manualshive.com logo in svg

CTC Union SHDSL, Руководство пользователя


Поделиться
Скачать
background image

G.shdsl Router User Manual                                                                                                                         

 

Click Advanced Firewall Security a
then press Finish. 

nd 

 
A SYN flood attack attempts to slow 
your network by requesting new 
connections but not completing the 
process to open the connection. 
Once the buffer for these pending 
connections is full a server will not 
accept any more connections and 
will be unresponsive. 
 
ICMP Flood: A sender transmits a 
volume of ICMP request packets to 
cause all CPU resources to be 
consumed serving the phony requests. 
 
UDP Flood: A sender transmits a volume of requests for UDP diagnostic services which cause all 
CPU resources to be consumed serving the phony requests. 
 
A ping of death attack attempts to crash your system by sending a fragmented packet, when 
reconstructed is larger than the maximum allowable size. Other known variants of the ping of death 
include teardrop, bonk and nestea. 
 
A land attack is an attempt to slow your network down by sending a packet with identical source 
and destination addresses originating from your network. 
 
IP Spoofing is a method of masking the identity of an intrusion by making it appear that the traffic 
came from a different computer. This is used by intruders to keep their anonymity and can be used 
in a Denial of Service attack. 
 
A smurf attack involves two systems. The attacker sends a packet containing a ICMP echo request 
(ping) to the network address of one system. This system is known as the amplifier. The return 
address of the ping has been faked (spoofed) to appear to come from a machine on another 
network (the victim). The victim is then flooded with responses to the ping. As many responses are 
generated for only one attack, the attacker is able use many amplifiers on the same victim. 
 
IP Spoofing: Falsify the IP header information to deceive the destination host. 
 
 
Traditional firewall are stateless, meaning they have no memory of the connections of data or 
packets that pass through them. Such IP filtering firewalls simply examine header information in 
each packet and attempt to match it to a set of defined rules. If the firewall finds a match, the 
prescribe action is taken. If no match is found, the packet is accepted into the network, or dropped, 
depending on the firewall configuration.   
 
A stateful firewall maintains a memory of each connection and data passing through it. Stateful 
firewalls record the context of connections during each session, continuously updating state 
information in dynamic tables. With this information, stateful firewalls inspect each connection 
traversing each interface of the firewall, testing the validity of data packets throughout each 
session. As data arrives, it is checked against the state tables and if the data is part of the session, 
it is accepted. Stateful firewalls enable a more intelligent, flexible and robust approach to network 
security, while defeating most intrusion methods that exploit state-less IP filtering firewalls. 
 
 
 
 
 
 

 

47

Содержание SHDSL

Страница 1: ...USER MANUAL SHDSL Routers ...

Страница 2: ...Ethernet Switch SHDTU03F ET10R 2 Wire SHDSL Router With 1 Port Ethernet featured with firewall function SHDTU03A ET10RS 4 Wire SHDSL Router With 4 Port Ethernet Switch SHDTU03F ET10RS 2 Wire SHDSL Router With 4 Port Ethernet Switch featured with firewall function SHDTU03AF ET10RS 4 Wire SHDSL Router With 4 Port Ethernet Switch featured with firewall function Installation and Operation Manual Versi...

Страница 3: ...12 Getting to know the router 14 Front Panel 14 Rear Panel 15 SHDSL Line Connector 16 Console Cable 16 Configuration of the router 17 Step 1 Check the Ethernet Adapter in PC or NB 17 Step 2 Check the Web Browser in PC or NB 17 Step 3 Check the Terminal Access Program 17 Step 4 Determine Connection Setting 17 Step 5 Install the SHDSL Router 18 Configuration via Web Browser 20 Basic Setup 22 Bridge ...

Страница 4: ...pgrade 61 Logout 62 Restart 63 Status 64 LAN to LAN connection with bridge Mode 65 CO side 65 CPE Side 66 LAN to LAN Connection with Routing Mode 67 CO side 67 CPE side 69 Configuration via Serial Console or Telnet with Menu Driven Interface 70 Serial Console 70 Telnet 70 Operation Interface 71 Window structure 72 Menu Driven Interface Commands 73 Menu Tree 73 Configuration 75 Status 76 Show 77 Wr...

Страница 5: ...Security 82 SNMP 82 Supervisor Password and ID 83 SNTP 83 Utility 85 Exit 85 Setup 86 Mode 86 SHDSL 86 WAN 87 Bridge 88 VLAN 89 Route 90 LAN 92 IP share 92 Firewall 96 IPQoS 98 DHCP 99 DNS proxy 100 Host name 100 Default 100 Appendix Console Port Cable PIN Assignment 101 ...

Страница 6: ...everage the latest in broadband technologies to meet their growing data communication needs Through the power of SHDSL products you can access superior manageability and reliability Features Easy configuration and management with password control for various application environments Efficient IP routing and transparent learning bridge to support broadband Internet services VPN pass through for saf...

