values Help This button launches the online help for the current topic in a separate browser window Help is available from any main topic page ...

Page 39: ... Home tab the other is the Quick Configuration page as described in Quick Start Logging into the ADSL Barricade Figure 4 System View Table The System View table provides a snapshot of your system configuration Note that some of the settings are links to the software pages that enable you to configure those settings The following table describes each section of the System View table ...

Page 40: ...mmunicates with your ISP via DSL Even if you only have one physical DSL port multiple software defined interfaces can be configured to use it See the ATM VC PPP EOA and IPoA chapters for more information about the WAN interfaces defined on your system For each interface a Lower Interface name such as aal5 0 should appear You can click on the Lower Interface name to view or change the ATM VC settin...

Page 41: ...ing Protocols RIP to enable router to router communication Configuring the Routing Information Protocol DHCP Relay to enable dynamic assignment of IP information from your ISP to your computers Configuring Dynamic Host Configuration Protocol DHCP Client to enable dynamic assignment of IP information from your ISP or another computer on your network to the device s LAN port Configuring the LAN Port...

Page 42: ...e names assigned to the ADSL Barricade and the network domain in which it exists Note Changing the ADSL Barricade date and time does not affect the date and time on your PCs Follow these instructions to change the basic system information 1 At the bottom of the Home page click Modify The System Modify page appears in a separate browser window Figure 5 System Modify Page ...

Page 43: ...tically Name You can use this field to specify an easy to remember name for the ADSL Barricade The next time you want to access the Configuration Manager you can type this name in the location box in your Web browser instead of typing the digital IP address For example if you have entered myrouter in this field and have left the Domain Name field blank then you can type the following in your Web b...

Page 44: ...Note Submitting changes activates them immediately but saves them only until the device is reset or powered down Committing changes saves them permanently Follow these steps to commit changes 1 Click the Admin tab and then click Commit Reboot in the task bar The Commit Reboot page appears Figure 6 Commit Reboot Page 2 Click Commit Disregard the selection in the Reboot Mode drop down list it does n...

Page 45: ...ry default values Any custom settings will be lost Option Description Reboot from Last Configuration This option is to reboot the device using the current settings in the permanent memory including any changes you have just committed Reboot from Backup Configuration This option is to reboot the device using settings stored in the backup memory These are the settings that were effective before you ...

Page 46: ...ing an Ethernet cable You must assign a unique IP address to each device port that you use Configuring the LAN Port IP Address The LAN IP address identifies the LAN port eth 0 as a node on your network that is its IP address must be in the same subnet as the PCs on your LAN Definition A network node can be thought of as any interface where a device connects to the network such as the ADSL Barricad...

Page 47: ...igned from the ISP s server In this mode the ADSL Barricade is considered as a DHCP client of your DHCP or ISP s server Note The ADSL Barricade itself can function as a DHCP server for your LAN computers as described in Configuring Dynamic Host Configuration Protocol but not for its own LAN port Follow the following steps to change the default LAN IP address or to configure the LAN port as a DHCP ...

Page 48: ...he device s LAN port is assigned an IP address Manual indicates that you will be assigning a static IP address which you can enter in the fields below External DHCP Server indicates that your ISP will be assigning an IP address from their own DHCP server to the port dynamically each time you log on Internal DHCP Server indicates that you have a DHCP server device on your network that will assign a...

Page 49: ...nstructions on changing the pool of dynamically assigned addresses Enabling DHCP If you choose to have the LAN port be a DHCP client of an internal or external server the LAN Network Mask field will be dimmed and made unavailable for entry The LAN IP Address field will remain editable however The address that you specify here will be used as a request to the DHCP server This is referred to as a Co...

Page 50: ...ated 4 Reconfigure your PCs if necessary so that their IP addresses place them in the same subnet as the new IP address of the LAN port See Quick Start Configuring Your Computers on page 15 for instructions 5 Log into Configuration Manager by typing the new IP address in your Web browser s address location box 6 If the new settings work properly click the Admin tab and then click Commit Reboot in ...

Page 51: ...e uses and to view other system and network performance data See IP Addresses Network Masks and Subnets on page 173 for a description of IP addresses and masks Viewing the ADSL Barricade s IP Addresses To view the ADSL Barricade s IP addresses click the Routing tab and then click IP Address in the task bar The IP Address Table page appears Figure 8 IP Address Table Page The table lists the IP addr...

Page 52: ...ntify your network It may be identified in the Configuration Manager by the names ppp 0 eoa 0 or ipoa 0 depending on the protocol your device uses to communicate with your ISP Your ISP may assign the same address each time or it may change each time you reconnect The loopback IP address named lo 0 of 127 0 0 1 This special address enables the device to keep any data addressed directly to it rather...

Page 53: ...sion You will not typically need to view thi s data but you may find it helpful when working with your ISP to diagnose network and Internet data transmission problems To view global IP statistics click Global Stats on the IP Address Table page Below shows the IP Global Statistics page Figure 9 IP Global Statistics Page To display updated statistics showing any new data since you opened the page cl...

Page 54: ...enable DHCP on a network you allow a device such as the ADSL Barricade or a router located with your ISP to assign temporary IP addresses to your computers whenever they connect to your network The assigning device is called a DHCP server and the receiving device is a DHCP client Note If you used the Quick Start instructions you configured each LAN PC with an IP address or you specified that it wi...

Page 55: ...ated information DHCP is commonly used with large networks and those that are frequently expanded or otherwise updated ADSL Barricade DHCP modes The device can be configured as a DHCP server relay agent or client If you configure the device as a DHCP server it will maintain the pool of addresses and distribute them to your LAN computers If the pool of addresses includes private IP addresses you mu...

Page 56: ...te Before you begin be sure to configure your PCs to accept DHCP information assigned by a DHCP server For detailed instructions see Quick Start Configuring Your Computers on page 15 To set up DHCP server you first define the ranges of IP addresses that you want to be distributed to your PCs called DHCP server address pools Guidelines for creating DHCP server address pools IP address pools can con...

Page 57: ...rnet eth 0 and USB usb 0 ports are in different subnets note that different subnets are not required See IP Addresses Network Masks and Subnets on page 173 for an explanation of subnets Your LAN configuration includes two subnets You have only one subnet but the addresses you want to distribute are not in a continuous range Alternatively you can exclude particular addresses from distribution from ...

Page 58: ...he LAN interface eth 0 Likewise the address in Pool 1 would be distributed to the USB connected computer Adding DHCP Server Address Pools Follow these instructions to create an IP address pool 1 Log into Configuration Manager click the LAN tab and then click DHCP Server in the task bar The Dynamic Host Configuration Protocol DHCP Server Configuration page appears Figure 10 DHCP Server Configuratio...

Page 59: ...sses in the pool up to a maximum range of 254 addresses For example if the LAN port is assigned IP address 192 168 1 1 then you could create a pool with address range 192 168 1 2 192 168 1 254 for distribution to your LAN computers Mac Address A MAC address is a manufacturer assigned hardware ID that is unique for each device on a network Use this field only if you want to assign a specific IP add...

