manualshive.com logo in svg

Black Box MDS921AE-10BTS-R2, Руководство пользователя

"Black Box MDS921AE-10BTS-R2" - мощный сетевой коммутатор с 10 портами и возможностью управления. Для полного ознакомления с его функционалом, обязательно скачайте бесплатное Руководство по эксплуатации с нашего сайта. manualshive.com - ваш источник полезной информации о технике.

Поделиться
Скачать
background image

 SMARTLINK

 I&II

 

MDS921AE-10BTS - MDS

 

 

 

Firewall 

A firewall protects networked computers from intentional hostile intrusion that could compromise 
confidentiality or result  in data corruption or denial of service. It must have at  least two network 
interfaces, one for the network it is intended to protect,
firewall sits at the junction point or gateway between the two networks, usually a private network 
and a public network such as the Internet. 
 
A firewall examines all traffic routed between the two networks to 
does, it is routed between the networks, otherwise it is stopped. A firewall filters both inbound and 
outbound traffic. It can also manage public access to private networked resources such as host 
applications. It can be used to log all attempts to enter the private network and trigger alarms when 
hostile or unauthorized entry is attempted. Firewalls can filter packets based on their source and 
destination  addresses  and  port  numbers.  This  is  known  as  address  filtering
filter specific types of network traffic. This is also known as protocol filtering because the decision 
to forward or reject traffic is 
Firewalls can also filter traffic by packet attribute or state.
 
An  Internet  firewall  cannot  prevent  individual  users  with  modems  from 
network. By doing so they bypass the firewall altogether. Employee misconduct or carelessness 
cannot  be  controlled  by  firewall
accounts must be strictly enforced. These are management issues that should be raised during 
the planning of any security policy, but that cannot be solved with Internet firewalls alone.
 

Types of Firewall 

 
There are three types of firewall:
 

Packet Filtering 

In packet filtering, only the protocol and the address information of each packet is examined. Its 
contents  and  context  (its  relation  to  other  packets  and  to  the  intended  application)  are 
The firewall pays no attention to applications on the host or local network and it "knows" nothing 
about the sources of incoming data. Filtering consists of examining incoming or outgoing packets 
and allowing or disallowing their transmission or a
rules. Network Address Translation (NAT) routers offer the advantages of packet filtering firewalls 
but  can  also  hide  the  IP  addresses  of  computers  behind  the  firewall,  and  offer  a  level  of 
circuit-based filtering. 
 

Circuit Gateway 

Also called a "Circuit Level Gateway," this is a firewall approach that validates connections before 
allowing  data  to  be  exchanged.  What  this  means  is  that  the  firewall  doesn't  simply  allow  or 
disallow  packets  but  also  determines  wh
according  to  configurable  rules,  then  opens  a  session  and  permits  traffic  only  from  the  allowed 
source and possibly only for a limited period of time. 
 

Application Gateway

 

The  Application  Level  Gateway  acts 
with  the  remote  system  in  their  behalf.  This  can  render  a  computer  behind  the  firewall  all  but 
invisible to the remote system. It can allow or disallow traffic according to very specific rules, for
instance permitting some commands to a server but not others, limiting file access to certain types, 
varying rules according to authenticated users and so forth. This type of firewall may also perform 
very  detailed  logging  of  traffic  and  monitoring  of  eve
instructed  to  sound  alarms  or  notify  an  operator  under  defined  conditions.  Application
gateways are generally regarded as the most secure type of firewall. They certainly have the most 
sophisticated capabilities. 

S957AE-10BTS    User Manual   

Page 11 of 113 

A firewall protects networked computers from intentional hostile intrusion that could compromise 
confidentiality or result  in data corruption or denial of service. It must have at  least two network 
interfaces, one for the network it is intended to protect, and one for the network it is exposed to. A 
firewall sits at the junction point or gateway between the two networks, usually a private network 
and a public network such as the Internet.   

A firewall examines all traffic routed between the two networks to see if it meets certain criteria. If it 
does, it is routed between the networks, otherwise it is stopped. A firewall filters both inbound and 
outbound traffic. It can also manage public access to private networked resources such as host 

n be used to log all attempts to enter the private network and trigger alarms when 

hostile or unauthorized entry is attempted. Firewalls can filter packets based on their source and 
destination  addresses  and  port  numbers.  This  is  known  as  address  filtering
filter specific types of network traffic. This is also known as protocol filtering because the decision 
to forward or reject traffic is dependent upon the protocol used, for example HTTP, ftp or telnet. 

c by packet attribute or state. 

