manualshive.com logo in svg

Black Box MDS921AE-10BTS-R2, Руководство пользователя

"Black Box MDS921AE-10BTS-R2" - мощный сетевой коммутатор с 10 портами и возможностью управления. Для полного ознакомления с его функционалом, обязательно скачайте бесплатное Руководство по эксплуатации с нашего сайта. manualshive.com - ваш источник полезной информации о технике.

Поделиться
Скачать
background image

 SMARTLINK

 I&II

 

MDS921AE-10BTS - MDS

 

 

Denial of Service Attack

 
Denial  of  service  (DoS)  attacks  typically  come  in  two  flavors:  resource  starvation  and  resource 
overload. DoS attacks can occur when there is a legitimate demand for a resource that is greater 
than  the  supply  (i.e.  too  many  w
vulnerabilities or system misconfigurations
a malicious denial of service and simple system overload is the requirement of an individual with 
malicious  intent  (attacker)  using  or  attempting  to  use  resources  specifically  to  deny  those 
resources to other users. 
 

Ping of death-

 On the Internet, ping of death is a kind of denial of service (DoS) attack caused by 

an  attacker  deliberately  sending  an  IP  packet  larger  than  the  65,536  bytes  allowed  by  the  IP 
protocol. One of the features of TCP/IP is fragmentation; it allows a single 
down into smaller segments. Attackers began to take advantage of that feature when they found 
that a packet broken down into fragments could add up to more than the allowed 65,536 bytes. 
Many operating systems didn't know what to do 
froze, crashed, or rebooted. Other known variants of the ping of death include teardrop, bonk and 
nestea. 
 

SYN Flood-

 The attacker sends TCP SYN packet which start connections very fast, leaving the 

victim waiting to complete a huge number of connections, causing it to run out of resources and 
dropping legitimate connections. A new defense against this is the “SYN cookies”. Each side of a 
connection has its own sequence number. In response to a SYN, the attack
special  sequence  number  that  is  a  “cookie”  of  the  connection  then  forgets  everything  it  knows 
about the connection. It can then recreate the forgotten information about the connection where 
the next packets come in from a legitimate co
 

ICMP  Flood-

  The  attacker  transmits  a  volume  of  ICMP  request  packets  to  cause  all  CPU 

resources to be consumed serving the phony requests.
 

UDP Flood-

 The attacker transmits a volume of requests for UDP diagnostic services which cause 

all CPU resources to be consumed serving the phony requests.
 

Land attack-

 The attacker attempts to slow your network down by sending a packet with identical 

source and destination addresses originating from your network.
 

Smurf attack-

 Where the source address of a broadcast ping is forged so that a huge number of 

machines respond back to victim indicated by the address, overloading it.
 

Fraggle  Attack-

  A  perpetrator  sends  a  large  amount  of  UDP  echo  packets  at  IP  broadcast 

addresses, all of it having a spoofed source address of a victim.
 

IP Spoofing-

 IP Spoofing is a method of masking the identity of an intrusion by making it appeared 

that the traffic came from a different computer. This is used by intruders to keep their anonymity 
and can be used in a Denial of Service attack.

 

S957AE-10BTS    User Manual   

Page 12 of 113 

Attack

 

Denial  of  service  (DoS)  attacks  typically  come  in  two  flavors:  resource  starvation  and  resource 
overload. DoS attacks can occur when there is a legitimate demand for a resource that is greater 
than  the  supply  (i.e.  too  many  web  requests  to  an  already  overloaded  web  server).  Software 

configurations can also cause DoS situations. The difference between 

a malicious denial of service and simple system overload is the requirement of an individual with 

alicious  intent  (attacker)  using  or  attempting  to  use  resources  specifically  to  deny  those 

On the Internet, ping of death is a kind of denial of service (DoS) attack caused by 

an  attacker  deliberately  sending  an  IP  packet  larger  than  the  65,536  bytes  allowed  by  the  IP 
protocol. One of the features of TCP/IP is fragmentation; it allows a single IP packet to be broken 
down into smaller segments. Attackers began to take advantage of that feature when they found 
that a packet broken down into fragments could add up to more than the allowed 65,536 bytes. 
Many operating systems didn't know what to do when they received an oversized packet, so they 
froze, crashed, or rebooted. Other known variants of the ping of death include teardrop, bonk and 

