Hitron CGN01A Скачать руководство пользователя страница 55 | Manualshive

Страница: 55 / 115

Hitron CGN01A Скачать руководство пользователя страница 55

FIREWALL

Version 2.0, February 2012. Copyright

2012 Hitron Technologies

55

Version 2.0, February 2012. Copyright

2012 Hitron Technologies

55

HITRON CGN USER’S GUIDE

4.1.2

INTRUSION DETECTION SYSTEM

An intrusion detection system monitors network activity, looking for policy violations,
and malicious or suspicious activity. The CGN’s intrusion detection system logs all
such activity to the

Firewall

>

Local Logs

screen.

4.1.3

PING

The CGN allows you to use the ping utility on the LAN (in the

WAN/LAN

>

Debug

screen) and also on the WAN (in the

Firewall

>

Firewall Options

screen). For more

information, see

Debugging (Ping and Traceroute)

on page

46

.

4.1.4

MAC FILTERING

Every networking device has a unique Media Access Control (MAC) address that
identifies it on the network. When you enable MAC address filtering on the CGN’s
firewall, you can set up a list of MAC addresses, and then specify whether you want
to:



Deny the devices on the list access to the CGN and the network (in which case

all other devices can access the network)

or



Allow the devices on the list to access the network (in which case no other

devices can access the network)

4.1.5

IP FILTERING

IP filtering allows you to prevent computers on the LAN from sending certain types of
data to the WAN. You can use this to prevent unwanted outgoing communications.
Specify the IP address of the computer on the LAN from which you want to prevent
communications, and specify the port range of the communications you want to
prevent. The CGN discards outgoing data packets that match the criteria you
specified.

«
...
53
54
55
56
57
...
»

Содержание CGN01A

Страница 1: ...USER S GUIDE CGN RESIDENTIAL CABLE MODEM VERSION 2 0 FEBRUARY 2012...

Страница 2: ...able of Contents page 7 List of Figures page 10 and List of Tables page 11 to quickly find information about a particular GUI screen or topic Use the Index page 112 to find information on a specific k...

Страница 3: ...rmation on a subject Warnings provide information about actions that could harm you or your device Product labels field labels field choices etc are in bold type For example A mouse click in the Graph...

Страница 4: ...ologies All rights reserved All trademarks and registered trademarks used are the properties of their respective owners DISCLAIMER The information in this User s Guide is accurate at the time of writi...

Страница 5: ...If this equipment does cause harmful interference to radio or television reception which can be determined by turning the equipment off and on the user is encouraged to try to correct the interferenc...

Страница 6: ...tter must not be co located or operating in conjunction with any other antenna or transmitter The availability of some specific channels and or operational frequency bands are country dependent and ar...

Страница 7: ...2 1 1 CGN Overview 12 1 1 1 Key Features 13 1 2 Hardware Connections 14 1 3 LEDs 17 1 4 IP Address Setup 20 1 4 1 Manual IP Address Setup 21 1 5 Logging into the CGN 22 1 6 GUI Overview 23 1 7 Resetti...

Страница 8: ...Status Screen 38 2 5 The Password Screen 41 2 6 The Capability Screen 42 WAN LAN 45 3 1 WAN LAN Overview 45 3 1 1 WAN and LAN 45 3 1 2 LAN IP Addresses and Subnets 46 3 1 3 DNS and Domain Suffix 46 3...

Страница 9: ...The DMZ Screen 72 Parental Control 74 5 1 Parental Control Overview 74 5 1 1 Website Blocking 74 5 2 The Website Blocking Screen 75 5 3 The Scheduling Screen 77 5 4 The Email Syslog Alert Screen 79 W...

Страница 10: ...ure 15 The Firewall Firewall Options Screen 57 Figure 16 The Firewall Filter Setting Screen 59 Figure 17 The Firewall Filter Settings Add Edit Screen 63 Figure 18 The Firewall Forwarding Screen 65 Fig...

Страница 11: ...AN Debug Screen 52 Table 15 The LAN Backup Screen 53 Table 16 The Firewall Firewall Options Screen 57 Table 17 The Firewall Filter Setting Screen 60 Table 18 The Firewall Filter Settings Add Edit Scre...

