BinTec R232a Скачать руководство пользователя страница 233 | Manualshive

Страница: 233 / 448

background image

Chapter 11 VPN

11.1 IPSec

IPSec enables secure connections to be set up between two locations (VPN). This enables
sensitive business data to be transferred via an unsecure medium such as the Internet.
The devices use function here as the endpoints of the VPN tunnel. IPSec involves a num-
ber of Internet Internet Engineering Task Force (IETF) standards, which specify mechan-
isms for the protection and authentication of IP packets. IPSec offers mechanisms for en-
crypting and decrypting the data transferred in the IP packets. The IPSec implementation
can also be smoothly integrated in a Public Key Infrastructure (PKI). The bintec IPSec im-
plementation achieves this firstly by using the Authentication Header (AH) protocol and En-
capsulated Security Payload (ESP) protocol, and secondly through the use of cryptograph-
ic key key administration mechanisms like the Internet Key Exchange (IKE) protocol.

11.1.1 IPSec Peers

An endpoint of a communication is defined as peer in a computer network. Each peer of-
fers its services and uses the services of other peers.

In the VPN -> IPSec -> IPSec Peers menu a list of all configured IPSec peers is shown.

Fig. 93:

VPN

->

IPSec

->

IPSec Peers

Funkwerk Enterprise Communications GmbH

11 VPN

bintec R200 Series

221

«
...
231
232
233
234
235
...
»

Содержание R232a

Страница 1: ...Manual bintec R200 Series Reference Copyright Version 5 0 2009 Funkwerk Enterprise Communications GmbH Funkwerk Enterprise Communications GmbH Manual bintec R200 Series 1...

Страница 2: ...ts no responsibility for data loss unwanted connection costs and damage caused by un intended operation of the product Trademarks funkwerk trademarks and the funkwerk logo bintec trademarks and the bi...

Страница 3: ...d connecting 12 2 5 Configuration 13 2 5 1 Preparations 13 2 5 2 Configuring the Gateway 20 2 5 3 Testing the Configuration 21 2 5 4 Reset 22 2 6 Support Information 23 Chapter 3 Technical data 24 3 1...

Страница 4: ...Connections 47 3 4 5 Pin Assignments 48 Chapter 4 Access and Configuration 51 4 1 Access Options 51 4 1 1 Access via LAN 51 4 1 2 Access via the Serial Interface 54 4 1 3 Access over ISDN 56 4 2 Logg...

Страница 5: ...strative Access 99 5 4 1 Access 99 5 4 2 SSH 100 5 4 3 SNMP 104 5 5 Remote Authentication 105 5 5 1 RADIUS 105 5 5 2 TACACS 110 5 5 3 Options 113 Chapter 6 Physical Interfaces 115 6 1 Ethernet Ports 1...

Страница 6: ...tual Service Sets 142 8 2 Administration 148 8 2 1 Basic settings 148 Chapter 9 Routing 150 9 1 Routes 150 9 1 1 IP Routes 150 9 1 2 Options 155 9 2 NAT 157 9 2 1 NAT Interfaces 157 9 2 2 Portforwardi...

Страница 7: ...7 10 2 2 Service Categories 212 10 2 3 OAM Controlling 215 10 3 Real Time Jitter Control 219 10 3 1 Controlled Interfaces 219 Chapter 11 VPN 221 11 1 IPSec 221 11 1 1 IPSec Peers 221 11 1 2 Phase 1 Pr...

Страница 8: ...l 280 12 1 Policies 281 12 1 1 Filter Rules 282 12 1 2 QoS 285 12 1 3 Options 287 12 2 Interfaces 288 12 2 1 Groups 289 12 3 Addresses 289 12 3 1 Address List 290 12 3 2 Groups 291 12 4 Services 292 1...

Страница 9: ...Pool 314 14 3 2 IP MAC Binding 317 14 3 3 DHCP Relay Setting 319 14 4 Web Filter 320 14 4 1 Global Settings 320 14 4 2 Filter List 322 14 4 3 Black White List 324 14 4 4 History 326 14 5 CAPI Server 3...

Страница 10: ...5 1 2 DNS Test 353 15 1 3 Traceroute Test 354 15 2 Software Configuration 354 15 2 1 Options 354 15 3 Reboot 358 15 3 1 System Reboot 359 Chapter 16 External Reporting 360 16 1 Syslog 360 16 1 1 Syslo...

Страница 11: ...1 1 System Messages 374 17 2 IPSec 375 17 2 1 IPSec Tunnels 375 17 2 2 IPSec Statistics 377 17 3 ISDN Modem 378 17 3 1 Current Calls 379 17 3 2 Call History 380 17 4 Interfaces 381 17 4 1 Statistics 3...

Страница 12: ...Table of Contents Funkwerk Enterprise Communications GmbH x bintec R200 Series...

Страница 13: ...ation How to get your device running is explained in Configuration on page 13 There we show you how to start up your device within a few minutes from a Windows PC with the help of a Configuration Wiza...

Страница 14: ...ice even if this is hundreds of miles away These local networks are connected via an ISDN only bintec R232a R232b and R232bw or DSL connection The size of your own local network whether it consists of...

Страница 15: ...and clearing the con nection Security firewall DynDNS Your gateway is provided with integrated firewall mechanisms and therefore provides ex tensive low cost features to meet all the requirements for...

Страница 16: ...evices have a powerful IPSec implementation and have with two active VPN tunnel licenses ex works In addition to encryption via AES or 3DES the devices offer authentica tion via certificates or presha...

Страница 17: ...also offer WLAN functionality The WLAN function al lows flexible use in wireless environments In addition to a 4 port switch and a further Ethernet port for the LAN WAN connection the bintec R230b and...

Страница 18: ...igation menus in the Funkwerk Configuration Interface The individual chapters also contain general explanations on the subsystem in question Glossary The glossary contains a reference to the most impo...

Страница 19: ...his manual Typographical elements Typographical element Use Indicates lists Menu Submenu File Open Indicates menus and sub menus non proportional Courier e g ping 192 168 1 254 Indicates commands that...

Страница 20: ...ed includes all the tools that you need for the configuration and management of your device The BRICKware contains useful applications for managing your device 2 2 System requirements For configuratio...

Страница 21: ...inst unauthorised use Make sure you change the passwords to prevent unauthorised access to your device see Access and Configuration on page 51 Software update Your device contains the version of the s...

Страница 22: ...the device 2 4 1 Connections All connections are located on the back of the device Fig 4 Back of bintec R230a R230b 1 Reset Reset button 2 PWR Socket for plug in power pack 3 Console Serial interface...

Страница 23: ...interface annex A 8 Main AUX RSMA connection Fig 6 Back of bintec R232a R232b 1 Reset Reset button 2 PWR Socket for plug in power pack 3 Console Serial interface 4 4 3 2 1 10 100 Base T Ethernet inte...

Страница 24: ...o damage your device Con nect only the ETH interface of the device to the LAN interface of the computer hub or a WAN interface if available and the ISDN interface of the device only to the ISDN con ne...

Страница 25: ...ied with the equipment However configuration via the serial interface is not provided by default The device is now prepared for configuration using the Express Setup Wizard 2 5 Configuration In this c...

Страница 26: ...e the given example values for IP addresses and netmasks In cases of doubt ask your system administrator Basic configuration For a basic configuration of your gateway you need information that relates...

Страница 27: ...ber and the co user number If you use T DSL you must add the character string t online de at the end of this string of numbers You username could for ex ample look like this 00012345678906112345678 00...

Страница 28: ...all The remote terminal must also know your details You have to agree this data between you Your device and the device at your head office check before every connection to see if they should take the...

Страница 29: ...as follows to check whether you have installed the protocol 1 Click the Windows Start button and then Settings Network and Dial up Connec tions Windows 2000 or Settings Network Connections Windows XP...

Страница 30: ...Click OK 4 Close the status window with OK The computer now has an IP configuration and can access the Internet via the gateway 2 5 1 3 Installing BRICKware BRICKware contains a number of programs to...

Страница 31: ...CD ROM drive of your PC The Start win dow will appear automatically after a short time If the Start window does not open automatically click your CD ROM drive in Windows Explorer and double click set...

Страница 32: ...ress line Follow the instructions Optional 1 On the bintec bintec Companion CD choose Installation and click the Configure Device button 2 Then follow the instructions to find a free IP address for th...

Страница 33: ...your device and can now test the connection in your LAN and to the Internet Carry out the following steps to test your device 1 Remove the serial cable from your device if this was connected and you...

Страница 34: ...eset button Proceed as follows if you also want to reset all the user passwords to the ex works state and delete stored configurations when resetting the device 1 Set up a serial connection to your de...

Страница 35: ...Support Center of Funkwerk Enterprise Communications GmbH under the follow ing call number or via the E mail Hotline 49 911 9673 1550 hotline funkwerk ec com For detailed information on our support se...

Страница 36: ...lug in power pack bintec Companion CD Documentation Quick Install Guide printed User s Guide on CD Release Notes if required Safety precautions 3 1 2 General Product Features The general product featu...

Страница 37: ...wer consumption of the device 4 7 Watt Voltage supply 12 V DC 500 mA EU PSU Environmental require ments Storage temperature 20 to 70 C Operating temperature 0 to 40 C Relative atmospheric hu midity 10...

Страница 38: ...s Guidelines R TTE Directive 1999 5 EC CE symbol for all EU states SAFERNET TM Security Technology Community Passwords PAP CHAP MS CHAP Access Con trol Lists NAT SIF Software supplied BRICKware for Wi...

Страница 39: ...ice is connected to the Ethernet 100 mbps or 10 mbps flashing Data traffic via the Ethernet Interface 100 mbps or 10 mbps ADSL on ADSL connection is active 3 1 4 Connections All the connections are lo...

Страница 40: ...rates from 1200 to 115200 Bps The interface is designed as a 5 pole mini USB socket Fig 11 5 pole mini USB socket The pin assignment is as follows Pin assignment of the mini USB socket Pin Function 1...

Страница 41: ...e an Auto MDI X function 3 1 5 3 ADSL interface The ADSL interface is connected via an RJ11 plug The cable supplied connects the RJ11 plug needed for the device to an RJ11 plug needed for most ADSL sp...

Страница 42: ...ntec Companion CD Documentation Quick Install Guide printed User s Guide on CD Release Notes if required Safety precautions 3 2 2 General Product Features The general product features cover performanc...

Страница 43: ...1x WLAN 1x Status 1x ADSL Power consumption of the device 4 7 Watt Voltage supply 12 V DC 800 mA EU PSU Environmental require ments Storage temperature 20 to 70 C Operating temperature 0 to 40 C Rela...

Страница 44: ...socket ADSL interface RJ11 socket SAFERNET TM Security Technology Community Passwords PAP CHAP MS CHAP Access Con trol Lists NAT SIF Software supplied BRICKware for Windows BRICKtools for Unix Printed...