Page 60: ...USB usb 0 port address on the device will be distributed to each PC as its gateway address depending on how each is connected See Hops and gateways on page 90 for an explanation of gateway addresses DNS Address SDNS Address These fields indicate the IP address of the Domain Name System server and Secondary Domain Name System server to be used by computers that receive IP addresses from this pool T...

Page 61: ...DHCP Server Viewing modifying and deleting address pools To view modify or delete an existing address pool display the DHCP Server Configuration page and click the icons in the corresponding row in the address pool table To delete an IP address pool click then Submit and Commit your changes To view details on an IP address pool click A page appears with the same information that you entered when y...

Page 62: ...ble to your network you can exclude them from the pool Display the DHCP Server Pool Modify page as shown in Figure 15 Type each address to be excluded in the Excluded IP field and click Add When you are done specifying excluded addresses click Submit and then use the Commit function to save your changes to the permanent memory see page 38 Viewing current DHCP address assignments When the ADSL Barr...

Page 63: ...hat has been leased from the pool Netmask This is the network mask associated with the leased address This identifies the network ID and host ID portions of the address see IP Addresses Network Masks and Subnets on page 173 for an explanation of these terms Mac Address This field indicates the unique hardware ID of the computer to which the IP address has been assigned Pool Start This is the lower...

Page 64: ... be using the relay service 2 Log into the Configuration Manager click the LAN tab Then click DHCP Relay in the task bar The Dynamic Host Configuration Protocol DHCP Relay Configuration page appears Figure 14 DHCP Relay Configuration Page 3 In the DHCP Server Address fields type the IP address of your ISP s DHCP server If you do not have this number it is not essential to enter it here Requests fo...

Page 65: ...u must enable the appropriate DHCP mode to activate your DHCP relay or DHCP server settings Follow these instructions to set the DHCP mode 1 Click the LAN tab and then click DHCP Mode in the task bar The Dynamic Host Configuration Protocol DHCP Configuration page appears Figure 15 DHCP Configuration Page 2 From the DHCP Mode drop down list choose DHCP Server DHCP Relay or None If you choose None y...

Page 66: ...net Corporation for Assigned Names and Numbers ICANN for use on the Internet Typically your ISP provides a public IP address for your entire LAN and you define the private addresses for computers on your LAN In a typical NAT setup your ISP provides you with a single public IP address to use for your entire network Then you assign each computer on your LAN a unique private IP address Or you define ...

Page 67: ...ating from the computer assigned your public IP address in this case the ADSL Barricade The NAT rule could further be defined to disguise the source port in the data packet i e change it to another number so that outside computers will not be able to determine the actual port from which the packet originated Data packets that arrive in response contain the public IP address as the destination IP a...

Page 68: ...nction described above is called Network Address Port Translation NAPT You can use other types called flavors of NAT for other purposes for example providing outside access to your LAN or translating multiple private addresses to multiple public addresses Viewing NAT Global Settings and Statistics To view your NAT settings log into the Configuration Manager click the Services tab The NAT Configura...

Page 69: ...ted between them to control the exchange of data packets The TCP session can be viewed as being in one of three states depending on the types of packets being transferred The establishing state where the connection is being set up The active state where the connection is being used to transfer data The closing state in which the connection is being shut down When a NAT rule is effective on a TCP s...

Page 70: ...or each NAT rule you have set up You can click Clear to restart the accumulation of the statistics at their initial values GRE Timeout sec Same as TCP Idle Timeout but for GRE based communication sessions ESP Timeout sec Same as TCP Idle Timeout but for ESP based communication sessions Default Nat Age sec For all other NAT translation sessions the number of seconds after which a translation sessio...

Page 71: ...work Address Translation NAT Rule Configuration table displays a row containing basic information for each rule For a description of these fields refer to the instructions for adding rules pages 66 through 79 From the Network Address Translation NAT Rule Configuration page you can click Add to add a new rule or use the icons in the right column to delete or view details on a rule To view data on h...

Page 72: ...ns are using this rule You can click Clear to reset the statistics to zeros and Refresh to display newly accumulated data Viewing Current NAT Translations To view a list of NAT Translations that have recently been performed and which remain effective for any of the defined rules select NAT Translations from the NAT Options drop down list Figure 20 NAT Translations Page ...

Page 73: ...eld indicates the IP protocol used by the data packets that are undergoing translations from the rule definition Example TCP UDP ICMP Alg Type This is the Application Level Gateway ALG if any that was used to enable this NAT translation ALGs are special settings that certain applications require in order to work while NAT is enabled NAT Direction This field indicates the direction Inside or Outsid...

Page 74: ...n Address This field indicates the private IP address that was translated Out Address This field indicates the IP address of the outside destination web ftp site etc In Packets Out Packets These fields indicate the number of incoming and outgoing IP packets that have been translated in this translation session In Ports This is the actual port number corresponding to the LAN computer Out Ports This...

Page 75: ...le uses the NAT flavor NAPT which was used in your default configuration The NAPT flavor translates private source IP addresses to a single public IP address The NAPT rule also translates the source port numbers to port numbers that are defined on the NAT Global Configuration page 1 Click the NAT tab then select NAT Rule Entry from the NAT Options drop down list The NAT Rule Entry page displays a ...

Page 76: ... you specify Rule IDs as multiples of 5 or 10 so that in the future you can insert a rule between two existing rules Once a data packet matches a rule the data is acted upon according to that rule and is not subjected to higher numbered rules 5 From the IF Name drop down list select the interface on the device to which this rule applies Typically NAT rules are used for communication between your L...

Page 77: ...type the same address in both fields if the rule only applies to one LAN computer 7 In the Global Address field type the public IP address assigned to you by your ISP 8 Click Submit 9 When a page appears to confirm your change click Close to return to the NAT Configuration page The new rule should display in the NAT Rule Configuration table 10 Ensure that the Enable radio button is selected and th...

Page 78: ...R rule to provide external access to your web server Your ADSL Barricade receives a packet containing a request for access to your Web server The packet header contains the public address for your LAN as the destination IP address and a destination port number 80 Because you have set up an RDR rule for incoming packets with destination port 80 the device recognizes the data as a request for Web se...

Page 79: ... and 2 below 1 Display the NAT Rule Add Page select RDR as the Rule Flavor if necessary and enter a Rule ID 2 Select the interface on which this rule will be effective 3 Select a Protocol to which this rule applies or choose ANY This selection specifies which type of Internet communication will be subject to this translation rule You can select ANY if the rule applies to all data Or select TCP UDP...

Page 80: ... correspond to private addresses already in use on your network either assigned statically to your PCs or assigned dynamically using DHCP as discussed in the Quick Start Configuring Your Computers 5 In the Global Address From and Global Address To fields type the public IP address assigned to you by your ISP If you have multiple WAN PPP interfaces this rule will not be enforced for data that arriv...

Page 81: ...s and functions 7 If the LAN computer that you are making publicly available is configured to use a non standard port number for the type of traffic it receives type the non standard port number in the Local Port field This option translates the standard port number in packets destined for your LAN computer to the non standard number you specify For example if your Web server uses non standard por...

Page 82: ...anslated Therefore the Basic rule does not provide the same level of security as the NAPT rule Figure 24 NAT Rule Add Page Basic Flavor Follow the folowing instructions to add a BASIC rule see steps 1 4 under The NAPT Rule for specific instructions corresponding to steps 1 and 2 below 1 Display the NAT Rule Add Page select BASIC as the Rule Flavor and enter a Rule ID 2 Select the interface on whic...