Страница 12: ...N on page 22 GUI Overview on page 23 Resetting the CGN on page 24 1 1 CGN OVERVIEW Your CGN is a NAT capable cable modem and wireless access point that allows you to connect your computers wireless de...

Страница 13: ...thernet ports Dynamic Host Configuration Protocol DHCP for devices on the LAN LAN troubleshooting tools Ping and Traceroute IEEE 802 11b g n wireless MIMO Multiple In Multiple Out networking allowing...

Страница 14: ...logies 14 Version 2 0 February 2012 Copyright 2012 Hitron Technologies 14 HITRON CGN USER S GUIDE Settings backup and restore Secure configuration interface accessible by Web browser 1 2 HARDWARE CONN...

Страница 15: ...INTRODUCTION Version 2 0 February 2012 Copyright 2012 Hitron Technologies 15 Version 2 0 February 2012 Copyright 2012 Hitron Technologies 15 HITRON CGN USER S GUIDE Figure 2 Hardware Connections...

Страница 16: ...or more than five seconds to delete all user configured settings and restart the CGN using its factory default settings See Resetting the CGN on page 24 for more information on resetting the CGN NOTE...

Страница 17: ...2012 Copyright 2012 Hitron Technologies 17 HITRON CGN USER S GUIDE 1 3 LEDS This section describes the CGN s LEDs lights CABLE Use this to connect to the Internet via an F type RF cable POWER Cable mo...

Страница 18: ...curity such as failed to find any partner or protocol prematurely aborted Session Overlap Detected Protocol detected overlapping operation could be a security risk Orange blinking The protocol is sear...

Страница 19: ...ted to the relevant LAN port via a Fast Ethernet 10 100Mbps link but is not transmitting or receiving data Blue blinking A device is connected to the relevant LAN port via a Gigabit Ethernet 1000Mbps...

Страница 20: ...with the CGN NOTE See IP Addresses and Subnets on page 27 for background information The CGN has a built in DHCP server that when active assigns IP addresses to computers on the LAN When the DHCP ser...

Страница 21: ...ults If you do not know the CGN s new address you should return it to its factory defaults See Resetting the CGN on page 24 Bear in mind that ALL user configured settings are lost 1 4 1 MANUAL IP ADDR...

Страница 22: ...your CGN is not using the default IP address enter an IP address and subnet mask that places your computer in the same subnet as the CGN 6 Click OK The Internet Protocol TCP IP window closes In the Lo...

Страница 23: ...S GUIDE Figure 4 Login 3 Enter the Username and Password The default login username is cusadmin and the default password is password NOTE The Username and Password are case sensitive password is not t...

Страница 24: ...E CGN When you reset the CGN to its factory defaults all user configured settings are lost and the CGN is returned to its initial configuration state There are two ways to reset the CGN Press the RESE...

Страница 25: ...echnologies 25 HITRON CGN USER S GUIDE Click WAN LAN Backup In the screen that displays click the Factory Reset button The CGN turns off and on again using its factory default settings NOTE Depending...

Страница 26: ...page 33 The Initialization Screen on page 37 The CM Status Screen on page 38 The Password Screen on page 41 The Capability Screen on page 42 2 1 CABLE OVERVIEW This section describes some of the conce...

Страница 27: ...ximum value of 255 An IP address carries two basic pieces of information the network number the address of the network as a whole analogous to a street name and the host ID analogous to a house number...

Страница 28: ...f the computers at one corporate local office for example while the main network includes several offices In order to define the extent of a subnet and to differentiate it from the main network a subn...

Страница 29: ...Configuration Protocol or DHCP defines the process by which IP addresses can be assigned to computers and other networking devices automatically from another device on the network This device is know...

Страница 30: ...ases cannot be changed although some devices are capable of MAC spoofing where they impersonate another device s MAC address MAC addresses are the most reliable way of identifying network devices sinc...

Страница 31: ...the service provider Routing mode is not user configurable it is specified by the service provider in the CGN s configuration file 2 1 7 CONFIGURATION FILES The CGN s configuration or config file is...