Страница 45: ...the following status information for your device LED status display LED Status Information Power on The power supply is connected Status on The device has started flashing The device is active 1 to 4...

Страница 46: ...ug in power pack 3 Console Serial interface 4 4 3 2 1 10 100 Base T Ethernet interface 6 ADSL ADSL interface 8 Main AUX RSMA connection 3 2 5 Pin Assignments 3 2 5 1 Serial interface bintec R230aw has...

Страница 47: ...ernet 10 100 Base T interface RJ45 socket The pin assignment for the Ethernet 10 100 Base T interface RJ45 socket is as follows RJ45 socket for LAN connection Pin Function 1 TD 2 TD 3 RD 4 Not used 5...

Страница 48: ...on 1 Not used 2 a 3 b 4 Not used 3 3 bintec R232a bintec R232b 3 3 1 Scope of supply Your device is supplied with the following parts Cable sets mains unit Ethernet cable ISDN cable Serial connecting...

Страница 49: ...roduct name bintec R232a bintec R232b Dimensions and weights Equipment dimensions without cable B x H x D 189 2 mm x 27 mm x 123 1 mm Weight approx 550 g Transport weight incl documentation cables pac...

Страница 50: ...00 19200 38400 57600 115200 Baud Ethernet IEEE 802 3 LAN 4 port switch Permanently installed twisted pair only 10 100 mbps auto sensing MDIX ISDN WAN S0 Permanently installed ETH Additional Ethernet s...

Страница 51: ...mode the LEDs display the following status information for your device LED status display LED Status Information Power on The power supply is connected Status on The device has started flashing The d...

Страница 52: ...are arranged as follows Fig 20 Back of bintec R232a bintec R232b Back of bintec R232a bintec R232b 1 Reset Reset button 2 PWR Socket for plug in power pack 3 Console Serial interface 4 4 3 2 1 10 100...

Страница 53: ...t interface with an integrated 4 port switch This is used to connect individual PCs or other switches The device also has a fifth Ethernet interface The connection is made via an RJ45 socket Fig 22 Et...

Страница 54: ...onnection Fig 23 ADSL interface RJ11 The pin assignment for the ADSL interface RJ11 socket is as follows RJ11 socket for ADSL connection Pin Function 1 Not used 2 a 3 b 4 Not used 3 3 5 4 ISDN S0 port...

Страница 55: ...3 4 bintec R232bw 3 4 1 Scope of supply Your device is supplied with the following parts Cable sets mains unit Ethernet cable ISDN cable Serial connecting cable DSL cable Plug in power pack Antennas t...

Страница 56: ...Dimensions and weights Equipment dimensions without cable B x H x D 189 2 mm x 27 mm x 123 1 mm Weight approx 550 g Transport weight incl documentation cables packaging approx 1 2 kg Memory 32 MB SDR...

Страница 57: ...isted pair only 10 100 mbps auto sensing MDIX ISDN WAN S0 Permanently installed ETH Additional Ethernet switch port WLAN interface antennas 802 11b and 802 11g with Antenna Diversity Data rates 1 2 5...

Страница 58: ...ntenna is receiving a better signal This is then used for decoding Since the two antennas are approximately one wavelength apart the dif ference in signal strength can be quite considerable 3 4 3 LEDs...

Страница 59: ...thernet flashing Data traffic via the Ethernet interface ADSL on ADSL connection is active ISDN on One B channel is used flashing Both B channels are in use 3 4 4 Connections All the connections are l...

Страница 60: ...to 115200 Bps The interface is designed as a 5 pole mini USB socket Fig 27 5 pole mini USB socket The pin assignment is as follows Pin assignment of the mini USB socket Pin Function 1 Not used 2 Rx 3...

Страница 61: ...nterface The ADSL interface is connected via an RJ11 plug The cable supplied connects the RJ11 plug needed for the device to an RJ11 plug needed for most ADSL splitters Only the two inner pins are use...

Страница 62: ...ection is made via an RJ45 socket Fig 30 ISDN S0 BRI interface RJ45 socket The pin assignment for the ISDN S0 BRI interface RJ45 socket is as follows RJ45 socket for ISDN connection Pin Function 1 Not...

Страница 63: ...rd and Funkwerk Configuration Interface in a web browser for configuration purposes and to access your device via Telnet or SSH 4 1 1 1 HTTP HTTPS With a current web browser you can use the HTML inter...

Страница 64: ...UNIX and Linux without any problem 1 Enter telnet IP address of your device in a terminal A window with the login prompt appears You are now in the SNMP shell of your device 2 Continue with Logging i...

Страница 65: ...r for each of the algorithms RSA and DSA i e two files must be stored in the flash for each algorithm see example at above If no keys are available you have to generate these first Proceed as follows...

Страница 66: ...intec gateway has a serial interface with which a PC can be connected directly The following chapter describes what you have to remember when setting up a serial con nection and what you can do to con...

Страница 67: ...device has not been set up successfully Therefore check the COM1 or COM2 settings on your PC 1 Click on File Properties 2 Click Configure in the Connect to tab The following settings are necessary Bit...

Страница 68: ...on in parallel to a PBX the PBX cannot take any calls until an ISDN number is configured on the device Access over ISDN costs money If your device and your computer are in the LAN it is cheaper to acc...

Страница 69: ...e normally shown on the Setup Tool screen not in plain text but only as asterisks The user names on the other hand are displayed as plain text The security concept of your device enables you to read a...

Страница 70: ...ave the SNMP shell after completing the configuration enter exit and press Return 4 3 Configuration options This chapter first offers an overview of the various tools you can use for configuration of...

Страница 71: ...vice is ready for use The information you need for configuration with the Express Setup Wizard and the prerequisites for this can be found in the Quick Install Guide on page 8 which is also available...

Страница 72: ...figur ation button You can also use the Funkwerk Configuration Interface to monitor the most important function parameters of your device Fig 31 Funkwerk Configuration Interface Initial Screen 4 Acces...

Страница 73: ...ess field of the web browser 5 Enter admin in the User field and funkwerk in the Password field and click LOGIN You are not in the status menu of your device s Funkwerk Configuration Interface see Sta...

Страница 74: ...ck this button if you want to activate the configuration wizard The configuration assistant is opened in a new window and takes you step by step through the basic configuration of your device and alte...

Страница 75: ...the entry selected will be displayed in red All the other sub menus will be closed You can see at a glance the sub menu you are in Status page If you call the Funkwerk Configuration Interface after y...

Страница 76: ...nternal list Funkwerk Configuration Interface buttons for special functions Button Function In the Access Point Search menu you use this button to start automatic detection of all the access points av...

Страница 77: ...us for an interface or connection Indicates Blocked status for an interface or connection Indicates Going up status for an interface or connection Indicates that data traffic is encrypted Triggers a W...

Страница 78: ...list Structure of the Funkwerk Configuration Interface configuration menus The menus of the Funkwerk Configuration Interface contain the following basic struc tures Funkwerk Configuration Interface me...

Страница 79: ...mpty text field Text field with hidden input Enter the data Radio buttons e g Select the corresponding option Checkboxes e g activation by selecting checkbox Selection of several possible options Drop...

Страница 80: ...at values were entered or selected incorrectly Pay particular attention to the following message Warning changes not supported by the Setup Tool If you makes these changes with the Funkwerk Configurat...

Страница 81: ...device are to run routing or bridging and if necessary can define bridge groups Administrative Access In this menu you configure the access options for the individual interfaces Remote Authentication...

Страница 82: ...able via RIP Load Balancing In this menu you configure application controlled bandwidth management Multicast In this menu you configure the use of multimedia streaming protocols for e g voice over IP...

Страница 83: ...menu you configure the filter rules for the firewall Interfaces In this menu you can group together the interfaces to be filtered Addresses In this menu you can create the address aliases to be filte...

Страница 84: ...iscovery In this menu you can configure management functions for bintec Access Point UPnP In this menu you configure the UPnP settings individually for each interface of your gateway Maintenance Menu...

Страница 85: ...are displayed Interfaces In this menu connection statistics and status of all interfaces are displayed WLAN This menu shows you the WLAN connections statistics 4 3 3 The Setup Tool for experts The Se...

Страница 86: ...urs The help line tells you how to move around in the current menu which entries you can change or which values are possible for an entry Basically a menu looks like this Fig 38 Setup Tool menu 4 3 3...

Страница 87: ...nu Commands When you start moving around in the Setup Tool you will notice that some menus have special command options such as DELETE SAVE and CANCEL The meaning of the commands is explained below Bu...

Страница 88: ...as follows 1 Enter the first letter of the entry you are looking for with the cursor located on a list entry Entries can be made in upper or lower case 2 If necessary enter more characters to refine...

Страница 89: ...start the Setup Tool of your device in a mode in which the passwords are displayed in plain text and can be changed by one time editing you must enter the command setup p This option only exists if y...

Страница 90: ...word and the help line shows the following message Password doesn t match Try again 4 3 3 5 Menu structure The main menu of the Setup Tool looks like this Fig 40 Setup Tool main menu The menu structur...

Страница 91: ...ou enter the basic system settings of your device such as for example system name system date system time passwords External Systems In this menu you can configure management functions for ex ternal s...

Страница 92: ...y functions of your device e g Stateful Inspection Firewall and Web Filtering IPSEC In this menu you configure VPN connections over IPSec IP In this menu you enter all the settings that concern the IP...

Страница 93: ...from the SNMP shell via SNMP commands This type of configuration requires a detailed knowledge of our devices 4 4 BOOTmonitor The BOOTmonitor is only available over a serial connection to the device...

Страница 94: ...nitor prompt is displayed if you are serially connected to your device After display of the BOOTmonitor prompt press the space bar within four seconds to use the functions of the BOOTmonitor If you do...

Страница 95: ...see an overview of the following data System status Your device s activities Resource utilisation active sessions and tunnels Status and basic configuration of the LAN WAN ISDN WLAN and ADSL interfac...

Страница 96: ...e the device was rebooted System Date Displays the current system date and system time Serial Number Displays the device serial number BOSS Version Displays the currently loaded version of the system...

Страница 97: ...atus Field Value Physical Interface In terface Specifics Link The physical interfaces are listed here and there most important settings are shown The system also displays whether the inter face is con...

Страница 98: ...ystem The System Management Global Settings System menu consists of the following fields Fields in the System Basic Parameters menu Field Value System Name Enter the system name of your device This is...

Страница 99: ...higher or identical priority to that indicated i e all messages generated are recorded at syslog level debug Possible values Emergency Only messages with emergency priority are re corded Alert Messag...

Страница 100: ...ds Note All bintec devices are delivered with the same username and password As long as the password remains unchanged they are not protected against unauthorised use Make sure you change the password...

Страница 101: ...ord Options menu Field Value Show Passwords and keys in clear text Define whether the passwords are to be displayed in clear text plain text The function is activated with Display The function is disa...