Page 83: ... specify a range each address will be translated in sequence to a corresponding address in a range of Global Addresses which you specify in step 5 You can create a BASIC rule for each specific address translation to occur The range of addresses should correspond to private addresses already in use on your network whether assigned statically to your PCs or assigned dynamically using DHCP 5 In the G...

Page 84: ... rule if you want an address translation to occur only when your LAN computers initiate access to specific destinations The destinations can be identified by their IP addresses the port type which identifies it as a FTP or Web server for example or both Figure 25 NAT Rule Add Page Filter Flavor Follow these instructions to add a Filter rule see steps 1 4 under The NAPT Rule on page 70 for specific...

Page 85: ...s in both fields If you specify a range each address will be translated in sequence to a corresponding address in a range of Global Addresses which you specify in step 5 The address or range of addresses should correspond to a private address or addresses already in use on your network These may be assigned statically to your PCs or assigned dynamically using DHCP as discussed in the Quick Start 5...

Page 86: ...70 to submit your changes The Bimap rule Performing two way translations Unlike the other NAT flavors the Bimap flavor performs address translations in both the outgoing and incoming directions In the incoming direction when the specified ADSL Barricade interface receives a packet with your public IP address as the destination address this address is translated to the private IP address of a compu...

Page 87: ...e Bimap Flavor Follow these instructions to add a Bimap rule see steps 1 4 under The NAPT Rule on page 70 for specific instructions corresponding to steps 1 and 2 below 1 Display the NAT Rule Add Page select BIMAP as the Rule Flavor and enter a Rule ID 2 Select the interface on which this rule will be effective 3 In the Local Address field type the private IP address of the computer to which you a...

Page 88: ...ber than the ID assigned to the rule it is intended to pass If you want a specific IP address or range of addresses not to be subject to an existing rule say rule ID 5 then you can create a Pass rule with ID 1 through 4 Follow these instructions to add a Pass rule see steps 1 4 under The NAPT Rule on page 70 for detailed instructions corresponding to steps 1 and 2 below 1 Display the NAT Rule Add ...

Page 89: ...o fields type the lowest and highest IP addresses that define the range of private address you want to be passed without translation If you want the Pass rule to act on only one address type that address in both fields 4 Follow steps 7 12 under The NAPT Rule on page 70 to submit your changes ...

Page 90: ...ll communicate with higher level DNS servers when the name cannot be found locally When the address is found it is sent back to the requesting PC and is referenced in IP packets for the remainder of the communication Assigning DNS Addresses Multiple DNS addresses are useful to provide alternatives when one of the servers is down or is encountering heavy traffic ISPs typically provide primary and s...

Page 91: ... PCs or in the DHCP pool the DNS relay feature is not used Configuring DNS Relay When you specify the ADSL Barricade s LAN port IP addresses as the DNS addresses then the device automatically performs DNS relay i e because the device itself is not a DNS server it forwards domain name lookup requests it receives from the LAN PCs to a DNS server at the ISP It then relays the DNS server s response to...

Page 92: ...ned through PPP If Use DNS is not enabled or if a protocol other than PPP is used such as EoA then these configured addresses will be used as the primary and secondary DNS addresses Follow these steps to configure DNS relay 1 Configure the LAN PCs to use the ADSL Barricade s LAN IP addresses as their DNS server addresses by assigning the LAN IP address statically to each PC or by inputting the LAN...

Page 93: ...ck Submit 3 Click the Admin tab and then click Commit Reboot in the task bar 4 Click Commit to save your changes to the permanent memory Note DNS addresses that are assigned to LAN PCs prior to enabling DNS relay will remain in effect until the PC is rebooted DNS relay will only take effect when a PC s DNS address is the LAN IP address Similarly if after enabling DNS relay you specify a DNS addres...

Page 94: ...ards that handle telephone calls When you dial a long distance telephone number you are first connected to a switchboard operated by your local phone service carrier All calls you initiate go first to this main switchboard If the phone number you dialed is outside your calling area the switchboard opens a connection to a higher level switchboard for long distance calls That switchboard looks at th...

Page 95: ...ll transactions are initially sent to the same switchboard or router which serves as a gateway to other higher or lower level devices No single device knows at the outset the eventual path the data will take but each uses a specific part of the destination address phone number to make a decision about which device to connect to next Hops and gateways Each time Internet data are passed from one Int...

Page 96: ...t device will forward the data to its default gateway Eventually a high level device using a predefined IP route will be able to forward the data along a path to its destination Do I need to define IP routes Most users do not need to define IP routes On a typical small home or office LAN the existing routes that set up the default gateways for your LAN computers and for the ADSL Barricade provide ...

Page 97: ... two or more networks or subnets if you connect to two or more ISP services or if you connect to a remote corporate LAN Viewing the IP Routing Table All IP enabled computers and routers maintain a table of IP addresses that are commonly accessed by their users For each of these destination IP addresses the table lists the IP address of the first hop the data should take This table is known as the ...

Page 98: ...of network masks NextHop This field specifies the next IP address to send data to when its final destination is that shown in the Destination column IFName This field displays the name of the interface on the device through which data is forwarded to the specified next hop Route Type This field displays whether the route is Direct or Indirect In a Direct route the source and destination computers ...

Page 99: ...tion of these fields refer to the table on page 93 To create a route that defines the default gateway for your LAN enter 0 0 0 0 in both the Destination and Netmask fields Enter your ISP s IP address in the Gateway NextHop field Note You cannot specify the interface name route type or route origin These parameters are used only for routes that are identified automatically as the device communicate...

Page 100: ...Confirmation page click Close to return to the IP Route Table page The IP Routing Table will now display the new route 5 Click the Admin tab and then click Commit Reboot in the task bar 6 Click Commit to save your changes to the permanent memory ...

Page 101: ...cation or on remote networks connected to your network via the ADSL line Generally RIP is used to enable communication on autonomous networks An autonomous network is one in which all of the computers are administered by the same entity An autonomous network may be a single network or a grouping of several networks under the same administration An example of an autonomous network is a corporate LA...

Page 102: ...DSL Barricade The ADSL Barricade and the router will need to communicate via RIP to share their routing tables Your network connects via the ADSL line to a remote network such as a corporate network In order for your LAN to learn the routes used within your corporate network they should both be configured with RIP Your ISP requests that you run RIP for communication with devices on their network C...

Page 103: ...sable the RIP feature and a table listing interfaces on which the protocol is currently running The first time you open this page the table may be empty 2 If necessary change the Age seconds and Update Time seconds These are global settings for all interfaces that use RIP Age seconds is the amount of time in seconds that the device s RIP table will retain each route that it learns from adjacent co...

Page 104: ...with the lowest hop count is considered the fastest path For example if you assign this port a metric of 1 then RIP will add 1 to the hop count when calculating a route that passes through this port If you know that communication via this interface is slower than through other interfaces on your network you can assign it a higher metric value than the others You can select any integer from 1 to 15...