Страница 7: ...ccess Password protected management and access control list for administration SNMP management with SNMPv1 SNMPv2 RFC1157 1901 1905 agent and MIB II RFC1213 1493 Software upgrade via web browser TFTP server ATM Up to 8 PVCs OAM F5 AIS RDI and loopback AAL5 ATM QoS UBR Unspecified bit rate CBR Constant bit rate VBR rt Variable bit rate real time VBR nrt Variable bit rate non real time AAL5 Encapsul...

Страница 8: ... 7 x 3 3 x 14 5cm WxHxD Power 100 240VAC via power adapter Power consumption 9 watts max Temperature 5 55 C Humidity 0 95 RH non condensing Memory 2MB Flash Memory 8MB SDRAM Products Information SHDTU03 ET10R 2 Wire SHDTU03 bridge with 1 port LAN SHDTU03 ET10RS 2 Wire SHDTU03 bridge with 4 port switching HUB LAN SHDTU03F ET10R 2 Wire SHDTU03 bridge with 1 port LAN with firewall feature SHDTU03F ET...

Страница 9: ...G shdsl Router User Manual Applications Internet SHDSL Router SHDSL Ethernet DSLAM LAN Connection with DSLAM SHDSL Router SHDSL Ethernet SHDSL Router Ethernet LAN LAN LAN to LAN Connection 4 ...

Страница 10: ...t Firewalls can also filter traffic by packet attribute or state An Internet firewall cannot prevent individual users with modems from dialling into or out of the network By doing so they bypass the firewall altogether Employee misconduct or carelessness cannot be controlled by firewalls Policies involving the use and misuse of passwords and user accounts must be strictly enforced These are manage...

Страница 11: ... 1525 DA 172 16 3 4 Filter remember this information UDP SP 1525 SA 172 16 3 4 DP 3264 DA 192 168 0 5 Matches outgoing so allows in Nomatches so disallows in UDP SP 1525 SA 172 168 3 4 DP 2049 DA 192 168 0 5 Stateful Inspection Internet 192 168 0 10 192 168 0 11 192 120 8 5 Firewall Internal Protected Network External Unprotected Network NAT Network Address Translation 192 168 0 10 192 168 0 11 19...

Страница 12: ...TCP Level 3 IP Level 2 Data Link Level 1 Physical destination IP address and or port source IP address and or port time of day protocol user password Application Gateway The Application Level Gateway acts as a proxy for applications performing all data exchanges with the remote system in their behalf This can render a computer behind the firewall all but invisible to the remote system It can allow...

Страница 13: ... malicious denial of service and simple system overload is the requirement of an individual with malicious intent attacker using or attempting to use resources specifically to deny those resources to other users Inturruption Ping of death On the Internet ping of death is a kind of denial of service DoS attack caused by an attacker deliberately sending an IP packet larger than the 65 536 bytes allo...

Страница 14: ...t the connection It can then recreate the forgotten information about the connection where the next packets come in from a legitimate connection Hacker s System Target System Internet TCP SYN requests Backing quene TCP SYN ACK Packets ICMP Flood The attacker transmits a volume of ICMP request packets to cause all CPU resources to be consumed serving the phony requests UDP Flood The attacker transm...

Страница 15: ...st addresses all of it having a spoofed source address of a victim IP Spoofing IP Spoofing is a method of masking the identity of an intrusion by making it appeared that the traffic came from a different computer This is used by intruders to keep their anonymity and can be used in a Denial of Service attack 10 ...

Страница 16: ...ort must not be a tagged member of its default VLAN 4 If a non tagged or null VID tagged packet is received it will be assigned with the default PVID of the ingress port 5 If the packet is tagged with non null VID the VID in the tag will be used 6 The look up process starts with VLAN look up to determine whether the VID is valid If the VID is not valid the packet will be dropped and its address wi...

Страница 17: ...e unable to signal priority information e g 802 3 Ethernet segments 2 The Canonical Format Indicator CFI is used to signal the presence or absence of a Routing Information Field RIF field and in combination with the Non canonical Format Indicator NCFI carried in the RIF to signal the bit order of address information carried in the encapsulated frame 3 The VID uniquely identifies the VLAN to which ...

Страница 18: ...G shdsl Router User Manual P OW E RF A ULT DA TA A L A RM LAN1 LAN2 LAN3 LAN4 WAN1 WAN2 WAN3 WAN4 WAN5 WAN6 WAN7 WAN8 Backbone ATM Switch VID30 VID10 SHDSL Router VID20 VID20 VID10 VID30 13 ...

Страница 19: ...ransmit or received data over LAN 2 On Ethernet cable is connected to LAN 3 3 Blink Transmit or received data over LAN 3 On Ethernet cable is connected to LAN 4 Ethernet 4 Blink Transmit or received data over LAN 4 On SHDSL line connection is dropped Alarm Blink SHDSL self test LED status of 2 wire 1 port router LEDs Active Description Power On Power adaptor is connected to the router On SHDSL lin...

Страница 20: ... voltage 9VDC Ethernet 1 2 3 4 10 100BaseT auto sensing and auto MDIX for LAN port RJ 45 CONSOLE RS 232C DB9 for system configuration and maintenance G SHDSL SHDSL interface for WAN port RJ 11 Reset Reset button for reboot or load factory default The reset button can be used in one of two ways 1 Press the Reset Button for one second will cause system reboot 2 Pressing the Reset Button for four sec...

Страница 21: ...e Top View Front View Loop A Loop B Loop B Loop A 1 4 1 4 Top View Front View Loop Loop 1 4 1 4 Console Cable Pin Number Description Figure 1 No connection 2 RxD O 3 TxD I 4 No connection 5 GND 6 No connection 7 CTS O 8 RTS I 9 No connection 1 2 3 4 5 6 7 8 9 16 ...

Страница 22: ...ed for configuration of the router TCP IP protocol is necessary for web configuration so please check the TCP IP protocol whether it has been installed Step 2 Check the Web Browser in PC or NB According to the Web Configuration the PC or NB needs to install Web Browser IE or Netscape Note Suggest to use IE5 0 Netscape 6 0 or above and 800x600 resolution or above Step 3 Check the Terminal Access Pr...

Страница 23: ...l the SHDSL Router To avoid possible damage to this Router do not turn on the router before Hardware Installation 9 Connect the power adapter to the port labeled DC IN on the rear panel of the product 9 Connect the Ethernet cable Note If the 1 port router is directly connected to PC or NB the Ethernet cable has to be a cross over one If the 1 port router is connected to hub or switch be sure that ...

Страница 24: ...ower Adpater Pass Through Ethernet Cable HUB Switch Server File er Wireless LAN Mobile Device Workstation Serv G shdsl Connection with Hub Switch for 1 port router Server Storage Server Workstation Switching Hub Wireless Access Point Laser Printer PC PC Wireless Note Book Mobile Device Wall Jack Power Adapter G shdsl RJ 11 DB 9 Cable 4 port router with complex network topology 19 ...

Страница 25: ...rowser For Win85 98 and Me click the start button Select setting and control panel Double click the network icon In the Configuration window select the TCP IP protocol line that has been associated with your network card and then click property icon 20 ...

Страница 26: ...2 168 0 1 and 255 255 255 0 Because the router acts as DHCP server in your network the router will automatically assign IP address for PC or NB in the network Type User Name root and Password root and then click OK The default user name and password are both root For the system security suggest to change them after configuration Note After changing the User Name and Password strongly recommend you...

Страница 27: ...outer After successfully completing it you can access Internet This is the easiest and possible way to setup the router Note The advanced functions are only for advanced users to setup advanced functions The incorrect setting of advanced function will affect the performance or system error even disconnection Click Basic for basic installation 22 ...

Страница 28: ...xt for the next setting This product can be setup in either SHDSL mode CO Central Office or CPE Customer Premises Equipment For connection with DSLAM the SHDSL mode is CPE For LAN to LAN connection one side must be CO and the other side must be CPE LAN Parameters Enter IP 192 168 0 1 Enter Subnet Mask 255 255 255 0 Enter Gateway 192 168 0 254 The Gateway IP is provided by ISP Enter Host Name SOHO ...

Страница 29: ...l Router User Manual The screen will prompt with the newly configured parameters Check the parameters and Click Restart The router will reboot with the new setting or Continue to configure other parameters 24 ...

Страница 30: ...ATM and Ethernet over ATM You have to clarify which Internet protocol is provided by ISP Click ROUTE and CPE Side then press Next This product can be setup in either SHDSL mode CO Central Office or CPE Customer Premises Equipment For connection with DSLAM the SHDSL mode is CPE For LAN to LAN connection one side must be CO and the other side must be CPE 25 ...

Страница 31: ...ame time IP type Fixed IP Address 192 168 0 1 Subnet Mask 255 255 255 0 Host Name SOHO Some of the ISP requires the host name as identification You may check with ISP to see if your Internet service has been configured with a host name In most cases this field can be ignored Trigger DHCP Service Server The default setup is Enable DHCP server If you want to turn off the DHCP service choose Disable ...

Страница 32: ...DHCP Client Some of the ISP provides DHCP server service by which the PC in LAN can access IP information automatically To setup the DHCP client mode follow the procedure LAN IP Type Dynamic Click Next to setup WAN1 parameters 27 ...

Страница 33: ...ed IP Address 192 168 0 1 Subnet Mask 255 255 255 0 Host Name SOHO Some of the ISP requires the host name as identification You may c with ISP to see if your Internet service has been configured with a host nam In most cases this field can be ignored heck e Trigger DHCP Service Relay Press Next to setup DHCP server parameter Enter DHCP server IP address in IP address field Press Next 28 ...

Страница 34: ...and PPPoA combine the Point to Point Protocol PPP commonly used in dialup connections with the Ethernet protocol or ATM protocol which supports multiple users in a local area network The PPP protocol information is encapsulated within an Ethernet frame or ATM frame PC IP 192 168 0 2 Netmask 255 255 255 0 Gateway 192 168 0 254 VPI 0 VCI 32 Encapsulation LLC DSLAM ISP Bridge BAS IP 192 168 0 1 Netma...

Страница 35: ... PPP server will provide IP information including dynamic IP address when SHDSL connection is established In other words you do not need to type the IP address of WAN1 Some of ISP will provide fixed IP address over PPP For fixed IP address IP Type Fixed IP Address 192 168 1 1 Click Next Note For safety the password will be prompt as star symbol The screen will prompt the parameters that will be wr...

Страница 36: ...r ISP about regarding this information Type the Wan Parameters VPI 0 VCI 33 AAL5 Encap LLC Protocol IPoA EoA IPoA NAT or EoA NAT Click Next to setup the IP parameters For more understanding about NAT review NAT DMZ IP Address 10 1 2 1 It is router IP address seem from Internet Your ISP will provide it and you need to specify here Subnet mask 255 255 255 0 This is the router subnet mask seen by ext...

Страница 37: ...al The screen will prompt the parameters that will be written in EPROM Check the parameters before writing in EPROM Press Restart to restart the router working with new parameters or press continue to setup other parameters 32 ...

Страница 38: ...G shdsl Router User Manual Advanced Setup Advanced setup contains SHDSL WAN Bridge Route NAT DMZ Virtual server and firewall parameters 33 ...

Страница 39: ...ll adapt the data rate according to the line status SHDSL SNR margin the margin range is from 0 to 10 SNR margin is an index of line connection You can see the actual SNR margin in STATUS SHDSL The larger SNR margin the better line connection If you set SNR margin in the field as 2 the SHDSL connection will drop and reconnect when the SNR margin is lower than 2 In other words the device will reduc...

Страница 40: ...he traffic transmitted by users onto a network as well as the Quailty of Service that the network needs to provide for that traffic UBR Unspecified Bit Rate is the simplest service provided by ATM networks There is no guarantee of anything It is a primary service used for transferring Internet traffic over the ATM network CBR Constant Bit Rate is used by connections that requires a static amount o...

Страница 41: ...traffic rate The range of SCR is 64kbps to 2400kbps MBS Maximum Burst Size The amount of time or the duration at which the router sends at PCR The range of MBS is 1 cell to 255 cells Press Finish to finish setting The screen will prompt the parameters that will be written in EPROM Check the parameters before writing in EPROM Press Restart to restart the router working with new parameters or press ...

Страница 42: ...iltering table Key the ress MAC address in MAC address field and select Filter in LAN field If you want to filter the designated MAC address of WAN PC to access LAN press Add to establish the filtering table Key the MAC address in MAC address field and select Filter in WAN field For example if your VC is setup at WAN 1 select WAN 1 Filter The screen will prompt the parameters that will be written ...

Страница 43: ...s it is extremely flexible Click VLAN to configure VLAN The product supports two types of VLAN 802 1Q and Port Based User can configure one of them into the router For setting 802 1Q VLAN click the 802 1Q Tag Based VLAN The screen will prompt a follows s VID Virtual LAN ID It is an definite number ID which is from 1 to 4094 PVID Port VID which is an untagged member of default VLAN Link Type Access...

Страница 44: ... shdsl Router User Manual Port Based VLANs are VLANs where the packet forwarding decision is based on the destination MAC address and its associated port Click Port Based VLAN to configure the router 39 ...

Страница 45: ... can enable the Router to automatically adjust to physical changes in the network s layout The Router using the RIP protocol determines the network packets route based on the fewest number of hops between the source and the destination The RIP protocol regularly broadcasts routing information to other routers on the network Click Route to modify the routing information To modify the RIP Routing in...

Страница 46: ...he gateway RIP v1 it sends RIP v1 messages only RIP v2 it sends RIP v2 messages in multicast and broadcasts format Authentication required None for RIP there is no need of authentication code Password the RIP is protected by password authentication code MD5 The RIP will be decoded by MD5 than protected by password authentication code Poison Reserve is for the purpose of promptly broadcast or multi...

Страница 47: ...a server that has company private data In a typical DMZ configuration for an enterprise a separate computer or host receives requests from users within the private network to access via Web sites or other companies accessible on the public network The DMZ host then initiates sessions for these requests to the public network However the DMZ host is not able to initiate a session back into the priva...

Страница 48: ...10 The Multi NAT table will be setup as Virtual Start IP Address 192 168 0 10 Count 40 Global Start IP Address 69 210 1 9 Count 2 Press Finish to continue The screen will prompt the parameters that will be written in EPROM Check the parameters before writing in EPROM Press Restart to restart the router working with new parameters or Continue to configure other parameters 43 ...

Страница 49: ...iday 8 AM to 6PM other requests with UDP made to 69 210 1 8 25 are remapped to server 2 on 192 168 0 3 25 and always on You can setup the router as Index 1 protocol TCP interface WAN1 service name test1 private IP 192 168 0 2 private port 80 public port 80 schedule from Day Monday to Friday and time 8 0 to 16 0 and index 2 protocol UDP interface WAN1 service name test2 private IP 192 168 0 3 priva...

Страница 50: ...ote management security The NAT firewall will take effect if NAT function is enabled The remote management security is default to block any WAN side connection to the device Non empty legal IP pool in ADMIN will block all remote management connection except those IPs specified in the pool Press Finish to finish s of firewall etting The screen will prompt the parameters which will be written in EPR...

Страница 51: ...he parameters heck Press Restart to restart the router or press Continue to setup another function User can determine the security level for special purpose environment and applications by configuring the DoS protection and defining an extra packet filter with higher priority than the default SPI filter Note that an improper filter policy may degrade the capability of the firewall and or even bloc...

Страница 52: ...e network address of one system This system is known as the amplifier The return address of the ping has been faked spoofed to appear to come from a machine on another network the victim The victim is then flooded with responses to the ping As many responses are generated for only one attack the attacker is able use many amplifiers on the same victim IP Spoofing Falsify the IP header information t...

Страница 53: ... IP Address 200 1 1 1 Dest IP Address 192 168 0 2 192 168 0 50 Press OK to finish The screen will prompt the configured parameters Check the parameters Click Restart to restart the gateway or Continue to configure other parameters Filtering Rule for SMTP connection Filtering rule will be configured as follow Index Protocol Direction Action Source Destination Dest Port Schedule 1 TCP Inbound Permit...

Страница 54: ... 171 16 3 4 10 1 2 3 TCP 5150 Deny E Internet 5 6 Attacker 171 16 3 4 6000 10 1 2 3 5150 Firewall X11 Server Update Filtering Rule Index Protocol Direction Action Source Destination Source Port Dest Port 1 TCP Inbound Permit External Internal 1023 25 2 TCP Outbound Permit Internal External 25 1023 3 TCP Outbound Permit Internal External 1023 25 4 TCP Inbound Permit External Internal 25 1023 5 Any ...

Страница 55: ...the other hand 0 and all 0 successive with 0 represents any When the rule is ordered as ABC Index Source Address Destination Address Action 1 10 1 99 1 172 16 1 1 Deny B 2 10 1 99 1 172 16 6 1 Permit A 3 10 1 1 1 172 16 6 1 Permit A 4 10 1 1 1 172 16 1 1 Deny C 5 192 168 3 4 172 16 6 1 Deny C The rule order will permit 10 1 99 1 to access 172 16 6 1 When the rule is ordered as BAC Index Source Add...

Страница 56: ...User Manual IP QoS IP QoS is a good function to decide which PCs can get the priorities to undergo the over full bandwidth situation This is enable option to choose if you want to enable it Set the policy to action 51 ...

Страница 57: ... Manual This is an example for your reference 192 168 1 60 is the highest priority to undergo the over full bandwidth situation 192 168 1 50 is the second high priority 192 168 1 40 is the third high priority and so on 52 ...

Страница 58: ...G shdsl Router User Manual Administration This session introduces security and simple network management protocol SNMP and time synchronous 53 ...

Страница 59: ...I modes menu driven mode and command mode to configure the router Legal address pool will setup the legal IP addresses from which authorized person can configure the gateway This is the more secure function for network administrator to setup the legal address of configuration Configured 0 0 0 0 will allow all hosts on Internet or LAN to access the router Leaving blank of trust host list will cause...

Страница 60: ...s set configuration parameters and monitor network events SNMP communications can occur over the LAN or WAN connection The router can generate SNMP traps to indicate alarm conditions and it relies on SNMP community strings to implement SNMP security This router support MIB I and MIB II Click SNMP to configure the parameters In the table of current community pool you can setup the access authority ...

Страница 61: ...sage sent from an SNMP agent to a manager Click Modify to modify the trap host pool Version select version for trap host SNMP v1 or SNMP v2 IP type the trap host IP Community type the community password The community is setup in community pool Press OK to finish the setup The browser will prompt the configured parameters and check it before writing into EPROM Press Restart to restart the gateway w...

Страница 62: ...twork Time Protocol SNTP and synchronization with PC For synchronization with PC select Sync with PC The gateway will synchronize the time with the connecting PC SNTP is the acronym for Simple Network Time Protocol which is an adaptation of the Network Time Protocol NTP used to synchronize computer clocks in the Internet SNTP can be used when the ultimate performance of the full NTP implementation...

Страница 63: ...sl Router User Manual Utility This section will describe the utility of the product including system information load the factory default configuration upgrade the firmware logout and restart the gateway 58 ...

Страница 64: ...G shdsl Router User Manual System Info Click System Info for review the information The browser will display the system information 59 ...

Страница 65: ...ers Restore Configuration Sometime the configuration will be crashed unintentionally Restore configuration will help you to recover the backup configuration easily Click Finish after selecting Restore Configuration Browse the route of backup file then press finish The router will automatically restore the saved configuration Backup Configuration After configuration we suggest using this function t...

Страница 66: ...dsl Router User Manual Upgrade You can upgrade the gateway using the upgrade function Press Upgrade Browse to the file and press OK button to upgrade The system will reboot automatically after finishing 61 ...

Страница 67: ...G shdsl Router User Manual Logout To logout the router press logout 62 ...

Страница 68: ...G shdsl Router User Manual Restart For restarting the router click the Restart in UTILITY Press Restart to reboot the router 63 ...

Страница 69: ...ation and CRC error count LAN status will display the MAC address IP address Subnet mask and DHCP client table WAN status will display the WAN interface information You can view the routing table in the status of route Interface status includes LAN and WAN statistics information Firewall status display DoS protection status and dropped packets statistics 64 ...

Страница 70: ...C IP 192 168 0 200 Netmask 255 255 255 0 Gateway 192 168 0 2 CO side Click Bridge and CO Side to setup Bridging mode of the Router and then click Next LAN Parameters Enter IP 192 168 0 1 Enter Subnet Mask 255 255 255 0 Enter Gateway 192 168 0 1 Enter Host Name SOHO WAN1 Parameters Enter VPI 0 Enter VCI 32 Click LLC Click Next The screen will prompt the new configured parameters Check the parameter...

Страница 71: ...xt LAN Parameters Enter IP 192 168 0 2 Enter Subnet Mask 255 255 255 0 Enter Gateway 192 168 0 2 Enter Host Name SOHO WAN1 Parameters Enter VPI 0 Enter VCI 32 Click LLC Click Next The screen will prompt the new configured parameters Check the parameters and Click Restart The router will reboot with the new setting 66 ...

Страница 72: ...2 168 30 1 Netmask 255 255 255 0 Gateway 192 168 30 2 IP 192 168 30 2 Netmask 255 255 255 0 Gateway 192 168 30 1 CO side Click ROUTE and CO Side then press Next Type LAN parameters IP Address 192 168 20 1 Subnet Mask 255 255 255 0 Host Name SOHO DHCP Service For more DHCP service review DHCP Service Type the Wan Parameters VPI 0 VCI 32 AAL5 Encap LLC Protocol IPoA EoA IPoA NAT or EoA NAT Note The ...

Страница 73: ... 255 255 0 Gateway 192 169 30 2 Click Next The screen will display the parameters that will be written in EPROM Check the parameters before writing in EPROM Press Restart to restart the router working with new parameters or press continue to setup other parameters 68 ...

Страница 74: ...EoA IPoA NAT or EoA NAT Note The Protocol used in CO and CPE have to be the same Click Next to setup the IP parameters For more understanding about NAT review NAT DMZ in page 19 IP Address 192 168 30 2 Subnet mask 255 255 255 0 Gateway 192 169 30 1 Click Next The screen will display the parameters that will be written in EPROM Check the parameters before writing in EPROM Press Restart to restart t...

Страница 75: ... appears When you see the login screen you can logon to Router Note You have to use SPACE key Pressing other keys will not work User admin Password Note The factory default user and passwords are both admin Telnet Make sure the correct Ethernet cable is used for connecting the LAN port of your computer to ROUTER The LAN LNK indicator on the front panel shall light if a correct cable is used Starti...

Страница 76: ...ce is that the menu driven interface shows you all of available commands for you to select You don t need to remember the command syntax and save your time on typing the whole command line The following figure gives you an example of the menu driven interface In the menu you scroll up down by pressing key I K select one command by key L and go back to a higher level of menu by key J For example to...

Страница 77: ...ackets Command Description ip An item enclosed in brackets is required If the item is shown in lower case bold it represents an object with special format For example ip may be 192 168 0 3 Route Bridge Two or more items enclosed in brackets and separated by vertical bars means that you must choose exactly one of the items If the item is shown in lower case bold with leading capital letter it is a ...

Страница 78: ...me level menu LEFT or J Move back to previous menu RIGHT or L Move forward to submenu ENTER Move forward to submenu TAB To choose another parameters Ctrl C To quit the configuring item Ctrl Q For help Menu Tree The menu tree is shown on the following page All of the configuration commands are placed in the subdirectories of Enable protected by supervisor password In other words unauthorized users ...

Страница 79: ... Config Script Add Delete Modify List MAC LAN_port WAN1_port WAN2_port WAN3_port WAN4_port WAN5_port WAN6_port WAN7_port WAN8_port Static RIP Add Delete List Generic LAN WAN LIst Attrib Version Authe IP_type Address Attrib SHDSL WAN Route Interface Firewall System Config Script NAT PAT DMZ Virtual Global Fixed Range Delete List Range Interface Delete List Modify Interface Delete List Clear Modify ...

Страница 80: ...ility TFTP upgrade utility exit Quit system The description of the commands are Command Description enable Modify command privilege When you login via serial console or Telnet the router defaults to a program execution read only privileges to you To change the configuration and write changes to nonvolatile RAM NVRAM you must work in enable mode setup To configure the product you have to use the se...

Страница 81: ...on shdsl The SHDSL status includes line rate SNR margin TX power attenuation and CRC error of the product and SNR margin attenuation and CRC error of remote side The product access remote side information via EOC embedded operation channel wan WAN status shows the 8 PVC information which are configured route You can see the routing table via route command interface The statistic status of WAN and ...

Страница 82: ...show and press enter system Show general information config Show all configuration script Show all configuration in command script Command Description system The general information of the system will show in system command config Config command can display detail configuration information script Configuration information will prompt in command script 77 ...

Страница 83: ...es of configuration you must write the new configuration to EPROM using write command and reboot the router to take affect Move cursor to to write and press enter Command write CR Message Please input the following information Are you sure y n y 78 ...

Страница 84: ...dsl Router User Manual Reboot To reboot the router use reboot command Move cursor to to write and press enter Command reboot CR Message Please input the following information Do you want to reboot y n y 79 ...

Страница 85: ...d ping ip 1 65534 t 1 1999 Message Please input the following information IP address IP 10 0 0 1 Number of ping request packets to send TAB select t Data size 1 1999 32 There are 3 types of number of ping request packet to send default 1 65534 and t Default will send 4 packet and t continuous packet until you key in Ctrl c to stop 80 ...

Страница 86: ... in user profile table however users who have the supervisor password can change the configuration of the router Move the cursor to user and press enter key clear Clear user profile modify Modify the user profile list List the user profile You can delete the user by number using clear command If you are not sure the number of user you can use list command to check it Modify command is to modify an...

Страница 87: ...n generate SNMP traps to indicate alarm conditions and it relies on SNMP community strings to implement SNMP security This router support MIB I II Move the cursor to snmp and press enter community Configure community parameter trap Configure trap host parameter 5 SNMP community entry can be configured in this system Move the cursor to community and press enter Command admin snmp community 1 5 more...

Страница 88: ...s an essential element for any business that relies on an IT system The reason for this is that these systems all have clocks that are the source of time for files or operations they handle Without time synchronization time on these systems varies with each other or with the correct time and this can cause virtual server schedule processes to fail and system log exposures with wrong data There are...

Страница 89: ...ng Message Please input the following information Time server address Enter for default ntp 2 vt edu ntp 2 vt edu You can configure three time server in this system Move the cursor to update_rate and press enter Command admin sntp update_rate 10 268435455 Message Please input the following information Update period secs Enter for default 86400 Move the cursor to time_zone and configure where your ...

Страница 90: ...e configuration via TFTP restore tool For upgrade TFTP server with the new firmware will be supported by supplier but for backup and restore you must have your own TFTP server to backup and restore the file Move the cursor to utility and press enter upgrade Upgrade main software backup Backup system configuration Restore Restore system configuration Exit If you want to exit the system without savi...

Страница 91: ...em operation mode by using mode command Move the cursor to mode and press enter Command setup mode Route Bridge Message Please input the following information System operation mode TAB select Route Route SHDSL You can setup the SHDSL parameters by the command shdsl Move the cursor to shdsl and press enter mode Configure SHDSL mode Link Configure SHDSL link n 64 Configure SHDSL data rate type Confi...

Страница 92: ...ocol address IP address and subnet mask vpi_vci Configure VPI VCI value encap Configure encapsulation type qos Configure VC QoS isp Configure account name password and idle time ip_type Configure IP type in PPPoA and PPPoE list WAN interface configuration There are four types of protocols IPoA EoA PPPoA and PPPoE which you can setup For dynamic IP of PPPoA and PPPoE you do not need to setup IP add...

Страница 93: ...a gateway command You can setup 20 sets of static bridge in static command After entering static menu the screen will display as follows add Add static MAC entry delete Delete static MAC entry modify Modify static MAC entry list Show static bridging table After enter add menu the screen will display as follows mac Configure MAC address lan_port Configure LAN interface bridging type wan1_port Confi...

Страница 94: ... pvid Modify port default ID link_mode Modify port link type list Show VLAN configuration To activate the VLAN function move the cursor to mode and press enter The products support two types of VLAN 802 11q and Port Based The IEEE 802 1Q defines the operation of VLAN bridges that permit the definition operation and administration of VLAN topologies within a bridged LAN infrastructure Port Based VL...

Страница 95: ...pectively According to the operation mode of the device link type of WAN port is automatically configured If the product operates in bridge mode the WAN link type will be trunk and in routing mode access Command setup vlan link_mode 1 12 Access Trunk Message Please input the following information Port index 1 12 1 Port link type Tab select Trunk Access To view the VLAN table move the cursor to lis...

Страница 96: ...nd to setup the parameters Move the cursor to rip and press enter generic Configure operation and auto summery mode lan Configure LAN interface RIP parameters wan Configure WAN interface RIP parameters list Show RIP configuration Generic command can setup RIP mode and auto summary mode If there are any routers in your LAN you can configure LAN interface RIP parameters via lan command The product s...

Страница 97: ...address known within another network One network is designated the inside network and the other is the outside Typically a company maps its local inside network addresses to one or more global outside IP addresses and reverse the global IP addresses of incoming packets back into local IP addresses This ensures security since each outgoing or incoming request must go through a translation process t...

Страница 98: ...dress range via list command To setup global IP address pool move the cursor to global command and press enter range Edit global IP address pool interface Bind address pool to specific interface delete Delete global IP address pool list Show global IP address pool You can create five global IP address pool range via range command Command setup ip_share nat global range 1 5 ip 1 253 Message Please ...

Страница 99: ...92 168 0 250 Global address 122 22 22 2 After configuration fixed IP address entry you can bind the entry to specific interface via interface command Command setup ip_share nat fixed interface 1 5 1 8 Message Please input the following information Fixed NAT mapping entry number 1 5 1 Active interface number Enter for default 1 8 1 You can delete fixed NAT mapping entry from 1 to 5 by using delete ...