Страница 102: ...related switches that are scheduled for the extra hour are then carried out Switches already initiated are carried out again when the set time is reached If an external call is made during the switch...

Страница 103: ...Date and Time Manual Time Settings menu Field Description New Date Enter a new date Format Day dd Month mm Year yyyy New Time Enter a new time Format Hour hh Minute mm Fields in the Date and Time Aut...

Страница 104: ...r the time re quest Secondary Timeserver Enter the secondary time server using either a domain name or an IP address In addition select the protocol for the time server request Possible values SNTP de...

Страница 105: ...he system attempts to contact the time server again following a failed time update Possible values Normal default value The system attempts to contact the time server after 1 2 4 8 and 16 minutes Aggr...

Страница 106: ...ng license data You can obtain the licence data for extra licences via the online licensing pages in the sup port section at www funkwerk ec com Please follow the online licensing instructions Please...

Страница 107: ...ra licences by adding the received licence information in the System Ad ministration Global Settings System Licenses New menu The System Management Global Settings System Licences New menu con sists o...

Страница 108: ...number 5 3 Interface Mode Bridge Groups In this menu you define the operation mode for your device s interfaces Routing versus bridging Bridging connects networks of the same type In contrast to rout...

Страница 109: ...b Number of the bridge group Example br0 first bridge group The name of the wireless network is made up of the following parts a Abbreviation for interface type b Number of the wireless module c Numb...

Страница 110: ...Interface Mode Bridge Groups Interfaces The System Management Interface Mode Bridge Groups Interfaces menu con sists of the following fields Fields in the Interfaces menu Field Description Shows the s...

Страница 111: ...n interface Interface name Select the interface to be used for con figuration If this interface is in a bridge group it is assigned the group s IP address when it is taken out of the group 5 4 Adminis...

Страница 112: ...ss Access Add menu consists of the following fields Fields in the Access menu Field Description Interface Select the interface for which administrative access is to be con figured 5 4 2 SSH Your devic...

Страница 113: ...e shell of your device via an SSH client make sure the settings for the SSH Daemon and SSH client are the same Note If configuration of an SSH connection is not possible restart the device to initiali...

Страница 114: ...ple errors of the SSH Daemon and information messages are recorded Fatal Only fatal errors of the SSH Daemon are recorded Errors Fatal and simple errors of the SSH Daemon are re corded Debug All messa...

Страница 115: ...the status Unknown is displayed generation of a key is not possible for example because there is not enough space in the FlashROM DSA Key Status Shows the status of the DSA key If a DSA key has not be...

Страница 116: ...bles and variables and defined in the MIB Management Information Base This contains all the configuration and status variables of the device SNMP can be used to perform the following network managemen...

Страница 117: ...sfer all data unencrypted 5 5 Remote Authentication This menu contains the settings for user authentication 5 5 1 RADIUS RADIUS Remote Authentication Dial In User Service is a service that enables aut...

Страница 118: ...ACCESS_REQUEST Client Server If an access request is received by your device a request is sent to the RADIUS server if no corresponding connection part ner has been found on your device ACCESS_ACCEPT...

Страница 119: ...5 1 1 Edit New Choose the icon to edit existing entries Choose the New button to add RADIUS serv ers Fig 53 System Administration Remote Authentication RADIUS New The System Management Remote Authent...

Страница 120: ...ication between the RADIUS server and your device Priority If a number of RADIUS server entries were created the server with the highest priority is used first If this server does not an swer the serv...

Страница 121: ...repeated according to Retries or the next configured RADIUS server is requested Possible values are whole numbers between 50 and 50000 The default value is 1000 1 second Alive Check Here you can acti...

Страница 122: ...disabled by default If the function is active you can enter the following options Reload Interval Enter the time period in seconds between the update intervals The default entry here is 0 i e an autom...

Страница 123: ...ration Remote Authentication TACACS New The System Management Remote Authentication TACACS New menu con sists of the following fields Fields in the TACACS Basic Parameters menu Field Description Authe...

Страница 124: ...nction is activated by choosing Enabled The function is enabled by default The Advanced Settingsmenu consists of the following fields Fields in the Advanced Settings menu Field Description Policy Sele...

Страница 125: ...xchange between the TACACS server and the NAS is to be encrypted with MD5 The function is activated by choosing Enabled The function is enabled by default If the function is not enabled the packets an...

Страница 126: ...sequence is used for in coming calls with RADIUS First CLID then PPP and then PPP with RADIUS Options Inband Only inband RADIUS requests PAP CHAP MS CHAP V1 V2 i e PPP requests without CLID are sent t...

Страница 127: ...he Ethernet switch ports Note The Ethernet ports of the four port switches are assigned to a single Ethernet interface in ex works state The Ethernet interface en1 0 is pre configured with the IP Addr...

Страница 128: ...same For ex ample if you split all the switch ports from each other each of the resulting interfaces only uses a part of the total bandwidth If you group together several switch ports into one inter f...

Страница 129: ...10 mbps Half Duplex Fixed 100 mbps Full Duplex Fixed 100 mbps Half Duplex Fixed 10 mbps Full Duplex Fixed 10 mbps Half Duplex Disabled The interface is created but remains inactive Current Speed Mode...

Страница 130: ...de Shows the actual mode and actual speed of the interface Possible values 100 mbps Full Duplex 100 MBit s Half Duplex 10 mbps Full Duplex 10 mbps Half Duplex Inactive 6 2 ISDN Ports You can use the I...

Страница 131: ...ly set ISDN protocol prevents ISDN connections being set up In the Physical Interfaces ISDN Ports ISDN Configuration menu a list of all ISDN ports and their configurations is shown 6 2 1 1 Working wit...

Страница 132: ...o point See Port Usage and ISDN Configtype Euro ISDN point to multipoint See Port Usage and ISDN Configtype Auto Config disabled Manual setting for Port Usage and ISDN Configtype Running Detection is...

Страница 133: ...s not detected TEI you can manually enter the value assigned by the exchange Possible values are 0 to 63 The default value is 1 for automatic detection X 31 TEI Service Only if X 31 X 25 in D channel...

Страница 134: ...s support the DynDNS service to enable hosts without fixed IP ad dresses to obtain a secure connection over the Internet With the IPSec Callback function and using a direct ISDN call to an IPSec peer...

Страница 135: ...all MSNs is shown 6 2 2 1 New Choose the New button to edit MSNs Fig 58 Physical Interfaces ISDN Ports MSN Configuration New The Physical Interfaces ISDN Ports MSN Configuration New menu consists of...

Страница 136: ...arty number For the call to be accepted it is sufficient for the individual numbers in the entry to agree taking account of MSN Recognition MSN Recognition Select the mode your device is to use for th...

Страница 137: ...operation mode The value cannot be changed Possible values Unknown The ADSL link is not active ANSI T1 413 ANSI T1 413 ADSL1 ADSL classic G DMT ITU G 992 1 G Lite Splitterless ADSL ITU G 992 2 ADSL2...

Страница 138: ...SL1 ADSL1 G DMT is used ADSL2 ADSL2 G 992 3 is used ADSL2 Plus ADSL2 Plus G 992 5 is used None The ADSL interface is not active Transmit Shaping Select whether the data rate in the send direction is t...

Страница 139: ...Field Description Enter the maximum data rate in the send direction in bits per second Funkwerk Enterprise Communications GmbH 6 Physical Interfaces bintec R200 Series 127...

Страница 140: ...tton to create virtual interfaces However this is only needed in special applications e g BRRP Depending on the option selected different fields and options are available All the config uration option...

Страница 141: ...on Based on Ethernet Inter face This field is only displayed if you are editing a virtual routing in terface Select the Ethernet interface for which the virtual interface is to be configured Address M...

Страница 142: ...ciated with the interface For virtual interfaces you can use the MAC address of the physical inter face under which the virtual interface was created but this is not necessary You can also allocate a...

Страница 143: ...device is to apply MSS Clamping To pre vent IP packets fragmenting the MSS Maximum Segment Size is automatically decreased by the device to the value set here The function is activated by choosing Ena...

Страница 144: ...he VLAN menu you can make all the settings needed for this and query their status Caution For interfaces that operate in Routing mode you only assign a VLAN ID to the inter face You define this via th...

Страница 145: ...consists of the following fields Fields in the VLANs Configure VLAN menu Field Description VLAN Identifier Enter the number that identifies the VLAN In the Edit menu you can no longer change this valu...

Страница 146: ...following fields Fields in menu Port Configuration Field Description Interface Shows the port for which you define the PVID and processing rules PVID Assign the selected port the required PVID Port V...

Страница 147: ...for each bridge group Fig 64 LAN VLAN Administration The LAN VLAN Administration menu consists of the following fields Fields in the menu Bridge Group br ID VLAN Options Field Description Enable VLAN...

Страница 148: ...GHz which ensures that parts of the building are penetrated as effect ively as possible with a low transmission power that poses no health risks A 802 11g compatible standard is 802 11b which operates...

Страница 149: ...e Settings menu an overview of all the configuration options for the WLAN module is shown Fig 65 Wireless LAN WLANx Wireless Module Settings 8 1 1 1 Radio Settings Edit In this menu you change the set...

Страница 150: ...ription Radio Select whether you want to enable the radio The function is activated by choosing Enabled The function is disabled by default Operation Mode Define whether your device is to be run as an...

Страница 151: ...dvisable to allocate the networks to different channels Each of these should be spaced at least four channels apart as a network also partially occupies the adja cent channels In the case of manual ch...

Страница 152: ...ssion speed Possible values auto default value The transmission speed is determined automatically 1 2 5 6 9 11 12 18 24 36 48 54 mbps Burst Mode This performance feature increases the maximum burst ti...

Страница 153: ...witched on off If you choose User Defined in the input field you can specify the data packet length threshold in bytes 1 2346 as of which the RTS CTS mechanism is to be used This makes sense if severa...

Страница 154: ...Max Transmit MSDU Lifetime Enter the time from sending of the first fragment of a data pack et as of which no further send attempts are made The data packet is discarded Possible values are 1 to 42949...

Страница 155: ...to failure However a higher degree of se curity can only be achieved through hardware based encryption which required additional configuration for example 3DES or AES This permits even sensitive data...

Страница 156: ...on with the general value for Network Name SSID Any and do not know the SSID settings Use the available encryption methods To do this select Security Mode WEP 40 WEP 104 WPA PSK or WPA Enterprise or b...

Страница 157: ...ield Description Network Name SSID Enter the name of the wireless network SSID Enter an ASCII string with a maximum of 32 characters Also select whether the Network Name SSID is to be trans mitted The...

Страница 158: ...in the Virtual Service Sets Security Settings menu Field Description Security Mode Select the security mode encryption and authentication for the wireless network Possible values Inactive default val...