Page 105: ...RIP entry will display in the table 7 Click the Enable radio button to enable the RIP feature Note If you disable the RIP feature the interface settings you have configured will remain available for future activation 8 When you are finished defining RIP interfaces click Submit A page appears to confirm your changes 9 Click the Admin tab and then click Commit Reboot in the task bar 10 Click Commit ...

Page 106: ...ation page you can click Global Stats to view statistics on attempts to send and receive route table data over RIP enabled interfaces on the ADSL Barricade Figure 32 RIP Global Statistics Page You can click Clear to reset all statistics to zero and Refresh to display any newly accumulated data ...

Page 107: ...Wide Area Network WAN that connects you to your ISP the ATM protocol performs functions like those that the Ethernet protocol performs on your LAN This section describes how to configure the ATM virtual circuit VC The VC properties define the path the ADSL Barricade uses to communicate with your ISP over the ATM network Viewing Your ATM VC To view your current configuration log into the Configurat...

Page 108: ...s identify a unique ATM data path for communication between your ADSL Barricade and your ISP Max Proto per AAL5 If you are using an AAL5 type of interface this setting indicates the number of higher level interfaces that the VC can support the higher level interfaces can be PPP EoA or IPoA interfaces Contact your ISP to determine which connection protocol s they require Action s This field display...

Page 109: ...the ATM VC Configuration page click Add The ATM VC Add page appears as shown in Figure 34 Figure 34 ATM VC Add Page 2 Select an interface name from the VC Interface drop down list 3 Enter the VPI and VCI values assigned by your ISP and select the Mux Type from the drop down list 4 In the Max Proto per AAL5 text box enter the number of protocols that the ISP indicated that you will need to configur...

Page 110: ...rom a LAN USB computer Contact your ISP for troubleshooting assistance 7 When you have verified that the new settings work properly click the Admin tab and then click Commit Reboot in the task bar 8 Click Commit to save your changes to the permanent memory Modifying ATM VCs Your device may already be preconfigured with the necessary ATM VC properties or the table may contain placeholder values tha...

Page 111: ...ou want to change the interface type you must delete the existing interface create a new one and select the desired interface type 3 Click Submit 4 On the Confirmation page click Close to return to the ATM VC Configuration page 5 Click the Admin tab and then click Commit Reboot in the task bar 6 Click Commit to save your changes to permanent memory You can verify that the new settings work by atte...

Page 112: ...trol various communication properties including Identifying the type of service the ISP provides to a given customer Identifying the customer to the ISP through a username and password login Enabling the ISP to assign Internet information to the customer s computers Your ISP may or may not use the PPP protocol Contact your ISP to determine if you will need to change the default settings in order t...

Page 113: ...ined with more than one group of PPP settings Each group of settings is called a PPP interface and is given a name such as ppp 0 ppp 1 etc You can configure the following settings on the Point to Point Protocol PPP Configuration page Inactivity TimeOut mins This is the time in minutes that must elapse before a PPP connection times out due to inactivity Ignore WAN to LAN traffic while monitoring in...

Page 114: ... your LAN such as the Ethernet interface Packets received on a private interface are subject to a less restrictive set of protections because they originate within the network The term DMZ de militarized zone in Internet networking terms refers to computers that are available for both public and in network accesses such as a company s public Web server Packets incoming on a DMZ interface whether f...

Page 115: ...erver types WINS SMTP POP3 etc these server types are listed on the DHCP Server Configuration page Use DNS When set to Enable the DNS address learned through the PPP connection will be distributed to clients of the device s DHCP server This option is useful only when the ADSL Barricade is configured to act as a DHCP Server for your LAN When set to Disable LAN hosts will use the DNS address preconf...

Page 116: ...efined on page 111 the PPP Interface Detail page displays these fields Field Description Status Indicates whether the interface has been specified in the system as Enabled A connection will be established for use when the device is turned on or rebooted Disabled The PPP interface cannot currently be used Start The PPP connection will be made only when data is sent to the interface e g when a LAN u...

Page 117: ... not receive a confirmation packet from the ISP Stopped by User The user stopped the connection for example by changing the Configuration Manager settings for the PPP interface No Activity The PPP communication timed out in accordance with the timeout period specified on the PPP Configuration page Auth Failure The ISP could not authorize the connection based on the user name and or password provid...

Page 118: ...erties for a PPP interface 1 From the Point to Point Protocol PPP Configuration Page click Add The PPP Interface Add page appears as shown in Figure 38 Figure 38 PPP Interface Add Page Security Protocol This field indicates the type of PPP security your ISP uses PAP Password Authentication Protocol CHAP Challenge Handshake Authentication Protocol Login Name This is the name you use to log in to yo...

Page 119: ...e defined if you are using PPPoE Check with your ISP which version of the protocol they require The fields are defined in the tables on pages 111 and 114 3 Click Submit A page appears to confirm your changes 4 Click Close to return to the Point to Point Protocol PPP Configuration page and view the new interface in the table 5 Click the Admin tab and then click Commit Reboot in the task bar 6 Click...

Page 120: ...her settings you must delete the interface and create a new one To delete a PPP Interface display the Point to Point Protocol PPP Configuration page and click in the Action column for the interface you want to delete You should not delete a PPP Interface unless you have received instructions to do so from your ISP Without an appropriately defined PPP Interface you may not be able to connect to you...

Page 121: ...rovide a bridged connection between a DSL modem and the ISP In a bridged connection data is shared between the ISP s network and their customer s as if the networks were on the same physical LAN Bridged connections do not use the IP protocol EOA can also be configured to provide a routed connection with the ISP which uses the IP protocol to exchange data Before creating an EOA interface or modifyi...

Page 122: ...our current EOA configuration log into Configuration Manager and click WAN in the task bar Then click EOA Figure 40 shows the RFC1483 Ethernet over ATM EOA Config page Figure 40 RFC1483 Ethernet over ATM EOA Config Page The EOA table contains a row for each EOA interface currently defined on the device The table may contain no entries if your ISP does not use the EOA protocol ...

Page 123: ...b server Packets incoming on a DMZ interface whether from a LAN or external source are subject to a level of protection that is in between those for public and private interfaces Lower interface EOA interfaces are defined in software and then associated with lower level software and hardware structures at the lowest level they are associated with a physical port the WAN port This field should refl...

Page 124: ...rface if any as its default route for your LAN Your system can have only one default route Gateway Address The external IP address that the ADSL Barricade communicates with via the EOA interface to gain access to the Internet This is typically an ISP server Status A green or red ball will display to indicate that the interface is currently up or down respectively You cannot manually enable or disa...

Page 125: ...Interface drop down list 4 From the Interface Sec Type drop down list select the level of IP Firewall to be used on this interface as defined on page 121 5 In the Lower Interface field select the lower level interface name over which this protocol is being configured If you are using the ADSL Barricade as a bridge only skip to step 10 6 If you are using the ADSL Barricade as a router on your LAN e...

Page 126: ...ssary 8 If you want the EOA interface to serve as the default route for Internet access for your LAN click the Enable radio button in the Default Route field 9 In the Gateway IP Address field enter the address of the Internet computer to contact in order to gain initial access to the Internet 10 Click Submit A Confirmation page appears to confirm your changes 11 Click Close to return to the RFC148...

Page 127: ...ed only in product development and test environments to eliminate unneeded variables when evaluating IP layer processing Viewing Your IPoA Interface Setup To configure an IPoA interface log into Configuration Manager click the WAN tab and then click IPoA in the task bar The IP over ATM IPoA Configuration page appears as shown in Figure 42 Figure 42 IP over ATM IPoA Configuration Page The IPoA tabl...

Page 128: ...of security protections in effect on the interface Public Private or DMZ A Public interface connects to the Internet IPoA interfaces are typically public Packets received on a public interface are subject to the most restrictive set of firewall protections defined in the software A Private interface connects to your LAN such as the Ethernet interface Packets received on a private interface are sub...

Page 129: ...external IP address that the ADSL Barricade communicates with via the IPoA interface to gain access to the Internet This is typically an ISP server Status A green or red ball will appear to indicate that the interface is currently up or down respectively You cannot manually enable or disable the interface a down interface may indicate a problem with the DSL connection Action This field displays ic...

Page 130: ...adio button if the interface complies with the IETF specification RFC 1577 Otherwise click the No radio button then click Add 6 If you want the IPoA interface to serve as the default route for your LAN click the Enable radio button in the Default Route field 7 In the Gateway IP Address field enter the address of the Internet computer to contact to gain initial access to the Internet 8 Select the L...

Page 131: ...mputer or device on both or all networks it is attached to It learns that some of the IDs represent computers attached via one of the device s interfaces and others represent computers connected via other interfaces For example the hardware IDs of your home computers are attached via the Ethernet port and the hardware IDs of your ISP s computers are attached via the WAN DSL port It stores the ID l...

Page 132: ...mine which next router to send the data to if the destination is not on a connected network Bridges cannot read IP information but instead refer to the hardware ID of the destination computer which is also included in data packets Hardware IDs are unique numbers that manufacturers assign to each piece of hardware they sell A bridge learns to recognize the hardware IDs accessible through each of it...

Page 133: ...rovide router functionality for your LAN Your LAN may include computers that communicate using layer 3 protocols other than the Internet Protocol These include IPX and AppleTalk In this case the device can be configured to act as a bridge for packets that use these protocols while continuing to serve as a router for IP data Defining Bridge Interfaces To enable bridging you have to specify the devi...

Page 134: ...t is considered IP enabled and will route rather than bridge IP packets received on the interface The interface will however bridge the non IP data it receives You can determine whether the Ethernet eth 0 and USB usb 0 interfaces have to be assigned IP addresses by displaying the IP Address Table display the Routing tab and click IP Address The interfaces will appear in the table only if they have...

Page 135: ...uration page 7 Click the Admin tab Click Commit Reboot in the task bar 8 Click Commit to save your changes to the permanent memory Deleting a Bridge Interface To make an interface non bridgeable display the Bridge Configuration page and click next to the interface you want to delete Click OK to confirm the deletion The interface remains defined in the system but is no longer capable of performing ...

Page 136: ...es to your LAN You can also specify how to monitor attempted attacks and who should be automatically notified Configuring Global Firewall Settings Follow these instructions to configure global firewall settings 1 Log into the Configuration Manager click the Services tab Then click Firewall in the task bar The Firewall Configuration page appears as shown in Figure 45 Figure 45 Firewall Configuratio...

Page 137: ... LAN IP address as the source address Tear Drop Sending packets that contain overlapping fragments Smurf and Fraggle Sending packets that use the WAN or LAN IP broadcast address as the source address Land Attack Sending packets that use the same address as the source and destination address Ping of Death Illegal IP packet length Dos Protection Click the Enable radio button to use the following den...

Page 138: ...l settings will be tracked Records of such events can be sent via Ethernet to be handled by a system utility Ethernet to Trace or be e mailed to specified administrators E mail ID of Admin 1 E mail ID of Admin 2 E mail ID of Admin 3 This field specifies the e mail addresses of the administrators who should receive notices of any attempted firewall violations Type the addresses in standard internet...

Page 139: ... page The Firewall Blacklisted Hosts page appears as shown in Figure 46 Figure 46 Firewall Blacklisted Hosts Page The table displays the following information for each entry Field Description Host IP Address This is the IP address of the computer that sent the packet s that caused the violation Reason This is a short description of the type of violation If the packet violated an IP filter rule the...

Page 140: ...otocols feature enables you to simply select from a predefined list the protocol that you want to block All data passed to the ADSL Barricade using a blocked protocol will be discarded without consideration of the source computer destination computer or the device interface on which it was received Configuring IP Filters When you define an IP filter rule and enable the feature you instruct the ADS...

Page 141: ...ger click the Services tab and then click IP Filter in the task bar The IP Filter Configuration page appears as shown in Figure 47 Figure 47 IP Filter Configuration Page The IP Filter Configuration page displays global settings that you can modify and the IP filter rule table which shows all currently established rules See Creating IP Filter Rules on page 143 for a description of the items that ma...

Page 142: ...fault action Accept or Deny to be taken on Private Public or DMZ type device interfaces when they receive packets that do not match any of the filtering rules You can specify a different default action for each interface type You specify an interface s type when you create the interface see the PPP configuration page for example A Public interface typically connects to the Internet PPP EoA and IPo...

Page 143: ...ction The term DMZ de militarized zone in Internet networking terms refers to computers that are available for both public and in network accesses such as a company s public Web server Packets received on a DMZ interface whether from a LAN or an external source are subject to a set of protections that is in between Public and Private interfaces in terms of restrictiveness The global setting for DM...

Page 144: ...eria that must be met in order for the rule to be invoked Use these instructions to add a new IP filter rule and refer to the examples on page 149 for assistance 1 On the IP Filter Configuration page click Add The IP Filter Rule Add page appears as shown in Figure 48 Figure 48 IP Filter Rule Add Page ...

Page 145: ...the Internet You can use rules that specify the incoming direction to restrict external computers from accessing your LAN Interface This is the interface on the ADSL Barricade on which the rule will take effect See the examples on page 149 for suggestions on choosing the appropriate interface for various rule types In Interface This is the interface from which packets must have been forwarded to t...

Page 146: ...e inactive Blacklist Status This field specifies whether or not a violation of this rule will result in the offending computer s IP address being added to the Blacklist which blocks the ADSL Barricade from forwarding packets from that source for a specified period of time See Configuring Firewall Settings on page 135 for instructions Log Tag This is a description of up to 16 characters to be recor...

Page 147: ...out of range any source IP address that is outside the specified range self the IP address of the ADSL Barricade interface on which this rule takes effect bcast destination address only specifies that the rule will be invoked for any packets sent to the broadcast address for the receiving interface The broadcast address is used to send packets to all hosts on the LAN or subnet connected to the spe...

Page 148: ...lected TCP or UDP as the protocol See the description of Src IP Address for the statement options any eq gt etc TCP Flag This field specifies whether the rule should apply only to TCP packets that contain the synchronous SYN flag only to those that contain the non synchronous NOT SYN flag or to all TCP packets This field will be dimmed unavailable for entry unless you selected TCP as the protocol ...