The attacker sends TCP SYN packet which start connections very fast, leaving the 

iting to complete a huge number of connections, causing it to run out of resources and 

dropping legitimate connections. A new defense against this is the “SYN cookies”. Each side of a 
connection has its own sequence number. In response to a SYN, the attacked machine creates a 
special  sequence  number  that  is  a  “cookie”  of  the  connection  then  forgets  everything  it  knows 
about the connection. It can then recreate the forgotten information about the connection where 
the next packets come in from a legitimate connection.   

The  attacker  transmits  a  volume  of  ICMP  request  packets  to  cause  all  CPU 

resources to be consumed serving the phony requests. 

The attacker transmits a volume of requests for UDP diagnostic services which cause 

sources to be consumed serving the phony requests. 

The attacker attempts to slow your network down by sending a packet with identical 

source and destination addresses originating from your network. 

Where the source address of a broadcast ping is forged so that a huge number of 

machines respond back to victim indicated by the address, overloading it. 

A  perpetrator  sends  a  large  amount  of  UDP  echo  packets  at  IP  broadcast 

l of it having a spoofed source address of a victim. 

IP Spoofing is a method of masking the identity of an intrusion by making it appeared 

that the traffic came from a different computer. This is used by intruders to keep their anonymity 

can be used in a Denial of Service attack. 

 

 

 

Denial  of  service  (DoS)  attacks  typically  come  in  two  flavors:  resource  starvation  and  resource 
overload. DoS attacks can occur when there is a legitimate demand for a resource that is greater 

eb  requests  to  an  already  overloaded  web  server).  Software 

can also cause DoS situations. The difference between 

a malicious denial of service and simple system overload is the requirement of an individual with 

alicious  intent  (attacker)  using  or  attempting  to  use  resources  specifically  to  deny  those 

On the Internet, ping of death is a kind of denial of service (DoS) attack caused by 

an  attacker  deliberately  sending  an  IP  packet  larger  than  the  65,536  bytes  allowed  by  the  IP 

IP packet to be broken 

down into smaller segments. Attackers began to take advantage of that feature when they found 
that a packet broken down into fragments could add up to more than the allowed 65,536 bytes. 

when they received an oversized packet, so they 

froze, crashed, or rebooted. Other known variants of the ping of death include teardrop, bonk and 

The attacker sends TCP SYN packet which start connections very fast, leaving the 

iting to complete a huge number of connections, causing it to run out of resources and 

dropping legitimate connections. A new defense against this is the “SYN cookies”. Each side of a 

ed machine creates a 

special  sequence  number  that  is  a  “cookie”  of  the  connection  then  forgets  everything  it  knows 
about the connection. It can then recreate the forgotten information about the connection where 

The  attacker  transmits  a  volume  of  ICMP  request  packets  to  cause  all  CPU 

The attacker transmits a volume of requests for UDP diagnostic services which cause 

The attacker attempts to slow your network down by sending a packet with identical 

Where the source address of a broadcast ping is forged so that a huge number of 

A  perpetrator  sends  a  large  amount  of  UDP  echo  packets  at  IP  broadcast 

IP Spoofing is a method of masking the identity of an intrusion by making it appeared 

that the traffic came from a different computer. This is used by intruders to keep their anonymity 

Содержание MDS921AE-10BTS-R2

Страница 1: ...1 Revision 19 October 2008 Document name UM_MDS921AE UM_MDS921AE MDS957AE 10BTS R2 SMARTLINK_v1 4 081019v1 2 070301 doc User Manual MDS921AE 10BTS R2 SMARTLINK MDS957AE 10BTS R2 SMARTLINK II ATM Based...

Страница 2: ...e 2 of 113 BlackBox The contents of this publication may not be reproduced in any part or as a whole transcribed stored in a retrieval system translated into any language or transmitted in any form or...