An  Internet  firewall  cannot  prevent  individual  users  with  modems  from  dialing
network. By doing so they bypass the firewall altogether. Employee misconduct or carelessness 
cannot  be  controlled  by  firewalls.  Policies  involving  the  use  and  misuse  of  passwords  and  user 
accounts must be strictly enforced. These are management issues that should be raised during 
the planning of any security policy, but that cannot be solved with Internet firewalls alone.

There are three types of firewall: 

In packet filtering, only the protocol and the address information of each packet is examined. Its 
contents  and  context  (its  relation  to  other  packets  and  to  the  intended  application)  are 
The firewall pays no attention to applications on the host or local network and it "knows" nothing 
about the sources of incoming data. Filtering consists of examining incoming or outgoing packets 
and allowing or disallowing their transmission or acceptance on the basis of a set of configurable 
rules. Network Address Translation (NAT) routers offer the advantages of packet filtering firewalls 
but  can  also  hide  the  IP  addresses  of  computers  behind  the  firewall,  and  offer  a  level  of 

Also called a "Circuit Level Gateway," this is a firewall approach that validates connections before 
allowing  data  to  be  exchanged.  What  this  means  is  that  the  firewall  doesn't  simply  allow  or 
disallow  packets  but  also  determines  whether  the  connection  between  both  ends  is  valid 
according  to  configurable  rules,  then  opens  a  session  and  permits  traffic  only  from  the  allowed 
source and possibly only for a limited period of time.   

The  Application  Level  Gateway  acts  as  a  proxy  for  applications,  performing  all  data  exchanges 
with  the  remote  system  in  their  behalf.  This  can  render  a  computer  behind  the  firewall  all  but 
invisible to the remote system. It can allow or disallow traffic according to very specific rules, for
instance permitting some commands to a server but not others, limiting file access to certain types, 
varying rules according to authenticated users and so forth. This type of firewall may also perform 
very  detailed  logging  of  traffic  and  monitoring  of  events  on  the  host  system,  and  can  often  be 
instructed  to  sound  alarms  or  notify  an  operator  under  defined  conditions.  Application
gateways are generally regarded as the most secure type of firewall. They certainly have the most 

 

 

A firewall protects networked computers from intentional hostile intrusion that could compromise 
confidentiality or result  in data corruption or denial of service. It must have at  least two network 

and one for the network it is exposed to. A 

firewall sits at the junction point or gateway between the two networks, usually a private network 

see if it meets certain criteria. If it 

does, it is routed between the networks, otherwise it is stopped. A firewall filters both inbound and 
outbound traffic. It can also manage public access to private networked resources such as host 

n be used to log all attempts to enter the private network and trigger alarms when 

hostile or unauthorized entry is attempted. Firewalls can filter packets based on their source and 
destination  addresses  and  port  numbers.  This  is  known  as  address  filtering.  Firewalls  can  also 
filter specific types of network traffic. This is also known as protocol filtering because the decision 

upon the protocol used, for example HTTP, ftp or telnet. 

dialing  into  or  out  of  the 

network. By doing so they bypass the firewall altogether. Employee misconduct or carelessness 

s.  Policies  involving  the  use  and  misuse  of  passwords  and  user 

accounts must be strictly enforced. These are management issues that should be raised during 
the planning of any security policy, but that cannot be solved with Internet firewalls alone. 

In packet filtering, only the protocol and the address information of each packet is examined. Its 
contents  and  context  (its  relation  to  other  packets  and  to  the  intended  application)  are  ignored. 
The firewall pays no attention to applications on the host or local network and it "knows" nothing 
about the sources of incoming data. Filtering consists of examining incoming or outgoing packets 

cceptance on the basis of a set of configurable 

rules. Network Address Translation (NAT) routers offer the advantages of packet filtering firewalls 
but  can  also  hide  the  IP  addresses  of  computers  behind  the  firewall,  and  offer  a  level  of 