Страница 32: ...Quadrature Amplitude Modulation In many cases a number precedes the modulation type for example 16 QAM This number refers to the complexity of modulation The higher the number the more data can be en...

Страница 33: ...assigning a unique orthogonal code to each user 2 2 THE SYSTEM INFO SCREEN Use this screen to see general information about your CGN s hardware its software and its connection to the Internet NOTE Mos...

Страница 34: ...STATUS Version 2 0 February 2012 Copyright 2012 Hitron Technologies 34 Version 2 0 February 2012 Copyright 2012 Hitron Technologies 34 HITRON CGN USER S GUIDE Figure 6 The Status System Info Screen...

Страница 35: ...through the CATV connection Serial Number This displays a number that uniquely identifies the device RG Status This displays whether or not the CGN is in Residential Gateway RG mode When the CGN is in...

Страница 36: ...network s Service Set Identifier This is the name of the wireless network to which wireless clients connect Wireless Mode This displays the type of wireless network that the CGN is using Channel This...

Страница 37: ...failure occurred NOTE This screen displays when you first log in to the CGN Click Status Initialization The following screen displays Figure 7 The Status Initialization Screen Private LAN IP Address T...

Страница 38: ...ection step Success displays when the CGN has completed a connection step 2 4 THE CM STATUS SCREEN Use this screen to discover information about The nature of the upstream and downstream connection be...

Страница 39: ...Screen CM Configuration File Name This displays the name of the configuration file that the CGN downloaded from your service provider This file provides the CGN with the service parameter data that it...

Страница 40: ...l unless you have a good reason to do so Downstream NOTE The downstream signal is the signal transmitted to the CGN Frequency MHz This displays the actual frequency in Megahertz MHz of each downstream...

Страница 41: ...dBmV This displays the transmitted power of the signal of each upstream data channel to which the CGN is connected in dBmV decibels above below 1 millivolt Channel ID This displays the ID number of e...

Страница 42: ...network is already using another router Table 10 The Status Password Screen Enter Current Password Enter the password with which you currently log into the CGN Enter New Password Enter and re enter th...

Страница 43: ...r deselect the checkbox to disable them HNAP Select the checkbox to enable the CGN s Home Network Administration Protocol features or deselect the checkbox to disable them USB Select the checkbox to e...

Страница 44: ...STATUS Version 2 0 February 2012 Copyright 2012 Hitron Technologies 44 Version 2 0 February 2012 Copyright 2012 Hitron Technologies 44 HITRON CGN USER S GUIDE...

Страница 45: ...WAN AND LAN A Local Area Network LAN is a network of computers and other devices that usually occupies a small physical area a single building for example Your CGN s LAN consists of all the computers...

Страница 46: ...of the website s server has changed Similarly the CGN allows you to define a Domain Suffix to the LAN When you enter the domain suffix into your browser you can reach the CGN no matter what IP addres...

Страница 47: ...mation about the CGN s connection to the WAN Enable or disable manual DNS assignment Define DNS servers for manual DNS assignment Configure the CGN s LAN IP address subnet mask and domain suffix Confi...

Страница 48: ...WAN LAN IP Screen The following table describes the labels in this screen Table 12 The WAN LAN IP Screen WAN Information WAN Address This field displays the CGN s IP address on the WAN Wide Area Netwo...

Страница 49: ...IP address of the CGN on the LAN Subnet Mask Use this field to define the LAN subnet Use dotted decimal notation for example 255 255 255 0 Domain Suffix Use this field to define the domain that you ca...

Страница 50: ...s assigning IP addresses to devices on the LAN when DHCP is enabled NOTE Devices requesting IP addresses once the DHCP pool is exhausted are not assigned an IP address Connected Computers Host Name Th...

Страница 51: ...lays the index number of the connected USB device When no USB device is connected no number displays in this column Name This field displays the identifying name of the connected USB device When no US...

Страница 52: ...CREEN Use this screen to back up your CGN s settings to your computer to load settings from a backup you created earlier to reboot your CGN or to return it to its factory default settings Click WAN LA...