Page 149: ...eir packet headers Yes The rule will be applied only to packets that contain header options No The rule will be applied only to packets that do not contain header options Ignore Default The rule will be applied to packets whether or not they contain header options assuming that they match the other criteria Packet Size This field specifies that the IP filter rule will take affect only on packets w...

Page 150: ...nt from the globally configured level 4 Make sure that the Security Level the Private Default Action Public Default Action and DMZ Default Action settings on the IP Filter Configuration page are configured as needed then click Submit A page appears to confirm your changes 5 Click the Admin tab and then click Commit Reboot in the task bar 6 Click Commit to save your changes to the permanent memory ...

Page 151: ...ate Default Action and the Public Default Action to Accept 8 Click Submit and commit your changes Figure 51 shows the configuration for this rule The specified computer will not be able to access the Web but will be able to access FTP Internet sites and any others that use destination port numbers other than 80 Example 2 Blocking Telnet accesses to the ADSL Barricade 1 Add a new rule for packets i...

Page 152: ...or each rule you can view statistics on how many packets were accepted or denied Display the IP Filter Configuration page and then click Stats in the row corresponding to the rule The IP Filter Rule Statistics page appears as shown in Figure 50 Figure 50 IP Filter Rule Statistics Page You can click Clear to reset the count to zero and Refresh to display newly accumulated data ...

Page 153: ...on of the communication The ADSL Barricade allows a fixed number of concurrent IP sessions You can view information about each current IP session and delete sessions for security reasons for example To view all current IP sessions display the IP Filter Configuration page and then click Session The IP Filter Session appears as shown in Figure 51 Figure 51 IP Filter Session Page ...

Page 154: ...as TCP UDP IGMP etc I F This is the interface on which the IP filter rule is effective IP Address This is the IP addresses involved in the communication The first one shown is the initiator of the communication Port This field displays the hardware addresses of the ports involved in the communication In Rule Index Out Rule Index These fields display the number of the IP filter rule that applies to...

Page 155: ...rticular protocol is not needed or wanted on your network this feature provides a convenient way to discard such data before it is passed To display the Blocked Protocols page click the Services tab and then click Blocked Protocols in the task bar The Blocked Protocols page appears as shown in Figure 52 Figure 52 Blocked Protocols Page Warning Blocking certain protocols may disrupt or disable your...

Page 156: ... networking protocol used for Apple Macintosh networks NetBEUI This is the abbreviation of NetBIOS Enhanced User Interface On many LAN operating systems the NetBEUI protocol provides the method by which computers identify themselves to and communicate with each other IPX This is the abbreviation of Internet work Packet Exchange A networking protocol used on Novell Netware based LANs BPDU This is t...

Page 157: ...ock a protocol click the appropriate check box and click Submit After you have verified that the device continues to function as expected click the Admin tab Click Commit Reboot in the task bar then click Commit to save your changes to the permanent memory ...

Page 158: ...tus Page The DSL Status page displays current information on the DSL line performance The page refreshes according to the setting in the Refresh Rate drop down list which you can configure In the DSL Status table the Operational Status setting displays a red orange or green ball to indicate that the DSL line is idle starting up or up and running respectively You can click Loop Stop to end the DSL ...

Page 159: ...zero and Refresh to display the page with newly accumulated values You can click DSL Param to display data about the configuration of the DSL line as shown in Figure 54 Figure 54 DSL Parameter Page The DSL Parameters and Status table displays settings preconfigured by the product manufacturer or your ISP The Config Data table lists various types of error and defects measurements found on the DSL l...

Page 160: ...s page you can click Stats to display DSL line performance statistics as shown in Figure 55 Figure 55 DSL Statistics Page The DSL Statistics page reports error data relating to the last 15 minute interval the current day and the previous day ...

Page 161: ...rs table displays links you can click on to display detailed data for each 15 minute interval in the past 24 hours For example when you click on 1 4 the data appear for the 16 intervals 15 minutes each that make up the previous 4 hours Figure 56 shows an example Figure 56 DSL Interval Statistics Page ...

Page 162: ...in tasks listed in the Admin tab Configuring User Logon Committing and Rebooting are described in Getting Started with the Configuration Manager Configuring User Names and Passwords The ADSL Barricade is configured with a default user name and password combination or login for accessing the Configuration Manager If you want to allow other users to access the program you can create additional user ...

Page 163: ...he features available in Configuration Manager The default login has root level privileges User level privileges enable the user to login and view but not create or modify system information These users can change their own password however To create additional logins or modify them follow these instructions 1 Log into Configuration Manager using the default user name and password and then click t...

Page 164: ...ain spaces or special characters The password can be up to eight characters Be sure to retype the password in the Confirm Password text box exactly as before including lower and upper case characters 4 Click Submit 5 Click the Admin tab and then click Commit Reboot in the task bar 6 Click Commit to save your changes to the permanent memory You cannot change or delete the default login To delete a ...

Page 165: ...rom the User Configuration page click next to the login whose password you want to modify The User Config Modify page displays as shown in Figure 57 2 Figure 57 2 User Config Modify page 2 Type the new password in exactly the same way in both text boxes The password can be up to eight ASCII characters long When loggin in you must type the New password in the same upper and lower case characters th...

Page 166: ...t all alarms indicate problems in the functioning of the system Viewing the Alarm Table To display the Alarm page log into the Configuration Manager click the Admin tab and then click Alarm in the task bar The Alarm page is shown in Figure 58 Figure 58 Alarm Page Each row in the table displays the time and date that an alarm occurred the type of alarm and a brief statement indicating its cause You...

Page 167: ...n Manager provides an easy way to upload a new software image or a specific part of the image to the memory on the ADSL Barricade To upgrade the image follow this procedure Local Image Upgrade 1 Log into the Configuration Manager click the Admin tab Then click Local Image Upgrade in the task bar The Local Image Upgrade page is shown in Figure 59 Figure 59 Local Image Upgrade Page 2 In the Upgrade ...

Page 168: ...ade process A status page will appear Automatically when loading is completed about 1 minute 4 When loading is complete the following message appears the file name may differ File TEDsl gsz successfully saved to flash Please reboot for the new image to take effect Turn power to the unit off wait a few seconds and turn it on again The new software will now be running If the system fails to boot or ...

Page 169: ...m which the file is to be downloaded Contact your ISP if you do not have this information 3 In the Upgrade File text box type the complete name of the file to be downloaded Note The name of the upgrade file must be one of the following TEImage bin TEPatch bin 4 In the Username and Password fields type the information required to log on the ISP s server if needed 5 Click Upload An alert window pops...

Page 170: ...n refresh your browser and log in again to the device Using Diagnostics The diagnostics feature executes a series of tests of your system software and hardware connections Use this feature when working with your ISP to troubleshoot problems Follow these instructions to begin the diagnostics program 1 Log into the Configuration Manager click the Admin tab Then click Diagnostics in the task bar Figu...

Page 171: ...w of IP port numbers The header information in an IP data packet specifies a destination port number Routers use the port number along with the specified IP addresses to forward the packet to its intended recipient For example all IP data packets that the ADSL Barricade receives from the Internet specify the same IP address your public IP address as the destination However depending on the port nu...