Страница 159: ...d WPA 2 can be used WPA Only WPA is used WPA 2 Only WPA2 is used WPA Cipher Only for Security Mode WPA PSK and WPA Mode WPA and WPA and WPA2 Select the type of encryption you want to apply to WPA Poss...

Страница 160: ...d by choosing Enabled The function is disabled by default Allowed Addresses Use Add to make entries and enter the MAC addresses MAC Address of the clients to be permitted 8 2 Administration The Wirele...

Страница 161: ...untry in which the access point is to be run Possible values are all the countries configured on the gate way s wireless module The range of channels available for selection Channel in the Wireless LA...

Страница 162: ...1 1 Edit New Choose the icon to edit existing entries Choose the New button to create routes Fig 69 Routing Routes IP Routes New with Extended Route Not Enabled If the Extended Route option is selecte...

Страница 163: ...e function is active a route is created with extended routing parameters such as source interface and source IP ad dress as well as protocol source and destination port type of service TOS and the sta...

Страница 164: ...Network Type Not for Route Type Default Route Also select the network type Possible values Direct default value in the LAN You define another IP address for the interface in the WAN You define a rout...

Страница 165: ...rt Only if Layer 4 Protocol TCP or UDP Enter the source port First select the port number range Possible values Any default value The route is valid for all port numbers Single Enables the entry of a...

Страница 166: ...5 Enter the appropriate values for the indivividual port or start port of a range in Port and for a range the end port in to Port DSCP TOS Value Select the Type of Service TOS Possible values Ignore d...

Страница 167: ...interface is dormant then dial and wait until the interface is up In this case an alternative interface with a poorer metric is used for routing until the interface is up 9 1 2 Options Back Route Ver...

Страница 168: ...pecific interfaces Displays the serial number of the list entry Interface Only for Mode Enable for specific interfaces Displays the name of the interface Back Route Verify Only for Mode Enable for spe...

Страница 169: ...n page 158 In the Routing NAT NAT Interfaces menu a list of all NAT interfaces is shown Fig 72 Routing NAT NAT Interfaces For each NAT interface you can select the options NAT Active Silent Deny and P...

Страница 170: ...rk are also to be permitted if NAT is activated The function is disabled by default If PPTP Passthrough is enabled the device itself cannot be configured as a tunnel endpoint Portforwardings Shows the...

Страница 171: ...n Interface Select the interface for which port forwarding is to be con figured Fields in the Portforwarding Select traffic Field Description Service Select the service for which address mapping is de...

Страница 172: ...ol Only if Services User defined Select the protocol Possible values ANY default value ICMP GGP IP TCP EGP IGP PUP Chaos UDP HMP XNS IDP RDP IPv6 RSVP GRE ESP AH TLSP SKIP Kryptolan 9 Routing Funkwerk...

Страница 173: ...ed by default so that you can enter the IP address manually Port Only if Service User defined First select whether all connections are to be permitted or whether a certain port or port range is to be...

Страница 174: ...formation between several devices This ex change is controlled by a Routing Protocol e g RIP Routing Information Protocol By de fault about every 30 seconds this value can be changed in Update Timer a...

Страница 175: ...st of all RIP interfaces is shown Fig 74 Routing RIP RIP Interfaces 9 3 1 1 Edit For each RIP interface you can in the menu select the options Send Version Re ceive Version and Route Announce Funkwerk...

Страница 176: ...is not enabled RIP V1 Enables sending and receiving of version 1 RIP packets RIP V2 Enables sending and receiving of version 2 RIP packets RIP V1 V2 Enables sending and receiving of both version 1 and...

Страница 177: ...this option if you want to set the time at which any activ ated routing protocols e g RIP are to propagate the IP routes defined for this interface Note This setting does not affect the interface spe...

Страница 178: ...s no entry this corresponds to the IP address 0 0 0 0 with Netmask 255 255 255 255 In the Routing RIP RIP Filters menu a list of all RIP filters is shown Fig 76 Routing RIP RIP Filters You can use the...

Страница 179: ...and outgoing RIP packets import or ex port for the same IP address must be separately configured You can enter individual host addresses or network addresses Direction Select whether the filter appli...

Страница 180: ...Options Fig 78 Routing RIP RIP Options The Routing RIP RIP Options menu consists of the following fields Fields in the RIP Options Global RIP Parameters menu Field Description RIP UDP Port The settin...

Страница 181: ...Timer For the timers described in RFC 2453 select whether the same values that you can configure in the Timer for RIP V2 RFC 2453 menu The function is activated with Enabled The function is enabled b...

Страница 182: ...m the IPROUTETABLE if no update is carried out for the route The default value is 120 seconds Fields in the RIP Options Timer for Triggered RIP RFC 2091 menu Field Description Hold Down Timer Only for...

Страница 183: ...erent providers Session based load balancing is achieved Related dependent sessions are always routed over the same interface A decision on distribution is only made for outgoing sessions In the Routi...

Страница 184: ...send and receive direction Consider Only for Distribution Policy Load dependent Bandwidth Choose the direction in which the current data rate is to be con sidered Options Download Only the data rate...

Страница 185: ...ution for effective use of bandwidth because the sender of the data packet which can be received by several re cipients only needs to send the packet once The packet is sent to a virtual address defin...

Страница 186: ...ol In IPv4 IGMP Internet Group Management Protocol is a protocol that hosts can use to provide the router with multicast membership information IP addresses of the class D ad dress range are used for...

Страница 187: ...inter faces of your device 9 5 1 1 New Choose the New button to create forwarding rules for new multicast groups Fig 80 Routing Multicast Forwarding New The Routing Multicast Forward New menu consist...

Страница 188: ...ignal the informa tion about group membership in a subnet As a result only the packets explicitly wanted by a host enter the subnet Special mechanisms ensure that the requirements of the individual cl...

Страница 189: ...and responses are accepted Query Interval Enter the interval in seconds in which IGMP queries are to be sent Possible values are 0 to 600 The default value is 125 Maximum Response Time For the sending...

Страница 190: ...more packets for this group should be forwarded to this interface Possible values are 0 to 255 The default value is 10 IGMP State Limit Limit the number of reports queries per second for the selected...

Страница 191: ...on IGMP Proxy Select whether your device is to forward the hosts IGMP mes sages in the subnet via its defined Proxy Interface Proxy Interface Only for IGMP Proxy enabled Select the interface on your d...

Страница 192: ...s of the following fields Fields in the Options Basic Settings menu Field Description IGMP Status Select the IGMP status Possible values Auto default value Multicast is activated automatically for hos...

Страница 193: ...ups to be permitted both in ternally and in reports Maximum Sources Enter the maximum number of sources that are specified in ver sion 3 reports and the maximum number of internally managed sources pe...

Страница 194: ...otocols You can also configure Internet access over ISDN Note Note your provider s instructions Dialin connections over ISDN are used to establish a connection to networks or hosts out side your LANs...

Страница 195: ...e If for example you configure both Internet access and a corporate network connection enter a default route to the ISP and a network route to the head office You can enter several default routes on y...

Страница 196: ...traffic drops the additional B channels are closed again Static In static channel bundling you specify right from the start how many B channels your device is to use for connections regardless of the...

Страница 197: ...n Description Enter a name to uniquely identify the PPPoE partner The first character in this field must not be a number and no special characters or umlauts must be used either PPPoE Mode Select whet...

Страница 198: ...E Mode Standard Select the Ethernet interface specified for a standard PPPoE connection If you want to use an external DSL modem select the Ethernet port to which the modem is connected When using the...

Страница 199: ...r your device is to be assigned a static IP address or whether it should be assigned this dynamically Possible values Get IP Address default value Your device is dynamic ally assigned an IP address St...

Страница 200: ...tion has failed The de fault value is 60 Maximum Number of Di alup Retries Enter the number of unsuccessful attempts to setup a connec tion before the interface is blocked Possible values are 0 to 100...

Страница 201: ...ymmetrical bandwidths ADSL The function is activated with Enabled The function is disabled by default LCP Alive Check Check whether the availability of the remote terminal is to be checked by sending...

Страница 202: ...g the internet connection The first character in this field must not be a number and no special characters or umlauts must be used either PPTP Interface Select the IP interface over which packets are...

Страница 203: ...interval in seconds This determines how many seconds should pass between sending the last traffic data pack et and clearing the connection Possible values are 0 to 3600 seconds 0 deactivates the timeo...

Страница 204: ...PTP partner Add a new entry with Add Remote IP Address IP address of the destination host or destination network Netmask Netmask of Remote IP Address If no entry is made your device uses a default net...

Страница 205: ...ntication protocol required by the PPTP partner MSCHAP version 1 or 2 possible MS CHAPv2 Run MS CHAP version 2 only DNS Negotiation Select whether your device receives IP addresses for primary DNS ser...

Страница 206: ...s activated with Enabled The function is disabled by default 10 1 3 PPPoA In the WAN Internet Dialup PPPoA menu a list of all PPPoA interfaces is shown In this menu you configure a xDSL connection use...

Страница 207: ...racter in this field must not be a number and no special characters or umlauts must be used either ATM PVC Select an ATM profile created in the ATM Profiles menu in dicated by the global identifiers V...

Страница 208: ...smission 20 for LAN to LAN transmis sion 90 for Internet connections Fields in the PPPoA IP Mode and Routes menu Field Description IP Address Mode Choose whether your device has a static IP address or...

Страница 209: ...lock after connection failure for Enter the wait time in seconds before the device should try again after an attempt to set up a connection has failed The de fault value is 60 Maximum Number of Di alu...

Страница 210: ...CP ACK Packets Select whether the TCP download is to be optimised in the event of intensive TCP upload This function can be specially applied for asymmetrical bandwidths ADSL The function is activated...

Страница 211: ...e of the ISDN Callback function 10 1 4 1 New Choose the New button to set up new ISDN interfaces Fig 87 WAN Internet Dialup ISDN New Funkwerk Enterprise Communications GmbH 10 WAN bintec R200 Series 1...

Страница 212: ...DN data connections User Name Enter your device code local PPP user name Remote User for Dialin only Enter the code of the remote terminal remote PPP user name Password Enter the password Always on Se...

Страница 213: ...ined as the default route The function is activated with Enabled The function is disabled by default Create NAT Policy Only if IP Address Mode Static and Get IP Address When you configure an ISDN conn...

Страница 214: ...iled The default value is 60 Maximum Number of Di alup Retries Enter the number of unsuccessful attempts to setup a connec tion before the interface is blocked Possible values are 0 to 100 The default...

Страница 215: ...ection If Encryption is set the remote terminal must also sup port it otherwise a connection cannot be established Possible values None default value MPP encryption is not used Enabled MPP encryption...

Страница 216: ...ack and maintaining the initial connection to your device without call back This only applies if no fixed outgoing number has been configured for the connection partner This is done by pressing CANCEL...

Страница 217: ...er Number Subscriber Number Enter the connection partner s number Fields in the Advanced Settings IP Options menu Field Description OSPF Mode Select whether and how routes are propagated via the inter...