Страница 100: ...nterface command You can configure the global port number by using port command The local server host IP address and port number are configured via server command The authorized access protocol is setup via protocol command Name command can be used to configure the service name of the host server Begin and end command is used to setup the local server schedule to access You can view the fixed NAT ...

Страница 101: ...ept those IPs specified in the pool Level two automatic enables basic firewall security all DoS protection and the SPI filter function Level three advanced is an advanced level of firewall where user can determine the security level for special purpose environment and applications by configuring the DoS protection and defining an extra packet filter with higher priority than the default SPI filter...

Страница 102: ...to slow your network by requesting new connections but not completing the process to open the connection Once the buffer for these pending connections is full a server will not accept any more connections and will be unresponsive ICMP Flood A sender transmits a volume of ICMP request packets to cause all CPU resources to be consumed serving the phony requests UDP Flood A sender transmits a volume ...

Страница 103: ...licy Delete Delete IP QoS policy Modify Modify IP QoS policy list Show IP QoS policy table You can enable the IPQoS function via active command The add parameters of IPQoS can be configured via add command Protocol Configure protocol local_ip Configure local IP parameter remote_ip Configure remote IP parameter Port Configure port parameter description Policy description Enable Enable the policy Pr...

Страница 104: ...k administrator supervise and distribute IP addresses from a central point and automatically sends a new IP address when a computer is plugged into a different place in the network To configure DHCP server move the cursor to dhcp and press enter generic Configure generic DHCP parameters fixed Configure fixed host IP address list list Show DHCP configuration The generic DHCP parameters can be confi...

Страница 105: ...onal Move cursor to dns_proxy and press enter Command setup dns_proxy IP IP IP Message Please input the following information DNS server 1 ENTER for default 168 95 1 1 10 0 10 1 DNS server 2 10 10 10 1 DNS server 3 Host name Enter local host name via hostname command Move cursor to hostname and press enter Command setup hostname name Message Please input the following information Local hostname EN...

Страница 106: ...interface is a 9 pin female D type connector The console cable is wired 1 1 as in the following table DB 9 Male RS 232 Function DIRECTION DB 9 Female 1 Data Carrier Detect DCD Output 1 2 Receive Data RD Output 2 3 Transmit Data TD Input 3 4 4 5 Signal Ground 5 6 6 7 Request to Sent RTS Input 7 8 Clear to Sent CTS Output 8 9 9 101 ...

Страница 107: ...ion Units Manual Copyright 2005 Far Eastern Vienna Technology Center Neihu Technology Park 8F No 60 Zhouzi St Neihu Taipei Taiwan Phone 886 2 2659 1021 Fax 886 2 2799 1355 E mail info ctcu com http www ctcu com ...

Отзывы:

Нет отзывов

Похожие инструкции для SHDSL

Barco MatrixPRO-II DVI 16x16 User Manual preview
MatrixPRO-II DVI 16x16
Бренд: Barco Страницы: 43
Barco matrixpro-II Information Manual preview
matrixpro-II
Бренд: Barco Страницы: 5
Qlogic SANbox 6142 Supplementary Manual preview
SANbox 6142
Бренд: Qlogic Страницы: 2
Qlogic iSR6142 User Manual preview
iSR6142
Бренд: Qlogic Страницы: 172
Idis DR-6100 Series Operation Manual preview
DR-6100 Series
Бренд: Idis Страницы: 86
Paradyne Hotwire 6301 Installation Instructions Manual preview
Hotwire 6301
Бренд: Paradyne Страницы: 20
Paradyne COMSPHERE 3610 Installation Instructions preview
COMSPHERE 3610
Бренд: Paradyne Страницы: 2
Patton electronics 3087 Quick Start Manual preview
3087
Бренд: Patton electronics Страницы: 12
Hanwha Techwin Wisenet PRN-6400B4 Quick Manual preview
Wisenet PRN-6400B4
Бренд: Hanwha Techwin Страницы: 14
E-TOP PR126g User Manual preview
PR126g
Бренд: E-TOP Страницы: 24
Intellinet 561051 Quick Install Manual preview
561051
Бренд: Intellinet Страницы: 12
Eicon Networks Diva 2440 Quick Start Manual preview
Diva 2440
Бренд: Eicon Networks Страницы: 32
Billion BiPAC 7301VGP User Manual preview
BiPAC 7301VGP
Бренд: Billion Страницы: 120
Swann NVRx-7300 series Quick Start Manual preview
NVRx-7300 series
Бренд: Swann Страницы: 9
Alphatech Blue Gate ISDN BRI Brave Quick Start Manual preview
Blue Gate ISDN BRI Brave
Бренд: Alphatech Страницы: 6
Cradlepoint wipipe CTR350 Quick Start Manual preview
wipipe CTR350
Бренд: Cradlepoint Страницы: 2
Tripp Lite P581-006 Specification Sheet preview
P581-006
Бренд: Tripp Lite Страницы: 2
Genexis FiberTwist XGS2420 Installation Manual preview
FiberTwist XGS2420
Бренд: Genexis Страницы: 7

Бренды по названию

Популярные бренды

Загрузить еще бренды