Also called a "Circuit Level Gateway," this is a firewall approach that validates connections before 
allowing  data  to  be  exchanged.  What  this  means  is  that  the  firewall  doesn't  simply  allow  or 

ether  the  connection  between  both  ends  is  valid 

according  to  configurable  rules,  then  opens  a  session  and  permits  traffic  only  from  the  allowed 

as  a  proxy  for  applications,  performing  all  data  exchanges 

with  the  remote  system  in  their  behalf.  This  can  render  a  computer  behind  the  firewall  all  but 
invisible to the remote system. It can allow or disallow traffic according to very specific rules, for 
instance permitting some commands to a server but not others, limiting file access to certain types, 
varying rules according to authenticated users and so forth. This type of firewall may also perform 

nts  on  the  host  system,  and  can  often  be 

instructed  to  sound  alarms  or  notify  an  operator  under  defined  conditions.  Application-level 
gateways are generally regarded as the most secure type of firewall. They certainly have the most 

Содержание MDS921AE-10BTS-R2

Страница 1: ...1 Revision 19 October 2008 Document name UM_MDS921AE UM_MDS921AE MDS957AE 10BTS R2 SMARTLINK_v1 4 081019v1 2 070301 doc User Manual MDS921AE 10BTS R2 SMARTLINK MDS957AE 10BTS R2 SMARTLINK II ATM Based...

Страница 2: ...e 2 of 113 BlackBox The contents of this publication may not be reproduced in any part or as a whole transcribed stored in a retrieval system translated into any language or transmitted in any form or...

Страница 3: ...ous version 17 01 2005 Initial version 14 11 2005 Included EN50419 28 09 2006 Housing and Design Changes 05 12 2007 G SHDSL bis added 19 03 2008 Multi Pair and Multi Link modes added EU Directive 2002...

Страница 4: ...ep 5 Install the SHDSL Router Configuration via Web Browser Basic Setup Bridge Mode Routing Mode DHCP Server DHCP Client PPPoE or PPPoA IPoA or EoA Advanced Setup SHDSL router S957AE 10BTS User Manual...

Страница 5: ...nterface Configuration via Serial Console or Telnet Window structure Configuration Status Show Write Administration Setup S957AE 10BTS User Manual Page 5 of 113 Advanced Setup SHDSL bis router LAN con...

Страница 6: ...also it integrates high end Bridging Routing capabilities with advanced DMZ virtual server mapping and VPN pass through Because of rapid growth of network virtual LAN has become one of the major new...

Страница 7: ...P IGMP protocols IP routing with static routing and RIPv1 RIPv2 RFC1058 2453 IP multicast and IGMP proxy RFC1112 2236 Network address translation NAT PAT RFC1631 NAT ALGs for ICQ Netmeeting MSN Yahoo...

Страница 8: ...adapter Power consumption 9 watts max Temperature 0 55 Humidity 0 95 RH non Memory 2MB Flash Memory 8MB SDRAM S957AE 10BTS User Manual Page 8 of 113 T G 991 2 Annex A Annex B SHDSL router T G 991 2 20...

Страница 9: ...S S957AE 10BTS User Manual Page 9 of 113 DESKTOP Smartlink I II Ethernet Bridge Router VLAN Router Ethernet Bridge Single Pair SHDSL Dual Pair SHDSL Single Pair SHDSL bis Dual Pair SHDSL bis Multi Ser...

Страница 10: ...Link Protection TC Ethernet Ethernet Extension in Multi S957AE 10BTS User Manual Page 10 of 113 Application with DSLAM Application with DSLAM ISP to LAN Ethernet Extension Point Application LAN to LA...

Страница 11: ...s and user accounts must be strictly enforced These are management issues that should be raised during the planning of any security policy but that cannot be solved with Internet firewalls alone There...

Страница 12: ...e when they found that a packet broken down into fragments could add up to more than the allowed 65 536 bytes Many operating systems didn t know what to do when they received an oversized packet so th...

Страница 13: ...s up to 8 active VLANs with shared VLAN learning SVL bridge out of VLANs specified in IEEE 802 1Q Each port always belongs to a default VLAN with its port VID PVID as an untagged member Also a port ca...

Страница 14: ...nd VLAN tagged frame where the Tag Protocol Identifier TPID is of 0x8100 and it identifies the frame as a tagged frame The Tag Control Information TCI consists of the following elements 1 User pr tagg...

Страница 15: ...SMARTLINK I II MDS921AE 10BTS MDS S957AE 10BTS User Manual Page 15 of 113...