Страница 218: ...n is enabled by default 10 1 5 IP Pools In the IP Pools menu a list of all IP pools is displayed Your device can operate as a dynamic IP address server for PPP connections You can use this function by...

Страница 219: ...ield enter the last IP address of the range 10 2 ATM 10 2 1 Profiles In the WAN ATM Profiles menu a list of all ATM profiles is shown If the connection for your Internet access is set up using the int...

Страница 220: ...ew The WAN ATM Profile New menu consists of the following fields Fields in the Profile ATM Profiles Parameter menu Field Description Provider Select one of the preconfigured ATM profiles for your prov...

Страница 221: ...irtual path to be used Note your pro vider s instructions Possible values are 0 to 255 The default value is 8 Virtual Channel Identifier VCI Only for Provider User defined Enter the VCI value of the A...

Страница 222: ...n with Frame Check Sequence checksums Fields in the Settings for Ethernet over ATM menu only shown for Type Ethernet over ATM Field Description Default Ethernet for PPPoE Interfaces Only for Type Ethe...

Страница 223: ...select the Use Pre configured option default set ting in which case the MAC address of en1 0 is used DHCP Hostname Only for Address Mode DHCP If necessary enter the host name registered with the provi...

Страница 224: ...rtual Circuit already configured with specific assigned data traffic parameters is shown Your device supports QoS Quality of Service for ATM interfaces Caution ATM QoS should only be used if your prov...

Страница 225: ...e category a priority is implicitly assigned from CBR highest priority through VBR 1 VBR 3 to VBR lowest priority Possible settings Unspecified Bit Rate UBR default value Unspecified Bit Rate A partic...

Страница 226: ...on network i e is discarded if ne cessary The Peak Cell Rate PCR represents the maximum possible data rate This category is suitable for critical applica tions with burst data traffic Peak Cell Rate P...

Страница 227: ...eived This is ensured without a specific OAM configuration for both flow level 4 and flow level 5 Two mechanisms are available for monitoring the ATM connection Loopback Tests and OAM Continuity Check...

Страница 228: ...annel default value f4 virtual path level The OAM settings are used for the vir tual path Virtual Channel Connec tion VCC Only for OAM Flow Level f5 Select the already configured ATM connection to be...

Страница 229: ...arded as in terrupted down Possible values are 1 to 99 The default value is 5 Loopback Segment Select whether you want to activate the loopback test for the segment connection segment connection of th...

Страница 230: ...irection field OAM CC requests are either sent and or responded to There is no CC negotiation None The function is disabled Also select whether the test cells of the OAM CC are to be sent or received...

Страница 231: ...rnet voice data packets normally have the highest priority Nevertheless if the upstream bandwidth is low noticeable delays in speach transmission can occur when other packets are routed at the same ti...

Страница 232: ...mode for the optimisation Possible values Controlled RTP Streams only default value By means of the data routed via the media gateway the system detects voice data traffic and optimises the voice tra...

Страница 233: ...ackets The IPSec implementation can also be smoothly integrated in a Public Key Infrastructure PKI The bintec IPSec im plementation achieves this firstly by using the Authentication Header AH protocol...

Страница 234: ...s in the list IPSec Tunnels on page 376 11 1 1 1 New Choose the New button to set up more IPSec peers Fig 94 VPN IPSec IPSec Peers New The VPN IPSec IPSec Peers New menu consists of the following fiel...

Страница 235: ...entry can be omitted in certain configurations whereby your device then cannot initiate an IPSec connection Peer ID Select the ID type and enter the peer ID This entry is not necessary in certain con...

Страница 236: ...ed by default Local IP Address Only if Default Route is not enabled Enter the WAN IP address of your IPSec tunnel This can be the same IP address as the address configured on your router as the LAN IP...

Страница 237: ...th Enabled The function is disabled by default Proxy ARP Select whether your device is to respond to ARP requests from its own LAN on behalf of the specific connection partner Possible values Off defa...

Страница 238: ...number are routed to the IPSec service If callback is active the peer is caused to initiate setting up an IPSec tunnel by an ISDN call as soon as this tunnel is required With passive callback the set...

Страница 239: ...cepted by the remote station and therefore incurs costs If a peer whose IP address has been assigned dynamically wants to arrange for another peer to set up an IPSec tunnel it can transfer its own IP...

Страница 240: ...e call in the D channel can also incur costs An incorrect configuration at the called side can mean that the called side opens the B channel the calling side incurs costs Fields in the Advanced Settin...

Страница 241: ...nsfer its IP address to the peer Possible values Autodetect Best Mode Your device automatically de termines the most favourable mode It first tries all D channel modes before switching to the B channe...

Страница 242: ...the D channel SUBADDR The IP address is transferred in the subaddress in formation elements of the D channel LLC and SUBADDR The IP address is transferred in both the LLC and subaddress information e...

Страница 243: ...ely defines the type of rule Proposals In this field you can select any combination of encryption and message hash algorithms for IKE phase 1 on your device The combination of six encryption algorithm...

Страница 244: ...vel of secur ity against attacks and general speed Here it is used with a key length of 128 bits AES 192 Rijndael has been nominated as AES due to its fast key setup low memory requirements high level...

Страница 245: ...ntiation at 1024 bits is used to create the en cryption material 5 1536 bit During the Diffie Hellman key calculation modular exponentiation at 1536 bits is used to create the en cryption material Lif...

Страница 246: ...This field is only shown for authentication settings based on certificates and indicates that a certificate is essential Mode Select the phase 1 mode Possible values Aggressive default value The Aggre...

Страница 247: ...cal Alive Check During communication between two IPSec peers one of the peers may become unavail able e g due to routing problems or a reboot However this can only be detected when the end of the life...

Страница 248: ...n both sides This option only checks the availability of the peer if data is to be sent to it Dead Peer Detection Idle Use DPD dead peer de tection in accordance with RFC 3706 DPD uses a request reply...

Страница 249: ...ed by default CA Certificates Only if Authentication Method DSA Signature RSA Sig nature or RSA Encryption If you enable the Trust following CA certificates op tion you can select up to three addition...

Страница 250: ...Standard column you can mark the profile to be used as the default profile 11 1 3 1 New Choose the New button to set up new profiles Fig 98 VPN IPSec Phase 2 Profiles New 11 VPN Funkwerk Enterprise Co...

Страница 251: ...requirements high level of secur ity against attacks and general speed Here it is used with a key length of 128 bits AES 192 Rijndael has been nominated as AES due to its fast key setup low memory req...

Страница 252: ...is used to protect the keys of a renewed phase 2 SA even if the keys of the phase 1 SA have become known The field has the following options 1 768 bit During the Diffie Hellman key calculation modula...

Страница 253: ...s the per formance can be significantly affected by the increased effort during compression The function is activated with Enabled The function is disabled by default Alive Check Select whether and th...

Страница 254: ...ses These IP addresses can be assigned to dialling in connection partners for the duration of the connection Any host routes entered always have priority over IP addresses from the address pools This...

Страница 255: ...elds in the Options IP Pools menu Field Description IP Pool Name Enter the name of the IP pool IP Pool Range In the first field enter the first IP address of the range In the second field enter the la...

Страница 256: ...The function is active as soon as an IPSec Peer is configured Delete complete IPsec configuration If you click the icon delete the complete IPSec configuration of your device This cancels all settings...

Страница 257: ...to work correctly to other bintec devices so that you only need to change these values if the remote terminal is a third party product or you know special settings are necessary These may be needed fo...

Страница 258: ...thentication Select whether RADIUS authentication is to be activated via IPSec The function is activated with Enabled The function is disabled by default Fields in the Advanced Settings PKI Editing Op...

Страница 259: ...nabled to sup press this behaviour 11 2 L2TP The layer 2 tunnel protocol L2TP enables PPP connections to be tunnelled via a UDP connection Your bintec device supports the following two modes L2TP LNS...

Страница 260: ...tion for the current profile The device automatically names the profiles L2TP and numbers them but the value can be changed Local Hostname Enter the host name for LNS or LAC LAC The Local Hostname is...

Страница 261: ...for tunnel authentication Au thentication between LAC and LNS takes place in both direc tions i e the LNS checks the Local Hostname and the Pass word contained in the SCCRQ of the LAC and compares the...

Страница 262: ...our device uses the IP address of the interface used to reach Remote IP Address by the L2TP tun nel Hello Interval Enter the interval in seconds between the sending of two L2TP HELLO messages These me...

Страница 263: ...Packets Sequence Numbers Select whether your device is to use sequence numbers for data packets sent through a tunnel on the basis of this profile The function is not currently used The function is a...

Страница 264: ...ter a name for uniquely identifying the L2TP partner The first character in this field must not be a number and no special characters or umlauts must be used either The maxim um length of the entry is...

Страница 265: ...device Password Enter the password Always on Select whether the interface should always be activated The function is activated with Enabled The function is disabled by default Connection Idle Timeout...

Страница 266: ...y if IP Address Mode Get IP Address and Static Specify whether Network Address Translation NAT is to be ac tivated for this connection The function is activated with Enabled The function is disabled b...

Страница 267: ...run MS CHAP version 1 PPP Microsoft Challenge Handshake Authentication Protocol MS CHAPv2 Run MS CHAP version 2 only Encryption Only for PPP Authentication MS CHAPv2 If necessary select the type of e...

Страница 268: ...are however included when calculating the routing in formation and propagated over active interfaces Active OSPF is activated for this interface i e routes are propagated or OSPF protocol packets sen...

Страница 269: ...activated with Enabled The function is enabled by default 11 2 3 Options Fig 103 VPN L2TP Options The VPN L2TP Options menu consists of the following fields Fields in the Options Global Options menu F...

Страница 270: ...rnet Service Provider is set up at both sites Once these connections are available a tunnel is set up to the PPTP partner over the Internet using PPTP The PPTP subsystem sets up a control connection b...

Страница 271: ...PPTP Tunnels New The VPN PPTP PPTP Tunnels New menu consists of the following fields Fields in the menu PPTP Tunnels PPTP Partner Parameters Field Description Description Enter a unique name for the t...

Страница 272: ...default Connection Idle Timeout Only if Always on is disabled Enter the idle interval in seconds This determines how many seconds should pass between sending the last traffic data pack et and clearin...

Страница 273: ...AN that is to be used as in ternal source address to the PPTP interface Route Entries Only if IP Address Mode Static Define routing entries for this connection partner Remote IP Address IP address of...

Страница 274: ...lenge Handshake Authentication Protocol MS CHAPv2 Run MS CHAP version 2 only Encryption If necessary select the type of encryption that should be used for data traffic to the connection partner This i...

Страница 275: ...Select whether your device is to answer APR requests from your LAN on behalf of the specific PPTP partner Possible values Inactive default value Disables Proxy ARP Address Resolution Protocol for thi...

Страница 276: ...e function is disabled by default Note that you must activate the relevant option on the gateways of both partners An ISDN connection is usually required for this function Without ISDN callback is onl...

Страница 277: ...ck 1 from the Microsoft Windows XP page and installed it Since in SP 1 Microsoft has changed the confirma tion algorithm in the GRE protocol the automatic window adapt ation for GRE must be turned off...

Страница 278: ...use in PPTP connections RFC 2637 configuration in the PPTP menu GRE V 0 RFC 2784 for general encapsulation using GRE In this menu you can configure a virtual interface for using GRE V 0 The data traff...

Страница 279: ...all data is automatically routed to one connection The function is disabled by default Local IP Address Enter the IP address to be used as the source address for this GRE connection Route Entries Defi...

Страница 280: ...e key is enabled Enter the GRE connection key Possible values are 0 to 2147483647 The default value is 0 11 5 Certificates 11 5 1 Certificate List In the VPN Certificates Certificate List menu a list...

Страница 281: ...y or request Certificate is CA Certific ate Mark the certificate as a certificate from a trustworthy certifica tion authority CA Certificates issued by this CA are accepted during authentica tion unle...

Страница 282: ...thentication The function is activated with True The function is disabled by default Caution It is extremely important for VPN security that the integrity of all certificates manually marked as trustw...

Страница 283: ...be selec ted manually Select the Request button to request or import more certificates Fig 108 VPN Certificates Certificate List Request The VPN Certificates Certificate List Request menu consists of...

Страница 284: ...12 bits could be rated as unsecure whereas a key of 4096 bits not only needs a lot of time to create but also occupies a major share of the resources during IPSec processing A value of 768 or more is...

Страница 285: ...r tificate is used RA Encrypt Certificate Only if Mode SCEP Only if RA Sign Certificate is not Use CA Certificate If you use one of your own certificates to sign communication with the RA you can sele...

Страница 286: ...mydomain DC com c DE Common Name Only for Custom disabled Enter the name according to CA E mail Only for Custom disabled Enter the e mail address according to CA Organisational Unit Only for Custom di...

Страница 287: ...d Settings Options menu Field Description Autosave Mode Select whether your device automatically stores the various steps of the enrolment internally This is an advantage if enrol ment cannot be concl...

Страница 288: ...le browser Local Certificate De scription Enter a unique description for the certificate File Encoding Select the type of coding so that your device can decode the certificate Possible values auto def...

Страница 289: ...CRLs CRL Import menu Field Description External Filename Enter the file path and name of the CRL to be imported or use Browse to select it from the file browser Local Certificate De scription Enter a...

Страница 290: ...ificates Certificate Servers menu a list of all certificate servers is shown 11 5 3 1 New Choose the New button to set up new certificate servers Fig 111 VPN Certificates Certificate Servers New The V...

Страница 291: ...Field Description Description Enter a unique description for the certificate server LDAP URL Path Enter the LDAP URL of the server Funkwerk Enterprise Communications GmbH 11 VPN bintec R200 Series 279...

Страница 292: ...configuration The configuration effort for the SIF is com paratively simple with systems like Network Address Translation NAT and IP Access Lists IPAL As SIF NAT and IPAL are active in the system sim...

Страница 293: ...er is informed of the packet rejection The incoming packets are processed as follows The SIF first checks if an incoming packet can be assigned to an existing connection If so it is forwarded If the p...

Страница 294: ...viously been allowed by another filter rule In the Firewall Policies Filter Rules menu a list of all configured filter rules is shown Select the show administrative access rules option to display exis...

Страница 295: ...s all WAN LAN interfaces interface groups see Firewall Interfaces Groups addresses see Firewall Addresses Address List and address groups see Firewall Addresses Groups for selection The value Any mean...

Страница 296: ...ervice List In addition the service groups configured in Firewall Ser vices Groups can be selected Action Select the action to be applied to a filtered packet Possible values Access default value The...

Страница 297: ...de Possible values None default value No priority Low Latency Low Latency Transmission LTT i e hand ling of data with the lowest possible latency e g suitable for VoIP data High Medium Low 12 1 2 QoS...

Страница 298: ...nabled The function is disabled by default Specify bandwidth Only for Traffic Shaping Enabled Enter the maximum available bandwidth in kbps for the selected interface Filter Rules This field contains...

Страница 299: ...nce with the priority defined in the firewall policy The option is deactivated by default 12 1 3 Options Fig 115 Firewall Policies Options The Firewall Policies Options menu consists of the following...

Страница 300: ...ssible values are 30 to 86400 The default value is 180 TCP Inactivity Enter the inactivity time after which a TCP session is to be re garded as expired in seconds Possible values are 30 to 86400 The d...

Страница 301: ...face groups Fig 116 Firewall Interfaces Groups New The Firewall Interfaces Groups New menu consists of the following fields Fields in the Groups Basic Parameters menu Field Description Description Ent...

Страница 302: ...w menu consists of the following fields Fields in the Address List Basic Parameters menu Field Description Description Enter the desired description of the address Address Type Select the type of addr...

Страница 303: ...roups In the Firewall Addresses Groups menu a list of all configured address groups is shown You can group together addresses This makes it easier to configure firewall rules 12 3 2 1 New Choose the N...

Страница 304: ...Services Service List menu a list of all available services is shown 12 4 1 1 New Choose the New button to set up new services Fig 119 Firewall Services Service List New The Firewall Services Service...

Страница 305: ...re 1 to 65535 Source Port Range Only if Protocol TCP UDP TCP or UDP In the first field enter the source port to be checked if applic able If a port number range is specified in the second field enter...

Страница 306: ...ble Port Unreachable Fragmentation Needed Communication with Destination Network is Ad ministratively Prohibited Communication with Destination Host is Admin istratively Prohibited 12 4 2 Groups In th...

Страница 307: ...the Groups Basic Parameters menu Field Description Description Enter the desired description of the service group Members Select the members of the group from the available service ali ases To do thi...

Страница 308: ...infrastructure for voice transmission and shares this with other communication services 13 1 SIP SIP serves as a translation instance between different telecommunications networks e g between the pla...

Страница 309: ...d with Enabled The function is disabled by default 13 2 RTSP In this menu you configure the use of the RealTime Streaming protocol RTSP RTSP is a network protocol for controlling multimedia traffic fl...

Страница 310: ...lds in the RTSP ProxyBasic Parameters menu Field Description RTSP Proxy Select whether you want to permit RTSP sessions The function is activated by choosing Enabled The function is disabled by defaul...

Страница 311: ...verview of DNS requests on your device Global Name Server The IP addresses of global name servers that are queried if your device is unable to an swer requests itself or by forwarding entries are ente...

Страница 312: ...S servers can resolve the name the information is forwarded and a dy namic entry created in the cache 5 Otherwise if overwriting the addresses of the global name servers is allowed DNS Server Configur...

Страница 313: ...ter the standard domain name of your device DNS Server Configura tion Select whether the addresses of the global name server on your device can be overwritten by transferred name server ad dresses Pos...

Страница 314: ...d The function is activated by default Negative Cache Select whether the negative dynamic cache is to be activated i e whether queried names for which a DNS server has sent a negative response are sto...

Страница 315: ...partner configured in the system IP Address to use for DNS WINS Server As signment As DHCP Server Select which name server addresses are sent to the DHCP cli ent if your device is used as DHCP server...

Страница 316: ...S Static Hosts New The Local Services DNS Static Hosts New menu consists of the following fields Fields in the Static Hosts Basic Parameters menu Field Description Description Enter the host name to w...

Страница 317: ...s None A DNS request is ignored no answer is given IP Address Only if Response Positive Enter the IP address assigned to Name TTL Enter the the time for which the assignment of Name to IP Ad dress is...

Страница 318: ...lect whether a host or domain is to be forwarded Possible values Host default value Domain Host Only for Forward Host Enter the name of the host to be forwarded The entry can also start with the wildc...

Страница 319: ...The request is forwarded to the defined Interface DNS Server The request is forwarded to the defined DNS server Interface Only for Forward to Interface Select the interface via which the requests for...

Страница 320: ...Select All button A dynamic entry can be converted to a static entry by marking the entry and confirming with Set to Static This entry then disappears from the list and is included in the list in the...

Страница 321: ...quests Invalid DNS Packets Shows the number of invalid DNS packets received and ad dressed direct to your device DNS Requests Shows the number of valid DNS requests received and ad dressed direct to...

Страница 322: ...an individual user name for the DynDNS service e g dyn_client The service providers offer various domain names for this so that a unique host name results for your device e g dyn_client provider com...

Страница 323: ...ace whose IP address is to be propagated over the DynDNS service e g the interface of the Internet Ser vice Provider User Name Enter the user name as registered with the DynDNS provider Password Enter...

Страница 324: ...be forwarded if the host currently configured is not to receive mail Ask your provider about this forwarding service and make sure e mails can be received from the host entered as MX Wildcard Select...

Страница 325: ...the host name or IP address of the server on which the provider s DynDNS service runs Update Path Enter enter the path on the provider s server that contains the script for managing the IP address of...

Страница 326: ...resses to requesting PCs in the LAN from a predefined IP address pool A PC sends out an ARP re quest and in turn receives its IP address assigned by your device You therefore do not need to allocate f...

Страница 327: ...s DHCP Server DHCP Pool New menu consists of the following fields Fields in the DHCP PoolBasic Parameters menu Field Description Interface Select the interface over which the addresses defined in IP R...

Страница 328: ...ollowing fields Fields in the Advanced Settings menu Field Description Gateway Select which IP address is to be transferred to the DHCP client as gateway Possible values No gateway default value No IP...

Страница 329: ...ding In the Local Services DHCP Server IP MAC Binding menu a list of all clients is shown that have received an IP address from your device via DHCP You can now allocate an IP address from a defined I...

Страница 330: ...tion Enter the name of the host to the MAC Address of which the IP Address is to be bound A character string of up to 256 characters is possible IP Address Enter the IP address to be assigned to the M...

Страница 331: ...he client in the local network Fig 132 Local Services DHCP Server DHCP Relay Settings The Local Services DHCP Server DHCP Relay Settings menu consists of the fol lowing fields Fields in the DHCP Relay...

Страница 332: ...Web Filter The action resulting from the classification is configured on your device 14 4 1 Global Settings This menu contains the configuration of basic parameters for using the Proventia Web Fil te...

Страница 333: ...th to which a URL is to be checked by the Cobion Orange Filter Action if server not reachable Select which is to be done with URL requests if the web filtering server cannot be reached Possible values...

Страница 334: ...menu configure which categories of In ternet pages are to be handled and how You configure the relevant filters for this purpose A list of filters already configured is dis played There are basically...

Страница 335: ...filter is to be used on The options are first the standard categories of the Proventia Web Filter default value Pornography Nudity Actions can also be defined for the following special cases e g Defa...

Страница 336: ...ue is 00 00 In to enter the time at which the filter is to be deactiv ated The time is entered in the form hh mm The default value is 00 00 Action Select the action to be executed if the filter matche...

Страница 337: ...ption URL IP Address You enter a URL or IP address The length of the entry is limited to 60 characters Blacklisted Whitelisted You can select whether a URL or IP address can always in the White List o...

Страница 338: ...assign user names and passwords to users of the CAPI applications on your device This makes sure that only authorised users can receive incoming calls and make outgoing calls via CAPI The CAPI servic...

Страница 339: ...s with password You should then delete the user default without password 14 5 1 User In the Local Services CAPI Server User menu a list of all configured CAPI users is shown 14 5 1 1 New Choose the Ne...

Страница 340: ...vice Access Select whether access to the CAPI service is to be permitted or denied for the user The function is activated by choosing Enabled The function is activated by default 14 5 2 Options Fig 13...

Страница 341: ...e is 2662 14 6 Scheduling Your device has a event scheduler which enables certain standard actions activation or deactivation of interfaces to be carried out on a time dependent basis Note To run the...

Страница 342: ...Schedule Action menu Field Description Select action Select the desired action Possible values Reboot Device default value Your device is rebooted Activate Interface The interface defined in the Selec...

Страница 343: ...server The latest software will be downloaded from the Funkwerk server HTTP server The latest software will be downloaded from an HTTP server that you define in Update URL Update URL Only if Select Ac...

Страница 344: ...aily from Monday to Friday Monday Saturday The initiator becomes active daily from Monday to Saturday Saturday Sunday The initiator becomes active on Sat urdays and Sundays Possible values for Conditi...

Страница 345: ...Options menu consists of the following fields Fields in the Options Scheduling Options menu Field Description Schedule Interval Enter the interval in seconds during which the system checks whether th...

Страница 346: ...and automatic ping tests Note This function cannot be configured on your device for connections that are authentic ated via a RADIUS server 14 7 1 Hosts In the Local Services Monitoring Hosts menu a l...

Страница 347: ...ld be applied 14 7 1 1 Edit New Choose the icon to edit existing entries Choose the New button to set up new surveil lance tasks servers Fig 142 Local Services Monitoring Hosts New The Local Services...

Страница 348: ...vice uses as the source address of the packet sent to the host to be monitored Possible values Automatic default value The IP address is determined automatically Specific Enter the IP address in the a...

Страница 349: ...a list of all monitored interfaces is shown Fig 143 Local Services Surveillance Interfaces Values in the list Interfaces Field Description Monitored Interface Shows the interface to be monitored Statu...

Страница 350: ...ces Basic Parameters menu Field Description Monitored Interface Select the interface on your device that is to be monitored Trigger Select the state or state transition of Monitored Interfaces that is...

Страница 351: ...in Interface Action is to be performed All the physical and virtual interfaces and the options All PPP Interfaces and All IPSec Interfaces can be selected 14 7 3 Ping Generator In the Local Services M...

Страница 352: ...tate of the destination IP address 14 7 3 1 Edit New Choose the icon to edit existing entries Choose the New button to set up further pings Fig 146 Local Services Monitoring Ping Generator New The Loc...

Страница 353: ...access to the gateway owner s LAN Without theft protection he could dial in to the LAN by ISDN if under WAN Internet Dialup New the field Always On is en abled 14 8 1 Options All interfaces for which...

Страница 354: ...n The function is activated with Enabled The function is disabled by default Dialling Number Only if ISDN Theft Protection Servic is enabled Enter the subscriber number that the gateway dials to call...

Страница 355: ...e try ing again after an unsuccessful attempt to call itself Possible values are 2 to 20 The default value is 5 14 9 Funkwerk Discovery 14 9 1 Device Discovery The funkwerk Discovery protocol is used...

Страница 356: ...s covery Status None means that discovery is not active Discovery is displayed when dis covery is currently being carried out This discovery function also enables your device to be discovered and conf...

Страница 357: ...s field specifies the interface of your device on which discov ery is carried out MAC Address The value of this field can only be read This field specifies the MAC address of the discovered access poi...

Страница 358: ...oint has not responded Access Denied The access point reported an authorisation error Check the authentication password Invalid IP Parameters There is a problem with the in tended IP parameters IP add...

Страница 359: ...The Local Services Funkwerk Discovery Options menu consists of the following fields Fields in the Options Discovery Server Options menu Field Description Enable Discovery Server Select whether your d...

Страница 360: ...nd the gateway is 5678 The LAN UPnP client acts as a so called service control point i e it re cognizes and controls the UPnP devices on the network The ports assigned dynamically by for example MSN M...

Страница 361: ...nswer to client request Determine whether UPnP requests from clients are to be answered via the particular interface from the local network The function is activated with Enabled The function is disab...

Страница 362: ...uests from the LAN The function is activated with Enabled The gateway proceeds with UPnP releases in accordance with the parameters con tained in the request from the LAN UPnP client independently of...

Страница 363: ...Field Description Possible values are 1 to 65535 the default value is 5678 Funkwerk Enterprise Communications GmbH 14 Local Services bintec R200 Series 351...

Страница 364: ...r a system reboot in this menu 15 1 Diagnostics In the Maintenance Diagnosis menu you can test the accessibility of individual hosts the resolution of domain names and certain routes 15 1 1 Ping Test...

Страница 365: ...domain name of a particular host is correctly re solved The Output Results field shows the DNS test messages The DNS test is started by entering the domain name to be tested in DNS Address and clickin...

Страница 366: ...manage the software version of your device your configuration files and the language of the Funkwerk Configuration Interface Your device contains the version of the system software available at the ti...

Страница 367: ...s stored in the flash when your device is switched off RAM The current configuration and all changes you set on your device during operation are stored in the working memory RAM The contents of the RA...

Страница 368: ...e current version of the ADSL logic loaded on your device Fields in the Options Software and Configuration Options menu Field Description Action Select the action you wish to execute Possible values N...

Страница 369: ...d file name Copy The configuration file in the Source File Name field is saved as Destination file name Rename The configuration file in the Select File field is re named as New Filename Delete Config...

Страница 370: ...mory is exported Include certificates and keys For Action Export configuration Export configur ation with status information Define whether the se lected Action should also be applied for certificates...

Страница 371: ...g of the LEDs see the Technical Data chapter of the manual Note Before a reboot make sure you confirm your configuration changes by clicking the Save Configuration button so that these are not lost wh...

Страница 372: ...larly and ensure that there is always enough spare capacity available on the hard disk of your PC Syslog Daemon All Unix operating systems support the recording of syslog messages For Windows PCs the...

Страница 373: ...nu Field Description IP Address Enter the IP address of the host to which syslog messages are passed Level Select the priority of the syslog messages that are to be sent to the host Possible values Em...

Страница 374: ...cal0 Timestamp Select the format of the time stamp in the syslog Possible values None default value No system time indicated Time System time without date Date Time System time with date Protocol Sele...

Страница 375: ...unting function which enables you to collect a lot of useful information about the IP network traffic each individual IP session 16 2 1 Interfaces In this menu you can configure the IP Accounting func...

Страница 376: ...ny order sequences separated by a slash e g t or n or defined tags Possible format tags Format tags for IP accounting messages Field Description d Date of the session start in the format DD MM YY t Ti...

Страница 377: ...p o P O s 16 3 E mail Alert It was previously possible to send syslog messages from the router to any syslog host De pending on the configuration E mails are sent to the administrator as soon as rele...

Страница 378: ...ng the mails The entry is limited to 40 characters SMTP Authentication Forward the incoming E mails Possible values None default value The E mails are not forwarded ESMTP The E mails are forwarded to...

Страница 379: ...of syslog messages is displayed 16 3 2 1 New Choose the New button to create new e mail alert receivers Fig 162 External Reporting E mail Alert E mail Alert Recipient The External Reporting E mail Ale...

Страница 380: ...the router must wait after a relevant event be fore it is forced to send the e mail alert Possible values are 0 to 86400 The value 0 disables the timeout Number of Messages Enter the number of syslog...

Страница 381: ...As SNMP is a standard protocol you can use any other SNMP managers e g HPOpenView For more information on the SNMP versions see the relevant RFCs and drafts SNMP V 1 RFC 1157 SNMP V 2c RFC 1901 1908 S...

Страница 382: ...SNMP traps Any whole number is possible The default value is 162 SNMP Trap Community Only if SNMP Trap Broadcasting is enabled Enter a new SNMP code This must be sent by the SNMP Man ager with every S...

Страница 383: ...settings needed to monitor your device with the Windows tool Activity Monitor part of BRICKware for Windows Purpose The Activity Monitor enables Windows users to monitor the activities of your device...

Страница 384: ...display the information contained in them in various ways ac cording to the configuration Activate the Activity Monitor as follows configure the relevant device s to be monitored Start and configure...

Страница 385: ...alue 255 255 255 255 means that the broadcast ad dress of the first LAN interface is used Single Host The UDP packets are sent to the IP address entered in the adjacent input field Update Interval Ent...

Страница 386: ...ages menu a list of all internally stored system messages is shown Above the table you will find the configured Maximum Num ber of Syslog Entries and the configured Maximum Message Level of Syslog Ent...

Страница 387: ...rated the mes sage Message Displays the message text 17 2 IPSec 17 2 1 IPSec Tunnels In the Monitoring IPSec IPSec Tunnel menu a list of all configured IPSec peers is shown Fig 167 Monitoring IPSec IP...

Страница 388: ...s Opens a detailed statistics window You change the status of the IPSec tunnel by pressing the button or button in the Action column By pressing the button you display detailed statistics on the IPSec...

Страница 389: ...ages for this IPSec tunnel are displayed here 17 2 2 IPSec Statistics In the Monitoring IPSec IPSec Statistics menu statistical values for all IPSec con nections are shown Fig 169 Monitoring IPSec IPS...

Страница 390: ...2 Shows the number of active phase 2 SAs Established from the total number of phase 2 SAs Total Field in the IPSec Statistics Packet Statistics menu Field Description Total Shows the number of all pro...

Страница 391: ...that was dialled in the case of outgoing calls or from which the call was made in the case of incoming calls Interface Displays additional information for PPP connections Direction Displays the send d...

Страница 392: ...ion Service Displays the service to or from which the call was connected PPP IPSEC X 25 POTS Remote Number Displays the number that was dialled in the case of outgoing calls or from which the call was...

Страница 393: ...statistical data for the individual interfaces in de tail Values in the list Statistics Field Description Shows the serial number of the interface Description Displays the name of the interface Type...

Страница 394: ...Action Enables you to change the status of the interface as displayed 17 5 WLAN 17 5 1 WLAN1 In the Monitoring WLAN WLAN1 menu the current values and activities of the first interface are shown Fig 1...

Страница 395: ...Description Meaning Unicast MSDUs trans mitted successfully Displays the number of MSDUs successfully sent to unicast ad dresses since the last reset An acknowledgement was received for each of these...

Страница 396: ...RTS Displays the number of received CTS clear to send frames that were received as a response to RTS request to send Received MPDU that couldn t be decrypted Displays the number of received MSDUs that...

Страница 397: ...f packets received Signal dBm Shows the received signal strength in dBm Noise dBm Shows the received noise strength in dBm Data Rate mbps Shows the current transmission rate of data received by this c...

Страница 398: ...t IP Address Shows the IP address of the client Up Time Shows the time in hours minutes and seconds for which the cli ent is logged in Signal dBm Shows the received signal strength in dBm Noise dBm Sh...

Страница 399: ...g a 54 48 36 24 18 12 9 6 mbps If the 5 GHz frequency band is used the indication of 11 5 5 2 and 1 mbps is suppressed for IEEE 802 11b Rate Displays the possible data rates on this radio module Tx Pa...

Страница 400: ...ged tone Busy On Busy Call to engaged team subscriber If one subscriber in a team has taken the receiver off the hook or is on the telephone you can de cide whether other calls are to be signalled for...

Страница 401: ...nection to be selected and set up parameters must be defined for all the required connections These parameters are stored in lists which together permit the right con nection to be set up The PBX uses...

Страница 402: ...as well 802 11b g One of the IEEE standards for wireless network hardware Products that meet the same IEEE standard can communicate with each oth er even if they come from different hardware manufactu...

Страница 403: ...to a number of computers that form an in dependent 802 11 WLAN each with a wireless adapter Ad hoc net works work independently without an access point on a peer to peer basis Ad hoc mode is also know...

Страница 404: ...eature on telephones By pressing a key or code the caller requests a call back from the engaged terminal If the subscriber you want is not at their desk or cannot take the call they are auto matically...

Страница 405: ...Automatic redialling Performance feature of a terminal If the line is busy several redial attempts are made B channel Corresponds to a telephone line in T Net In T ISDN the basic con nection contains...

Страница 406: ...an exchange data with each other without a fixed connection For example PCs notebooks or a PDA can access the Internet or a loc al network The appointments on a PDA can be synchronised with the appoin...

Страница 407: ...Call costs account You can set up a call costs account for a subscriber here The maximum available number of units in the form of a limit can be as signed to each subscriber on their personal call cos...

Страница 408: ...p is possible A call can only be picked up by subscribers terminals in the same pickup group The assignment of subscribers in pickup groups is not de pendent on the settings in the Day and Night team...

Страница 409: ...Block Chaining CCITT Consultative Committee for International Telegraphy and Telephony CD Call Deflection The forwarding of calls This performance feature enables you to forward a call without having...

Страница 410: ...Analogue Telephony or Telefax Group 3 can also be transmitted regardless of the configuration of the analogue con nection If 0 is dialled the service ID Analogue Telephony is also transmitted Confere...

Страница 411: ...include STAC VJHC and MPPC Data Link Layer DLL Data packet A data packet is used for information transfer Each data packet contains a prescribed number of characters information and control characters...

Страница 412: ...st Configuration Protocol Dial preparation On some telephones with a display you can first enter a telephone check it first and then dial it Dial in parameters Define the dial in parameters i e you en...

Страница 413: ...function module can be installed on an analogue connection of your PBX If a door intercom DoorLine is connected to your PBX via a function module you can speak with a visitor at the door via every au...

Страница 414: ...er face which is also called the E1 system ECB Electronic Code Book mode ECT Explicit Call Transfer This performance feature allows two external connections to be transferred without blocking the two...

Страница 415: ...ing loaded the PBX functions are deleted Euro ISDN Harmonised ISDN standardised within Europe based on signalling protocol DSS1 the introduction of which network operators in over 20 European countrie...

Страница 416: ...viation of telefax FHSS Frequency Hopping Spread Spectrum In a FHSS system the frequency spread is achieved through con stantly changing frequencies based on certain hopping patterns In contrast to DS...

Страница 417: ...acket switching methods such as X 25 Because of its properties frame relay is used for fast WAN connections with a high density of traffic Freecall Telephone number Previous service 0130 These telepho...

Страница 418: ...from a text sequence with a different meaning Encryption methods use hashing to make sure that intruders cannot change transmitted messages HDLC High Level Data Link Control HDSL High Bit Rate DSL HDS...

Страница 419: ...cedure If you enter code 77 during a call or after the caller has ended a call you hear the engaged tone from the exchange the caller s tele phone number is stored in the exchange ISDN telephones can...

Страница 420: ...local and university networks The IP protocol is used for data transmission on the Inter net Internet time sharing Allows several users to surf the Internet simultaneously over an ISDN connection The...

Страница 421: ...xtension number ISDN number The network address of the ISDN interface e g 4711 ISDN router A router that does not have network connections but provides the same functions between PC ISDN and the Inter...

Страница 422: ...ss a button so that the people present in the room can also hear the telephone call MAC Address Every device in the network is defined by a fixed hardware address MAC address The network card of a dev...

Страница 423: ...protocol gate way A gateway that can route several protocols e g IP X 25 etc Music on hold MoH Your PBX has two internal music on hold melodies On delivery in ternal melody 1 is active You can choose...

Страница 424: ...is the point at which access to a communication network is provided to the terminal Netz Direkt keypad functions You can use the Netz Direkt keypad function automatic external line access to enter a k...

Страница 425: ...er of the connection you are calling from on their telephone display This telephone number transmitted during an external call is called the outgoing telephone number Packet switching Packet switching...

Страница 426: ...Point to multipoint Point to multipoint connection Point to multipoint Basic connection in T ISDN with three telephone numbers and two lines as standard The ISDN terminals are connected directly on t...

Страница 427: ...face Protocol Protocols are used to define the manner and means of information exchange between two systems Protocols control and rule the course of data communication at various levels decoding addre...

Страница 428: ...motely usually in connection with other options such as deleting messages or changing recorded messages Repeater A device that transmits electrical signals from one cable connection to another without...

Страница 429: ...de Please read the information on the described functions in the user s guide Router A device that connects different networks at layer 3 of the OSI mod el and routes information from one network to t...

Страница 430: ...service from T Com Replaces Service 0190 Service number 0180 Additional voice service 0180call from T Com to receive calls from a location dependent telephone number uniform across Germany starting w...

Страница 431: ...with an SMS enabled terminal the telephone number 0193010 of the SMS server must be prefixed to the recipient num ber This telephone number is already stored in your PBX so manu al input of the serve...

Страница 432: ...scriber numbers are included as standard Specify own tele phone number for next call If you want to make a business call late in the evening from your private sphere say the living room for example yo...

Страница 433: ...hone number for a particular service In the called terminal e g a PC various applications can also be ad dressed and in some cases executed Costs are charged for the performance feature and it must be...

Страница 434: ...ssion process in which the sender and receiver operate with exactly the same clock signals in contrast to asynchronous trans mission Spaces are bridged by a stop code Syslog Syslog is used as the de f...

Страница 435: ...e T NetBox can store up to 30 messages T NetBox telephone number Enter the current T NetBox telephone number here if it differs from the 08003302424 entered ex works As soon as your T NetBox re ceives...

Страница 436: ...l family Telnet enables communic ation with a remote device in the network Terminal adapter Device for interface adaptation It enables different equipment to be connected to T ISDN The terminal adapte...

Страница 437: ...ric Digital Subscriber Line UDP User Datagram Protocol Update Update to a software program PBX firmware An update is the up dated version of an existing software product and is indicated by a new vers...

Страница 438: ...o analogue on one side of the modem provider as was the case with V 34 and earlier modems This makes higher transmission rates possible A maximum speed of 56 kbps can be achieved only under optimum co...

Страница 439: ...PA PSK Intended for private users or small businesses that do not run a central authentication server PSK stands for Pre Shared Key and means that AP and client use a fixed character string 8 to 63 ch...

Страница 440: ...on users such as e mail addresses telephone numbers and postal ad dresses You can search these databases to obtain information about individuals X 509 ITU T standards that define the format of the cer...

Страница 441: ...52 259 Always on 185 190 Answer to client request 349 Apply Qos 283 ARP Processing 145 ATM PVC 195 ATM Service Category 213 Authentication 188 192 197 202 255 261 Authentication for PPP Dialin 114 Aut...

Страница 442: ...et for PPPoE Interfaces 210 Default Route 187 191 196 201 223 253 260 267 Default Route Distribution 168 Delete complete IPsec configuration 244 Description 185 190 195 200 208 222 231 239 248 252 259...

Страница 443: ...age Collection Timer 169 Gateway 151 316 345 Generate Private Key 271 GRE Window Adaption 265 GRE Window Size 265 Group Description 171 Group ID 334 335 H Hashing Algorithms 102 Hello Interval 250 Hol...

Страница 444: ...ocal ID 376 Local ID Type 231 Local ID Value 231 Local IP 151 Local IP Address 187 191 196 201 223 250 253 260 267 376 Local PPTP IP Address 192 Locality 273 Location 86 Logged Actions 287 Logging Lev...

Страница 445: ...Name SSID 145 Network Type 151 New Date 91 New File Name 356 New Time 91 Node Name 345 Noise dBm 385 386 Number of Dial Retries 343 Number of Messages 367 O OAM Flow Level 216 Operation Band 138 Oper...

Страница 446: ...D 376 Remote IP Address 249 375 376 Remote IP Address Netmask 159 Remote Network 159 Remote Networks 375 Remote Number 379 380 Remote PPTP IP Address 192 259 Remote User for Dialin only 200 Response 3...

Страница 447: ...face 153 175 Source IP Address 153 336 339 340 Source Location 330 356 Source Port 153 Source Port Range 292 Specify bandwidth 286 SSH 99 SSH Service Active 101 Stack 379 Start Mode 224 Start Time 331...

Страница 448: ...pdate system time from ISDN 91 Update Timer 169 Update URL 330 UPnP Status 350 UPnP TCP Port 350 Upstream 126 Uptime 84 URL 356 URL Path Depth 320 URL IP Address 325 Usage Type 202 Use key 267 Use PFS...

Отзывы:

Нет отзывов

Похожие инструкции для R232a

Бренд: Esse-ti Страницы: 56

Бренд: ZyXEL Communications Страницы: 323

Бренд: SAGEMCOM Страницы: 60

Projector Gateway

Бренд: Acer Страницы: 58

Бренд: RTA Страницы: 48

Бренд: RTA Страницы: 78

Бренд: RTA Страницы: 58

Бренд: RTA Страницы: 68

Бренд: RTA Страницы: 78

Бренд: RTA Страницы: 75

Бренд: RTA Страницы: 74

Бренд: RTA Страницы: 72

Бренд: RTA Страницы: 66

Бренд: RTA Страницы: 72

Бренд: Aluratek Страницы: 63

Бренд: 2Wire Страницы: 131

Бренд: Technicolor Страницы: 39

Бренд: IEI Technology Страницы: 34

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды