CTC Union SHDTU03-ET10R Скачать руководство пользователя страница 40

Страница: 40 / 90

Chapter 3. Set-Up

3-16

NAT/DMZ

NAT (Network Address Translation) is the translation of an Internet

Protocol address (IP address) used within one network to a different IP

address known within another network. One network is designated as

the inside network (private) and the other as the outside network

(public). Typically, a company maps its local inside network addresses

to one or more global outside IP addresses and reverses the global IP

addresses of incoming packets back into local IP addresses. This

ensures security since each outgoing or incoming request must go

through a translation process, that also offers the opportunity to qualify

or authenticate the request or match it to a previous request. NAT also

conserves on the number of global IP addresses that a company needs

and allows the company to use a single IP address for its communication in the Internet world.

DMZ (demilitarized zone) is a computer host or small network inserted as a “neutral zone” between

a company's private network and the outside public network. It prevents outside users from getting

direct access to a server that has company private data.

In a typical DMZ configuration for an enterprise, a separate computer or host receives requests

from users within the private network to access via Web sites or other companies accessible on

the public network. The DMZ host then initiates sessions for these requests to the public network.

However, the DMZ host is not able to initiate a session back into the private network. It can only

forward packets that have already been requested.

Users of the public network outside the

company can access only the DMZ host.

The DMZ may typically also have the

company’s Web pages so these could

serve the outside world. However, the

DMZ provides access to no other

company data. In the event that an

outside user penetrated the DMZ host’s

security, the Web pages might be

corrupted, but no other company

information would be exposed.

Press NAT/DMZ to setup the parameters.

Содержание SHDTU03-ET10R

Страница 1: ...USER MANUAL SHDTU03 ET10R SHDSL Router With 1 Port Ethernet Switch SHDTU03 ET10RS SHDSL Router With 4 Port Ethernet Switch...

Страница 2: ......

Страница 3: ...net Switch SHDTU03 ET10RS SHDSL Router With 4 Port Ethernet Switch Installation and Operation Manual Version 3 0 R Re ev vi is si io on n M Ma ar rk ks s Revision Date Notes V 2 0 V 3 0 N A June 6 200...

Страница 4: ......

Страница 5: ...thernet Adapter in PC or NB 2 1 2 Check the Terminal Access Program 2 1 3 Check the Web Browser in PC or NB 2 1 4 Determine Connection Setting 2 2 5 Install the SHDSL Router 2 2 2 2 Configuration via...

Страница 6: ...ool 5 1 5 3 Upgrade 5 2 5 4 Logout 5 2 5 5 Restart 5 2 Chapter 6 Status 6 1 LAN to LAN Connection with Bridge Mode 6 1 6 2 LAN to LAN Connection with Routing Mode 6 4 Chapter 7 Config via Serial Conso...

Страница 7: ...Table of Contents iii Chapter 8 Configuration Commands 8 1 Status 8 2 8 2 Show 8 2 8 3 Write 8 2 8 4 Reboot 8 3 8 5 Ping 8 3 8 6 Administration 8 3 8 7 Utility 8 8 8 8 Exit 8 8 8 9 Setup 8 9...

Страница 8: ...Table of Contents iv...

Страница 9: ...uter is designed not only to optimize the service bit rate from central office to customer premises but also integrates high end Bridging Routing capabilities with advanced functions of Multi DMZ virt...

Страница 10: ...all Firewall routers Four 10 100Mbps Auto negotiation and Auto MDIX switching port for flexible local area network connectivity 4 port router DMZ host Multi DMZ Multi NAT enables multiple workstations...

Страница 11: ...learning bridge Security DMZ host Multi DMZ Multi NAT function Virtual server mapping RFC1631 VPN pass through for PPTP L2TP IPSec tunneling Natural NAT firewall Management Easy to use web based GUI f...

Страница 12: ...e 16 TCPAM Data Rate N x 64Kbps N 1 36 Impedance 135 ohms LAN Interface 1 port SHDTU03 ET10R 4 ports switching hub SHDTU03 ET10RS 10 Base T and 100 Base TX auto negotiation Auto MDIX 4 port router Har...

Страница 13: ...ower 100 240VAC via power adapter Power consumption 6 watts Temperature 0 45 C Humidity 0 95 RH non condensing Memory 2MB Flash Memory 4MB SDRAM Products Information SHDTU03 ET10R G SHDSL router bridg...

Страница 14: ...On SHDSL line connection is established G SHDSL Active On Transmit or received data over SHDSL link 1 On Transmit or received data over LAN Port 1 2 On Transmit or received data over LAN Port 2 3 On...

Страница 15: ...scription of 1 port router DC IN Power adaptor inlet Input voltage 9VDC Ethernet Ethernet 10BaseT for LAN port RJ 45 Console RS 232C DB9 for system configuration and maintenance G SHDSL SHDSL interfac...

Страница 16: ...rp pencil Pressing the Reset Button in this way will cause the SHDTU03 to load the factory default settings and lose all of your configuration 2 If the SHDTU03 is having problems connecting to the Int...

Страница 17: ...Adapter in PC or NB Make sure that Ethernet Adapter had been installed in PC or NB used for configuration of the router TCP IP protocol is necessary for web configuration so please confirm that the T...

Страница 18: ...Internet Protocol over ATM RFC2364 Point to Point Protocol over ATM RFC2516 Point to Point Protocol over Ethernet The different Protocols need to setup different WAN parameters Once knowing the Proto...

Страница 19: ...IP Address Subnet Mask Gateway DNS Server Host Name if applicable VPI VCI Encapsulation User Name Password DNS Server Host Name if applicable IP Address if applicable VPI VCI Encapsulation User Name P...

Страница 20: ...1 port router is connected to hub or switch be sure that the hub or switch supports auto sensing If the HUB or Switch supports auto MDIX then both cross over and non cross over Ethernet cables are su...

Страница 21: ...Chapter 2 Configuration 2 5...

Страница 22: ...Point Laser Printer PC PC Wireless Note Book Mobile Device Wall Jack Power Adapter G shdsl RJ 11 DB 9 Cable 4 port router with complex network topology 2 2 Configuration via Web Browser For Win85 98 a...

Страница 23: ...the Configuration window select the TCP IP protocol line that has been associated with your network card and then click the properties button Choose the IP Address tab Select Obtain an IP address aut...

Страница 24: ...CP server in your network the router will automatically assign an IP address for the PC or NB on the network Type User Name root and Password root and then click OK The default user name and password...

Страница 25: ...eway 192 168 0 254 VPI 0 VCI 32 Encapsulation LLC DSLAM ISP Bridge BAS IP 192 168 0 1 Netmask 255 255 255 0 Gateway 192 168 0 254 IP 192 168 0 254 Click Bridge and CPE Side to setup Bridging mode of t...

Страница 26: ...de contains settings for DHCP server Point to Point Protocol over ATM and Ethernet IP over ATM and Ethernet over ATM You need to clarify which Internet protocol is provided by your ISP Click ROUTE and...

Страница 27: ...distribute IP addresses from a central point and automatically assign a new IP address when a computer is plugged into a different location in the network If the DHCP server is Enabled you will need t...

Страница 28: ...on Digital Subscriber Line DSL cable modem or wireless connection to the Internet PPPoE and PPPoA combine the Point to Point Protocol PPP commonly used in dialup connections with the Ethernet protocol...

Страница 29: ...ssword Confirm test Idle Time 10 Click Next For security the password will be displayed with star symbols The screen will prompt with the parameters to be written in Flash Check the parameters before...

Страница 30: ...ncap LLC Protocol IPoA EoA IPoA NAT or EoA NAT Click Next to setup the IP parameters For more understanding about NAT review NAT DMZ in page 3 15 IP Address 10 1 2 1 Subnet mask 255 255 255 0 Gateway...

Страница 31: ...two Annex types supported Annex A and Annex B in SHDSL Data Rate you can setup the SHDSL data rate in multiples of 64kbps SHDSL SNR margin the margin range is from 0 to 10 Generally the SNR margin do...

Страница 32: ...etup If you want to setup another PVC you may configure them in WAN 2 to WAN 8 Enter the parameters Press Finish to finish setting The screen will prompt with the parameters that will be written to Fl...

Страница 33: ...ck Bridge to setup Press Add to add the static bridge information The screen will prompt with the parameters that will be written to Flash Check the parameters before writing to Flash Press Restart to...

Страница 34: ...cified in IEEE 802 1Q 2 Each port always belongs to a default VLAN with its port VID PVID as an untagged member Also a port can belong to multiple VLANs and be tagged members of these VLANs 3 A port m...

Страница 35: ...Based VLAN The screem will prompt as follows VID Virtual LAN ID Is a defined number an ID which numbers from 1 to 4094 PVID Port VID is an untagged member of default VLAN Link Type Access means the p...

Страница 36: ...sign any PVID to WAN except 0 and leaving blank When the SHDTU03 works under routing mode the Link Type of WAN will be Access mode un tagged port Port Based VLANs are VLANs where the packet forwarding...

Страница 37: ...athway that network information must travel to reach a specific host or network With Dynamic Routing you can enable the Router to automatically adjust to the physical changes in the network s layout T...

Страница 38: ...ng information protocol RIP allows it to exchange routing information with other routers If set to Disable the gateway does not participate in any RIP exchange with other routers If set to Enable the...

Страница 39: ...IP will be decoded by MD5 then protected by password authentication code Poison Reserve is for the purpose of promptly broadcasting or multicasting RIP when the route is changed ex shutting down one o...

Страница 40: ...ed zone is a computer host or small network inserted as a neutral zone between a company s private network and the outside public network It prevents outside users from getting direct access to a serv...

Страница 41: ...address and virtual IP address Multi NAT Some of the virtual IP addresses eg 192 168 0 10 192 168 0 50 collectively use two of the global IP addresses eg 69 210 1 9 and 69 210 1 10 The Multi NAT table...

Страница 42: ...Friday 8 AM to 6PM other requests with UDP made to 69 210 1 8 25 are remapped to server 2 on 192 168 0 3 25 and always on You can setup the router as Index 1 protocol TCP interface WAN1 service name...

Страница 43: ...ill be able to access the gateway using the default IP and Password root You may authorize five legal users to access the router via telnet or console There are two UI user interface modes menu driven...

Страница 44: ...nctions The router can generate SNMP traps to indicate alarm conditions and it relies on SNMP community strings to implement SNMP security This router support MIB II Click SNMP to configure the parame...

Страница 45: ...t After configuring the community pool press OK Click Modify to modify the trap host pool Version select version for trap host IP type the trap host IP Community type the community password Press OK t...

Страница 46: ...k Time Protocol SNTP and synchronization with PC For synchronization with PC select Sync with PC The gateway will synchronize the time with the connecting PC SNTP is the acronym for Simple Network Tim...

Страница 47: ...rs to the gateway All of the settings will be changed to factory default Therefore you will lose all the configured parameters Restore Configuration Sometimes the configuration will become corrupt uni...

Страница 48: ...ay using the upgrade function Press Upgrade Browse to the file and press the OK button to upgrade The system will reboot automatically after finishing Do not allow any power disruption during the upgr...

Страница 49: ...Chapter 5 Utility 5 3 Restart For restarting the router click the Restart item under UTILITY Press Restart to reboot the router...

Страница 50: ...Chapter 5 Utility 5 4 This page was left blank intentionally...

Страница 51: ...tatus will display the WAN interface information You can view the routing table from the ROUTE status INTERFACE status includes LAN and WAN statistics information LAN to LAN connection with bridge Mod...

Страница 52: ...arameters Enter IP 192 168 0 1 Enter Subnet Mask 255 255 255 0 Enter Gateway 192 168 0 1 Enter Host Name SOHO WAN1 Parameters Enter VPI 0 Enter VCI 32 Click LLC Click Next The screen will prompt with...

Страница 53: ...Parameters Enter IP 192 168 0 2 Enter Subnet Mask 255 255 255 0 Enter Gateway 192 168 0 2 Enter Host Name SOHO WAN1 Parameters Enter VPI 0 Enter VCI 32 Click LLC Click Next The screen will prompt with...

Страница 54: ...255 255 0 IPoA or EoA VPI 0 VCI 32 Encapsulation LLC IP 192 168 10 200 Netmask 255 255 255 0 Gateway 192 168 10 1 IP 192 168 30 1 Netmask 255 255 255 0 Gateway 192 168 30 2 IP 192 168 30 2 Netmask 255...

Страница 55: ...the IP parameters For more understanding about NAT review NAT DMZ in page 19 IP Address 192 168 20 1 Subnet mask 255 255 255 0 Gateway 192 169 30 2 Click Next The screen will prompt with the paramete...

Страница 56: ...CO and CPE have to be the same Click Next to setup the IP parameters For more understanding of NAT review the NAT DMZ section in this manual IP Address 192 168 30 2 Subnet mask 255 255 255 0 Gateway...

Страница 57: ...er admin Password Note If you have not set any LAN IP of the Router the default IP address is 192 168 0 1 Operation Interface For serial console and Telnet management the ROUTER implements two operati...

Страница 58: ...the parameters in the brackets Command Description ip An item enclosed in brackets is required If the item is shown in lower case bold it represents an object with special format For example ip may be...

Страница 59: ...lowing table The operation list will be shown on the window Keystroke Description UP or I Move to field above in the same level menu DOWN or K Move to field below in the same lever menu LEFT or J Move...

Страница 60: ...e Password Enable Status Show Ping Exit Enable Setup Status Show Mode SHDSL WAN Bridge Route LAN SHDSL WAN Route Interface System Config Script Write Reboot Ping Admin Utility Exit IP share DHCP DHCP...

Страница 61: ...n 64 Type Clear Margin Protocol Address VPI_VCI Encap QoS Class PCR ISP List Gateway Static Add MAC LAN_Port WAN1_Port WAN8_Port Delete Modify List Static Add Delete List RIP Generic LAN Attrib Versio...

Страница 62: ...more more more more more NAT PAT DMZ Generic Fixex List Virtual Global Fixed Clear Modify List Active Address Range Delete List Range Interface Delete List Modify Interface Delete List Interface Port...

Страница 63: ...et Mode 7 7 Admin User Security SNMP Passwd ID SNTP Clear Modify Attrib Profile List Port IP_pool Modify Clear List Attrib Profile Edit List Edit List Method Service Time_server1 Time_server2 Time_ser...

Страница 64: ...Chapter 7 Serial Console or Telnet Mode 7 8 This page was left blank intentionally...

Страница 65: ...s recommended to change the default user name and password after completing these settings After changing the User Name and Password it is strongly recommend you write the user name password down and...

Страница 66: ...stem information configuration and configuration in command script with the show command Move cursor to show and press enter system Show general information config Show all configuration script Show a...

Страница 67: ...ut the following information IP address IP 10 0 0 1 Number of ping request packets to send TAB select 1 65534 Data size 1 1999 32 Administration You can modify the user profile telnet access SNMP Samp...

Страница 68: ...profile You can delete the user by number using the clear command If you do not know the user number you can use the list command to check it The Modify command is used to modify old user information...

Страница 69: ...ng network management but also for the monitoring of network devices and their functions The router can generate SNMP traps to indicate alarm conditions and it relies on the SNMP community strings to...

Страница 70: ...ystem The reason for this is that these systems all have clocks that are the source of time for files or operations they handle Without time synchronization time on these systems varies with each othe...

Страница 71: ...service Dis able Enable Message Please input the following information Active SNTP v4 0 service Tab Select Enable Enable Move the cursor to time_server1 and press enter Command admin sntp time_server1...

Страница 72: ...There are three utility tools upgrade backup and restore embedded in the firmware You can update the new firmware via TFTP upgrade tools and backup the configuration via TFTP backup tool and restore...

Страница 73: ...e LAN interface profile ip_share Configure NAT PAT parameters firewall Configure Firewall parameters dhcp Configure DHCP parameters dns_proxy Configure DNS proxy parameters hostname Configure local ho...

Страница 74: ...in multiples of 64Kbps where n is from 0 to 32 If you configure n as 0 the SHDTU03 will perform in adaptive mode There are two types of SHDSL Annex types Annex A and Annex B Clear command can clear th...

Страница 75: ...by your ISP For PPPoA and PPPoE you do not need to setup any IP addresses and subnet masks However a valid username password must be provided by your ISP for the PPP authentication There is a unique...

Страница 76: ...static MAC entry delete Delete static MAC entry modify Modify static MAC entry list Show static bridging table After entering the add menu the screen will prompt as follows mac Configure MAC address...

Страница 77: ...ts with VLAN look up to determine whether the VID is valid If the VID is not valid the packet will be dropped and its address will not be learned If the VID is valid the VID destination address and so...

Страница 78: ...essage Please input the following information Trigger VLAN function Tab select Disable 8021Q To modify the VLAN rule move the cursor to modify and press enter Command setup vlan modify 1 8 1 4094 stri...

Страница 79: ...t and access link will send un tagged packet form the port Port index 1 to 4 represents LAN1 to LAN4 respectively According to the operation mode of the device link type of WAN port is automatically c...

Страница 80: ...tic menu the screen will show as follows add Add static route entry delete Delete static route entry list Show static routing table You can add 20 sets of static route entries by using the add command...

Страница 81: ...ation code Attrib command can configure RIP mode authentication type and Poison reverse mode Version command can configure RIP protocol version Authe command can configure the authentication code You...

Страница 82: ...needs and allows the company to use a single IP address for its communication to the Internet world DMZ demilitarized zone is a computer host or small network inserted as a neutral zone between a com...

Страница 83: ...l range via range command Command setup ip_share nat global range 1 5 ip 1 253 Message Please input the following information NAT global IP address range entry number 1 5 1 Base address 122 22 22 2 Nu...

Страница 84: ...o ip ip Message Please input the following inf ormation Fixed NAT mapping entry number 1 10 1 Local address 192 168 0 250 Global address 122 22 22 2 After configuration of fixed IP address entries you...

Страница 85: ...enter the screen will prompt as below interface Active interface port TCP UDP port number server Host IP address and port number protocol Transport protocol name Service name begin The schedule of be...

Страница 86: ...l that allows network administrators the ability to manage centrally and automate the assignment of Internet Protocol IP addresses in an organization s network Using the Internet Protocol each machine...

Страница 87: ...e time name_server1 Domain name server1 name_server2 Domain name server2 name_server3 Domain name server3 Activate the DHCP function with the active command Set the default gateway via the gateway com...

Страница 88: ...default 168 95 1 1 10 0 10 1 DNS server 2 10 10 10 1 DNS server 3 Host name Enter the local host name via the hostname command Move cursor to hostname and press enter Command setup hostname name Mess...

Страница 89: ......

Страница 90: ...on Units CTC Union Technologies Co Ltd Far Eastern Vienna Building Neihu Technology Park 8F No 60 ZhouZi St Nei Hu Taipei Taiwan Phone 886 2 2659 1021 Fax 886 2 2799 1355 E mail info ctcu com http www...

Результаты поиска

Содержание SHDTU03-ET10R

Отзывы:

Похожие инструкции для SHDTU03-ET10R

Бренды по названию

Популярные бренды

CTC Union SHDTU03-ET10R, Руководство пользователя

Результаты поиска

Содержание SHDTU03-ET10R

Отзывы:

Похожие инструкции для SHDTU03-ET10R

Бренды по названию

Популярные бренды