Страница 16: ...t status is indicated on the back of the device S957AE 10BTS User Manual Page 16 of 113 Getting to know about the router the hardware of the router Front Panel of four port router The front panel cont...

Страница 17: ...t Input voltage 12VDC 4 Port Ethernet 10Base T for LAN RJ 45 232C DB9 for system configuration and maintenance G SHDSL interface for WAN port RJ 11 2 or 4 wire Reset Button The reset button can be use...

Страница 18: ...No connection SHDSL RJ45 pinout Pin Number 1 No connection 2 No connection 3 Loop B 4 wire support only 4 Loop A 5 Loop A 6 Loop B 4 wire support only 7 No connection 8 No connection S957AE 10BTS User...

Страница 19: ...router TCP IP protocol is necessary for web configuration so please check the TCP IP protocol whether it has been installed Step 2 Check the Terminal Access Program Serial Console and Telnet Configura...

Страница 20: ...rowser Using Microsoft Windows 2000 and XP click the Double click the network icon S957AE 10BTS User Manual Page 20 of 113 Configuration via Web Browser Using Microsoft Windows 2000 and XP click the s...

Страница 21: ...o restart the PC Click S957AE 10BTS User Manual Page 21 of 113 In the Configuration window select the TCP IP protocol line that has been associated with your property icon Choose IP address tab Select...

Страница 22: ...the User Name and S957AE 10BTS User Manual Page 22 of 113 After rebooting your PC open IE or Netscape Browser to connect the Router Type IP address and sub net mask of the Router is 192 168 0 1 and 25...

Страница 23: ...23 of 113 Setup contains LAN WAN Bridge and Route operation mode User can use it to completely setup the router After successfully completing it you can access Internet This is the easiest and possibl...

Страница 24: ...rs Enter VPI 0 Enter VCI 32 Click LLC Click Next S957AE 10BTS User Manual Page 24 of 113 Before configuration the router in bridge mode check with your ISP about these information if applicable Side t...

Страница 25: ...new setting or S957AE 10BTS User Manual Page 25 of 113 The screen will prompt the new configured parameters Check the parameters and The router will reboot with the new setting or Continue to configur...

Страница 26: ...rk administrators to manage centrally and automate the assignment of Internet Protocol IP addresses in an organization s network Using the Internet Protocol each machine that can connect to the Intern...

Страница 27: ...signs the IP form Start IP Address to End IP Address The legal IP address range is form 0 to 255 but 0 and 255 are reserved for broadcast so the legal IP address range is from 1 to 254 On the other ha...

Страница 28: ...assign fixed IP addresses to some devices while using DHCP provided that the fixed IP address are not within the range used by the DHCP server to setup WAN1 parameters Some of the ISP provides DHCP s...

Страница 29: ...SMARTLINK I II MDS921AE 10BTS MDS Enter DHCP server IP address i Press Next S957AE 10BTS User Manual Page 29 of 113 Enter DHCP server IP address in IP address field...

Страница 30: ...many service providers for broadband Internet are specifications for connecting multiple computer users on an Ethernet local area network to a remote site through common customer premises equipment w...

Страница 31: ...ime enter 0 in the Idle Time field There are two IP types Dynamic and Static which you can setup The default IP type is Dynamic It means that ISP PPP server will provide IP information including dynam...

Страница 32: ...1 Your ISP will provide at least one DNS Domain Name System Server IP address Click Next S957AE 10BTS User Manual Page 32 of 113 the router check the information below with your ISP licable NAT or EoA...

Страница 33: ...ten in EPROM Check the parameters before writing in EPROM S957AE 10BTS User Manual Page 33 of 113 The screen will prompt the parameters that will be written in EPROM Check the parameters before The sc...

Страница 34: ...ameters or press continue to setup another parameter S957AE 10BTS User Manual Page 34 of 113 Press Restart to restart the router working with new parameters or press continue to setup another Press Re...

Страница 35: ...Advanced setup contains SHDSL WAN Bridge Route NAT DMZ Virtual server and firewall You can setup the Annex type data rate and SNR margin for SHDSL parameters in SHDSL Annex Type There are two Annex t...

Страница 36: ...tatus SHDSL SNR margin the margin range is from 0 to 10 S957AE 10BTS User Manual Page 36 of 113 have to setup n 0 The router will adapt the data rate according to the line status SHDSL SNR margin the...