Page 172: ...scenario that you also want to enable external access to the ADSL Barricade s Configuration Manager so that your ISP can log in and manager your system for example Accessing the Configuration Manager requires accessing the ADSL Barricade s own Web server also called its HTTP server In this case you would want to use the Port Settings feature to assign a non standard port number to the ADSL Barrica...

Page 173: ... Port Settings Page 2 Type the new port number s in the appropriate text box es and click Submit The default port numbers are shown in Figure 64 You can enter non standard port numbers in the range 61000 62000 3 Click Commit Reboot in the task bar and click Commit to save your changes to the permanent memory 4 On the Commit Reboot page click Reboot Note The new settings will not be effective until...

Page 174: ... dots periods e g 20 56 0 211 These numbers are called from left to right field1 field2 field3 and field4 This style of writing IP addresses as decimal numbers separated by dots is called dotted decimal notation The IP address 20 56 0 211 is read twenty dot fifty six dot zero dot two eleven Structure of an IP address IP addresses have a hierarchical design similar to that of telephone numbers For ...

Page 175: ...ends on the network s class see following section Table 4 shows the structure of an IP address Table 4 IP Address structure Here are some examples of valid IP addresses Class A 10 30 6 125 network 10 host 30 6 125 Class B 129 88 16 49 network 129 88 host 16 49 Class C 192 60 201 11 network 192 60 201 host 11 Field 1 Field 2 Field 3 Field 4 Class A Network ID Host ID Class B Network ID Host ID Clas...

Page 176: ...quite large each capable to hold over 65 000 hosts There can be up to 16 384 class B networks in existence A class B network might be appropriate for a large organization such as a business or government agency Class C networks are the smallest only able to hold 254 hosts at most but the total possible number of class C networks exceeds 2 million 2 097 152 to be exact LANs connected to the Interne...

Page 177: ...ppening if we write this in binary 11111111 11111111 11111111 10000000 As with any class C address all of the bits in field1 through field3 are part of the network ID but note how the mask specifies that the first bit in field4 is also included Since this extra bit has only two values 0 and 1 this means there are two subnets Each subnet uses the remaining 7 bits in field4 for its host IDs which ra...

Page 178: ...endix A 177 These masks are Class A 255 0 0 0 Class B 255 255 0 0 Class C 255 255 255 0 These are called default because they are used when a network is initially configured at which time it has no subnets ...

Page 179: ...ink grade school Base ten is just another name for decimal Similarly base two is binary Just as each digit in a decimal number represents a multiple of 10 1 10 100 1000 10 000 etc each digit in a binary number represents a multiple of 2 1 2 4 8 16 etc For example Decimal Binary 1 000 s 100 s 10 s 1 s 8 s 4 s 2 s 1 s 1 3 1 1 0 1 Also since binary uses only two digits to represent all numbers a bina...

Page 180: ...it is a single binary digit i e 0 or 1 A byte is a group of eight consecutive bits the number of bits can vary with computers but is almost always eight e g 11011001 The value of a byte ranges from 0 00000000 to 255 11111111 The following shows the values of the eight digits in a byte along with a sample value 128 s 64 s 32 s 16 s 8 s 4 s 2 s 1 s 1 0 1 0 1 1 0 1 The decimal value of this byte is 1...

Page 181: ...phone jack Allow about 30 seconds for the device to negotiate a connection with your ISP o Verify that the Ethernet cable is securely connected to your LAN hub or PC and to the ADSL Barricade Make sure that the PC and or hub is turned on Verify that you are using a straight through type Ethernet cable to the uplink port on a hub If you connected the device to an ordinary hub port not Uplink you mu...

Page 182: ...our public IP address see Quick Start Configuring Your Computers on page 15 for instructions on viewing the IP information If it is not correct the address or configure the PC to receive IP information automatically Verify with your ISP that the DNS server specified for the PC is valid Correct the address or configure the PC to receive this information automatically Verify that a Network Address T...

Page 183: ...ch as a pen tip Then type the default User ID and password shown above Warning Resetting the device removes the custom settings and returns all settings to their default values o Use the ping utility discussed in the following section to check whether your PC can communicate with the ADSL Barricade s LAN IP address by default 192 168 1 1 If it cannot check the Ethernet cabling Verify that you are ...

Page 184: ... which you are trying to communicate On Windows based computers you can execute a ping command from the Start menu Click the Start button and then click Run In the Open text box type a statement such as the following ping 192 168 1 1 Click OK You can substitute any private IP address on your LAN or a public IP address for an Internet site if known If the target computer receives the message a Comm...

Page 185: ...and Prompt or through a system administration utility o Nslookup You can use the nslookup command to determine the IP address associated with an internet site name You specify the common name and the nslookup command looks up the name in on your DNS server usually located with your ISP If that name is not an entry in your ISP s DNS table the request is then referred to another higher level server ...

Page 186: ...igure 63 Using the nslookup Utility There may be several addresses associated with an Internet name This is common for web sites that receive heavy traffic they use multiple redundant servers to carry the same information To exit from the nslookup utility type exit and press Enter at the command prompt ...

Page 187: ...stream Software ATM Subsystem Supports up to 64 Virtual Channel Connections VCCs Supports UBR GFR CBR and VBR service classes Provides adaptation layer AAL5 functionality Performs the traffic shaping and scheduling per ATM port Supports PPP encapsulation over ATM PPPoA and PPP over Ethernet PPPoE Supports IP over ATM IPoA Support for F5 and loopback cells Data Subsystem User Datagram Protocol UDP ...

Page 188: ...Embedded firewall prevents DOS IP spoofing and other common types of attacks TFTP client server DHCP client server Telnet server HTTP server FTP client server Network Management DSL Forum TR37 compliant auto configuration using ILMI to set up access protocols and other settings SNMP v1 over DSL or Ethernet for access to the MIB II CLI Command Line Interface via serial interface or Telnet over Ethe...

Page 189: ... 3u 100 Base Tx Fast Ethernet Operating System Support Windows 98 first and second edition Windows Me Windows 2000 Windows XP Windows NT Environmental Operating Range Operating temperature 0 40 degrees Celsius Humidity 0 90 non condensing Power Dissipation The typical approximated power dissipation is as below Power Dissipation for RL800G Active typical 0 5A ...

Page 190: ...Technical Specifications 190 Power Input 12V 1 2A Weight 545g Dimensions 20 x 14 8 x 3 9 cm LxWxH Electromagnetic Compatibility CE R TTE FCC part 15 class B and FCC part 68 Safety CSA UL 1950 EN60950 ...

Page 191: ...te The asymmetrical rates benefit home users because they typically download much more data from the Internet than they upload analog Of data having a form is analogous to the data s original waveform The voice component in DSL is an analog signal See also digital ATM Asynchronous Transfer Mode A standard for high speed transmission of data text voice and video widely used within the Internet ATM ...

Page 192: ...nsfers by using network addresses instead The ADSL Barricade can perform both routing and bridging Typically when both functions are enabled the device routes IP data and bridges all other types of data See also routing broadband A telecommunications technology that can send different types of data over the same medium DSL is a broadband technology broadcast To send data to all computers on a netw...

Page 193: ...omputers on a LAN See DHCP digital Of data having a form based on discrete values expressed as binary numbers 0 s and 1 s The data component in DSL is a digital signal See also analog DNS Domain Name System The DNS maps domain names into IP addresses DNS information is distributed hierarchically throughout the Internet among computers called DNS servers When you start to access a web site a DNS se...