Страница 3: ...ous version 17 01 2005 Initial version 14 11 2005 Included EN50419 28 09 2006 Housing and Design Changes 05 12 2007 G SHDSL bis added 19 03 2008 Multi Pair and Multi Link modes added EU Directive 2002...

Страница 4: ...ep 5 Install the SHDSL Router Configuration via Web Browser Basic Setup Bridge Mode Routing Mode DHCP Server DHCP Client PPPoE or PPPoA IPoA or EoA Advanced Setup SHDSL router S957AE 10BTS User Manual...

Страница 5: ...nterface Configuration via Serial Console or Telnet Window structure Configuration Status Show Write Administration Setup S957AE 10BTS User Manual Page 5 of 113 Advanced Setup SHDSL bis router LAN con...

Страница 6: ...also it integrates high end Bridging Routing capabilities with advanced DMZ virtual server mapping and VPN pass through Because of rapid growth of network virtual LAN has become one of the major new...

Страница 7: ...P IGMP protocols IP routing with static routing and RIPv1 RIPv2 RFC1058 2453 IP multicast and IGMP proxy RFC1112 2236 Network address translation NAT PAT RFC1631 NAT ALGs for ICQ Netmeeting MSN Yahoo...

Страница 8: ...adapter Power consumption 9 watts max Temperature 0 55 Humidity 0 95 RH non Memory 2MB Flash Memory 8MB SDRAM S957AE 10BTS User Manual Page 8 of 113 T G 991 2 Annex A Annex B SHDSL router T G 991 2 20...

Страница 9: ...S S957AE 10BTS User Manual Page 9 of 113 DESKTOP Smartlink I II Ethernet Bridge Router VLAN Router Ethernet Bridge Single Pair SHDSL Dual Pair SHDSL Single Pair SHDSL bis Dual Pair SHDSL bis Multi Ser...

Страница 10: ...Link Protection TC Ethernet Ethernet Extension in Multi S957AE 10BTS User Manual Page 10 of 113 Application with DSLAM Application with DSLAM ISP to LAN Ethernet Extension Point Application LAN to LA...

Страница 11: ...s and user accounts must be strictly enforced These are management issues that should be raised during the planning of any security policy but that cannot be solved with Internet firewalls alone There...

Страница 12: ...e when they found that a packet broken down into fragments could add up to more than the allowed 65 536 bytes Many operating systems didn t know what to do when they received an oversized packet so th...

Страница 13: ...s up to 8 active VLANs with shared VLAN learning SVL bridge out of VLANs specified in IEEE 802 1Q Each port always belongs to a default VLAN with its port VID PVID as an untagged member Also a port ca...

Страница 14: ...nd VLAN tagged frame where the Tag Protocol Identifier TPID is of 0x8100 and it identifies the frame as a tagged frame The Tag Control Information TCI consists of the following elements 1 User pr tagg...

Страница 15: ...SMARTLINK I II MDS921AE 10BTS MDS S957AE 10BTS User Manual Page 15 of 113...

Страница 16: ...t status is indicated on the back of the device S957AE 10BTS User Manual Page 16 of 113 Getting to know about the router the hardware of the router Front Panel of four port router The front panel cont...

Страница 17: ...t Input voltage 12VDC 4 Port Ethernet 10Base T for LAN RJ 45 232C DB9 for system configuration and maintenance G SHDSL interface for WAN port RJ 11 2 or 4 wire Reset Button The reset button can be use...

Страница 18: ...No connection SHDSL RJ45 pinout Pin Number 1 No connection 2 No connection 3 Loop B 4 wire support only 4 Loop A 5 Loop A 6 Loop B 4 wire support only 7 No connection 8 No connection S957AE 10BTS User...

Страница 19: ...router TCP IP protocol is necessary for web configuration so please check the TCP IP protocol whether it has been installed Step 2 Check the Terminal Access Program Serial Console and Telnet Configura...

Страница 20: ...rowser Using Microsoft Windows 2000 and XP click the Double click the network icon S957AE 10BTS User Manual Page 20 of 113 Configuration via Web Browser Using Microsoft Windows 2000 and XP click the s...

Страница 21: ...o restart the PC Click S957AE 10BTS User Manual Page 21 of 113 In the Configuration window select the TCP IP protocol line that has been associated with your property icon Choose IP address tab Select...

Страница 22: ...the User Name and S957AE 10BTS User Manual Page 22 of 113 After rebooting your PC open IE or Netscape Browser to connect the Router Type IP address and sub net mask of the Router is 192 168 0 1 and 25...

Страница 23: ...23 of 113 Setup contains LAN WAN Bridge and Route operation mode User can use it to completely setup the router After successfully completing it you can access Internet This is the easiest and possibl...

Страница 24: ...rs Enter VPI 0 Enter VCI 32 Click LLC Click Next S957AE 10BTS User Manual Page 24 of 113 Before configuration the router in bridge mode check with your ISP about these information if applicable Side t...

Страница 25: ...new setting or S957AE 10BTS User Manual Page 25 of 113 The screen will prompt the new configured parameters Check the parameters and The router will reboot with the new setting or Continue to configur...

Страница 26: ...rk administrators to manage centrally and automate the assignment of Internet Protocol IP addresses in an organization s network Using the Internet Protocol each machine that can connect to the Intern...

Страница 27: ...signs the IP form Start IP Address to End IP Address The legal IP address range is form 0 to 255 but 0 and 255 are reserved for broadcast so the legal IP address range is from 1 to 254 On the other ha...

Страница 28: ...assign fixed IP addresses to some devices while using DHCP provided that the fixed IP address are not within the range used by the DHCP server to setup WAN1 parameters Some of the ISP provides DHCP s...

Страница 29: ...SMARTLINK I II MDS921AE 10BTS MDS Enter DHCP server IP address i Press Next S957AE 10BTS User Manual Page 29 of 113 Enter DHCP server IP address in IP address field...

Страница 30: ...many service providers for broadband Internet are specifications for connecting multiple computer users on an Ethernet local area network to a remote site through common customer premises equipment w...

Страница 31: ...ime enter 0 in the Idle Time field There are two IP types Dynamic and Static which you can setup The default IP type is Dynamic It means that ISP PPP server will provide IP information including dynam...

Страница 32: ...1 Your ISP will provide at least one DNS Domain Name System Server IP address Click Next S957AE 10BTS User Manual Page 32 of 113 the router check the information below with your ISP licable NAT or EoA...

Страница 33: ...ten in EPROM Check the parameters before writing in EPROM S957AE 10BTS User Manual Page 33 of 113 The screen will prompt the parameters that will be written in EPROM Check the parameters before The sc...

Страница 34: ...ameters or press continue to setup another parameter S957AE 10BTS User Manual Page 34 of 113 Press Restart to restart the router working with new parameters or press continue to setup another Press Re...

Страница 35: ...Advanced setup contains SHDSL WAN Bridge Route NAT DMZ Virtual server and firewall You can setup the Annex type data rate and SNR margin for SHDSL parameters in SHDSL Annex Type There are two Annex t...

Страница 36: ...tatus SHDSL SNR margin the margin range is from 0 to 10 S957AE 10BTS User Manual Page 36 of 113 have to setup n 0 The router will adapt the data rate according to the line status SHDSL SNR margin the...

Страница 37: ...ection You can see the actual SNR margin in STATUS SHDSL The larger SNR margin the better line connection If you set SNR margin in the field as 2 the SHDSL connection will drop and reconnect when the...

Страница 38: ...BTS User Manual Page 38 of 113 Advanced Setup SHDSL bis router You can setup the Annex type data rate and SNR margin for SHDSL bis parameters in foure Annex types Annex A ANSI Annex B ETSI AnnexAF and...

Страница 39: ...te according to the line status S957AE 10BTS User Manual Page 39 of 113 Data Rate 2W you can setup the SHDSL bis data rate in the multiple of 64kbps The default data rate is 5696Kbps n 89 TCPAM32 data...

Страница 40: ...oes through the other pair wire mode Only one pair works another pair is in standby When one pair fails fraffic goes through the other pair wire mode Each pair is connected to two different devices wh...

Страница 41: ...c Management Specification V4 0 defines ATM service cataloges that describe both the traffic transmitted by users onto a network as well as the Quailty of Service that the network need to provide for...

Страница 42: ...er parameter S957AE 10BTS User Manual Page 42 of 113 The screen will prompt the parameters that will be written in EPROM Check the parameters before Press Restart to restart the router working with ne...

Страница 43: ...on you can use BRIDGE menu to setup the filter function blocking function to add the static bridge information filter the definate MAC address of LAN PC to access Internet press the filtering table Ke...

Страница 44: ...0BTS MDS Press Restart to restart the router working with new parameters or press parameter S957AE 10BTS User Manual Page 44 of 113 to restart the router working with new parameters or press continue...

Страница 45: ...cated on a number of different LAN segments Because VLAN is based on logical instead of physical connections it is extremely flexible to configure VLAN The product support two types of VLAN 802 1Q and...

Страница 46: ...re Ethernet Here are several options AutoSense 100Base S957AE 10BTS User Manual Page 46 of 113 the product works under routing mode the Link Type of WAN will be Access mode Based VLANs are VLANs where...

Страница 47: ...p a static route between them A static route is a pre determined pathway that network information must travel to reach a specific host or network With Dynamic Routing you can enable the Router to auto...

Страница 48: ...ting information protocol RIP allows it to exchange routing information with other router If set to Disable the gateway does not participate in any RIP exchange with other router If set Enable the rou...

Страница 49: ...P v2 messages in multicast and broadcast format S957AE 10BTS User Manual Page 49 of 113 RIP Version It determines the format and broadcasting method of any RIP transmissions by the RIP v1 it only send...

Страница 50: ...of 113 None for RIP there is no need of authentication code Password the RIP is protected by password authentication code MD5 The RIP will be decoded by MD5 than protected by password authentication c...

Страница 51: ...global IP addresses that a company needs and lets the company to use a single IP address of its communication in the Internet world DMZ demilitarized zone is a computer host or small network inserted...

Страница 52: ...NAT DMZ functions click Enable Enable the DMZ host Function is used the IP address assigned to the WAN for enabling DMZ function for the virtual IP address DMZ Some users who have two or more global I...

Страница 53: ...ual IP addresses eg 192 168 0 10 192 168 0 50 collectively use two of the global IP addresses eg 69 210 1 9 and 69 210 1 10 The Multi NAT table will be setup as Virtual Start IP Address 192 168 0 10 G...

Страница 54: ...but does not actually have any services other than NAT of course running on gateway it is said to be a virtual server Request with TCP made to 69 210 1 8 80 are remapped to the server 1 on 192 168 0...

Страница 55: ...a set of related programs that protects the resources of a private network from other networks It is helpful to users that allow preventing hackers to access its own private data This level only enab...

Страница 56: ...rity all DoS protection and the SPI filter function S957AE 10BTS User Manual Page 56 of 113 Press restart to restart the router or press continue to setup another function This level enables basic fir...

Страница 57: ...ameters which will be written in EPROM Check the parameters S957AE 10BTS User Manual Page 57 of 113 finish setting firewall The screen will prompt the parameters which will be written in EPROM Check t...

Страница 58: ...t the router or press Continue to setup another function S957AE 10BTS User Manual Page 58 of 113 Press restart to restart the router or press Continue to setup another function Press restart to restar...

Страница 59: ...can determine the security level for special purpose environment and applications by configuring the DoS protection and defining an extra packet filter with higher priority than the default SPI filte...

Страница 60: ...SMARTLINK I II MDS921AE 10BTS MDS S957AE 10BTS User Manual Page 60 of 113...

Страница 61: ...gnostic services which cause all CPU resources to be consumed serving the phony requests A ping of death attack attempts to crash your system by sending a fragmented packet when than the maximum allow...

Страница 62: ...all maintains a memory of each connection and data passing through it Stateful firewall records the context of connections during each session continuously updating state information in dynamic tables...

Страница 63: ...e 63 of 113 Direction INBOUND INBOUND is from WAN to LAN and OUTBOUND is LAN to WAN Dest IP Address 192 168 0 2 192 168 0 50 The screen will prompt the configured parameters Check the parameters Click...

Страница 64: ...ol Dest Port 172 16 1 1 192 168 3 4 TCP 25 192 168 3 4 172 16 1 1 TCP 1357 Internet 3 4 SMTP Server 192 168 3 4 25 Firewall Source Destination Protocol Dest Port 10 1 2 3 171 16 3 4 TCP 6000 171 16 3...

Страница 65: ...nging the order as the different result of filtering Destination Address Action 172 16 6 0 Permit 172 16 0 0 Deny Any Deny Where 0 at the last eight bits indicates from 1 to 254 0 at any eight bits pr...

Страница 66: ...an get the priorities to pass though router once if the bandwidth is exhausted or fully saturated at item Trigger IP QoS Service in General IP QoS Parameter which turn on this function if you want to...

Страница 67: ...riority and so on S957AE 10BTS User Manual Page 67 of 113 This is an example for your reference 192 168 1 60 is the highest priority to undergo the over full bandwidth situation 192 168 1 50 is the se...

Страница 68: ...ty and simple network management protocol SNMP and time synchronous S957AE 10BTS User Manual Page 68 of 113 This session introduces security and simple network management protocol SNMP and time This s...

Страница 69: ...nge the Supervisor ID and password for the gateway If you don t set them all users on your network can be able to access the gateway using the default IP and Password You can authorize five legal user...

Страница 70: ...and press Simple Network Management Protocol SNMP provides for the exchange of m network management client and a network management agent for remote management of network nodes These messages contain...

Страница 71: ...password The communit Press OK to finish the setup S957AE 10BTS User Manual Page 71 of 113 Access Right Deny for deny all access Access Right Read for access read only Access Right Write for access r...

Страница 72: ...any business that relies on an IT system The reason for this is that these systems all have clocks that are the source of time for files or operations they handle Without time synchronization time on...

Страница 73: ...k Time Protocol which is an adaptation of the Network Time Protocol NTP used to synchronize computer clocks in the Internet SNTP can be used when the ultimate performance of the full NTP implementatio...

Страница 74: ...to the gateway S957AE 10BTS User Manual Page 74 of 113 This section will describe the utility of the product including system information load the factory default configuration upgrade the firmware lo...

Страница 75: ...ion will be crushed unintentionally Restore configuration will help you to recover the backup configuration easily Click Finish after selecting Restore Configuration Browse the route of backup file th...

Страница 76: ...7AE 10BTS User Manual Page 76 of 113 You can monitor the SHDSL or SHDSL bis status including mode Tx power and Bitrate and Performance information including SNR margin atteunation and CRC error count...

Страница 77: ...ter and then click LAN Parameters Enter IP 192 168 0 1 Enter Subnet Mask 255 255 255 0 Enter Gateway 192 168 0 1 Enter Host Name SOHO S957AE 10BTS User Manual Page 77 of 113 LAN connection with bridge...

Страница 78: ...e and CO Side to setup Bridging mode of the Router and then click S957AE 10BTS User Manual Page 78 of 113 The screen will prompt the new configured parameters Check the parameters and The router will...

Страница 79: ...Click Next The screen will prompt the new configured parameters Check the parameters and The router will reboot with the new setting S957AE 10BTS User Manual Page 79 of 113 255 255 255 0 The screen wi...

Страница 80: ...press Type LAN parameters IP Address 192 168 20 1 Subnet Mask 255 255 255 0 Host Name SOHO DHCP Service For more DHCP service review DHCP Service S957AE 10BTS User Manual Page 80 of 113 LAN to LAN Con...

Страница 81: ...d in CO and CPE have to be the same Click Next to setup the IP parameters For more understanding about NAT review NAT DMZ in page 19 S957AE 10BTS User Manual Page 81 of 113 NAT or EoA NAT Note The Pro...

Страница 82: ...setup another parameter CPE side Click ROUTE and CPE Side S957AE 10BTS User Manual Page 82 of 113 255 255 255 0 screen will prompt the parameters that will be written in EPROM Check the parameters bef...

Страница 83: ...IPoA EoA IPoA Note The Protocol used in CO and CPE have to be the same Click Next to setup the IP parameters For more understanding about NAT review NAT DMZ in page 19 S957AE 10BTS User Manual Page 83...

Страница 84: ...s or press continue to setup another parameter S957AE 10BTS User Manual Page 84 of 113 255 255 255 0 The screen will prompt the parameters that will be written in EPROM Check the parameters before Pre...

Страница 85: ...minal access program with VT100 terminal emulation Configure th Parameter Value Baudrate 9600 Data Bits 8 Parity Check No Stop Bits 1 Flow control No key until the login screen appears When you see th...

Страница 86: ...driven interface is a user interface to general operations The command syntax for CLI is the same as that of the menu driven interface The only difference is that the menu driven interface shows you a...

Страница 87: ...rackets is required If the item is shown in lower case bold it represents an object with special format For example ip may be 192 168 0 3 Two or more items enclosed in brackets and separated by vertic...

Страница 88: ...eboot Ping Admin Security SNMP Passwd SNTP Utility Upgrade Backup Restore Exit SHDSL SHDSL bis WAN Route Interface Firewall IP_QoS STP System Config Script Setup more Mode SHDSL SHDSL bis WAN Bridge V...

Страница 89: ...tocol Address Vpi_Vci Encap QoS Isp IP_type List QoS Isp IP_type List Gateway Static Deny_PCs Add Delete Modify List Mac Lan1_port Wan8_port 1 20 Lan4_port Wan8_port Mode Modify Pvid Link_mode List Ac...

Страница 90: ...rotocol Direction Src_IP Dest_IP Port TCP_flag ICMP_type Description Enable Beguin End Action SYN_flood ICMP_flood UDP_flood PING_death Land_attack IP_spoof Smurf_attack Fraggle _attack Active Add Del...

Страница 91: ...nual Page 91 of 113 Status Show Write Reboot Ping Admin User Security SNMP Passwd ID SNTP Utility Upgrade Backup Restore Exit Setup more more more Clear Modify List Port IP_pool List Community Trap Me...

Страница 92: ...upgrade software backup the system configuration and restore the system configuration via utility tools For any changes of configuration you have to write the new configuration to EPROM and reboot the...

Страница 93: ...g table Show interface statistics status Show firewall status Description The SHDSL status includes line rate SNR margin TX power attenuation and CRC error of the product and SNR margin attenuation an...

Страница 94: ...ser Manual Page 94 of 113 You can view the system information configuration and configuration in command script by and press enter Show general information Show all configuration Show all configuratio...

Страница 95: ...For configuration the parameters move the cursor to admin and press enter Manage user profile Setup system security Configure SNMP parameter Change supervisor password Change supervisor ID Configure t...

Страница 96: ...on of IP to access the router via telnet Configure telnet TCP port Legal address IP address pool Show security profile Simple Network Management Protocol SNMP is the protocol not only governing networ...

Страница 97: ...he first time of configuration and save it At next time when you access to the router you have to use the new password Command admin passwd pass_conf Message Please input the following information Inp...

Страница 98: ...formation Active SNTP v4 0 service Tab Select Enable Enable Move the cursor to time_server1 and press enter Command admin sntp time_server1 string the following information Time server address Enter f...

Страница 99: ...ng use exit command to quit system All of the setup parameters are located in the subdirectories of setup Move the cursor Switch system operation mode Configure SHDSL parameters Configure SHDSL bis pa...

Страница 100: ...figure SHDSL bis SNR margin There are two types of SHDSL bis mode STU R and STU C STU R means the terminal of central C customer premise equipment wire mode according to the product 4 wire product can...

Страница 101: ...ollowing information Link type protocol IP address and subnet mask Configure VPI VCI value Configure encapsulation type Configure VC QoS Configure account name password and idle time Configure IP type...

Страница 102: ...ridging table After enter add menu the screen will prompt as follow Configure MAC address Configure LAN interface bridging type Configure WAN1 interface bridging type Configure WAN2 interface bridging...

Страница 103: ...the VLAN spreads over both the COE and CPE sides where there is no layer 3 routing involved The unit supports up to 8 active VLANs with shared VLAN learning SVL bridge out of 4096 possible VLANs speci...

Страница 104: ...port Port index 1 to 4 represents LAN1 to LAN4 respectively According to the operation mode of the device link type of WAN port is automatically configured If the product operates in bridge mode the W...

Страница 105: ...s routing information to other routers on the You can setup 20 sets of static route in static command After entering static menu the screen will Add static route entry Delete static route entry Show s...

Страница 106: ...ddress translation Configure DMZ host function NAT Network Address Translation is the translation of an Internet Protocol address IP address used within one network to a different IP address known wit...

Страница 107: ...global IP address range via S957AE 10BTS User Manual Page 107 of 113 Command setup ip_share nat virtual range 1 5 ip 1 253 Message Please input the following information NAT local address range entry...

Страница 108: ...ser Manual Page 108 of 113 To modify fixed IP address mapping move the cursor to fixed command and press enter Modify fixed NAT mapping Bind address pair to specific interface Delete fixed NAT mapping...

Страница 109: ...number via interface command You can configure the global port number by using port command The local server host IP address and port number are configured via server The authorized access protocol is...

Страница 110: ...tection and defining an extra packet filter with higher priority than the default SPI filter Note that an improper filter policy may degrade the capability of the firewall and or even block the normal...

Страница 111: ...A land attack is an attempt to slow your network down by sending a packet with identical source esses originating from your network IP Spoofing is a method of masking the identity of an intrusion by...

Страница 112: ...onfigured by description command enable the policy is configured by enable command To define the priority of the policy is configured by precedence command To delete the policy is configured by delete...

Страница 113: ...ation Are you sure Y N y S957AE 10BTS User Manual Page 113 of 113 command is to configure dynamic assigned IP address range The dynamic IP maximum lease time is configured by lease_time command You ca...

Отзывы:

Нет отзывов

Похожие инструкции для MDS921AE-10BTS-R2

Funk-Electronic Piciorgros TMO-100V3 User Manual preview
TMO-100V3
Бренд: Funk-Electronic Piciorgros Страницы: 284
Kyocera KPC680 User Manual preview
KPC680
Бренд: Kyocera Страницы: 11
TC Communications TC2400 User Manual preview
TC2400
Бренд: TC Communications Страницы: 23
SEA GSM-EGS5-T User Manual preview
GSM-EGS5-T
Бренд: SEA Страницы: 2
Orion Telecom Networks VCL-E1 User Manual preview
VCL-E1
Бренд: Orion Telecom Networks Страницы: 16
HORNER HE-WCM802 Supplement Manual preview
HE-WCM802
Бренд: HORNER Страницы: 40
Puretek PT-3050 User Manual preview
PT-3050
Бренд: Puretek Страницы: 28
O2 930D Quick Start Manual preview
930D
Бренд: O2 Страницы: 8
O2 889 Quick Start Manual preview
889
Бренд: O2 Страницы: 12
3Jtech iPP2 Technical Documents & Programming Manual preview
iPP2
Бренд: 3Jtech Страницы: 21
SMC Networks EZ Connect SMC7003-USB Specifications preview
EZ Connect SMC7003-USB
Бренд: SMC Networks Страницы: 2
SMC Networks EZ Connect SMC2642W User Manual preview
EZ Connect SMC2642W
Бренд: SMC Networks Страницы: 56
Embedded Planet CHRONOS User Manual preview
CHRONOS
Бренд: Embedded Planet Страницы: 26
Hughes HN9800 User Manual preview
HN9800
Бренд: Hughes Страницы: 34
Hughes HN9400 User Manual preview
HN9400
Бренд: Hughes Страницы: 90
3Com U.S. Robotics 56K Winmodem Manual preview
U.S. Robotics 56K Winmodem
Бренд: 3Com Страницы: 58
ICP DAS USA SST-2450 User Manual preview
SST-2450
Бренд: ICP DAS USA Страницы: 26
Patton OnSite 3088A Quick Start Manual preview
OnSite 3088A
Бренд: Patton Страницы: 8

Бренды по названию

Популярные бренды

Загрузить еще бренды