Страница 37: ...ection You can see the actual SNR margin in STATUS SHDSL The larger SNR margin the better line connection If you set SNR margin in the field as 2 the SHDSL connection will drop and reconnect when the...

Страница 38: ...BTS User Manual Page 38 of 113 Advanced Setup SHDSL bis router You can setup the Annex type data rate and SNR margin for SHDSL bis parameters in foure Annex types Annex A ANSI Annex B ETSI AnnexAF and...

Страница 39: ...te according to the line status S957AE 10BTS User Manual Page 39 of 113 Data Rate 2W you can setup the SHDSL bis data rate in the multiple of 64kbps The default data rate is 5696Kbps n 89 TCPAM32 data...

Страница 40: ...oes through the other pair wire mode Only one pair works another pair is in standby When one pair fails fraffic goes through the other pair wire mode Each pair is connected to two different devices wh...

Страница 41: ...c Management Specification V4 0 defines ATM service cataloges that describe both the traffic transmitted by users onto a network as well as the Quailty of Service that the network need to provide for...

Страница 42: ...er parameter S957AE 10BTS User Manual Page 42 of 113 The screen will prompt the parameters that will be written in EPROM Check the parameters before Press Restart to restart the router working with ne...

Страница 43: ...on you can use BRIDGE menu to setup the filter function blocking function to add the static bridge information filter the definate MAC address of LAN PC to access Internet press the filtering table Ke...

Страница 44: ...0BTS MDS Press Restart to restart the router working with new parameters or press parameter S957AE 10BTS User Manual Page 44 of 113 to restart the router working with new parameters or press continue...

Страница 45: ...cated on a number of different LAN segments Because VLAN is based on logical instead of physical connections it is extremely flexible to configure VLAN The product support two types of VLAN 802 1Q and...

Страница 46: ...re Ethernet Here are several options AutoSense 100Base S957AE 10BTS User Manual Page 46 of 113 the product works under routing mode the Link Type of WAN will be Access mode Based VLANs are VLANs where...

Страница 47: ...p a static route between them A static route is a pre determined pathway that network information must travel to reach a specific host or network With Dynamic Routing you can enable the Router to auto...

Страница 48: ...ting information protocol RIP allows it to exchange routing information with other router If set to Disable the gateway does not participate in any RIP exchange with other router If set Enable the rou...

Страница 49: ...P v2 messages in multicast and broadcast format S957AE 10BTS User Manual Page 49 of 113 RIP Version It determines the format and broadcasting method of any RIP transmissions by the RIP v1 it only send...

Страница 50: ...of 113 None for RIP there is no need of authentication code Password the RIP is protected by password authentication code MD5 The RIP will be decoded by MD5 than protected by password authentication c...

Страница 51: ...global IP addresses that a company needs and lets the company to use a single IP address of its communication in the Internet world DMZ demilitarized zone is a computer host or small network inserted...

Страница 52: ...NAT DMZ functions click Enable Enable the DMZ host Function is used the IP address assigned to the WAN for enabling DMZ function for the virtual IP address DMZ Some users who have two or more global I...

Страница 53: ...ual IP addresses eg 192 168 0 10 192 168 0 50 collectively use two of the global IP addresses eg 69 210 1 9 and 69 210 1 10 The Multi NAT table will be setup as Virtual Start IP Address 192 168 0 10 G...

Страница 54: ...but does not actually have any services other than NAT of course running on gateway it is said to be a virtual server Request with TCP made to 69 210 1 8 80 are remapped to the server 1 on 192 168 0...

Страница 55: ...a set of related programs that protects the resources of a private network from other networks It is helpful to users that allow preventing hackers to access its own private data This level only enab...

Страница 56: ...rity all DoS protection and the SPI filter function S957AE 10BTS User Manual Page 56 of 113 Press restart to restart the router or press continue to setup another function This level enables basic fir...

Страница 57: ...ameters which will be written in EPROM Check the parameters S957AE 10BTS User Manual Page 57 of 113 finish setting firewall The screen will prompt the parameters which will be written in EPROM Check t...

Страница 58: ...t the router or press Continue to setup another function S957AE 10BTS User Manual Page 58 of 113 Press restart to restart the router or press Continue to setup another function Press restart to restar...