Page 194: ...ir wiring Ethernet data rates are 10 Mbps and 100 Mbps See also BASE T 100BASE T twisted pair filtering To screen out selected types of data based on filtering rules Filtering can be applied in one direction upstream or downstream or in both directions filtering rule A rule that specifies what kinds of data a routing device will accept and or reject Filtering rules are defined to operate on an int...

Page 195: ...ugh the Internet it is sent first from your computer to a router and then from one router to another until it finally reaches a router that is directly connected to the recipient Each individual leg of the data s journey is called a hop hop count The number of hops that data has taken on its route to its destination Alternatively the maximum number of hops that a packet is allowed to take before b...

Page 196: ... used for both private and business communications intranet A private company internal network that looks like part of the Internet users access information using web browsers but is accessible only by employees IP See TCP IP IP address Internet Protocol address The address of a host computer on the Internet consisting of four numbers each from 0 to 255 separated by periods e g 209 191 4 240 An IP...

Page 197: ...of characters mask See network mask Mbps Abbreviation for Megabits per second or one million bits per second Network data rates are often expressed in Mbps Microfilter In splitterless deployments a microfilter is a device that removes the data frequencies in the DSL signal so that telephone users do not experience interference noise from the data signals Microfilter types include in line installs ...

Page 198: ...to 0 mean ignore this bit For example if the network mask 255 255 255 0 is applied to the IP address 100 10 50 1 the network ID is 100 10 50 and the host ID is 1 See also binary IP address subnet NIC Network Interface Card An adapter card that plugs into your computer and provides the physical interface to your network cabling which for Ethernet NICs is typically an RJ 45 connector See Ethernet RJ...

Page 199: ...nd PPPoE See also PPPoA PPPoE PPPoA Point to Point Protocol over ATM One of the two types of PPP interfaces you can define for a Virtual Circuit VC the other type being PPPoE You can define only one PPPoA interface per VC PPPoE Point to Point Protocol over Ethernet One of the two types of PPP interfaces you can define for a Virtual Circuit VC the other type being PPPoA You can define one or more P...

Page 200: ...ination IP address and current network conditions A device that performs routing is called a router rule See filtering rule NAT rule SDNS Secondary Domain Name System server A DNS server that can be used if the primary DSN server is not available See DNS SNMP Simple Network Management Protocol The TCP IP protocol used for network management splitter A device that splits off the voice component of ...

Page 201: ...nected to the rest of the parent network but they are treated as though they were on a separate network See also network mask subnet mask A mask that defines a subnet See also network mask TCP See TCP IP TCP IP Transmission Control Protocol Internet Protocol The basic protocols used on the Internet TCP is responsible for dividing data up into packets for delivery and reassembling them at the desti...

Page 202: ...inductance and noise Each telephone line uses one pair In homes it is most often installed with two pairs For Ethernet LANs a higher grade called Category 3 CAT 3 is used for 10BASE T networks and an even higher grade called Category 5 CAT 5 is used for 100BASE T networks See also 10BASE T 100BASE T Ethernet upstream The direction of data transmission from the user to the Internet VC Virtual Circu...

Page 203: ... Microsoft Internet Explorer See also HTTP web site WWW Web page A web site file typically containing text graphics and hyperlinks cross references to the other pages on that web site as well as to pages on other web sites When a user accesses a web site the first page that is displayed is called the Home page See also hyperlink web site Web site A computer on the Internet that distributes informa...

Page 204: ...equipment into an outlet on a circuit different from that to which the receiver is connected Consult the dealer or an experienced radio TV technician for help Note In order to maintain compliance with the limits for a Class B digital device you are required to use a quality interface cable when connecting to this device Changes or modifications not expressly approved by our company could void the ...

Page 205: ...elephone network the telephone company may request you to remove the equipment from the network until the problem is resolved No repairs may be done by the customer This equipment cannot be used on telephone company provided coin service Connection to Party Line Service is subject to state tariffs When programming and or making test calls to emergency numbers Remain on the line and briefly explain...

Page 206: ...mily standard according to EN 55024 1998 Electrostatic Discharge according to EN 61000 4 2 1995 Contact Discharge 4 kV Air Discharge 8 kV Radio frequency electromagnetic field according to EN 61000 4 3 1996 80 1000 MHz with 1 kHz AM 80 Modulation 3 V m Electrical fast transient burst according to EN 61000 4 4 1995 AC DC power supply 1 kV Data Signal lines 0 5 kV Surge immunity test according to EN...

Page 207: ... die Netzanschlußleitung so daß niemand darüber fallen kann Es sollte auch nichts auf der Leitung abgestellt werden 10 Alle Hinweise und Warnungen die sich am Gerät befinden sind zu beachten 11 Wird das Gerät über einen längeren Zeitraum nicht benutzt sollten Sie es vom Stromnetz trennen Somit wird im Falle einer Überspannung eine Beschädigung vermieden 12 Durch die Lüftungsöffnungen dürfen niemal...

Page 208: ...fweist 15 Stellen Sie sicher daß die Stromversorgung dieses Gerätes nach der EN 60950 geprüft ist Ausgangswerte der Stromversorgung sollten die Werte von AC 7 5 8V 50 60Hz nicht über oder unterschreiten sowie den minimalen Strom von 1A nicht unterschreiten Der arbeitsplatzbezogene Schalldruckpegel nach DIN 45 635 Teil 1000 beträgt 70dB A oder weniger ...

Page 209: ...nty The Limited Lifetime warranty covers a product during the Life of that Product which is defined as a period of 5 years from the date of purchase of the product from SMC or its authorized reseller All products that are replaced become the property of SMC Replacement products may be either new or reconditioned Any replaced or repaired product carries either a 30 day limited warranty or the remai...

Page 210: ... LIMITATION OF LIABILITY IN NO EVENT WHETHER BASED IN CONTRACT OR TORT INCLUDING NEGLIGENCE SHALL SMC BE LIABLE FOR INCIDENTAL CONSEQUENTIAL INDIRECT SPECIAL OR PUNITIVE DAMAGES OF ANY KIND OR FOR LOSS OF REVENUE LOSS OF BUSINESS OR OTHER FINANCIAL LOSS ARISING OUT OF OR IN CONNECTION WITH THE SALE INSTALLATION MAINTENANCE USE PERFORMANCE FAILURE OR INTERRUPTION OF ITS PRODUCTS EVEN IF SMC OR ITS ...

Page 211: ...All information is subject to change without notice Limitation of Liability In no event whether based in contract or tort including negligence shall SMC be liable for incidental consequential indirect special or punitive damages of any kind or for loss of revenue loss of business or other financial loss arising out of or in connection with the sale installation maintenance use performance failure ...

Page 212: ......

Search results

Summary of Contents for Barricade SMC7401BRA

Reviews:

Related manuals for Barricade SMC7401BRA

Brands by name

Popular brands

SMC Networks Barricade SMC7401BRA, User Manual

Search results

Summary of Contents for Barricade SMC7401BRA

Reviews:

Related manuals for Barricade SMC7401BRA

Brands by name

Popular brands