Billion Electric BIL-7404VGOX (3G)/VoIP/802.11g ADSL2+(VPN) Firewall Router User Manual 1

Billion Electric Co., Ltd. (3G)/VoIP/802.11g ADSL2+(VPN) Firewall Router Users Manual 1

UserManual.wiki >

Billion Electric >

BIL-7404VGOX User Manual >

Users Manual 1 HTML Version

1. Users Manual 1
2. Users Manual 2

Users Manual 1

BiPAC 7404V(G)OX

BiPAC 7404V(G)PX

VoIP/(802.11g) ADSL2+ (VPN)

Firewall Router

User Manual

Last Revised Date 23-10-2008

Version release 5.53.s5.rc3

Table of Contents

Chapter 1: Introduction .....................................................................1

Introduction to your Router ..................................................................1

Features ............................................................................................1

Chapter 2: Installing the Router .......................................................5

Important note for using this router ....................................................5

Package Contents .................................................................................5

The Front LEDs.................................................................................6

The Rear Ports ...................................................................................7

Cabling................................................................................................8

Chapter 3: Basic Installation ...........................................................9

Connecting Your Router .....................................................................10

1HWZRUN&RQ¿JXUDWLRQ ........................................................................ 11

Factory Default Settings..................................................................17

Information from your ISP ............................................................18

&RQ¿JXULQJZLWK\RXU:HE%URZVHU.................................................19

&KDSWHU&RQ¿JXUDWLRQ ...............................................................20

Status .....................................................................................................21

ADSL Status......................................................................................21

ARP Table .........................................................................................22

DHCP Table .....................................................................................22

Routing Table ....................................................................................24

NAT Sessions....................................................................................25

UPnP Portmap ..................................................................................25

PPTP Status ....................................................................................26

IPSec Status .....................................................................................27

L2TP Status .....................................................................................27

Email Status......................................................................................28

VoIP Status .......................................................................................28

VoIP Call Log ....................................................................................28

Event Log..........................................................................................29

Error Log ...........................................................................................30

Diagnostic .........................................................................................30

Quick Start ............................................................................................31

&RQ¿JXUDWLRQ ........................................................................................35

LAN - Local Area Network.................................................................36

%ULGJH,QWHUIDFH ................................................................................36

Ethernet ..........................................................................................37

IP Alias ...........................................................................................37

Ethernet Client Filter..........................................................................38

:LUHOHVV ..........................................................................................40

:LUHOHVV6HFXULW\ ..............................................................................42

:LUHOHVV&OLHQW0$&$GGUHVV)LOWHU ....................................................45

:36...............................................................................................46

Port Setting ....................................................................................47

DHCP Server ..................................................................................48

:$1:LGH$UHD1HWZRUN ................................................................49

:$1,QWHUIDFH ..................................................................................49

:$13UR¿OH .....................................................................................51

$'6/0RGH .....................................................................................61

System ..............................................................................................62

Time Zone .......................................................................................62

Remote Access.................................................................................63

Firmware Upgrade ............................................................................63

%DFNXS5HVWRUH ..............................................................................64

Restart Router ..................................................................................65

8VHU0DQDJHPHQW.............................................................................66

Firewall and Access Control..............................................................68

General Settings ...............................................................................69

Packet Filter.....................................................................................70

Intrusion Detection ............................................................................78

URL Filter ........................................................................................81

,033%ORFNLQJ..............................................................................84

Firewall Log .....................................................................................85

VPN - Virtual Private Networks (Only available for BiPAC 7404V(G)OX) 86

PPTP (Point-to-Point Tunneling Protocol) ..............................................86

IPSec (IP Security Protocol)................................................................95

L2TP (Layer Two Tunneling Protocol) .................................................104

VoIP - Voice over Internet Protocol ................................................. 116

SIP Device Parameters ................................................................... 117

SIP Accounts .................................................................................120

Phone Port ....................................................................................121

PSTN Dial Plan (Router with LINE port only) ........................................123

VoIP Dial Plan ...............................................................................127

Call Feature ..................................................................................130

Speed Dial.....................................................................................130

Ring & Tone ...................................................................................131

QoS - Quality of Service..................................................................133

Prioritization ..................................................................................133

2XWERXQG,37KURWWOLQJ/$1WR:$1 .................................................134

,QERXQG,37KURWWOLQJ:$1WR/$1 ...................................................136

Virtual Server (known as Port Forwarding) .....................................142

Add Virtual Server ...........................................................................143

(GLW'0=+RVW ................................................................................145

Edit One-to-One NAT (Network Address Translation) .............................146

Time Schedule ................................................................................149

Advanced ........................................................................................152

Static Route ..................................................................................152

Dynamic DNS.................................................................................153

Check Email...................................................................................154

'HYLFH0DQDJHPHQW .......................................................................155

,*03 ............................................................................................158

9/$1%ULGJH ..................................................................................158

Logout ..................................................................................................159

Chapter 5: Troubleshooting.......................................................... 160

Appendix: Product Support & Contact ........................................ 162

Chapter 1: Introduction

Introduction to your Router

:HOFRPH WR WKH9R,3 J$'6/931 )LUHZDOO 5RXWHU 7KH URXWHU LV DQ ³DOOLQRQH´

ADSL router, combining an ADSL modem, ADSL router and Ethernet network switch functionalities,

providing everything you need to get the machines on your network connected to the Internet over

\RXU$'6/EURDGEDQGFRQQHFWLRQ:LWKIHDWXUHVVXFKDVDQ$'6/4XLFN6WDUWZL]DUGDQG'+&3

6HUYHU\RXFDQEHRQOLQHLQQRWLPHDWDOODQGZLWKDPLQLPXPRIIXVVDQGFRQ¿JXUDWLRQFDWHULQJIRU

¿UVWWLPHXVHUVWRWKHJXUXUHTXLULQJDGYDQFHGIHDWXUHVDQGFRQWURORYHUWKHLU,QWHUQHWFRQQHFWLRQ

and network.

Features

Express Internet Access

The router complies with ADSL worldwide standards. ,WVXSSRUWVGRZQVWUHDPUDWHXSWR

0ESVZLWK$'6/0ESVZLWK$'6/ Users enjoy not only high-speed ADSL services but also

broadband multimedia applications such as interactive gaming, video streaming and real-time

DXGLRPXFKHDVLHUDQGIDVWHUWKDQHYHU,WLVFRPSOLDQWZLWK0XOWL0RGHVWDQGDUG$16,7

Issue 2; G.dmt (ITU G.992.1); G.lite (ITU G.992.2); G.hs (ITU G994.1); G.dmt.bis (ITU G.992.3);

G.dmt.bis.plus (ITU G.992.5)).

802.11g Wireless AP with WPA Support (Wireless Router only)

:LWKLQWHJUDWHGJ:LUHOHVV$FFHVV3RLQWLQWKHURXWHUWKHGHYLFHRIIHUVDTXLFNDQGHDV\

access among wired network, wireless network and broadband connection (ADSL) with single

GHYLFHVLPSOLFLW\DQGDVDUHVXOWPRELOLW\WRWKHXVHUV,QDGGLWLRQWR0ESVJGDWDUDWH

LWDOVRLQWHURSHUDWHVEDFNZDUGZLWKH[LVWLQJEHTXLSPHQW7KH:LUHOHVV3URWHFWHG$FFHVV

:3$36.DQG:3$36.DQG:LUHOHVV(QFU\SWLRQ3URWRFRO:(3VXSSRUWHGIHDWXUHVHQKDQFH

the securityOHYHORIGDWDSURWHFWLRQDQGDFFHVVFRQWUROYLD:LUHOHVV/$1

Fast Ethernet Switch

A4SRUW0ESVIDVW(WKHUQHWVZLWFKLVEXLOWLQZLWKDXWRPDWLFVZLWFKLQJEHWZHHQ0', and

0',;IRU%DVH7DQG%DVH7;SRUWV$Q(WKHUQHWVWUDLJKWRUFURVVRYHUFDEOHFDQEHXVHG

directly for auto detection.

Multi-Protocol to Establish a Connection

It sXSSRUWV333R$5)&333RYHU$70$GDSWDWLRQ/D\HU5)&HQFDSVXODWLRn

RYHU$70EULGJHGRUURXWHG333RYHU(WKHUQHW5)&and IPoA (RFC1577) to establish a

connection with the ISP. The product also supports VC-based and LLC-based multiplexing.

Quick Installation Wizard

It sXSSRUWVD:(%*8,SDJHWRLQVWDOOWKLVGHYLFHTXLFNO\:LWKWKLVZL]DUGHQGXVHUVFDQHQWHUWKH

information easily which they get from their ISP, then surf the Internet immediately.

Universal Plug and Play (UPnP) and UPnP NAT Traversal

This protocol is used to enable simple and robust connectivity among stand-alone devices and

PCs from many different vendors. It makes network simple and affordable for users. UPnP

DUFKLWHFWXUHOHYHUDJHV7&3,3DQGWKH:HEWRHQDEOHVHDPOHVVSUR[LPLW\QHWZRUNLQJLQDGGLWLRQ

WRFRQWURODQGGDWDWUDQVIHUDPRQJQHWZRUNHGGHYLFHV:LWKWKLVIHDWXUHHQDEOHGXVHUVFDQQRZ

connect to Net PHHWLQJRU0610HVVHQJHUVHDPOHVVO\

Network Address Translation (NAT)

Allows multi-users to access outside resources such as the Internet simultaneously with one IP

DGGUHVVRQH,QWHUQHWDFFHVVDFFRXQW0DQ\DSSOLFDWLRQOD\HUJDWHZD\$/*DUHVXSSRUWHGVXFK

DVZHEEURZVHU,&4)737HOQHW(PDLO1HZV1HWSKRQH3LQJ1HW0HHWLQJ,3SKRQHDQG

others.

SOHO Firewall Security with DoS and SPI

$ORQJZLWKWKHEXLOWLQ1$7QDWXUDO¿UHZDOOIHDWXUHWKHURXWHUDOVRSURYLGHVDGYDQFHGKDFNHU

SDWWHUQ¿OWHULQJSURWHFWLRQ,WFDQDXWRPDWLFDOO\GHWHFWDQGEORFN'HQLDORI6HUYLFH'R6DWWDFNV

The router is built with Stateful Packet Inspection (SPI) to determine if a data packet is allowed

through the ¿UHZDOO to the private LAN.

Domain Name System (DNS) Relay

It provides an easy way to map the domain name (a friendly name for users such as www.yahoo.

FRPDQG,3DGGUHVV:KHQDORFDOPDFKLQHVHWVLWV'16VHUYHUZLWKWKLVURXWHU¶V,3DGGUHVV

HYHU\'16FRQYHUVLRQUHTXHVWSDFNHWIURPWKH3&WRWKLVURXWHUZLOOEHIRUZDUGHGWRWKHUHDO'16

in the outside network.

Dynamic Domain Name System (DDNS)

The Dynamic DNS service allows you to alias a dynamic IP address to a static hostname. This

G\QDPLF,3DGGUHVVLVWKH:$1,3DGGUHVV)RUH[DPSOHWRXVHWKHVHUYLFH\RXPXVW¿UVWDSSO\

IRUDQDFFRXQWIURPD''16VHUYLFHOLNHKWWSZZZG\QGQVRUJ0RUHWKDQ''16VHUYHUVDUH

supported.

Quality of Service (QoS)

4R6JLYHV\RXIXOOFRQWURORYHUZKLFKW\SHVRIRXWJRLQJGDWDWUDI¿FVKRXOGEHJLYHQSULRULW\E\

the router, ensuring important data like gaming packets, customer information, or management

information move through the router ay lightning speed, even under heavy load. The QoS features

DUHFRQ¿JXUDEOHE\VRXUFH,3DGGUHVVGHVWLQDWLRQ,3DGGUHVVSURWRFRODQGSRUW<RXFDQWKURWWOH

the speed at which different types of outgoing data pass through the router, to ensure P2P users

GRQ¶WVDWXUDWHXSORDGEDQGZLGWKRURI¿FHEURZVLQJGRHVQ¶t bring client web serving to a halt. In

addition, or alternatively, you can simply change the priority of different types of upload data and

let the router sort out the actual speeds.

Virtual Server (“port forwarding”)

Users can specify some services to be visible from outside users. The router can detect incoming

VHUYLFHUHTXHVWsDQGIRUZDUGHLWKHUDVLQJOHSRUWRUDUDQJHRISRUWVWRWKHVSHFL¿FORFDOFRPSXWHU

WRKDQGOHLW)RUH[DPSOHDXVHUFDQDVVLJQD3&LQWKH/$1DFWLQJDVD:(%VHUYHULQVLGHDQG

expose it to the outside network. Outside users can browse inside web servers directly while it is

SURWHFWHGE\1$7$'0=KRVWVHWWLQJLVDOVRSURYLGHGWRDORFDOFRPSXWHUH[SRVHGWRWKHRXWVLGH

network, Internet.

Rich Packet Filtering

1RWRQO\¿OWHUVWKHSDFNHWEDVHGRQ,3DGGUHVVEXWDOVREDVHGRQ3RUWQXPEHUV,WZLOO filter

packets from and to the Internet, and also provides a higher level of security control.

'\QDPLF+RVW&RQ¿JXUDWLRQ3URWRFRO'+&3&OLHQWDQG6HUYHU

,QWKH:$1VLWHWKH'+&3FOLHQWFDQJHWDQ,3DGGUHVVIURPWKH,QWHUQHW6HUYLFH3URYLGHU,63

automatically. In the LAN site, the DHCP server can allocate a range of client IP addresses and

distribute them including IP address, subnet mask as well as DNS IP address to local computers.

It provides an easy way to manage the local IP network.

Static and RIP1/2 Routing

It has routing capability and supports HDV\VWDWLFURXWLQJWDEOHRU5,3URXWLQJSURWRFRO.

Simple Network Management Protocol (SNMP)

It is an HDV\ZD\WRUHPRWHO\PDQDJHWKHURXWHUYLD6103

Web based GUI

It sXSSRUWVZHEEDVHG*8,IRUFRQ¿JXUDWLRQDQGPDQDJHPHQW,WLVXVHUIULHQGO\DQGFRPHVZLWK

RQOLQHKHOS,WDOVRVXSSRUWVUHPRWHPDQDJHPHQWFDSDELOLW\IRUUHPRWHXVHUVWRFRQ¿JXUHDQG

manage this product.

Firmware Upgradeable

'HYLFHFDQEHXSJUDGHGWRWKHODWHVW¿UPZDUHWKURXJKWKH:(%EDVHG*8,

Rich Management Interfaces

It sXSSRUWVÀH[LEOHPDQDJHPHQWLQWHUIDFHVZLWKORFDOFRQVROHSRUW/$1SRUWDQG:$1SRUW8VHUV

FDQXVHWHUPLQDODSSOLFDWLRQVWKURXJKWKHFRQVROHSRUWWRFRQ¿JXUHDQGPDQDJHWKHGHYLFHRU

7HOQHW:(%*8,DQG6103WKURXJK/$1RU:$1SRUWVWRFRQ¿JXUHDQGPDQDJHWKHGHYLFH

Virtual Private Network (VPN) (BiPAC 7404V(G)OX only)

It allows user to make a tunnel with a remote site directly to secure the data transmission among

WKHFRQQHFWLRQ8VHUFDQXVHHPEHGGHG3373DQG/73FOLHQWVHUYHU,.(DQG,36HFZKLFKDUH

supported by this router to make a VPN connection or users can run the PPTP client in PC and the

router already provides IPSec and PPTP pass through function to establish a VPN connection if

the user likes to run the PPTP client in his local computer.

Chapter 2: Installing the Router

Important note for using this router

Package Contents

CD-ROM containing the online manual

RJ-11 ADSL/telephone Cable

Ethernet (CAT-5) Cable

Console kit

Power adapter

A detachable antenna

Quick Start Guide

The Front LEDs.

LED Meaning

1 Power Lit when power is ON. Lit red means system failure. Restart the device

RUFRQWDFW%LOOLRQIRUVXSSRUW

Ethernet Port

1X — 4X

(RJ-45 connector)

Lit when one of LAN ports is connected to an Ethernet device.

/LWJUHHQZKHQWKHVSHHGRIWUDQVPLVVLRQKLWV0ESV/LWRUDQJH

ZKHQWKHVSHHGRIWUDQVPLVVLRQKLWV0ESV

%OLQNZKHQGDWDLVEHLQJ7UDQVPLWWHG5HFHLYHG

3 USB /LWZKHQWKHURXWHULVFRQQHFWHGWRD86%GHYLFH

)ODVKZKHQGDWDLVUHFHLYHGWUDQVPLWWHG

4 Wireless Lit green when a wireless connection is established.

)ODVKZKHQWKHGHYLFHLVVHQGLQJUHFHLYLQJGDWD

5Phone 1x-2x

(RJ-11 connector) Lit green when phone is off hook.

Line

(Router with LINE

port only)

Lit when the inbound and outbound calls are transmitted through

PSTN.

7VoIP 1x-2x

(RJ-11 connector)

$IWHU6,3UHJLVWUDWLRQLV2.WKH/('ZLOOOLWJUHHQZKHQHYHUSKRQH

is off hook but will lit orange for phone 2.

Note: Orange light also means when both Phone 1 and 2 are

registered OK at the same time.

8 DSL Lit Green when the device is successfully connected to an ADSL

'6/$0³OLQHV\QF´

9 Internet Lit red when:$1SRUWfails to get IP address.

Lit green when:$1SRUW gets IP address successfully.

The Rear Ports

Port Meaning

1Antenna

:LUHOHVV5RXWHURQO\ Connect the detachable antenna to this port.

2 DSL Connect this port to the $'6/WHOHSKRQHQHWZRUNZLWKWKH5-

11 cable (telephone) provided.

3Line

(Router with LINE port only)

Connect this port to the telephone jack on the wall with RJ-11

cable.

4Phone

1X-2X (RJ-11 connector) Connect this port to an analog phone set with RJ-11 cable.

5 USB &RQQHFWWKH86%FDEOHWRWKLVSRUW

Ethernet

1X — 4X

(RJ-45 connector)

Connect a UTP Ethernet cable (Cat-5 or Cat-5e) to one of

WKH /$1 SRUWV ZKHQ FRQQHFWLQJ WR D 3& RU DQ RI¿FHKRPH

QHWZRUNRI0ESVRU0ESV

Caution: Port 4 can be either a LAN or Console port at a

time but not both.

7 WPS 3XVK:36EXWWRQWRWULJJHU:L)L3URWHFWHG6HWXSIXQFWLRQ

8 RESET

To be sure the device is being turned on press RESET button

for:

VHFRQGVTXLFNUHVHWWKHGHYLFH

6 seconds and above, power off, power on the device: restore

to factory default settings. (Cannot login to the router or forgot

\RXU8VHUQDPH3DVVZRUG3UHVVWKHbutton for more than 6

seconds).

Caution: After pressing the RESET button for more than

6 seconds, to be sure you power cycle the device again.

9 Power Connect it with the supplied power adapter.

10 Power Switch 3RZHU212))VZLWFK

Cabling

One of the most common causes of problem is bad cabling or ADSL line(s) 0DNH VXUH WKDW DOO

connected devices are turned on. On the front panel of your router is a bank of LEDs. Verify that the

LAN Link and ADSL line LEDs are lit. If they are not, verify if you are using the proper cables.

0DNHVXUHWKDWDOOGHYLFHV(e.g. telephones, fax machines, analogue modems) connected to the same

telephone line as your routerKDYHDOLQH¿OWHUFRQQHFWHGEHWZHHQWKHPDQGWKHZDOORXWOHWXQOHVV

\RXDUHXVLQJD&HQWUDO6SOLWWHURU&HQWUDO)LOWHULQVWDOOHGE\DTXDOL¿HGDQGOLFHQVHGHOHFWULFLDQ

and that DOOOLQH¿OWHUVDUHFRUUHFWO\LQVWDOOHGLQDULJKWZD\,IOLQH¿OWHULVQRWLQVWDOOHGDQGFRQQHFWHG

SURSHUO\LWPD\FDXVHSUREOHPWR\RXU$'6/FRQQHFWLRQRUPD\UHVXOWLQIUHTXHQWGLVFRQQHFWLRQV

Chapter 3: Basic Installation

7KHURXWHUFDQEHFRQ¿JXUHGWKURXJK\RXUZeb browser. A web browser is included as a standard

DSSOLFDWLRQLQWKHIROORZLQJRSHUDWLQJV\VWHPV/LQX[0DF26:LQGRZV 17;30H9LVWD

etc. The product provides an HDV\DQGXVHUIULHQGO\LQWHUIDFHIRUFRQ¿JXUDWLRQ

POHDVH FKHFN \RXU 3& QHWZRUN FRPSRQHQWV 7KH 7&3,3 SURWRFRO VWDFN DQG (WKHUQHW QHWZRUN

DGDSWHUPXVWEHLQVWDOOHG,IQRWSOHDVHUHIHUWR\RXU:LQGRZVUHODWHGRURWKHURSHUDWLQJV\VWHP

manuals.

There are ways to connect the router, either through an external repeater hub or connect directly

to your PCs. However, make sure that your PCs have an Ethernet interface installed properly prior

to connecting the router device. You ought to FRQ¿JXUH your PCs to obtain an IP address through

D'+&3VHUYHURUD¿[HG,3DGGUHVVWKDWPXVWEHLQWKHVDPHVXEQHWDVWKHURXWHU7KHGHIDXOW,3

address of the router is 192.168.1.254 and the subnet mask is 255.255.255.0 (i.e. any attached PC

must be in the same subnet, and have an IP address in the range of 192.168.1.1 to 192.168.1.253).

7KHEHVWDQGHDVLHVWZD\LVWRFRQ¿JXUHWKH3&WRJHWDQ,3DGGUHVVDXWRPDWLFDOO\IURPWKHURXWHU

using DHCP. If you encounter any problem accessing the router web interface it is advisable to

XQLQVWDOO\RXU¿UHZDOOSURJUDPRQ\RXU3&VDVWKH\FDQFDXVHSUREOHPVDFFHVVLQJWKH,3DGGUHVV

of the router. Users should make their own decisions on what is best to protect their network.

Please follow the following steps WRFRQ¿JXUH\RXU3&QHWZRUNHQYLURQPHQW

Connecting Your Router

Connect this router to a 1. LAN/RFDO$UHD1HWZRUNDQGWKH$'6/WHOHSKRQHADSL) net

work.

Power on the device.2.

0DNHVXUHWKH3. Power LED lit steadily and that the LAN LED is lit.

Connect your router to the telephone jack on the wall with RJ-11 cable.4.

&RQQHFWWKH86%FDEOH5.

1HWZRUN&RQ¿JXUDWLRQ

&RQ¿JXULQJ3&LQ:LQGRZV9LVWD

Go to Start. Click on Network.1.

Then click on Network and Sharing 2.

Center at the top bar.

:KHQ WKH 1HWZRUN DQG 6KDULQJ3.

Center window pops up, select and

FOLFN RQ 0DQDJH QHWZRUN FRQQHF-

tions on the left window column.

Select the Local Area Connection, 4.

and right click the icon to select

Properties.

Select Internet Protocol Version 4 5.

7&3,3YWKHQFOLFN3URSHUWLHV

,QWKH7&3,3YSURSHUWLHVZLQGRZ6.

select the Obtain an IP address au-

tomatically and Obtain DNS Server

address automatically radio but-

WRQV7KHQFOLFN2.WRH[LWWKHVHW-

ting.

&OLFN 2. DJDLQ LQ WKH /RFDO $UHD7.

Connection Properties window to

DSSO\WKHQHZFRQ¿JXUDWLRQ

&RQ¿JXULQJ3&LQ:LQGRZV;3

Go to Start > Control Panel (in Classic 1.

View). In the Control Panel, double-click

on Network Connections

Double-click Local Area Connection.2.

In the Local Area Connection Status 3.

window, click Properties.

6HOHFW ,QWHUQHW 3URWRFRO 7&3,3 DQG4.

click Properties.

Select the Obtain an IP address auto-5.

matically and the Obtain DNS server

address automatically radio buttons.

&OLFN2.WR¿QLVKWKHFRQ¿JXUDWLRQ6.

&RQ¿JXULQJ3&LQ:LQGRZV

Go to Start > Settings > Control Panel. 1.

In the Control Panel, double-click on

Network and Dial-up Connections.

Double-click Local Area Connection.2.

In the Local Area Connection Status 3.

window click Properties.

6HOHFW ,QWHUQHW 3URWRFRO 7&3,3 DQG4.

click Properties.

Select the Obtain an IP address auto-5.

matically and the Obtain DNS server

address automatically radio buttons.

&OLFN2.WR¿QLVKWKHFRQ¿JXUDWLRQ6.

&RQ¿JXULQJ3&LQ:LQGRZV0H

Go to Start > Settings > Control Panel. 1.

In the Control Panel, double-click on

1HWZRUNDQG FKRRVH WKH&RQ¿JXUDWLRQ

tab.

6HOHFW 7&3,3 ! 1( &RPSDWLEOH2.

or the name of your Network Interface

Card (NIC) in your PC.

Select the Obtain an IP address auto-3.

matically radio button.

7KHQVHOHFWWKH'16&RQ¿JXUDWLRQWDE4.

Select the Disable DNS radio button 5.

DQGFOLFN2.WR¿QLVKWKHFRQ¿JXUDWLRQ

&RQ¿JXULQJ3&LQ:LQGRZV17

Go to Start > Settings > Control Panel. 1.

In the Control Panel, double-click on

Network and choose the Protocols tab.

6HOHFW7&3,33URWRFRODQGFOLFN3URS-2.

erties.

Select the Obtain an IP address from 3.

a DHCP server radio button and click

2.

Factory Default Settings

%HIRUHFRQ¿JXULQJ\RXU router, you need to know the following default settings.

Web Interface (Username and Password)

Username: admin

Password: admin

7KHGHIDXOWXVHUQDPHDQGSDVVZRUGDUH³admin´DQG³admin´UHVSHFWLYHO\

Device LAN IP settings

IP Address: 192.168.1.254

6XEQHW0DVN

ISP setting in WAN site

PPPoE

DHCP server

DHCP server is enabled.

Start IP Address: 192.168.1.100

IP pool counts: 100

LAN and WAN Port Addresses

7KHSDUDPHWHUVRI/$1DQG:$1SRUWVDUHSUHVHWLQWKHIDFWRU\7KHGHIDXOWYDOXHVDUHVKRZQLQ

the tale.

LAN Port :$13RUW

IP address 192.168.1.254

The PPPoE function is

enabled to automatically get

WKH:$1SRUWFRQ¿JXUDWLRQ

from the ISP.

6XEQHW0DVN 255.255.255.0

DHCP server function Enabled

IP addresses for

distribution to PCs

100 IP addresses continuing

from 192.168.1.100 through

192.168.1.199

Information from your ISP

%HIRUHFRQ¿JXULQJWKLVGHYLFH\RXKDYHWRFKHFNZLWK\RXU,63,QWHUQHW6HUYLFH3URYLGHUWR¿QG

out what kind of service is provided such as DHCP (Obtain an IP Address Automatically, Static IP

(Fixed IP Address) or PPPoE.

Gather the information as illustrated in the following table and keep it for reference.

PPPoE(RFC2516)

93,9&,9&  //&EDVHGPXOWLSOH[LQJ 8VHUQDPH 3DVVZRUG6HUYLFH

Name, and Domain Name System (DNS) IP address (it can be

automatically assigned by your ISP when you connect or be set manually).

PPPoA(RFC2684)

93,9&,9&//&EDVHGPXOWLSOH[LQJ8VHUQDPH3DVVZRUGDQG

Domain Name System (DNS) IP address (it can be automatically

assigned by your ISP when you connect or be set manually).

03R$5)&

RFC2684)

93,9&,9&//&EDVHGPXOWLSOH[LQJ,3DGGUHVV6XEQHWPDVN

Gateway address, and Domain Name System (DNS) IP address (it is a

¿[HG,3DGGUHVV

IPoA(RFC1577)

93,9&,9&//&EDVHGPXOWLSOH[LQJ,3DGGUHVV6XEQHWPDVN

Gateway address, and Domain Name System (DNS) IP address (it is a

¿[HG,3DGGUHVV

3XUH%ULGJH 93,9&,9&//&EDVHGPXOWLSOH[LQJWRXVH%ULGJHG0RGH

&RQ¿JXULQJZLWK\RXU:HE%URZVHU

Open your web browser, enter the IP address of your router, which by default is 192.168.1.254,

DQGFOLFN³*R´DXVHUQDPHDQGSDVVZRUGZLQGRZSURPSWZLOODSSHDU7KHGHIDXOWXVHUQDPHDQG

SDVVZRUGDUH³DGPLQ´DQG³DGPLQ´UHVSHFWLYHO\6HH)LJXUH

)LJXUH8VHUQDPH3DVVZRUG3URPSW:LQGRZ

Congratulations! You are now successfully logon to the 3G/VoIP/(802.11g) ADSL2+ (VPN)

Firewall Router!

&KDSWHU&RQ¿JXUDWLRQ

$WWKHFRQ¿JXUDWLRQKRPHSDJHWKHOHIWQDYLJDWLRQFROXPQSURYLGHV\RXWKHOLQNWRHDFKFRQ¿JXUDWLRQ

SDJH7KHFDWHJRU\RIHDFKFRQ¿JXUDWLRQSDJHLVOLVWHGDVEHORZ

Status

ADSL Table

ARP Table

DHCP Table

Routing Table

NAT Sessions

UpnP Portmap

PPTP Status

IPSec Status

L2TP Status

Email Status

VoIP Status

VoIP Call Log

Event Log

Error Log

Diagnostic

Quick Start

&RQ¿JXUDWLRQ

LAN

:$1

System

Firewall

VPN

VoIP

QoS

Virtual Server

Time Schedule

Advanced

Language (provides user interface in English and French languages)

Status

ADSL Status

This section displays the ADSL overall status, which shows a number of helpful information such

DV'63¿UPZDUHYHUVLRQ

Status: The current status of the 3G card.

Signal Strength: The signal strength bar indicates current 3G signal strength.

Network Name: The network name that the device is connected to.

ARP Table

7KLV VHFWLRQ GLVSOD\V WKH URXWHU¶V $53 $GGUHVV 5HVROXWLRQ 3URWRFRO 7DEOH ZKLFK VKRZV WKH

PDSSLQJRI,QWHUQHW,3DGGUHVVHVWR(WKHUQHW0$&DGGUHVVHV7KLVLVXVHIXODVDTXLFNZD\RI

GHWHUPLQLQJWKH0$&DGGUHVVRIWKHQHWZRUNLQWHUIDFHRI\RXU3&VWRXVHZLWKWKHURXWHU¶V)LUHZDOO

±0$&$GGUHVV)LOWHUIXQFWLRQ6HHWKH)LUHZDOOVHFWLRQRIWKLVPDQXDOIRUPRUHLQIRUPDWLRQRQWKLV

feature.

IP Address: A list of IP addresses of devices on your LAN (Local Area Network).

MAC Address:7KH0$&0HGLD$FFHVV&RQWURODGGUHVVHVIRUHDFKGHYLFHRQ\RXU/$1

Interface: The interface name (on the router) that this IP Address connects to.

Static: Static status of the ARP table entry:

³no´IRUG\QDPLFDOO\JHQHUDWHG$53WDEOHHQWULHV

³yes´IRUVWDWLF$53WDEOHHQWULHVDGGHGE\WKHXVHU

DHCP Table

Leased: The DHCP assigned IP addresses information.

Expired: The expired IP addresses information.

Permanent:7KH¿[HGKRVWPDSSLQJLQIRUPDWLRQ.

Leased Table

IP Address: The IP address that assigned to client.

MAC Address: 7KH0$&DGGUHVVRIFOLHQW

Client Host Name: The Host Name (Computer Name) of client.

Expiry: The current lease time of client.

Routing Table

Valid: It indicates a successful routing status.

Destination: The IP address of the destination network.

Netmask: The destination Netmask address.

Gateway/Interface: The IP address of the gateway or existing interface that this route will use.

Cost: The number of hops counted as the cost of the route.

RIP Routing Table

Destination: The IP address of the destination network.

Netmask: The destination Netmask address.

Gateway: The IP address of the gateway that this route will use.

Cost: The number of hops counted as the cost of the route.

NAT Sessions

7KLVVHFWLRQOLVWVDOOFXUUHQW1$7VHVVLRQVEHWZHHQLQWHUIDFHRIW\SHVH[WHUQDO:$1DQGLQWHUQDO

(LAN).

UPnP Portmap

The section lists all port-mapping established using UPnP (Universal Plug and Play. See Advanced

VHFWLRQRIWKLVPDQXDOIRUPRUHGHWDLOVRQ83Q3DQGWKHURXWHU¶V83Q3FRQ¿JXUDWLRQRSWLRQV

PPTP Status

7KLVVKRZVGHWDLOVRI\RXUFRQ¿JXUHG3373931&RQQHFWLRQV

Name:7KHQDPH\RXDVVLJQHGWRWKHSDUWLFXODU3373FRQQHFWLRQLQ\RXU931FRQ¿JXUDWLRQ

Type: The type of connection (dial-LQGLDO-out).

Enable::KHWKHUWKe connection is currently enabled.

Active: :KHWKHUWKHFRQQHFWLRQLVFXUUHQWO\DFWLYH

Tunnel Connected::KHWKHUWKH931Tunnel is currently connected.

Call Connected: If the Call for this VPN entry is currently connected.

Encryption: The encryption type used for this VPN connection.

IPSec Status

7KLVVKRZVGHWDLOVRI\RXUFRQ¿JXUHG,36HF931&RQQHFWLRQV

Name: The name you assigned to the particular VPN entry.

Active: :KHWKHUWKH931&RQQHFWLRQLVFXUUHQWO\$FWLYH

Connection State: :KHWKHUWKH931LV&RQQHFWHGRU'LVFRQQHFWHG

Statistics: Statistics for this VPN Connection.

Local Subnet: The local IP Address or Subnet used.

Remote Subnet: The Subnet of the remote site.

Remote Gateway: The Remote Gateway IP address.

SA: The Security Association for this VPN entry.

L2TP Status

7KLVVKRZVGHWDLOVRI\RXUFRQ¿JXUHGL2TP VPN Connections.

Name: The name you assigned to the particular L273FRQQHFWLRQLQ\RXU931FRQ¿JXUDWLRQ

Type: The type of connection (dial-LQGLDO-out).

Enable: :KHWKHUWKe connection is currently enabled.

Active: :KHWKHUWKHFRQQHFWLRQLVFXUUHQWO\DFWLYH

Tunnel Connected: :KHWKHUWKH931Tunnel is currently connected.

Call Connected: If the Call for this VPN entry is currently connected.

Encryption: The encryption type used for this VPN connection.

Email Status

'HWDLOVDQGVWDWXVIRUWKH(PDLO$FFRXQW\RXKDYHFRQ¿JXUHGWKHURXWHUWRFKHFN3OHDVHVHHWKH

Advanced section of this manual for details on this function.

VoIP Status

VoIP Call Log

Event Log

7KLVSDJHGLVSOD\VWKHURXWHU¶V(YHQW/RJHQWULHV0DMRUHYHQWVDUHORJJHGWRWKLVZLQGRZVXFK

DVZKHQWKHURXWHU¶V$'6/FRQQHFWLRQLVGLVFRQQHFWHGDVZHOODV)LUHZDOOHYHQWVZKHQ\RXKDYH

HQDEOHG,QWUXVLRQRU%ORFNLQJ/RJJLQJLQWKH&RQ¿JXUDWLRQ±)LUHZDOOVHFWLRQRIWKHLQWHUIDFH

Please see the Firewall section of this manual for more details on how to enable Firewall logging.

Error Log

Any errors encountered by the router (e.g. invalid names given to entries) are logged to this

window.

Diagnostic

It tests the connection to computer(s) which is connected to the /$1SRUWVDQGDOVRWKH:$1,QWHUQHW

connection. If PING www.google.com is shown FAIL and the rest is PASS, you ought to check your

3&¶V'16VHWWLQJLVFRUUHFW

Quick Start

Click Quick Start. Select the connect mode you want. There are 2 options to choose from: ADSL 1.

or 3G. Select ADSL mode from the drop down menu and click Continue.

If your ADSL line is not ready, you need to check your ADSL line has been set or not.2.

If your ADSL line is ready, the screen appears ADSL Line is Ready. Choose Auto radio button 3.

DQGFOLFN$SSO\,WZLOODXWRPDWLFDOO\VFDQWKHUHFRPPHQGHGPRGHIRU\RX0DQXDOO\PRGH

PDNHV\RXWRVHWWKH$'6/OLQHE\PDQXDO,I\RXFKRRVH0DQXDOO\\RXZLOOGLUHFWO\JRWRVWHS

5.)

7KHOLVWEHORZKDVGLIIHUHQWPRGHDSSOLHGIRU\RXUFKRLFH&KRRVH333R(5HFRPPHQGHG4.

and click Apply.

3OHDVHHQWHU³8VHUQDPH´DQG³3DVVZRUG´DVVXSSOLHGE\\RXU,63,QWHUQHW6HUYLFH3URYLGHU5.

and click Apply to continue.

3UR¿OH3RUWSelect the connection mode. There is ADSL.

Protocol: Select the protocol mode. The default mode is PPPoE.

VPI/VCI: Enter the VPI and VCI information provided by your ISP.

Username: Enter the username provided by your ISP.

Password: Enter the password provided by your ISP.

Service Name7KLVLWHPLVIRULGHQWL¿FDWLRQSXUSRVHV,ILWLVUHTXLUHG\RXU,63SURYLGHV\RXWKH

information.

Authentication Protocol: Default is Auto. Your ISP advises on using Chap or Pap.

IP Address: <RXU:$1,3DGGUHVV/HDYHWKLVDWWRREWDLQDXWRPDWLFDOO\DQ,3DGGUHVV

from your ISP.

Obtain DNS automatically: Click to activate DNS and to enable the system to automatically

detect DNS.

Primary DNS / Secondary DNS: Enter the IP addresses of the DNS servers. The DNS servers

are passed to the DHCP clients along with the IP address and the netmask.

&RQ¿JXUHWKH:LUHOHVV/$1VHWWLQJ6.

WLAN Service: Default setting is set to Enable. If you want to use wireless, both 802.11g and

802.11b device in your network, you can select Enable.

ESSID: The ESSID is theXQLTXHQDPHRIDZLUHOHVVDFFHVVSRLQW$3WREHdistinguished from

another. For securitySURSRVHFKDQJHWRDXQLTXH,'QDPHWRWKH$3which is already built-in to

the URXWHU¶VZLUHOHVVLQWHUIDFH. It is case sensitive and must not excess 32 characters. 0ake sure

your wireless clients have exactly the ESSID as the device, in order to get connected to your

network.

ESSID Broadcast: It is function in which transmits its ESSID to the air so that when wireless client

searches for a network, router can then be discovered and recognized. Default setting is Enable.

Enable::KHQ(QDEOHLVVHOHFWHG\RXFDQDOORZDQ\ERG\ZLWKDZLUHOHVVFOLHQWWREHDEOHWR

locate the Access Point (AP) of your router.

Disable: 6HOHFW'LVDEOHLI\RXGRQRWZDQWEURDGFDVW\RXU(66,':KHQVHOHFW'LVDEOHQR

one will be able to locate the Access Point (AP) of your router.

Regulation Domain: There are seven Regulation Domains for you to choose from, including

North America (N.America), Europe, France, etc. The Channel ID will be different based on this

setting.

Channel ID: Select the ID channel that you would like to use.

Security Mode: <RXFDQGLVDEOHRUHQDEOHZLWK:3$RU:(3IRUSURWHFWLQJZLUHOHVVQHWZRUN7KH

default mode of wireless security is Disable.

Set up VoIP. 7.

SIP: To use VoIP SIP as VoIP call signaling protocol. Default is set to Disable.

Region: This selection is a drop-down box, which allows user to select the country for which the

9R,3GHYLFHPXVWZRUN:KHQDFRXQWU\LVVHOHFWHGWKHFRXQWU\SDUDPHWHUVDUHDXWRPDWLFDOO\

loaded.

SIP Service Provider: 7KLVVHFWLRQDOORZV\RXWRVHOHFWWKHVHUYLFHSURYLGHU:KHQWKHVHOHFWLRQ

is done, respective parameters below are automatically displayed.

Phone Number: This parameter holds the registration ID of the user within the VoIP SIP registrar.

Username: ,IWKHXVHUQDPHLVVDPHDVWKH3KRQH1XPEHUOHDYHLWEODQN2WKHUZLVH¿OOLQWKH

space with your username given by your VoIP provider.

Password: This parameter holds the password used for authentication within VoIP SIP registrar.

Display Name: This parameter will be appeared on the Caller ID.

:DLWIRUWKHFRQ¿JXUDWLRQ8.

:KHQ$'6/LVV\QFKURQLFLWZLOODSSHDU³FKHFN´9.

&RQ¿JXUDWLRQ

:KHQ\RXFOLFNWKLVLWHPWKHFROXPQZLOOH[SDQGWRGLVSOD\WKHVXELWHPVWKDWZLOODOORZ\RXWRIXUWKHU

FRQ¿JXUH\RXU$'6/URXWHU

LAN, WAN, System, Firewall, VoIP, QoS, Virtual Server, Time Schedule and Advanced

7KHIXQFWLRQRIHDFKFRQ¿JXUDWLRQVXELWHPLVGHVFULEHGLQWKHIROORZLQJVHFWLRQV

LAN - Local Area Network

Here are the items within the LAN section: Bridge Interface, Ethernet, IP Alias, Ethernet Client

Filter, Wireless, Wireless Security, Wireless Client Filter, WPS, Port Setting and DHCP

Server.

Bridge Interface

<RXFDQVHWXSPHPEHUSRUWVIRUHDFK9/$1JURXSXQGHU%ULGJH,QWHUIDFHVHFWLRQ)URPWKHH[DPSOH

two VLAN groups need to be created.

Ethernet: P1 (Port 1)

Ethernet1:33DQG33RUW8QFKHFN333IURP(WKHUQHW9/$1SRUW¿UVW

Note: You should setup each VLAN group with caution. Each Bridge Interface is arranged in

this order.

%ULGJH,QWHUIDFH VLAN Port (Always starts with)

ethernet 3333

ethernet1 333

ethernet2 33

ethernet3 P4

Management Interface: To specify which VLAN group has possibility to do device management,

like doing web management.

Note: NAT/NAPT can be applied to management interface only.

Ethernet

Primary IP Address

IP Address: The default IP on this router.

Subnet Mask: The default subnet mask on this router.

RIP:5,3Y5,3YDQG5,3Y0XOWLFDVW&KHFNWRHQDEOH5,3IXQFWLRQ

IP Alias

This function creates multiple virtual IP interfaces on this router. It helps to connect two or more local

networks to the ISP or remote nRGH,QWKLVFDVHDQLQWHUQDOURXWHULVQRWUHTXLUHG

IP Address: Specify an IP address on this virtual interface.

SubNetmask: Specify a subnet mask on this virtual interface.

Security Interface:6SHFLI\WKH¿UHZDOOVHWWLQJRQWKLVYLUWXDOLQWHUIDFH

Internal:7KHQHWZRUNLVEHKLQG1$7$OOWUDI¿FZLOOGRQHWZRUNDGGUHVVWUDQVODWLRQZKHQVHQGLQJ

out to Internet if NAT is enabled.

External: 7KHUHLVQR1$7RQWKLV,3LQWHUIDFHDQGFRQQHFWHGWRWKH,QWHUQHWGLUHFWO\0RVWO\LWZLOO

be used when providing multiple public IP addresses by ISP. In this case, you can use public IP

address in local network which gateway IP address point to the IP address on this interface.

DMZ: 6SHFLI\WKLVQHWZRUNWR'0=DUHD7KHUHLVQR1$7RQWKLVLQWHUIDFH

Ethernet Client Filter

The Ethernet Client Filter supports up to 16 Ethernet network machines that helps you to manage

\RXUQHWZRUNFRQWUROWRDFFHSWWUDI¿FIURPVSHFL¿FDXWKRUL]HGPDFKLQHVRUFDQUHVWULFWXQZDQWHG

machine(s) to access your LAN.

7KHUHDUHQRSUHGH¿QH(WKHUQHW0$&DGGUHVV¿OWHUUXOHV\RXFDQDGGWKH¿OWHUUXOHVWRPHHW\RXU

UHTXLUHPHQWV

Ethernet Client Filter: Default setting is set Disable.

Allowed: FKHFNWRDXWKRUL]HVSHFL¿FGHYLFHDFFHVVLQJ\RXU/$1E\LQVHUWWKH0$&$GGUHVV

LQWKHVSDFHSURYLGHGRUFOLFNWKH&DQGLGDWHEXWWRQ0DNHVXUH\RXU3&¶V0$&LVOLVWHG

Blocked: FKHFNWRSUHYHQWXQZDQWHGGHYLFHDFFHVVLQJ\RXU/$1E\LQVHUWWKH0$&$GGUHVV

LQWKHVSDFHSURYLGHGRUFOLFNWKH&DQGLGDWHEXWWRQ0DNHVXUH\RXU3&¶V0$&LVQRWOLVWHG

7KH PD[LPXP FOLHQW LV   7KH 0$& DGGUHVVHV DUH  E\WHV ORQJ WKH\ DUH SUHVHQWHG RQO\ LQ

hexadecimal characters. The number 0 - 9 and letters a - f are acceptable.

Note: Follow the MAC Address Format xx:xx:xx:xx:xx:xx. Semicolon ( : ) must be included.

Candidates: automatically detects devices connected to the router through the Ethernet. .

Click the Candidate button to access the Active PC in LAN window.

Active PC in LAN: $FWLYH3&LQ/$1GLVSOD\VDOLVWRILQGLYLGXDO(WKHUQHWGHYLFH¶V,3$GGUHVV

0$&$GGUHVVZKLFKFRQQHFWLQJWRWKHURXWHU

You can easily by checking the box next to the IP address to be blocked or allowed. Then, Add to

insert to the Ethernet Client Filter table. The maximum Ethernet client is 16.

Wireless

Parameters

WLAN Service: Default setting is set to Enable. If you do not have any wireless, both 802.11g

and 802.11b, device in your network, select Disable.

Mode:7KHGHIDXOWVHWWLQJLVEJ0L[HGPRGH,I\RXGRQRWNQRZRUKDYHERWKJDQG

11b devices in your network, then keep the default in mixed mode. From the drop-down manual,

you can select 802.11g if you have only 11g card. If you have only 11b card, then select 802.11b.

ESSID: The ESSID is theXQLTXHQDPHRIDZLUHOHVVDFFHVVSRLQW$3WREHdistinguished from

another. For security purpose, change the defaultZODQDSWRDXQLTXH,'QDPHWRWKH$3DOUHDG\

built-in to the URXWHU¶VZLUHOHVVLQWHUIDFH. It is case sensitive and must not excess 32 characters.

0ake sure your wireless clients have exactly the ESSID as the device, in order to get connected to

your network.

Note: It is case sensitive and must not excess 32 characters.

ESSID Broadcast: It is function in which transmits its ESSID to the air so that when wireless

client searches for a network, router can then be discovered and recognized. Default setting is

Enabled.

Disable: ,I\RXGRQRWZDQWEURDGFDVW\RXU(66,'$Q\FOLHQWXVHV³DQ\´ZLUHOHVVVHWWLQJ

cannot discover the Access Point (AP) of your router.

Enable: Any client that using the ³any´ setting can discover the Access Point (AP).

Regulation Domain: There are seven Regulation Domains for you to choose from, including

North America (N.America), Europe, France, etc. The Channel ID will be different based on this

setting.

Channel ID: Select the wireless connection ID channel that you would like to use.

Note: Wireless performance may degrade if select ID channel is already being occupied by

other AP(s).

TX PowerLevel: It is a function that enhances the wireless transmitting signal strength. User

may adjust this power level from minimum 1 up to maximum 127.

Note: The Power Level maybe different in each access network user premises environment

and choose the most suitable level for your network.

Connected: Representing in true or false. That it is the connection status between the system

and the build-in wireless card.

AP MAC Address: ,WLVDXQLTXHKDUGZDUHDGGUHVVRIWKH$FFHVV3RLQW

AP Firmware Version: 7KH$FFHVV3RLQW¿UPZDUHYHUVLRQ

Wireless Distribution System (WDS)

It is a wireless access point mode that enables wireless link and communication with other access

point. It isHDV\WREHLQVWDOOHGVLPSO\WRGH¿QHSHHU¶V0$&DGGUHVVRIWKHconnected$3:'6WDNHV

advantages of cost saving and flexibility whichQRH[WUDZLUHOHVVFOLHQWGHYLFHLVUHTXLUHGWRbridge

between two access points and extending an existing wired or wireless infrastructure network to

create a larger network. It can connect up to 4 wireless APs for extending cover range at the same

time.

In addition, :'6HQKDQFHVLWVOLQNFRQQHFWLRQVHFXULW\LQ:(3PRGH:(3NH\HQFU\SWLRQPXVWbe

the same for both access points.

WDS Service: The default setting is Disabled. Check Enable radio button to activate this

function.

Peer WDS MAC Address:1. ,WLVWKHDVVRFLDWHG$3¶V0$&$GGUHVV,WLVLPSRUWDQWWKDW\RXU

SHHU¶V$3PXVWLQFOXGH\RXU0$&DGGUHVVLQRUGHUWRDFNQRZOHGJHDQGFRPPXQLFDWHZLWK

each other.

Peer WDS MAC Address:2. ,WLVWKHVHFRQGDVVRFLDWHG$3¶V0$&$GGUHVV

Peer WDS MAC Address:3. ,WLVWKHWKLUGDVVRFLDWHG$3¶V0$&$GGUHVV

Peer WDS MAC Address:4. ,WLVWKHIRXUWKDVVRFLDWHG$3¶V0$&$GGUHVV

Note: For MAC Address, Semicolon ( : ) must be included.

Wireless Security

<RXFDQGLVDEOHRUHQDEOHZLWK:3$RU:(3IRUSURWHFWLQJZLUHOHVVQHWZRUN

The default mode of wireless security is disabled.

WPA-PSK / WPA2-PSK

Security Mode: <RXFDQGLVDEOHRUHQDEOHZLWK:3$RU:(3IRUSURWHFWLQJZLUHOHVVQHWZRUN7KH

default mode of wireless security is Disable.

WPA Algorithms: 7KHUHDUHWZRW\SHVRIWKH:3$36.:3$36.DQG:3$36.7KH:3$

36.DGDSWVWKH7.,37HPSRUDO.H\,QWHJULW\3URWRFROencrypted algorithms, which incorporates

0HVVDJH,QWHJULW\&RGH0,&WRSURYLGHSURWHFWLRQDJDLQVWKDFNHUV7KH:3$36.DGDSWV

&&03&LSKHU%ORFN&KDLQLQJ0HVVDJH Authentication Code Protocol) of the AES (Advanced

Encryption Security) algorithms.

WPA Shared Key: The key for network authentication. The input format is in character style and

key size should be in the range between 8 and 63 characters.

Group Key Renewal: The period of renewal time for changing the security key automatically

between wireless client and Access Point (AP). Default value is 600 seconds.

WEP

WEP Authentication: To prevent unauthorized wireless stations from accessing data transmitted

RYHUWKHQHWZRUNWKHURXWHURIIHUVVHFXUHGDWDHQFU\SWLRQNQRZQDV:(3,I\RXUHTXLUHKLJK

security for transmissions, there are two options to select from: Open System, Share key.

WEP Encryption: To prevent unauthorized wireless stations from accessing data transmitted over

the network, the routerRIIHUVKLJKO\VHFXUHGDWDHQFU\SWLRQNQRZQDV:(3,I\RXUHTXLUHKLJK

security for transmissions, there are two alternatives to select from: WEP 64 and WEP 128.:(3

ZLOORIIHULQFUHDVHGVHFXULW\RYHU:(364.

Passphrase: This is XVHGWRJHQHUDWH:(3NH\VDXWRPDWLFDOO\EDVHGXSRQWKHLQSXWVWULQJDQGD

SUHGH¿QHGDOJRULWKPLQ:(3RU:(3

Default Used WEP Key: Select the encryption key ID; please refer to Key (1~4) below.

Key (1-4): (QWHUWKHNH\WRHQFU\SWZLUHOHVVGDWD7RDOORZHQFU\SWHGGDWDWUDQVPLVVLRQWKH:(3

(QFU\SWLRQ.H\YDOXHVRQDOOZLUHOHVVVWDWLRQVPXVWEHthe same as the router. There are four keys

IRU\RXUVHOHFWLRQ7KHLQSXWIRUPDWLVLQ+(;VW\OHDQG+(;FRGHVDUHUHTXLUHGIRU:(3

DQG:(3UHVSHFWLYHO\

Wireless Client / MAC Address Filter

7KH0$&$GGUHVVVXSSRUWVXSWRZLUHOHVVQHWZRUNPDFKLQHVDQGKHOSV\RXPDQDJH\RXUQHWZRUN

control to accept WUDI¿F IURP VSHFL¿F DXWKRUL]HG PDFKLQHV RU to restrict unwanted machine(s) to

access your LAN.

7KHUH DUH QR SUHGH¿QH 0$& $GGUHVV ¿OWHU UXOHV \RX FDQ DGG WKH ¿OWHU rules to meet your

UHTXLUHPHQWV

Wireless Client Filter: Default setting is set to Disable.

Allowed: 7RDXWKRUL]HVSHFL¿FGHYLFHDFFHVVLQJ\RXU/$1E\LQVHUWWKH0$&$GGUHVVLQWKH

VSDFHSURYLGHGRUFOLFNWKH&DQGLGDWHEXWWRQ0DNHVXUH\RXU3&¶V0$&LVOLVWHG

Blocked: 7RSUHYHQWXQZDQWHGGHYLFHDFFHVVLQJWKH/$1E\LQVHUWWKH0$&$GGUHVVLQWKH

VSDFHSURYLGHGRUFOLFNWKH&DQGLGDWHEXWWRQ0DNHVXUH\RXU3&¶V0$&LVQRWOLVWHG

The maximum client is 16. 7KH 0$& addresses are 6 bytes long; they are presented only in

hexadecimal characters. The number 0- 9 and letters a- f are acceptable.

Note: Follow the MAC Address Format xx:xx:xx:xx:xx:xx. Semicolon ( : ) must be included.

Candidates: ,WDXWRPDWLFDOO\GHWHFWVGHYLFHVFRQQHFWHGWRWKHURXWHUWKURXJKWKH:LUHOHVVIHDWXUH

Click the Candidate button to access the Associated Wireless Client window.

Associate Wireless Client: Displays a list of individual wireless device¶V0$&$GGUHVVWKDWFXUUHQWO\

connects to the router.

<RXFDQHDVLO\E\FKHFNLQJWKHER[QH[WWRWKH0$&DGGUHVVWREHEORFNHGRUDOORZHG7KHQ$GGWR

LQVHUWWRWKH:LUHOHVV&OLHQW0$&$GGUHVV)LOWHUWDEOH7KHmaximum:LUHOHVVFOLHQWLV

WPS

:36IHDWXUHLVIROORZ:L)L$OOLDQFH:36VWDQGDUGDQGLWeasilyVHWXSVHFXULW\HQDEOHG:L

)LQHWZRUNVLQWKHKRPHDQGVPDOORI¿FHHQYLURQPHQW It is reduced by half the user steps to

FRQ¿JXUHDQHWZRUNDnd VXSSRUWVWZRPHWKRGVWKDWDUHIDPLOLDUWRPRVWFRQVXPHUVWRFRQ¿JXUHD

network and enable security.

Port Setting

This section DOORZV\RXWRFRQ¿JXUHthe VHWWLQJVIRUWKHURXWHU¶V(WKHUQHWports to solve some

of the compatibility problems that may be encountered while connecting to the Internet, as well

allowing users to tweak the performance of their network.

Port # Connection Type: There are Six options to choose from: AXWRGLVDEOH0KDOIGXSOH[

0full-duplex0KDOIGXSOH[0IXOOGXSOH[DQG'LVDEOH6RPHWLPHVthere are Ethernet

compatibility problems with legacy Ethernet devices, and yRXFDQFRQ¿JXUHGLIIHUHQWW\SHVWR

solve compatibility issues. 7KHGHIDXOWLV$XWRZKLFKXVHUVVKRXOGNHHSXQOHVVWKHUHDUHVSHFL¿F

problems with PCs not being able to access your LAN.

IPv4 TOS priority Control (Advanced users): TOS, Type of Services, is the 2nd octet of an IP

packet. %its 6-7 of this octet are reserved and bit 0-5 are used to specify the priority of the packet.

7KLVIHDWXUHXVHVELWVWRFODVVLI\WKHSDFNHW¶VSULRULW\,IWKHSDFNHWLVKLJKSULRULW\LWZLOOÀRZ

¿UVWDQGZLOOQRWEHFRQVWUDLQHGE\WKH5DWH/LPLW7KHUHIRUHZKHQWKLVIHDWXUHLVHQDEOHGWKH

URXWHU¶V(WKHUQHWVZLWFKZLOOFKHFNWKHndRFWHWRIHDFK,3SDFNHW,IWKHYDOXHLQWKH726¿HOG

matches the checked values in the table (0 to 63), this packet will be treated as high priority.

DHCP Server

<RXFDQGLVDEOHRUHQDEOHWKH'+&3'\QDPLF+RVW&RQ¿JXUDWLRQ3URWRFROVHUYHURUHQDEOHWKH

URXWHU¶V'+&3UHOD\IXQFWLRQV7KH'+&3SURWRFRODOORZV\RXUURXWHUWRG\QDPLFDOO\DVVLJQ,3

DGGUHVVHVWR3&VRQ\RXUQHWZRUNLIWKH\DUHFRQ¿JXUHGWRREWDLQ,3DGGUHVVHVDXWRPDWLFDOO\

7RGLVDEOHWKHURXWHU¶V'+&36HUYHUFKHFN 'LVDEOHG DQGFOLFN1H[WWKHQFOLFN$SSO\:KHQ WKH

'+&36HUYHULVGLVDEOHG\RXZLOOQHHGWRPDQXDOO\DVVLJQD¿[HG,3DGGUHVVWRHDFK3&VRQ\RXU

network, and set the default gateway for each PCs to the IP address of the router (by default this is

192.168.1.254).

7RFRQ¿JXUHWKHURXWHU¶V'+&36HUYHUFKHFN'+&36HUYHUDQGFOLFN1H[W<RXFDQWKHQFRQ¿JXUH

parameters of the DHCP Server including the IP pool (starting IP address and ending IP address to

be allocated to PCs on your network), lease time for each assigned IP address (the period of time

the IP address assigned will be valid), DNS IP address and the gateway IP address. These details

DUHVHQWWRWKH'+&3FOLHQWLH\RXU3&ZKHQLWUHTXHVWVDQ,3DGGUHVVIURPWKH'+&3VHUYHU

&OLFN$SSO\WRHQDEOHWKLVIXQFWLRQ,I\RXFKHFN³8VH5RXWHUDVD'166HUYHU´WKH$'6/5RXWHUZLOO

SHUIRUPWKHGRPDLQQDPHORRNXS¿QGWKH,3DGGUHVVIURPWKHRXWVLGHQHWZRUNDXWRPDWLFDOO\DQG

IRUZDUGLWEDFNWRWKHUHTXHVWLQJ3&LQWKH/$1\RXU/RFDO$UHD1HWZRUN

If you check DHCP Relay Agent and click Next, then you will have to enter the IP address of the

DHCP server which will assign an IP address back to the DHCP client in the LAN. Use this function

only if advised to do so by your network administrator or ISP.

Click Apply to enable this function.

WAN - Wide Area Network

:$1UHIHUVWR\RXU:LGH$UHD1HWZRUNFRQQHFWLRQLH\RXUURXWHU¶VFRQQHFWLRQWR\RXU,63DQG

the Internet. Here are the items within the :$1VHFWLRQ:$1,QWHUIDFH:$13UR¿OH and ADSL

Mode.

WAN Interface

WAN Connection-ADSL Mode

7KHGHIDXOWVHWWLQJIRU&RQQHFWLRQ0RGHLV$'6/DQGIRU3URWRFROLV333R(

Main Port: User can select either ADSL or 3G mode.

Failover / Failback: 6HW(QDEOHWRWULJJHU$'/6*IDLORYHUIDLOEDFNIXQFWLRQUHDG\

Backup Port: ,WOLQNVWREDFNXSSRUWFRQ¿JXUDWLRQSDJH,WLVQHFHVVDU\WRFRQ¿JXUHLWZKHQ

)DLORYHU)DLOEDFNEHVHW

Connectivity Decision: Set how many times of probing failed to switch backup port.

Failover Probe Cycle: Set the time duration for the Failover Probe Cycle to determine when the

router will switch to the backup connection (backup port) once the main connection (main port)

fails.

Note: The time set is for each probe cycle, but the decision to change to the backup port is

determined by Probe Cycle duration multiplied by connection Decision amount (e.g. From

the image above it will be 12 seconds multiplied by 5 consecutive fails).

Failback Probe Cycle: Set the time duration for the Failback Probe Cycle to determine when the

router will switch back to the main connection (main port) from the backup connection (backup

port) once the main connection is communicating again.

Note: The time set is for each probe cycle, but the decision to change to the backup port is

determined by Probe Cycle duration multiplied by Connection Decision amount (e.g. From

ge above it will be 3 seconds multiplied by 5 consecutive fails).

Detect Rule:

Rule 1. ADSL Down

Rule 2. Ping Fail

No Ping: It will not send any ping packet to determine the connection. It means to disable the

ping fail detection.

Ping Gateway: It will send ping packet to gateway and wait response from gateway in every

³3UREH&\FOH´

Ping Host: ,WZLOOVHQGSLQJSDFNHWWRVSHFL¿FKRVWDQGZDLWUHVSRQVHLQHYHU\³3UREH&\FOH´

The host must be an IP address.

WAN Connection-3G Mode

,Q$'6/PRGHDVWKH$'6/LVQRWDYDLODEOHIDLORYHUIDLOEDFNLWZLOOVZLWFKWR*PRGHIRU:$1

&RQQHFWLRQVXSSRUW+RZHYHULQ*0RGH$'6/FDQQRWVXSSRUW:$1&RQQHFWLRQZKHQ*

0RGHLVXQDYDLODEOH

:$13UR¿OH

PPPoE Connection

PPPoE (PPP over Ethernet) provides access control in a manner which is similar to dial-up services

using PPP.

3UR¿OH3RUW6HOHFWWKHSUR¿OHSRUWDV$'6/

Protocol: 7KH$70SURWRFROZLOOEHXVHGLQWKHGHYLFH

Description: A given name for the connection.

VPI/VCI: Enter the information provided by your ISP.

ATM Class:7KH4XDOLW\RI6HUYLFHIRU$70OD\HU

Username: Enter the username provided by your ISP. You can input up to 128 alphanumeric

FKDUDFWHUVFDVHVHQVLWLYH7KLVLVLQWKHIRUPDWRI³XVHUQDPH#LVSQDPH´LQVWHDGRIVLPSO\

³XVHUQDPH´

Password: Enter the password provided by your ISP. You can input up to 128 alphanumeric

characters (case sensitive).

Service Name:7KLVLWHPLVIRULGHQWL¿FDWLRQSXUSRVHV,ILWLVUHTXLUHG\RXU,63SURYLGHV\RXWKH

LQIRUPDWLRQ0D[LPXPLQSXWLV15 alphanumeric characters.

NAT: The NAT (Network Address Translation) feature allows multiple users to access the Internet

through a single IP account, sharing the single IP address. If users on your LAN have public IP

addresses and can access the Internet directly, the NAT function can be disabled.

IP (0.0.0.0:Auto): <RXU:$1,3DGGUHVV/HDYHWKLVDWWRREWDLQDXWRPDWLFDOO\DQ,3

address from your ISP.

Auth. Protocol: Default is Auto. Your ISP should advise you on whether to use Chap or Pap.

Connection:

Always on: If you want the router to establish a PPPoA session when starting up and to au-

tomatically re-establish the PPPoA session when disconnected by the ISP.

Connect on Demand: If you want to establish a PPPoA session only when there is a packet

UHTXHVWLQJDFFHVVWRWKH,QWHUQHWLHZKHQDSURJUDPRQ\RXUFRPSXWHUDWWHPSWVWRDFFHVV

the Internet).

Idle Timeout: Auto-disconnect the EURDGEDQG¿UHZDOOJDWHZD\ when there is no activity on the line

for a predetermined period of time.

Detail: <RXFDQGH¿QHWKHGHVWLQDWLRQSRUWDQGSDFNHWW\SH7&38'3ZLWKRXWFKHFNLQJE\

WLPHU,WDOORZV\RXWRVHWZKLFKRXWJRLQJWUDI¿FZLOOQRWWULJJHUDQGUHVHWWKHLGOHWLPHU

MTU: 0D[LPXP 7UDQVPLVVLRQ 8QLW 7KH VL]H RI WKH ODUJHVW GDWDJUDP H[FOXGLQJ PHGLDVSHFL¿F

headers) that IP will attempt to send through the interface.

RIP:5,3Y5,3YDQG5,3Y0XOWLFDVW&KHFNWRHQDEOH5,3IXQFWLRQ

TCP MSS Clamp: This option helps to discover the optimal 078 VL]H DXWRPDWLFDOO\ 'HIDXOW LV

enabled.

0$&6SRR¿QJ6RPHVHUYLFHSURYLGHUVUHTXLUHWKHFRQ¿JXULQJRIWKLVRSWLRQ<RXPXVW¿OOLQWKH

0$&DGGUHVVWKDWVSHFLI\E\VHUYLFHSURYLGHUZKHQLWLVUHTXLUHG'HIDXOWLVGLVDEOHG

Obtain DNS: A Domain Name System (DNS) contains a mapping table for domain name and IP

addresses.'16KHOSVWR¿QGWKH,3DGGUHVVIRUWKHVSHFL¿FGRPDLQQDPH&KHFNWKHFKHFNER[

to obtain DNS automatically.

Primary DNS: Enter the primary DNS.

Secondary DNS: Enter the secondary DNS

PPPoA Connection

3UR¿OH3RUW6HOHFWWKHSUR¿OHSRUWDV$'6/

Protocol:7KH$70SURWRFROZLOOEHXVHGLQWKHGHYLFH

Description: A given name for the connection.

VPI/VCI: Enter the information provided by your ISP.

ATM Class:7KH4XDOLW\RI6HUYLFHIRU$70OD\HU

Username: Enter the username provided by your ISP. You can input up to 128 alphanumeric

FKDUDFWHUVFDVHVHQVLWLYH7KLVLVLQWKHIRUPDWRI³XVHUQDPH#LVSQDPH´LQVWHDGRIVLPSO\

³XVHUQDPH´

Password: Enter the password provided by your ISP. You can input up to 128 alphanumeric

characters (case sensitive).

NAT: The NAT (Network Address Translation) feature allows multiple users to access the Internet

through a single IP account, sharing the single IP address. If users on your LAN have public IP

addresses and can access the Internet directly, the NAT function can be disabled.

IP (0.0.0.0:Auto): <RXU:$1,3DGGUHVV/HDYHWKLVDWWRREWDLQDXWRPDWLFDOO\DQ,3

address from your ISP.

Auth. Protocol: Default is Auto. Your ISP should advises you on whether to use Chap or Pap.

Connection:

Always on: If you want the router to establish a PPPoA session when starting up and to au-

tomatically re-establish the PPPoA session when disconnected by the ISP.

Connect on Demand: If you want to establish a PPPoA session only when there is a packet

UHTXHVWLQJDFFHVVWRWKH,QWHUQHWLHZKHQDSURJUDPRQ\RXUFRPSXWHUDWWHPSWVWRDFFHVV

the Internet).

Idle Timeout: Auto-disconnect the EURDGEDQG¿UHZDOOJDWHZD\ when there is no activity on the line

for a predetermined period of time.

Detail:<RXFDQGH¿QHWKHGHVWLQDWLRQSRUWDQGSDFNHWW\SH7&38'3ZLWKRXWFKHFNLQJE\

WLPHU,WDOORZV\RXWRVHWZKLFKRXWJRLQJWUDI¿FZLOOQRWWULJJHUDQGUHVHWWKHLGOHWLPHU

MTU:0D[LPXP7UDQVPLVVLRQ8QLW7KHVL]HRIWKHODUJHVWGDWDJUDPH[FOXGLQJPHGLDVSHFL¿F

headers) that IP will attempt to send through the interface.

RIP: 5,3Y5,3YDQG5,3Y0XOWLFDVW&KHFNWRHQDEOH5,3IXQFWLRQ

TCP MSS Clamp: This option helps to discover the optimal078VL]HDXWRPDWLFDOO\'HIDXOWLV

enabled.

Obtain DNS: A Domain Name System (DNS) contains a mapping table for domain name and IP

addresses.'16KHOSVWR¿QGWKH,3DGGUHVVIRUWKHVSHFL¿FGRPDLQQDPH&KHFNWKHFKHFNER[

to obtain DNS automatically.

Primary DNS: Enter the primary DNS.

Secondary DNS: Enter the secondary DNS.

MPoA Connection

3UR¿OH3RUW6HOHFWWKHSUR¿OHSRUWDV$'6/

Protocol: 7KH$70SURWRFROZLOOEHXVHGLQWKHGHYLFH

Description: A given name for the connection.

VPI/VCI: Enter the information provided by your ISP.

ATM Class:7KH4XDOLW\RI6HUYLFHIRU$70OD\HU

NAT: The NAT (Network Address Translation) feature allows multiple users to access the Internet

through a single IP account, sharing a single IP address. If users on your LAN have public IP

addresses and can access the Internet directly, the NAT function can be disabled.

Encap. mode: Choose whether you want the SDFNHWVLQ:$1LQWHUIDFHas bridged packet or

routed packet.

MTU:0D[LPXP7UDQVPLVVLRQ8QLW7KHVL]HRIWKHODUJHVWGDWDJUDPH[FOXGLQJPHGLDVSHFL¿F

headers) that IP will attempt to send through the interface.

IP (0.0.0.0:Auto): Specify an IP address allowed to logon and DFFHVVWKHURXWHU¶VZHEVHUYHU

Note: IP 0.0.0.0 indicates all users who are connected to this router are allowed to logon the

device and modify data.

Netmask: The default is 255.255.255.0. User can change it to other such as 255.255.255.128.

Type the subnet mask assigned to you by your ISP (if given).

Gateway: Enter the IP address of the default gateway (if given).

RIP:5,3Y5,3YDQG5,3Y0XOWLFDVW&KHFNWRHQDEOH5,3IXQFWLRQ

TCP MSS Clamp: This option helps to discover the optimal078VL]HDXWRPDWLFDOO\'HIDXOWLV

enabled.

0$&6SRR¿QJ6RPHVHUYLFHSURYLGHUVUHTXLUHWKHFRQ¿JXULQJRIWKLVRSWLRQ<RXPXVW¿OOLQWKH

0$&DGGUHVVWKDWVSHFLI\E\VHUYLFHSURYLGHUZKHQLWLVUHTXLUHG'HIDXOWLVGLVDEOHG

Obtain DNS: A Domain Name System (DNS) contains a mapping table for domain name and IP

addresses.'16KHOSVWR¿QGWKH,3DGGUHVVIRUWKHVSHFL¿FGRPDLQQDPH&KHFNWKHFKHFNER[

to obtain DNS automatically.

Primary DNS: Enter the primary DNS.

Secondary DNS: Enter the secondary DNS.

IPoA Routed Connection

3UR¿OH3RUW6HOHFWWKHSUR¿OHSRUWDV$'6/

Protocol: 7KH$70SURWRFROZLOOEHXVHGLQWKHGHYLFH

Description: A given name for the connection.

VPI/VCI: Enter the information provided by your ISP.

ATM Class: 7KH4XDOLW\RI6HUYLFHIRU$70OD\HU

NAT: The NAT (Network Address Translation) feature allows multiple users to access the Internet

through a single IP account, sharing a single IP address. If users on your LAN have public IP

addresses and can access the Internet directly, the NAT function can be disabled.

MTU: 0D[LPXP 7UDQVPLVVLRQ 8QLW 7KH VL]H RI WKH ODUJHVW GDWDJUDP H[FOXGLQJ PHGLDVSHFL¿F

headers) that IP will attempt to send through the interface.

IP (0.0.0.0:Auto): Specify an IP address allowed to logon and DFFHVVWKHURXWHU¶VZHEVHUYHU

Note: IP 0.0.0.0 indicates all users who are connected to this router are allowed to logon the

device and modify data.

Netmask: The default is 255.255.255.0. User can change it to other such as 255.255.255.128. Type

the subnet mask assigned to you by your ISP (if given).

Gateway: Enter the IP address of the default gateway (if given).

RIP:5,3Y5,3YDQG5,3Y0XOWLFDVW&KHFNWRHQDEOH5,3IXQFWLRQ

TCP MSS Clamp: This option helps to discover the optimal 078 VL]H DXWRPDWLFDOO\ 'HIDXOW LV

enabled.

Obtain DNS: A Domain Name System (DNS) contains a mapping table for domain name and IP

addresses.'16KHOSVWR¿QGWKH,3DGGUHVVIRUWKHVSHFL¿FGRPDLQQDPH&KHFNWKHFKHFNER[

to obtain DNS automatically.

Primary DNS: Enter the primary DNS.

Secondary DNS: Enter the secondary DNS.

Pure Bridge

3UR¿OH3RUW6HOHFWWKHSUR¿OHSRUWDV$'6/

Protocol:7KH$70SURWRFROZLOOEHXVHGLQWKHGHYLFH

Description: A given name for this connection.

VPI/VCI: Enter the information provided by your ISP.

ATM Class:7KH4XDOLW\RI6HUYLFHIRU$70OD\HU

Encap. mode: Choose whether you want the SDFNHWVLQ:$1LQWHUIDFHas bridged packet or

routed packet.

Acceptable Frame Type:6SHFLI\ZKLFKNLQGRIWUDI¿FJRHVWKURXJKWKLVFRQQHFWLRQDOOWUDI¿FRU

only VLAN tagged.

Filter Type: 6SHFLI\WKHW\SHRIHWKHUQHW¿OWHULQJSHUIRUPHGE\WKHQDPHGEULGJHLQWHUIDFH

All Allows all types of ethernet packets through the port.

Ip $OORZVRQO\,3$53W\SHVRIHWKHUQHWSDFNHWVWKURXJKWKHSRUW

Pppoe Allows only PPPoE types of ethernet packets through the port.

TEL No.:7KHGLDOVWULQJWRPDNHD*356*XVHULQWHUQHWZRUNLQJFDOO,WPD\SURYLGHE\\RXU

mobile service provider.

APN:$Q$31LVVLPLODUWRD85/RQWKH:::LWLVZKDWWKHXQLWPDNHVD*3568076FDOO7KH

VHUYLFHSURYLGHULVDEOHWRDWWDFKDQ\WKLQJWRDQ$31WRFUHDWHDGDWDFRQQHFWLRQUHTXLUHPHQWVIRU

$31¶VWREHDVVLJQHGYDULHVEHWZHHQGLIIHUHQWVHUYLFHSURYLGHUV0RVWVHUYLFHSURYLGHUVKDYHDQ

internet portal which they connect a DHCP Server to, giving you access to the internet i.e. Some

*RSHUDWRUVXVHWKH$31µLQWHUQHW¶IRUWKHLUSRUWDO7KHGHIDXOWYDOXHRI$31LV³LQWHUQHW´

Username: Enter the username provided by your service provider.

Password: Enter the password provided by your service provider.

Authentication Type: 'HIDXOWLV1RQH0DQXDOO\VSHFLI\&+$3&KDOOHQJH+DQGVKDNH

Authentication Protocol) or PAP (Password Authentication Protocol) if you know which type

the server is using (when acting as a client), or else the authentication type you want clients

FRQQHFWLQJWR\RXWRXVHZKHQDFWLQJDVDVHUYHU:KHQXVLQJ3$3WKHSDVVZRUGLVVHQW

unencrypted, whilst CHAP encrypts the password before sending, and also allows for challenges

at different periods to ensure that an intruder has not replaced the client.

PIN:3,1VWDQGVIRU3HUVRQDO,GHQWL¿FDWLRQ1XPEHU$3,1FRGHLVDQXPHULFYDOXHXVHGLQFHUWDLQ

systems as a password to gain access, and authenticate. In mobile phones a PIN code locks the

6,0FDUGXQWLO\RXHQWHUWKHFRUUHFWFRGH,I\RXHQWHUWKH3,1FRGHLQFRUUHFWO\LQWRWKHSKRQH

WLPHVLQDURZWKHQWKH6,0FDUGZLOOEHEORFNHGDQG\RXZLOOUHTXLUHD38.FRGHIURP\RXU

QHWZRUNVHUYLFHSURYLGHU

Connection:

Always On:7KHURXWHUZLOOPDNH8076*356FDOOZKHQVWDUWLQJXS(QDEOLQJ$OZD\V2Q

ZLOOJLYH\RXDQRSWLRQRI.HHS$OLYH

Keep Alive: Set Enable to allow the router automatically reconnects the connection when ISP

disconnects it.

Connect to Demand:,I\RXZDQWWRPDNH8076*356FDOORQO\ZKHQWKHUHLVDSDFNHWUH-

TXHVWLQJDFFHVVWRWKH,QWHUQHWLHZKHQDSURJUDPRQ\RXUFRPSXWHUDWWHPSWVWRDFFHVVWKH

Internet). In this mode, you must set Idle Timeout value at same time. Enabling Connect on

Demand will give you an option of Idle Timeout.

Idle Timeout: Auto-disconnect the connection when there is no activity on this call for a pre-

determined period of time. The default value is 10 seconds.

Obtain DNS Automatically: Select this check box to use DNS.

Primary DNS/ Secondary DNS: Enter the IP addresses of the DNS servers. The DNS servers are

passed to the DHCP clients along with the IP address and the subnet mask.

Note: If you don’t know how to set these values and please keep them untouched.

ADSL Mode

Connect Mode: 7KLVPRGHZLOODXWRPDWLFDOO\GHWHFW\RXU$'6/OLQHFRGH$'6/$'6/

$QQH[0DQG$QQH[0$'6/$OO3OHDVHNHHSWKHIDFWRU\VHWWLQJXQOHVV$'6/LVGHWHFWHGDV

the symptom of synchronization problem.

Modulation: It will automatically detect capability of your ADSL line mode. Please keep the

factory setting unless ADSL is detected as the symptom of synchronization problem.

3UR¿OH7\SH Please keep the factory settings unless ADSL is detected as the symptom of low link

UDWHRUXQVWDEOHSUREOHPV<RXPD\QHHGWRFKDQJHWKHSUR¿OHVHWWLQJWRUHDFKWKHEHVW$'6/OLQH

UDWHLWGHSHQGVRQWKHGLIIHUHQW'6/$0DQGORFDWLRQ

Activate Line: Aborting (false) your ADSL line and making it active (true) again for taking effect

ZLWKVHWWLQJRI&RQQHFW0RGH

Coding Gain: It reduces router¶s transmit power which will effect to router¶s downstream

performance. Higher the gain will increase the downstream rate but it sometimes causes unstable

ADSL line. The cRQ¿JXUDEOH$'6/FRGLQJJDLQis IURPG%WR7G%RUDXWRPDWLF.

System

Here are the items within the System section: Time Zone, Remote Access, Firmware Upgrade,

Backup/Restore, Restart and User Management.

Time Zone

The router does not have a real time clock on board; instead, it uses the Simple Network Time

Protocol (SNTP) to get the current time from an SNTP server outside your network. Choose your

local time zone, click Enable and click the Apply button. After a successful connection to the Internet,

WKHURXWHUZLOOUHWULHYHWKHFRUUHFWORFDOWLPHIURPWKH6173VHUYHU\RXKDYHVSHFL¿HG,I\RXSUHIHU

to specify an SNTP server other than those in the list, simply enter its IP address as shown above.

Your ISP may provide an SNTP server for you to use.

'D\OLJKW6DYLQJLVDOVRNQRZQDV6XPPHU7LPH3HULRG0DQ\SODFHVLQWKHZRUOGDGDSWLWGXULQJ

summer time to move one hour of daylight from morning to the evening in local standard time. Check

Enable box to set your local time.

Resync Period (in minutes) is the periodic interval the router will wait before it re-synchronizes the

URXWHU¶VWLPHZLWKWKDWRIWKHVSHFL¿HG6173VHUYHU,QRUGHUWRDYRLGXQQHFHVVDULO\LQFUHDVLQJWKH

ORDGRQ\RXUVSHFL¿HG6173VHUYHU\RXVKRXOGNHHSWKHSROOLQWHUYDODVKLJKDVSRVVLEOH±DWWKH

absolute minimum every few hours or even days.

Remote Access

To temporarily permit remote administration of the router (i.e. from outside your LAN), select a time

SHULRGWKHURXWHUZLOOSHUPLWUHPRWHDFFHVVIRUDQGFOLFN(QDEOH<RXPD\FKDQJHRWKHUFRQ¿JXUDWLRQ

RSWLRQV IRU WKH ZHE DGPLQLVWUDWLRQ LQWHUIDFH XVLQJ 'HYLFH 0DQDJHPHQW RSWLRQV LQ WKH$GYDQFHG

section of the GUI.

If you wish to permanently enable remote access, choose a time period of 0 minute.

Firmware Upgrade

<RXUURXWHU¶V³¿UPZDUH´LVWKHVRIWZDUHWKDWDOORZVLWWRRSHUDWHDQG SURYLGHV DOO LWV IXQFWLRQDOLW\

7KLQNRI\RXUURXWHUDVDGHGLFDWHGFRPSXWHUDQGWKH¿UPZDUHDVWKHVRIWZDUHLWUXQV2YHUWLPH

this software may be improved and revised, and your router allows you to upgrade the software it

runs to take advantage of these changes.

&OLFNLQJRQ%URZVHZLOODOORZ\RXWRVHOHFWWKHQHZ¿UPZDUHLPDJH¿OH\RXKDYHGRZQORDGHGWR

\RXU3&2QFHWKHFRUUHFW¿OHLVVHOHFWHGFOLFN8SJUDGHWRXSGDWHWKH¿UPZDUHLQ\RXUURXWHU

Backup / Restore

7KHVHIXQFWLRQVDOORZ\RXWRVDYHDQGEDFNXS\RXUURXWHU¶VFXUUHQWVHWWLQJVWRD¿OHRQ\RXU3&RU

to restore a previously saved backup. This is useful if you wish to experiment with different settings,

knowing that you have a backup handy in the case of any mistakes. It is advisable to backup your

URXWHU¶VVHWWLQJVEHIRUHPDNLQJDQ\VLJQL¿FDQWFKDQJHVWR\RXUURXWHU¶VFRQ¿JXUDWLRQ

3UHVV%DFNXSWRVHOHFWZKHUHRQ\RXUORFDO3&WRVDYHWKHVHWWLQJV¿OH<RXPD\DOVRFKDQJHWKH

QDPHRIWKH¿OHZKHQVDYLQJLI\RXZLVKWRNHHSPXOWLSOHEDFNXSV

3UHVV%URZVHWRVHOHFWD¿OHIURP\RXU3&WRUHVWRUH<RXVKRXOGRQO\UHVWRUHVHWWLQJV¿OHVWKDWKDYH

EHHQJHQHUDWHGE\WKH%DFNXSIXQFWLRQDQGWKDWZHUHFUHDWHGZKHQXVLQJWKHFXUUHQWYHUVLRQRIWKH

URXWHU¶V¿UPZDUH6HWWLQJV¿OHVVDYHGWR\RXU3&VKRXOGQRWEHPDQXDOO\HGLWHGLQDQ\ZD\

$IWHUVHOHFWLQJWKHVHWWLQJV¿OH\RXZLVKWRXVHSUHVVLQJ5HVWRUHZLOOORDGWKRVHVHWWLQJVLQWRWKH

router.

Restart Router

Click Restart with option Current Settings to reboot your router (and restore your last saved

FRQ¿JXUDWLRQ

,I \RX ZLVK WR UHVWDUW WKH URXWHU XVLQJ WKH IDFWRU\ GHIDXOW VHWWLQJV IRU H[DPSOH DIWHU D ¿UPZDUH

XSJUDGHRULI\RXKDYHVDYHGDQLQFRUUHFWFRQ¿JXUDWLRQVHOHFW)DFWRU\'HIDXOW6HWWLQJVWRUHVHWWR

factory default settings.

You may also reset your router to factory settings by holding the small Reset pinhole button more

than 6 seconds on the back of your router.

Caution: After pressing the RESET button for more than 6 seconds, to be sure you power

cycle the device again.

User Management

,QRUGHUWRSUHYHQWXQDXWKRUL]HGDFFHVVWR\RXUURXWHU¶VFRQ¿JXUDWLRQLQWHUIDFHLWUHTXLUHVDOOXVHUV

to login with a password. You can set up multiple user accounts, each with their own password.

You are able to Edit existing users and AddQHZXVHUVZKRDUHDEOHWRDFFHVVWKHGHYLFH¶VFRQ¿JXUDWLRQ

interface. Once you have clicked on Edit, you are shown the following options:

<RXFDQFKDQJHWKHXVHU¶VSDVVZRUGZKHWKHUWKHLUDFFRXQWLVDFWLYHDQGvalid, as well as add a

comment to each user account.&OLFN(GLW'HOHWHEXWWRQWRVDYH\RXUUHYLVHYou cannot delete

the default admin account, if you do you will be log out. However, you can delete any other created

accounts by clicking Delete when editing the user. You are strongly advised to change the password

RQWKHGHIDXOW³DGPLQ´DFFRXQWZKHQ\RXUHFHLYH\RXUURXWHUDQGDQ\WLPH\RXUHVHW\RXUFRQ¿JXUDWLRQ

to Factory Defaults.

:KHQ\RX create a user accountFKHFN9DOLGER[DQG¿OOLQWKHUHVSHFWLYHLQIRUPDWLRQIRU8VHU

&RPPHQW3DVVZRUGDQG&RQ¿UP3DVVZRUGLQWKHEODQNVSURYLGHG7KHQFOLFNWKH$GGEXWWRQWR

add your new user account.

To delete a user account, click on the Delete radio button on the right column of the account you

ZLVKWRGHOHWHDQGWKHQFOLFNWKH(GLW'HOHWHEXWWRQRQWKHWRSWRFRQ¿UP\RXUGHOHWLRQ

Firewall and Access Control

<RXUURXWHULQFOXGHVDIXOO63,6WDWHIXO3DFNHW,QVSHFWLRQ¿UHZDOOIRUFRQWUROOLQJ,QWHUQHWDFFHVV

from your LAN, as well as helping to prevent attacks from hackers. %HVLGHV when using NAT, the

URXWHUDFWVDVD³QDWXUDO´,QWHUQHW¿UHZDOODVDOO3&VRQ\RXU/$1ZLOOXVHSULYDWH,3DGGUHVVHV

that cannot be directly accessed from the Internet.

Firewall: Prevent outsiders from accessing your local network. The router provides three levels of

security support:

1$7QDWXUDO¿UHZDOO7KLVPDVNV/$1XVHUV¶,3DGGUHVVHVZKLFKDUHLQYLVLEOHWRXVHUVRQWKH

,QWHUQHWWKXVPDNLQJLWPRUHGLI¿FXOWIRUDKDFNHUWRWDUJHWDPDFKLQHRQ\RXUQHWZRUN7KLVQDWXUDO

¿UHZDOOLVWXUQHGRQZKHQ1$7IXQFWLRQLVHQDEOHG

Firewall Security and Policy (General Settings): Inbound direction of Packet Filter rules to

prevent unauthorized computers or applications to access your local network from the Internet.

Intrusion Detection: Enable Intrusion Detection to detect, prevent and log malicious attacks.

Access Control: Prevent access from PCs on your local network:

Firewall Security and Policy (General Settings): Outbound direction of Packet Filter rules to

prevent unauthorized computers or applications from accessing the Internet.

URL Filter: To block PCs on your local network from unwanted websites.

Listed are the items under the Firewall section: General Settings, Packet Filter, Intrusion Detection,

URL Filter, IM/P2P Blocking and Firewall Log.

General Settings

You can FKRRVHQRWWRHQDEOH)LUHZDOODQGVWLOODEOHWRDFFHVVWR85/)LOWHUDQG,033%ORFNLQJor

HQDEOHWKH)LUHZDOOXVLQJSUHVHW¿OWHUUXOHVDQGPRGLI\WKHSRUW¿OWHUUXOHVDVUHTXLUHG7KH3DFNHW

)LOWHULVXVHGWR¿OWHUSDFNHWVEDVHGRQ$SSOLFDWLRQV3RUWRU,3DGGUHVVHV

There are four options when you enable the Firewall, they are:

$OOEORFNHG8VHUGH¿QHGQRSUHGH¿QHGSRUWRUDGGUHVV¿OWHUUXOHVE\GHIDXOWPHDQLQJWKDW

all inbound (Internet to LAN) and outbound (LAN to Internet) packets will be blocked. Users

KDYHWRDGGWKHLURZQ¿OWHUUXOHVIRUIXUWKHUDFFHVVWRWKH,QWHUQHW

High/Medium/Low security level:WKHSUHGH¿QHGSRUW¿OWHUUXOHVIRU+LJK0HGLXPDQG/RZ

security are displayed in Port Filters of Packet Filter.

6HOHFWHLWKHU+LJK0HGLXPRU/RZVHFXULW\OHYHOWRHQDEOHWKH)LUHZDOO7KHRQO\GLIIHUHQFHEHWZHHQ

WKHVHWKUHHVHFXULW\OHYHOVLVWKHSUHVHWSRUW¿OWHUUXOHVLQWKH3DFNHW)LOWHU)LUHZDOOIXQFWLRQDOLW\LV

WKHVDPHIRUDOOOHYHOVLWLVRQO\WKHOLVWRISUHVHWSRUW¿OWHUVWKDWFKDQJHVEHWZHHQHDFKVHWWLQJ)RU

PRUHGHWDLOHGRQOHYHORISUHVHWSRUW¿OWHULQIRUPDWLRQUHIHUWR7DEOH3UHGH¿QHG3RUW)LOWHU

,I\RXFKRRVHRIWKHSUHVHWVHFXULW\OHYHOVDQGDGGFXVWRP¿OWHUVWKLVOHYHORI¿OWHUUXOHVZLOOEHVDYHG

even and doQRWQHHGWRUHFRQ¿JXUHWKHUXOHVDJDLQLI\RXGLVDEOHRUVZLWFKWRRWKHU¿UHZDOOOHYHO

7KH³%ORFN:$15HTXHVW´LVDVWDQGDORQHIXQFWLRQDQGQRWUHODWHWRZKHWKHUVHFXULW\HQDEOHRU

GLVDEOH0RVWO\LWLVIRUSUHYHQWLQJDQ\VFDQWRROVIURP:$1VLWHE\KDFNHU

Packet Filter

This function is only available when the Firewall is enabled and one of these four security levels is

FKRVHQ$OOEORFNHG+LJK0HGLXPDQG/RZ7KHpreset SRUW¿OWHUUXOHVLQWKH3DFNHW)LOWHUPXVW

PRGLI\DFFRUGLQJO\WRWKHOHYHORI)LUHZDOOZKLFKLVVHOHFWHG6HH7DEOH3UHGH¿QHG3RUW)LOWHUIRU

more detail information.

Example: 3UHGH¿QHG3RUW)LOWHUV5XOHV

7KHSUHGH¿QHGSRUW¿OWHUUXOHVIRU+LJK0HGLXPDQG/RZVHFXULW\OHYHOVDUHOLVWHG6HH7DEOH

1RWH)LUHZDOO±$OO%ORFNHG8VHUGH¿QHG\RXPXVWGH¿QHDQGFUHDWHWKHSRUW¿OWHUUXOHV

\RXUVHOI1RSUHGH¿QHGUXOHLVEHLQJSUHFRQ¿JXUHG

Table 1:

3UHGH¿QHG

Port Filter

Application

Protocol

Port

Number Firewall - Low Firewall - Medium Firewall – High

Start End Inbound Outbound Inbound Outbound Inbound Outbound

HTTP(80) TCP(6) 80 80 NO YES NO YES NO YES

DNS (53) UDP(17) 53 53 NO YES NO YES NO YES

DNS (53) TCP(6) 53 53 NO YES NO YES NO YES

FTP(21) TCP(6) 21 21 NO YES NO YES NO NO

Telnet(23) TCP(6) 23 23 NO YES NO YES NO NO

6073 TCP(6) 25 25 NO YES NO YES NO YES

POP3(110) TCP(6) 110 110 NO YES NO YES NO YES

1(:61173

(Network

News Transfer

Protocol)

TCP(6) 119 119 NO YES NO YES NO NO

5HDO$XGLR

RealVideo

(7070)

UDP(17) 7070 7070 YES YES YES YES NO NO

PING ,&03 1$ 1$ NO YES NO YES NO YES

H.323(1720) TCP(6) 1720 1720 YES YES NO YES NO NO

T.120(1503) TCP(6) 1503 1503 YES YES NO YES NO NO

SSH(22) TCP(6) 22 22 NO YES NO YES NO NO

NTPSNTP UDP(17) 123 123 NO YES NO YES NO YES

+773+773

Proxy (8080) TCP(6) 8080 8080 NO YES NO NO NO NO

HTTPS(443) TCP(6) 443 443 NO YES NO YES N$ 1$

ICQ (5190) TCP(6) 5190 5190 YES YES 1$ 1$ 1$ 1$

061 (1863) TCP(6) 1863 1863 YES YES 1$ 1$ 1$ 1$

061 (7001) UDP(17) 7001 7001 YES YES 1$ 1$ 1$ 1$

0619(',2

(9000) TCP(6) 9000 9000 NO YES 1$ 1$ 1$ 1$

Inbound: Internet to LAN

Outbound: LAN to Internet

YES: Allowed

NO:%ORFNHG

N/A: Not Applicable

Packet Filter – Add TCP/UDP Filter

Rule Name Helper:8VHUVGH¿QHGHVFULSWLRQWRLGHQWLI\WKLVHQWU\RUFOLFN³Select´ drop-down

menuWRVHOHFWH[LVWLQJSUHGH¿QHGUXOHV7KHPD[LPXPQDPHOHQJWKLVFKDUDFWHUV

Time Schedule:,WLVVHOIGH¿QHGWLPHSHULRG<RXPD\VSHFLI\DWLPHVFKHGXOHIRU\RXU

prioritization policy. For setup and detail, refer to Time Schedule section

Source IP Address(es) / Destination IP Address(es): This is the Address-Filter used to allow or

EORFNWUDI¿FWRIURPSDUWLFXODU,3DGGUHVVHV6HOHFWLQJWKH6XEQHW0DVNRIWKH,3DGGUHVVUDQJH

\RXZLVKWRDOORZEORFNWKHWUDI¿FWRRUIRUPVHW,3DGGUHVVDQG6XEQHW0DVNWRWRLQDFWLYH

the Address-Filter rule.

Tip:7REORFNDFFHVVWRIURPDVLQJOH,3DGGUHVVHQWHUWKDW,3DGGUHVVDVWKH+RVW,3$GGUHVV

DQGXVHD+RVW6XEQHW0DVNRI³´

Type: It is the packet protocol type used by the application, select TCP, UDPRUERWK7&38'3

Protocol Number: Insert the port number.

Source Port:7KLV3RUWRU3RUW5DQJHVGH¿QHVWKHSRUWDOORZHGWREHXVHGE\WKH5HPRWH:$1WR

connect to the application. Default is set from range 0 ~ 65535. It is recommended that this option

EHFRQ¿JXUHGE\DQDGYDQFHGXVHU

Destination Port:7KLVLVWKH3RUWRU3RUW5DQJHVWKDWGH¿QHVWKHDSSOLFDWLRQ

Inbound / Outbound: 6HOHFW$OORZRU%ORFNWKHDFFHVVWRWKH,QWHUQHW³2XWERXQG´RUIURPWKH

,QWHUQHW³,QERXQG´

Click Add button to apply your changes.

Packet Filter – Add Raw IP Filter

Go to ³Type´ drop-down menu, select ³Use Protocol Number´.

Rule Name Helper:8VHUVGH¿QHGHVFULSWLRQWRLGHQWLI\WKLVHQWU\RUchoosing ³Select´ drop-down

menuWRVHOHFWH[LVWLQJSUHGH¿QHGUXOHV

Time Schedule:,WLVVHOIGH¿QHGWLPHSHULRG<RXPD\VSHFLI\DWLPHVFKHGXOHIRU\RXU

prioritization policy. For setup and detail, refer to Time Schedule section

Source IP Address(es) / Destination IP Address(es): This is the Address-Filter used to allow or

EORFNWUDI¿FWRIURPSDUWLFXODU,3DGGUHVVHV6HOHFWLQJWKH6XEQHW0DVNRIWKH,3DGGUHVVUDQJH

\RXZLVKWRDOORZEORFNWKHWUDI¿FWRRUIRUPVHW,3DGGUHVVDQG6XEQHW0DVNWRWRLQDFWLYH

the Address-Filter rule.

Tip: To block access, to/from a single IP address, enter that IP address as the Host IP

Address and use a Host Subnet Mask of “255.255.255.255”.

Type: It is the packet protocol type used by the application, select TCP, UDPRUERWK7&38'3

Protocol Number: Insert the port number, i.e. GRE 47.

Source Port:7KLV3RUWRU3RUW5DQJHVGH¿QHVWKHSRUWDOORZHGWREHXVHGE\WKH5HPRWH:$1WR

connect to the application. Default is set from range 0 ~ 65535. It is recommended that this option

EHFRQ¿JXUHGE\DQDGYDQFHGXVHU

Destination Port:7KLVLVWKH3RUWRU3RUW5DQJHVWKDWGH¿QHVWKHDSSOLFDWLRQ

Inbound / Outbound:6HOHFW$OORZRU%ORFNWKHDFFHVVWRWKH,QWHUQHW³2XWERXQG´RUIURPWKH

,QWHUQHW³,QERXQG´

Click the Add button to apply your changes.

Example: &RQ¿JXULQJ\RXU¿UHZDOOWRDOORZDSXEOLFO\DFFHVVLEOHZHEVHUYHURQ\RXU/$1

7KHSUHGH¿QHGSRUW¿OWHUUXOHIRU+7737&3SRUWLVWKHVDPHQRPDWWHUZKHWKHUWKH¿UHZDOOLV

set to a high, medium or low security level. To setup a web server located on the local network when

WKH¿UHZDOOLVHQDEOHG\RXKDYHWRFRQ¿JXUHWKH3RUW)LOWHUVVHWWLQJIRU+773

$V\RXFDQVHHIURPWKHGLDJUDPEHORZZKHQWKH¿UHZDOOLVHQDEOHGZLWKRQHRIWKHWKUHHSUHVHWV

/RZ0HGLXP+LJK LQERXQG +773 DFFHVV LV QRW DOORZHG ZKLFK PHDQV UHPRWH DFFHVV WKURXJK

HTTP to your router is not allowed.

Note: Inbound indicates accessing from Internet to LAN and Outbound is from LAN to the

Internet.

&RQ¿JXULQJ3DFNHW)LOWHU

&OLFN3DFNHW)LOWHUV<RXZLOOWKHQEHSUHVHQWHGZLWKWKHSUHGH¿QHGSRUW¿OWHUUXOHVVFUHHQLQ1.

this case for the low security level), shown below:

1RWH<RXPD\FOLFN(GLWWKHSUHGH¿QHGUXOHLQVWHDGRI'HOHWHLW7KLVLVDQH[DPSOHWRVKRZ

WRKRZ\RXDGGD¿OWHURQ\RXURZQ

&KRRVHWKHUDGLREXWWRQ\RXZDQWWRGHOHWHWKHH[LVWLQJ+773UXOH&OLFN(GLW'HOHWHEXWWRQWR2.

delete the existing HTTP rule.

,QSXWWKH5XOH1DPH7LPH6FKHGXOH6RXUFH'HVWLQDWLRQ ,37\SH6RXUFH'HVWLQDWLRQ3RUW3.

Inbound and Outbound.

Example:

Application: Cindy_HTTP

Time Schedule: Always On

6RXUFH'HVWLQDWLRQ,3$GGUHVVHV,GRQRWZLVKWRDFWLYHWKHDGGUHVV¿OWHULQVWHDG,

XVHWKHSRUW¿OWHU

7\SH7&33OHDVHUHIHUWR7DEOH3UHGH¿QHG3RUW)LOWHU

Source Port: 0-65535 (I allow all ports to connect with the application))

5HGLUHFW3RUW7KLVLV3RUWGH¿QHGIRU+773

,QERXQG2XWERXQG$OORZ

7KHQHZSRUW¿OWHUUXOHIRU+773LVVKRZQEHORZ1.

&RQ¿JXUH\RXU9LUWXDO6HUYHU³SRUWIRUZDUGLQJ´VHWWLQJVVRWKDWLQFRPLQJ+773UHTXHVWVRQ2.

port 80 will be forwarded to the PC running your web server:

Intrusion Detection

7KHURXWHU¶V,QWUXVLRQ'HWHFWLRQ6\VWHP,'6LVXVHGWRGHWHFWKDFNHUDWWDFNVDQGLQWUXVLRQ

DWWHPSWVIURPWKH,QWHUQHW,IWKH,'6IXQFWLRQRIWKH¿UHZDOOLVHQDEOHGLQERXQGSDFNHWVDUH

¿OWHUHGDQGEORFNHGGHSHQGLQJRQZKHWKHUWKH\DUHGHWHFWHGDVSRVVLEOHKDFNHUDWWDFNVLQWUXVLRQ

attempts or other connections that the router determines to be suspicious.

Blacklist: If the router detects a possible attack, the source IP or destination IP address will be

DGGHGWRWKH%ODFNOLVW$Q\IXUWKHUDWWHPSWVXVLQJWKLV,3DGGUHVVZLOOEHEORFNHGIRUWKHWLPH

SHULRGVSHFL¿HGDVWKH%ORFN'XUDWLRQ7KHGHIDXOWVHWWLQJIRUWKLVIXQFWLRQLVIDOVHGLVDEOHG

6RPHDWWDFNW\SHVDUHGHQLHGLPPHGLDWHO\ZLWKRXWXVLQJWKH%ODFNOLVWIXQFWLRQVXFKDV/DQG

DWWDFNDQG(FKR&KDU*HQVFDQ

Intrusion Detection: If enabled, IDS will block Smurf attack attempts. Default is false.

Block Duration:

Victim Protection Block Duration: This is the duration for blocking Smurf attacks. Default

value is 600 seconds.

Scan Attack Block Duration: This is the duration for blocking hosts that attempt a possible

Scan attack. Scan attack types include X’mas scan, IMAP SYN/FIN scan and similar attempts.

Default value is 86400 seconds.

DoS Attack Block Duration: This is the duration for blocking hosts that attempt a possible

Denial of Service (DoS) attack. Possible DoS attacks this attempts to block include Ascend

Kill and WinNuke. Default value is 1800 seconds.

Max TCP Open Handshaking Count: This is a threshold value to decide whether a SYN Flood

attempt is occurring or not. Default value is 100 TCP SYN per seconds.

Max PING Count: This is a threshold value to decide whether an ICMP Echo Storm is occurring or

not. 'HIDXOWYDOXHLV,&03(FKR5HTXHVWV3,1*SHUVHFRQG

Max ICMP Count: This is a threshold to decide whether an ,&03ÀRRG is occurring or not. Default

YDOXHLV,&03SDFNHWVSHUVHFRQGVH[FHSW,&03(FKR5HTXHVWV3,1*

)RU6<1)ORRG,&03(FKR6WRUPDQG,&03ÀRRG,'6ZLOOMXVWZDUQWKHXVHULQWKH(YHQW/RJ,W

cannot protect against such attacks.

Table 2: Hacker attack types recognized by the IDS

Intrusion Name Detect Parameter Blacklist Type of Block

Duration

Drop

Packet Show Log

Ascend Kill $VFHQG.LOOGDWD Src IP DoS Yes Yes

WinNuke

TCP

Port 135,

137~139, Flag:

URG

Src IP DoS Yes Yes

Smurf

,&03W\SH

Des IP is

broadcast

Dst IP Victim

Protection Yes Yes

Land attack SrcIP = DstIP Yes Yes

Echo/CharGen

Scan

UDP Echo Port

and CharGen Port Yes Yes

Echo Scan UDP Dst Port =

Echo(7) Src IP Scan Yes Yes

CharGen Scan UDP Dst Port =

CharGen(19) Src IP Scan Yes Yes

X’mas Tree Scan 7&3)ODJ;¶PDV Src IP Scan Yes Yes

IMAP

SYN/FIN Scan

7&3)ODJ6<1

FIN

DstPort:

,0$3

SrcPort: 0 or

65535

Src IP Scan Yes Yes

SYN/FIN/RST/ACK

Scan

TCP,

No Existing

session And Scan

Hosts more than

¿YH

Src IP Scan Yes Yes

Net Bus Scan

TCP

No Existing

session

'VW3RUW 1HW%XV

12345,12346,

3456

SrcIP Scan Yes Yes

%DFN2UL¿FH6FDQ

UDP, DstPort

2UL¿FH3RUW

(31337)

SrcIP Scan Yes Yes

SYN Flood

0D[7&32SHQ

Handshaking

Count (Default

FVHF

Yes

ICMP Flood

0D[,&03&RXQW

'HIDXOWF

sec)

Yes

ICMP Echo 0D[3,1*&RXQW

'HIDXOWFVHF Yes

Src IP: Source IP

Src Port: Source Port

Dst Port: Destination Port

Dst IP: Destination IP

Billion Electric BIL-7404VGOX (3G)/VoIP/802.11g ADSL2+(VPN) Firewall Router User Manual 1

Billion Electric Co., Ltd. (3G)/VoIP/802.11g ADSL2+(VPN) Firewall Router Users Manual 1

Contents

Users Manual 1

Navigation menu

Namespaces

Views

Navigation