Страница 59: ...can determine the security level for special purpose environment and applications by configuring the DoS protection and defining an extra packet filter with higher priority than the default SPI filte...

Страница 60: ...SMARTLINK I II MDS921AE 10BTS MDS S957AE 10BTS User Manual Page 60 of 113...

Страница 61: ...gnostic services which cause all CPU resources to be consumed serving the phony requests A ping of death attack attempts to crash your system by sending a fragmented packet when than the maximum allow...

Страница 62: ...all maintains a memory of each connection and data passing through it Stateful firewall records the context of connections during each session continuously updating state information in dynamic tables...

Страница 63: ...e 63 of 113 Direction INBOUND INBOUND is from WAN to LAN and OUTBOUND is LAN to WAN Dest IP Address 192 168 0 2 192 168 0 50 The screen will prompt the configured parameters Check the parameters Click...

Страница 64: ...ol Dest Port 172 16 1 1 192 168 3 4 TCP 25 192 168 3 4 172 16 1 1 TCP 1357 Internet 3 4 SMTP Server 192 168 3 4 25 Firewall Source Destination Protocol Dest Port 10 1 2 3 171 16 3 4 TCP 6000 171 16 3...

Страница 65: ...nging the order as the different result of filtering Destination Address Action 172 16 6 0 Permit 172 16 0 0 Deny Any Deny Where 0 at the last eight bits indicates from 1 to 254 0 at any eight bits pr...

Страница 66: ...an get the priorities to pass though router once if the bandwidth is exhausted or fully saturated at item Trigger IP QoS Service in General IP QoS Parameter which turn on this function if you want to...

Страница 67: ...riority and so on S957AE 10BTS User Manual Page 67 of 113 This is an example for your reference 192 168 1 60 is the highest priority to undergo the over full bandwidth situation 192 168 1 50 is the se...

Страница 68: ...ty and simple network management protocol SNMP and time synchronous S957AE 10BTS User Manual Page 68 of 113 This session introduces security and simple network management protocol SNMP and time This s...

Страница 69: ...nge the Supervisor ID and password for the gateway If you don t set them all users on your network can be able to access the gateway using the default IP and Password You can authorize five legal user...

Страница 70: ...and press Simple Network Management Protocol SNMP provides for the exchange of m network management client and a network management agent for remote management of network nodes These messages contain...

Страница 71: ...password The communit Press OK to finish the setup S957AE 10BTS User Manual Page 71 of 113 Access Right Deny for deny all access Access Right Read for access read only Access Right Write for access r...

Страница 72: ...any business that relies on an IT system The reason for this is that these systems all have clocks that are the source of time for files or operations they handle Without time synchronization time on...

Страница 73: ...k Time Protocol which is an adaptation of the Network Time Protocol NTP used to synchronize computer clocks in the Internet SNTP can be used when the ultimate performance of the full NTP implementatio...

Страница 74: ...to the gateway S957AE 10BTS User Manual Page 74 of 113 This section will describe the utility of the product including system information load the factory default configuration upgrade the firmware lo...

Страница 75: ...ion will be crushed unintentionally Restore configuration will help you to recover the backup configuration easily Click Finish after selecting Restore Configuration Browse the route of backup file th...

Страница 76: ...7AE 10BTS User Manual Page 76 of 113 You can monitor the SHDSL or SHDSL bis status including mode Tx power and Bitrate and Performance information including SNR margin atteunation and CRC error count...

Страница 77: ...ter and then click LAN Parameters Enter IP 192 168 0 1 Enter Subnet Mask 255 255 255 0 Enter Gateway 192 168 0 1 Enter Host Name SOHO S957AE 10BTS User Manual Page 77 of 113 LAN connection with bridge...

Страница 78: ...e and CO Side to setup Bridging mode of the Router and then click S957AE 10BTS User Manual Page 78 of 113 The screen will prompt the new configured parameters Check the parameters and The router will...

Страница 79: ...Click Next The screen will prompt the new configured parameters Check the parameters and The router will reboot with the new setting S957AE 10BTS User Manual Page 79 of 113 255 255 255 0 The screen wi...

Страница 80: ...press Type LAN parameters IP Address 192 168 20 1 Subnet Mask 255 255 255 0 Host Name SOHO DHCP Service For more DHCP service review DHCP Service S957AE 10BTS User Manual Page 80 of 113 LAN to LAN Con...