Страница 53: ...GN s settings on your computer Restore Settings Locally Use these fields to return your CGN s settings to those specified in a backup that you created earlier Click Choose File to select a backup then...

Страница 54: ...on page 69 The DMZ Screen on page 72 4 1 FIREWALL OVERVIEW This section describes some of the concepts related to the Firewall screens 4 1 1 FIREWALL The term firewall comes from a construction techn...

Страница 55: ...ice has a unique Media Access Control MAC address that identifies it on the network When you enable MAC address filtering on the CGN s firewall you can set up a list of MAC addresses and then specify...

Страница 56: ...you need to open for a particular application consult that application s documentation 4 1 7 PORT TRIGGERING Port triggering is a means of automating port forwarding The CGN scans outgoing traffic fr...

Страница 57: ...is to turn the firewall off NOTE It is strongly recommended that you enable the CGN s firewall unless LAN protection is provided by another device or software Intrusion Detection System Select this to...

Страница 58: ...e 93 You can set the CGN to allow only certain devices to access the CGN and the network or to deny certain devices access NOTE To see a list of all the computers connected to the CGN on the LAN click...

Страница 59: ...EWALL Version 2 0 February 2012 Copyright 2012 Hitron Technologies 59 Version 2 0 February 2012 Copyright 2012 Hitron Technologies 59 HITRON CGN USER S GUIDE Figure 16 The Firewall Filter Setting Scre...

Страница 60: ...pecified devices are denied access Allow Table up to 16 Items This displays the index number assigned to the permitted device Device Name This displays the name you gave to the permitted device MAC Ad...

Страница 61: ...that you want to permit or deny access to the CGN and the network NOTE This name is arbitrary and does not affect functionality in any way MAC Address Specify the MAC address of the network device tha...

Страница 62: ...e type of communications that are not permitted TCP displays if communications via the Transmission Control Protocol are not permitted UDP displays if communications via the User Datagram Protocol are...

Страница 63: ...Edit button NOTE Ensure that the Disabled checkbox is deselected in order to add or edit IP filtering rules The following screen displays Figure 17 The Firewall Filter Settings Add Edit Screen Delete...

Страница 64: ...er the CGN should block communication via Transmission Control Protocol TCP User Datagram Protocol UDP Both TCP and UDP NOTE If in doubt leave this field at its default Both IP Address Range Use these...

Страница 65: ...The following screen displays Figure 18 The Firewall Forwarding Screen The following table describes the labels in this screen Table 19 The Firewall Forwarding Screen All Port Forwarding Rules Use th...

Страница 66: ...ESP IP Address This displays the IP address of the computer on the LAN to which traffic conforming to the Public Port Range and Protocol conditions is forwarded Enable Use this field to turn each port...

Страница 67: ...forwarding rule select the rule s radio button in the Firewall Forwarding screen and click the Edit button NOTE Ensure that the Disabled checkbox is disabled in order to add or edit port forwarding r...

Страница 68: ...ivate Port Range Use these fields to specify the ports to which the received traffic should be forwarded Enter the start port number in the first field The number of ports must match that specified in...

Страница 69: ...screen Apply Click this to save your changes to the fields in this screen Cancel Click this to return the fields in this screen to their last saved values without saving your changes Help Click this...

Страница 70: ...opens the Target ports that it should close them Enable Use this field to turn each port triggering rule on or off Select this checkbox to enable the port triggering rule Deselect this checkbox to dis...

Страница 71: ...t Triggering Add Edit Screen The following table describes the labels in this screen Table 22 The Firewall Port Triggering Add Edit Screen Application Name Enter a name for the application for which y...

Страница 72: ...lds Protocol Use this field to specify whether the CGN should activate this trigger when it detects activity via Transmission Control Protocol TCP User Datagram Protocol UDP Transmission Control Proto...

Страница 73: ...select the checkbox to disable the DMZ Computers that were previously in the DMZ are now on the LAN Connected Computers Click this to see a list of the computers currently connected to the CGN on the...

Страница 74: ...7 The Email Syslog Alert Screen on page 79 5 1 PARENTAL CONTROL OVERVIEW This section describes some of the concepts related to the Parental Control screens 5 1 1 WEBSITE BLOCKING The Parental Control...