Страница 81: ...d in CO and CPE have to be the same Click Next to setup the IP parameters For more understanding about NAT review NAT DMZ in page 19 S957AE 10BTS User Manual Page 81 of 113 NAT or EoA NAT Note The Pro...

Страница 82: ...setup another parameter CPE side Click ROUTE and CPE Side S957AE 10BTS User Manual Page 82 of 113 255 255 255 0 screen will prompt the parameters that will be written in EPROM Check the parameters bef...

Страница 83: ...IPoA EoA IPoA Note The Protocol used in CO and CPE have to be the same Click Next to setup the IP parameters For more understanding about NAT review NAT DMZ in page 19 S957AE 10BTS User Manual Page 83...

Страница 84: ...s or press continue to setup another parameter S957AE 10BTS User Manual Page 84 of 113 255 255 255 0 The screen will prompt the parameters that will be written in EPROM Check the parameters before Pre...

Страница 85: ...minal access program with VT100 terminal emulation Configure th Parameter Value Baudrate 9600 Data Bits 8 Parity Check No Stop Bits 1 Flow control No key until the login screen appears When you see th...

Страница 86: ...driven interface is a user interface to general operations The command syntax for CLI is the same as that of the menu driven interface The only difference is that the menu driven interface shows you a...

Страница 87: ...rackets is required If the item is shown in lower case bold it represents an object with special format For example ip may be 192 168 0 3 Two or more items enclosed in brackets and separated by vertic...

Страница 88: ...eboot Ping Admin Security SNMP Passwd SNTP Utility Upgrade Backup Restore Exit SHDSL SHDSL bis WAN Route Interface Firewall IP_QoS STP System Config Script Setup more Mode SHDSL SHDSL bis WAN Bridge V...

Страница 89: ...tocol Address Vpi_Vci Encap QoS Isp IP_type List QoS Isp IP_type List Gateway Static Deny_PCs Add Delete Modify List Mac Lan1_port Wan8_port 1 20 Lan4_port Wan8_port Mode Modify Pvid Link_mode List Ac...

Страница 90: ...rotocol Direction Src_IP Dest_IP Port TCP_flag ICMP_type Description Enable Beguin End Action SYN_flood ICMP_flood UDP_flood PING_death Land_attack IP_spoof Smurf_attack Fraggle _attack Active Add Del...

Страница 91: ...nual Page 91 of 113 Status Show Write Reboot Ping Admin User Security SNMP Passwd ID SNTP Utility Upgrade Backup Restore Exit Setup more more more Clear Modify List Port IP_pool List Community Trap Me...

Страница 92: ...upgrade software backup the system configuration and restore the system configuration via utility tools For any changes of configuration you have to write the new configuration to EPROM and reboot the...

Страница 93: ...g table Show interface statistics status Show firewall status Description The SHDSL status includes line rate SNR margin TX power attenuation and CRC error of the product and SNR margin attenuation an...

Страница 94: ...ser Manual Page 94 of 113 You can view the system information configuration and configuration in command script by and press enter Show general information Show all configuration Show all configuratio...

Страница 95: ...For configuration the parameters move the cursor to admin and press enter Manage user profile Setup system security Configure SNMP parameter Change supervisor password Change supervisor ID Configure t...

Страница 96: ...on of IP to access the router via telnet Configure telnet TCP port Legal address IP address pool Show security profile Simple Network Management Protocol SNMP is the protocol not only governing networ...

Страница 97: ...he first time of configuration and save it At next time when you access to the router you have to use the new password Command admin passwd pass_conf Message Please input the following information Inp...

Страница 98: ...formation Active SNTP v4 0 service Tab Select Enable Enable Move the cursor to time_server1 and press enter Command admin sntp time_server1 string the following information Time server address Enter f...

Страница 99: ...ng use exit command to quit system All of the setup parameters are located in the subdirectories of setup Move the cursor Switch system operation mode Configure SHDSL parameters Configure SHDSL bis pa...

Страница 100: ...figure SHDSL bis SNR margin There are two types of SHDSL bis mode STU R and STU C STU R means the terminal of central C customer premise equipment wire mode according to the product 4 wire product can...

Страница 101: ...ollowing information Link type protocol IP address and subnet mask Configure VPI VCI value Configure encapsulation type Configure VC QoS Configure account name password and idle time Configure IP type...

Страница 102: ...ridging table After enter add menu the screen will prompt as follow Configure MAC address Configure LAN interface bridging type Configure WAN1 interface bridging type Configure WAN2 interface bridging...

Страница 103: ...the VLAN spreads over both the COE and CPE sides where there is no layer 3 routing involved The unit supports up to 8 active VLANs with shared VLAN learning SVL bridge out of 4096 possible VLANs speci...

Страница 104: ...port Port index 1 to 4 represents LAN1 to LAN4 respectively According to the operation mode of the device link type of WAN port is automatically configured If the product operates in bridge mode the W...

Страница 105: ...s routing information to other routers on the You can setup 20 sets of static route in static command After entering static menu the screen will Add static route entry Delete static route entry Show s...

Страница 106: ...ddress translation Configure DMZ host function NAT Network Address Translation is the translation of an Internet Protocol address IP address used within one network to a different IP address known wit...

Страница 107: ...global IP address range via S957AE 10BTS User Manual Page 107 of 113 Command setup ip_share nat virtual range 1 5 ip 1 253 Message Please input the following information NAT local address range entry...

Страница 108: ...ser Manual Page 108 of 113 To modify fixed IP address mapping move the cursor to fixed command and press enter Modify fixed NAT mapping Bind address pair to specific interface Delete fixed NAT mapping...

Страница 109: ...number via interface command You can configure the global port number by using port command The local server host IP address and port number are configured via server The authorized access protocol is...

Страница 110: ...tection and defining an extra packet filter with higher priority than the default SPI filter Note that an improper filter policy may degrade the capability of the firewall and or even block the normal...

Страница 111: ...A land attack is an attempt to slow your network down by sending a packet with identical source esses originating from your network IP Spoofing is a method of masking the identity of an intrusion by...

Страница 112: ...onfigured by description command enable the policy is configured by enable command To define the priority of the policy is configured by precedence command To delete the policy is configured by delete...

Страница 113: ...ation Are you sure Y N y S957AE 10BTS User Manual Page 113 of 113 command is to configure dynamic assigned IP address range The dynamic IP maximum lease time is configured by lease_time command You ca...

Отзывы:

Нет отзывов

Похожие инструкции для MDS921AE-10BTS-R2

NETGEAR RM356 - Router - EN Technical Specifications preview
RM356 - Router - EN
Бренд: NETGEAR Страницы: 2
Radyne ComStream DMD2401 Operation Manual preview
ComStream DMD2401
Бренд: Radyne Страницы: 199
General Instrument SURFboard SB2100 Specifications preview
SURFboard SB2100
Бренд: General Instrument Страницы: 2
CalAmp 882?EVDO?XXX User Manual preview
882?EVDO?XXX
Бренд: CalAmp Страницы: 62
Encore Networks EN-4000 Reference Manual preview
EN-4000
Бренд: Encore Networks Страницы: 6
Billion 5100SM Specifications preview
5100SM
Бренд: Billion Страницы: 1
Enfora GSM1218PB001MAN User Manual preview
GSM1218PB001MAN
Бренд: Enfora Страницы: 21
Cradlepoint S5A716A Quick Start Manual preview
S5A716A
Бренд: Cradlepoint Страницы: 4
C-motech CMU-300 User Manual preview
CMU-300
Бренд: C-motech Страницы: 15
Fujisoft +F FS020U User Manual preview
+F FS020U
Бренд: Fujisoft Страницы: 16
Hughes HN9800 Installation Manual preview
HN9800
Бренд: Hughes Страницы: 66
Hughes NH9000 Installation Manual preview
NH9000
Бренд: Hughes Страницы: 126
Hughes HN7700S Installation Manual preview
HN7700S
Бренд: Hughes Страницы: 140
Pacific Crest PDL User Manual preview
PDL
Бренд: Pacific Crest Страницы: 30
Radio Shack 43-1242 Owner'S Manual preview
43-1242
Бренд: Radio Shack Страницы: 16
Trust MD-3100 User Manual preview
MD-3100
Бренд: Trust Страницы: 78
Campbell C311 Instruction Manual preview
C311
Бренд: Campbell Страницы: 14
Sitecom WL-108 Full Manual preview
WL-108
Бренд: Sitecom Страницы: 72

Бренды по названию

Популярные бренды

Загрузить еще бренды