Страница 75: ...CKING SCREEN Use this screen to block access from the LAN to certain websites You can also specify trusted computers which are not subject to the blocking filter NOTE To apply the blocking filter only...

Страница 76: ...mple org www someotherwebsite com example and so forth Click Add to add the URL or keyword to the Blocked Key Words URLs list Blocked Key Words URLs This displays the list of websites and keywords to...

Страница 77: ...cking filter use the Parent Control Web Site Blocking screen Click Parent Control Scheduling The following screen displays Clear List Click this to delete all the computers MAC addresses from the list...

Страница 78: ...f the week on which you want the website blocking filter to be in effect Time of Day Use these fields to control the time that the website blocking filter should be in effect Select All Day to apply t...

Страница 79: ...is triggered and to define the time at which emails should be sent and or log entries created The firewall must be enabled for alerts to be triggered Click Parent Control Email Syslog Alert The follow...

Страница 80: ...ation of the transmitting email server and the email address from which admin emails appear to originate SMTP Server Address Enter the address of the email server from which admin emails should be sen...

Страница 81: ...ct its radio button and click Edit The screen that displays is the same as the Add Target Email Address screen To remove an email address select its radio button and click Delete The email address is...

Страница 82: ...2 Copyright 2012 Hitron Technologies 82 HITRON CGN USER S GUIDE Cancel Click this to return the fields in this screen to their last saved values without saving your changes Help Click this to see info...

Страница 83: ...reen on page 95 6 1 WIRELESS OVERVIEW This section describes some of the concepts related to the Wireless screens 6 1 1 WIRELESS NETWORKING BASICS Your CGN s wireless network is part of the Local Area...

Страница 84: ...but the CGN supports the following in order of adoption old to new and data transfer speeds low to high IEEE 802 11b IEEE 802 11g IEEE 802 11n 6 1 4 SERVICE SETS AND SSIDS Each wireless network inclu...

Страница 85: ...es of WEP There are two types of WPA the enterprise version known simply as WPA requires the use of a central authentication database server whereas the personal version supported by the CGN allows us...

Страница 86: ...i MultiMedia WMM is a Quality of Service QoS enhancement that allows prioritization of certain types of data over the wireless network WMM provides four data type classifications in priority order hig...

Страница 87: ...ck Wireless Setup The following screen displays Figure 27 The Wireless Setup Screen The following table describes the labels in this screen Table 27 The Wireless Setup Screen Wireless Basic Settings W...

Страница 88: ...g and 802 11N 11B G N Mixed use IEEE 802 11b 802 11g and 802 11N NOTE Only wireless clients that support the network protocol you select can connect to the wireless network If in doubt use 11B G N def...

Страница 89: ...the screen that displays enter the WPS PIN that you want to use for the CGN or the WPS PIN of the client device you want to add to the network Figure 28 WPS PIN WPS Current Status This displays wheth...

Страница 90: ...This field is user configurable for the Primary SSID only WMM Mode Select the checkbox if you want to apply Wifi MultiMedia WMM Quality of Service QoS settings to this SSID Wireless Security SSID Sele...

Страница 91: ...EP key use the CGN s default key Enter the keys in hexadecimal format using the digits 0 9 and the letters A F Default WEP Key Select the number of the security key that you want the CGN to use as its...

Страница 92: ...allow clients using either encryption type to connect to the CGN Group Key Update Interval Enter the frequency in seconds with which you want the CGN to create new pre shared keys and issue them to th...

Страница 93: ...tering on the wired LAN see The Filter Setting Screen on page 57 You can set the CGN to allow only certain devices to access the CGN and the network wirelessly or to deny certain devices access Click...

Страница 94: ...etwork wirelessly All other devices are denied access Select Deny to permit all devices except those with the MAC addresses you set up in the Wireless Control List to access the CGN and the network wi...

Страница 95: ...name to associate with a network device that you want to permit or deny access to the CGN and the network wirelessly NOTE This name is arbitrary and does not affect functionality in any way MAC Addres...

Страница 96: ...WIRELESS Version 2 0 February 2012 Copyright 2012 Hitron Technologies 96 Version 2 0 February 2012 Copyright 2012 Hitron Technologies 96 HITRON CGN USER S GUIDE Figure 30 The Wireless Advanced Screen...

Страница 97: ...he link to 802 11g clients can deteriorate due to the presence of the 802 11b clients Because 802 11b and 802 11g use different modulation techniques 802 11b clients do not understand 802 11g s Reques...

Страница 98: ...plications such as online gaming IGMP snooping allows the CGN to snoop or listen in on IGMP traffic and to determine which computers on the LAN belong to which IGMP groups By keeping lists of which co...

Страница 99: ...channel In greenfield mode the 802 11a b g stations are unable to tell when 802 11n transmissions are occurring You should select this mode only if there are no 802 11a b g stations in your network o...

Страница 100: ...for transmission over telephone lines is known as a symbol Select Long to use a long guard interval of 800 nanoseconds Select Short to use a short guard interval of 400 nanoseconds MCS Use this field...

Страница 101: ...eiving station to transmit data back to the initiating station for the remaining time specified in the original TXOP It does not need to acquire its own TXOP Select Disable to disallow Reverse Directi...

Страница 102: ...etransmit information the required retransmission will be much longer Decline BA Request Use this field to control how the CGN receives acknowledgement ACK requests in IEEE 802 11n transmissions Selec...

Страница 103: ...screen The following screen displays Figure 31 The Wireless Advanced WMM Configuration Screen NOTE It is strongly recommended that you do not change the default values in this screen unless you have a...

Страница 104: ...n a data collision occurs each frame is assigned a random time to wait before attempting transmission again This random time value is between zero and the data s CWMin value If a collision occurs agai...

Страница 105: ...tegory AC AC_VO This row controls the Voice VO Access Category AC AIFSN This column controls the Arbitration Inter Frame Space Number for each Access Category WMM gives the highest priority to the AC...

Страница 106: ...Opportunity TXOP length for each Access Category This is the length of time during which the wireless device may to transmit over the wireless network once it receives a transmission opportunity ACM T...

Страница 107: ...cted to the CGN and the wall socket or other power source correctly 3 Ensure that the power source is functioning correctly Replace any broken fuses or reset any tripped circuit breakers 4 Disconnect...

Страница 108: ...not access the CGN you need to reset the CGN See Resetting the CGN on page 24 All user configured data is lost and the CGN is returned to its default settings If you previously backed up a more recent...

Страница 109: ...heck the Cable System Info screen s Network Access field see The System Info Screen on page 33 Problem I Cannot Connect My Wireless Device 1 Ensure that your wireless client device is functioning prop...

Страница 110: ...ed by turning the equipment off and on the user is encouraged to try to correct the interference by one of the following measures Reorient or relocate the receiving antenna Increase the separation bet...

Страница 111: ...ght 2012 Hitron Technologies 111 HITRON CGN USER S GUIDE IMPORTANT NOTE FCC Radiation Exposure Statement This equipment complies with FCC radiation exposure limits set forth for an uncontrolled enviro...

Страница 112: ...97 buttons 14 C cable connection 12 cable connection status 37 cable modem 12 CATV 13 26 27 cipher type 92 clients wireless 83 configuration file 31 39 connection process 38 connection status cable 3...

Страница 113: ...r interface 12 GUI 12 23 GUI overview 23 H hardware 14 HNAP 43 host ID 27 HT mode 98 I IANA 27 ICMP 56 72 IEEE 802 11b g n 13 84 IGMP snooping 98 interface user 12 intrusion detection 13 55 56 72 IP a...

Страница 114: ...eless 12 O open system authentication 91 overview GUI 23 P parental control 13 74 password 41 42 108 password and username 23 PBC configuration 85 PIN configuration 13 85 ping 13 46 50 51 55 56 72 por...

Страница 115: ...pstream transmission 31 URL blocking 76 US 20 user interface 12 username 108 username and password 23 W WAN 12 27 WAN connection 38 website blocking 74 75 79 website blocking scheduled 13 WEP 13 85 Wi...

Отзывы:

Нет отзывов

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды