LevelOne
User Manual
WBR-6000
N_One Wireless Broadband Router
Ver. 3.0.0-0801
Safety
FCC WARNING
This equipment has been tested and found to comply with the limits
for a Class B digital device, pursuant to Part 15 of the FCC Rules.
These limits are designed to provide reasonable protection against
harmful interference in a residential installation.
This equipment generates, uses and can radiate radio frequency
energy and, if not installed and used in accordance with the
instructions, may cause harmful interference to radio
communications. However, there is no guarantee that interference
will not occur in a particular installation. If this equipment does cause
harmful interference to radio or television reception, which can be
determined by turning the equipment off and on, the user is
encouraged to try to correct the interference by one of the following
measures:
• Reorient or relocate the receiving antenna.
• Increase the separation between the equipment and receiver.
• Connect the equipment into an outlet on a circuit different from
that to which the receiver is connected.
• Consult the dealer or an experienced radio/TV technician for
help.
To assure continued compliance, any changes or modifications not
expressly approved by the party responsible for compliance could
void the user's authority to operate this equipment. (Example - use
only shielded interface cables when connecting to computer or
peripheral devices).
FCC Radiation Exposure Statement
This equipment complies with FCC RF radiation exposure limits set
forth for an uncontrolled environment. This equipment should be
installed and operated with a minimum distance of 20 centimeters
between the radiator and your body.
This device complies with Part 15 of the FCC Rules. Operation is
subject to the following two conditions:
(1) This device may not cause harmful interference, and
ii
(2) This device must accept any interference received, including
interference that may cause undesired operation.
This transmitter must not be co-located or operating in conjunction
with any other antenna or transmitter.
CE Declaration of conformity
This product complies with the 99/5/EEC directives, including the
following safety and EMC standards:
• EN300328-2
• EN301489-1/-17
• EN60950
CE Marking Warning
This is a Class B product. In a domestic environment this product
may cause radio interference in which case the user may be
required to take adequate measures.
iii
Table of Contents
1 INTRODUCTION .............................................................................. 1
1.1 Wireless Broadband Router Features.................................1
1.2 Package Contents..................................................................6
2 HARDWARE DESCRIPTION ......................................................... 7
2.1 Physical Details...................................................................... 7
2.2 Requirements......................................................................... 9
2.3 Installation...........................................................................10
2.4 Default Setting.....................................................................12
3 SETUP ............................................................................................... 13
3.1 Overview .............................................................................. 13
3.2 Configuration Program......................................................15
3.3 Setup Wizard.......................................................................17
3.4 Home Screen........................................................................ 20
3.5 LAN Screen.......................................................................... 22
3.6 Wireless Screen.................................................................... 25
3.7 Wireless Security................................................................. 30
3.8 Password Screen..................................................................35
4 PC CONFIGURATION................................................................... 37
4.1 Overview .............................................................................. 37
4.2 Windows Clients.................................................................. 37
4.3 Macintosh Clients................................................................ 47
4.4 Linux Clients........................................................................ 48
4.5 Other Unix Systems............................................................. 48
4.6 Wireless Station Configuration.......................................... 49
4.7 Wireless Configuration on Windows XP .......................... 50
5 STATUS............................................................................................. 65
5.1 Status.................................................................................... 65
5.2 Connection Status - PPPoE................................................ 68
5.3 Connection Status - PPTP.................................................. 72
5.4 Connection Status - L2TP .................................................. 74
5.5 Connection Status - Telstra Big Pond ............................... 76
5.6 Connection Details - SingTel RAS..................................... 78
5.7 Connection Details - Other (e.g. Fixed Wireless) ............. 80
6 ADVANCED FEATURES............................................................... 82
6.1 Overview .............................................................................. 82
6.2 Internet................................................................................. 83
i
Access Control..................................................................... 89
6.3
6.4 Dynamic DNS ...................................................................... 94
6.5 URL Filter............................................................................ 97
6.6 User Groups.........................................................................99
6.7 Options............................................................................... 101
6.8 Schedule ............................................................................. 103
6.9 Virtual Servers .................................................................. 104
6.10 WAN Port .......................................................................... 109
7 ADVANCED ADMINISTRATION.............................................. 114
7.1 Overview ............................................................................ 114
7.2 PC Database....................................................................... 115
7.3 Config File.......................................................................... 120
7.4 Logs .................................................................................... 122
7.5 Diagnostics......................................................................... 126
7.6 QoS ..................................................................................... 128
7.7 Remote Administration .................................................... 130
7.8 Routing...............................................................................132
7.9 Security Options................................................................ 138
7.10 Upgrade Firmware............................................................141
8 TROUBLESHOOTING................................................................. 142
8.1 Overview ............................................................................ 142
8.2 General Problems..............................................................143
8.3 Internet Access .................................................................. 144
8.4 Wireless Access..................................................................145
9 ABOUT WIRELESS LANS........................................................... 147
9.1 Modes ................................................................................. 147
9.2 BSS/ESS ............................................................................. 148
9.3 Channels............................................................................. 149
9.4 WEP.................................................................................... 150
9.5 WPA-PSK.......................................................................... 151
9.6 Wireless LAN Configuration............................................ 152
10 SPECIFICATIONS.................................................................. 153
10.1 Multi-Function Wireless Broadband Router.................. 153
10.2 Wireless Interface.............................................................. 154
ii
1 Introduction
This Chapter provides an overview of the Wireless
Broadband Router's features and capabilities.
Congratulations on the purchase of your new Wireless Broadband
Router. The Wireless Broadband Router is a multi-function device
providing the following services:
•
Shared Broadband Internet Access for all LAN users.
•
4-Port Switching Hub for 10BaseT or 100BaseT connections.
1.1 Wireless Broadband Router
Features
The Wireless Broadband Router incorporates many advanced
features, carefully designed to provide sophisticated functions while
being easy to use.
Internet Access Features
• Shared Internet Access. All users on the LAN or WLAN can
access the Internet through the Wireless Broadband Router,
using only a single external IP Address. The local (invalid) IP
Addresses are hidden from external sources. This process is
called NAT (Network Address Translation).
Auto-detection of Internet Connection Method. In most
•
situations, the Wireless Broadband Router can test your ADSL
and Internet connection to determine the connection method
used by your ISP.
PPPoE, PPTP, SingTel RAS and Telstra Big Pond
•
Support.
(PPP over Ethernet), PPTP (Peer-to-Peer Tunneling Protocol),
SingTel RAS and Telstra Big Pond (Australia), as well as "Direct
Connection" type services. Unnumbered IP with PPPoE is also
supported.
The Internet (WAN port) connection supports PPPoE
1
•
Fixed or Dynamic IP Address. On the Internet connection,
the Wireless Broadband Router supports both Dynamic IP
Address (IP Address is allocated on connection) and Fixed IP
Address.
Advanced Internet Functions
• Communication Applications. Support for Internet
communication applications, such as interactive Games,
Telephony, and Conferencing applications, which are often
difficult to use when behind a Firewall, is included.
Special Internet Applications. Applications which use non-
•
standard connections or port numbers are normally blocked by
the Firewall. The ability to define and allow such applications is
provided, to enable such applications to be used normally.
Virtual Servers. This feature allows Internet users to access
•
Internet servers on your LAN. The required setup is quick and
easy.
Dynamic DNS Support. DDNS, when used with the Virtual
•
Servers feature, allows users to connect to Servers on your LAN
using a Domain Name, even if you have a dynamic IP address
which changes every time you connect.
Multi-DMZ. For each WAN (Internet) IP address allocated to
•
you, one (1) PC on your local LAN can be configured to allow
unrestricted 2-way communication with Servers or individual
users on the Internet. This provides the ability to run programs
which are incompatible with Firewalls.
URL Filter. Use the URL Filter to block access to undesirable
•
Web sites by LAN users.
Access Control. Using the Access Control feature, you can
•
assign LAN users to different groups, and determine which
Internet services are available to each group.
Scheduling. Both the URL Filter and Firewall rules can be
•
scheduled to operate only at certain times. This provides great
flexibility in controlling Internet -bound traffic.
Logs. Define what data is recorded in the Logs, and optionally
•
send log data to a Syslog Server. Log data can also be E-mailed
to you.
2
Wireless Features
• Standards Compliant. The Wireless Broadband Router
complies with the IEEE802.11g (DSSS) specifications for
Wireless LANs.
Supports Pre-N Wireless Stations. The 802.11n Draft
•
standard provides for backward compatibility with the 802.11b
standard, so 802.11n, 802.11b and 802.11g Wireless stations
can be used simultaneously.
Speeds to 300Mbps. All speeds up to the 802.11g maximum
•
of 300Mbps are supported.
WEP support. Support for WEP (Wired Equivalent Privacy) is
•
included. Key sizes of 64 Bit and 128 Bit are supported. WEP
encrypts any data before transmission, providing protection
against snoopers.
WPA-PSK (WPA2-PSK) support. Like WEP, WPA-PSK
•
encrypts any data before transmission, providing protection
against snoopers. The WPA-PSK is a later standard than WEP,
and provides both easier configuration and greater security than
WEP.
Wireless MAC Access Control. The Wireless Access
•
Control feature can check the MAC address (hardware address)
of Wireless stations to ensure that only trusted Wireless Stations
can access your LAN.
Simple Configuration. If the default settings are unsuitable,
•
they can be changed quickly and easily.
WPS Support. WPS (Wi-Fi Protected Setup) allows
•
consumers to protect their home networks by using the push
button configuration (PBC) on the router, or entering an 8-digit
PIN code if there's no button.
LAN Features
• 4-Port Switching Hub. The Wireless Broadband Router
incorporates a 4-port 10/100BaseT switching hub, making it easy
to create or extend your LAN.
DHCP Server Support. Dynamic Host Configuration Protocol
•
provides a dynamic IP address to PCs and other devices upon
3
request. The Wireless Broadband Router can act as a DHCP
Server for devices on your local LAN and WLAN.
Configuration & Management
• Easy Setup. Use your WEB browser from anywhere on the
LAN or WLAN for configuration.
Configuration File Upload/Download. Save (download)
•
the configuration data from the Wireless Broadband Router to
your PC, and restore (upload) a previously-saved configuration
file to the Wireless Broadband Router.
Remote Management. The Wireless Broadband Router can
•
be managed from any PC on your LAN or Wireless LAN. And, if
the Internet connection exists, it can also (optionally) be
configured via the Internet.
Network Diagnostics. You can use the Wireless Broadband
•
Router to perform a Ping or DNS lookup.
Security Features
• Password - protected Configuration. Password protection
is provided to prevent unauthorized users from modifying the
configuration data and settings.
Wireless LAN Security. WPA-PSK, WEP and Wireless
•
access control by MAC address are all supported. The MAClevel access control feature can be used to prevent unknown
wireless stations from accessing your LAN.
NAT Protection. An intrinsic side effect of NAT (Network
•
Address Translation) technology is that by allowing all LAN users
to share a single IP address, the location and even the existence
of each PC is hidden. From the external viewpoint, there is no
network, only a single device - the Wireless Broadband Router.
Firewall. All incoming data packets are monitored and all
•
incoming server requests are filtered, thus protecting your
network from malicious attacks from external sources.
Protection against DoS attacks. DoS (Denial of Service)
•
attacks can flood your Internet connection with invalid packets
and connection requests, using so much bandwidth and so many
resources that Internet access becomes unavailable. The
4
Wireless Broadband Router incorporates protection against DoS
attacks.
5
1.2 Package Contents
The following items should be included. If any of these items are
damaged or missing, please contact your dealer immediately.
• WBR-6000
• Cat.5 Cable
• Power Adapter
• Quick Installation Guide
• CD Manual
6
2 Hardware Description
This Chapter covers the physical installation of the
Wireless Broadband Router.
2.1 Physical Details
Front-mounted LEDs
Figure 1: Front Panel
KEY
WLAN
LAN
PWR
WAN
NET
On - Wireless security is enabled.
Off - Wireless security is disabled.
Blinking – WPS function is currently in use.
On - Wireless connection.
Off - No Wireless connections currently exist.
On - Corresponding LAN (hub) port is active.
Off - No active connection on the corresponding
LAN (hub) port.
On - Power on.
Off - No power.
Flashing - This LED blinks during start up, and
during a Firmware Upgrade.
On - Connection to the modem attached to the
WAN (Internet) port is established.
Off – No connection to the modem attached to
the WAN (Internet) port.
On - Internet connection is available.
Off - No Internet connection available.
7
Rear Panel
Figure 2: Rear Panel
WPS Button
10/100BaseT
LAN connections
WAN port
(10/100BaseT)
Reset Button
(Reset to
Defaults)
Power port
Push the WPS button on the router and on your
other wireless device to create an encryptionsecured wireless connection automatically.
Use standard LAN cables (RJ45 connectors) to
connect your PCs to these ports.
Note:
Any LAN port on the Wireless Broadband
Router will automatically function as an "Uplink"
port when required. Just connect any port to a
normal port on the other hub, using a standard
LAN cable.
Connect the DSL or Cable Modem here. If your
modem came with a cable, use the supplied
cable. Otherwise, use a standard LAN cable.
This button will reset the Wireless Broadband
Router to the factory default settings.
To do this, press and hold the Reset Button for
five (5) seconds, until the Status LED is lit, then
release the Reset Button, and wait the Wireless
Broadband Router to restart using the factory
default values.
Connect the supplied power adapter here.
8
2.2 Requirements
• Network cables. Use standard 10/100BaseT network (UTP)
cables with RJ45 connectors.
• TCP/IP protocol must be installed on all PCs.
• For Internet Access, an Internet Access account with an ISP,
and a DSL connection.
• To use the Wireless Access Point, all Wireless devices must be
compliant with the IEEE 802.11g, IEEE 802.11b and IEEE
802.11n Draft specifications.
9
2.3 Installation
Figure 3: Installation Diagram
1. Choose an Installation Site
Select a suitable place on the network to install the Wireless
Broadband Router.
10
For best Wireless reception and performance, the
Wireless Broadband Router should be positioned in
a central location with minimum obstructions
between the Wireless Broadband Router and the
PCs.
Also, if using multiple Access Points, adjacent
Access Points should use different Channels.
2. Connect LAN Cables
Use standard LAN cables to connect PCs to the Switching Hub
ports on the Wireless Broadband Router. Both 10BaseT and
100BaseT connections can be used simultaneously.
If required, connect any port to a normal port on another Hub,
using a standard LAN cable. Any LAN port on the Wireless
Broadband Router will automatically function as an "Uplink" port
when required.
3. Connect ADSL Cable
Connect the supplied ADSL cable from to the WAN port on the
Wireless Broadband Router (the RJ11 connector) to the ADSL
terminator provided by your phone company.
4. Power Up
Connect the supplied power adapter to the Wireless Broadband
Router. Use only the power adapter provided. Using a different
one may cause hardware damage.
5. Check the LEDs
• The PWR LED should be ON.
• For LAN (PC) connection, the LAN LED should be ON (provided
the PC is also ON.)
• The WLAN LED should be ON
• The WAN LED should be ON if ADSL line is connected.
• The NET LED may be OFF. After configuration, it should come ON.
11
2.4 Default Setting
• IP Address : 192.168.0.1 (LAN)
• User Name : admin
• Password : password
• WPS Pin Code: Please refer to the following picture on the
Wireless Broadband Router
Please record WPS Pin Code for future reference or
for technical support.
12
3 Setup
This Chapter provides Setup details of the Wireless
Broadband Router.
3.1 Overview
This chapter describes the setup procedure for:
• Internet Access
• LAN configuration
• Wireless setup
• Assigning a Password to protect the configuration data.
PCs on your local LAN may also require configuration. For details,
see Chapter 4 - PC Configuration.
Other configuration may also be required, depending on which
features and functions of the Wireless Broadband Router you wish to
use. Use the table below to locate detailed instructions for the
required functions.
To Do this: Refer to:
Configure PCs on your LAN. Chapter 4:PC
Configuration
Check Wireless Broadband Router Status. Chapter 5:Status
13
Use any of the following Advanced
features:
• Internet
• Access Control
• Dynamic DNS
• URL Filter
• User Groups
• Options
• Schedule
• Virtual Servers
• WAN Port
Use any of the following Administration
Configuration settings or features:
• PC Database
• Config File
• Logs
• Diagnostics
• QoS
• Remote Admin
• Routing
• Security
• Upgrade Firmware
Chapter 6:Advanced
Features
Chapter 7:Advanced
Administration
14
3.2 Configuration Program
The Wireless Broadband Router contains an HTTP server. This
enables you to connect to it, and configure it, using your Web
Browser. Your Browser must support JavaScript.
The configuration program has been tested on the following
browsers:
• Netscape 7.1 or later.
• Mozilla 1.6 or later
• Internet Explorer V5.5 or later
Preparation
Before attempting to configure the Wireless Broadband Router,
please ensure that:
• Your PC can establish a physical connection to the Wireless
Broadband Router. The PC and the Wireless Broadband Router
must be directly connected (using the Hub ports on the Wireless
Broadband Router) or on the same LAN segment.
• The Wireless Broadband Router must be installed and powered
ON.
• If the Wireless Broadband Router's default IP Address
(192.168.0.1) is already used by another device, the other
device must be turned OFF until the Wireless Broadband Router
is allocated a new IP Address during configuration.
Using your Web Browser
To establish a connection from your PC to the Wireless Broadband
Router:
1. After installing the Wireless Broadband Router in your LAN, start
your PC. If your PC is already running, restart it.
2. Start your WEB browser.
3. In the Address box, enter "HTTP://" and the IP Address of the
Wireless Broadband Router, as in this example, which uses the
Wireless Broadband Router's default IP Address:
HTTP://192.168.0.1
15
4. When prompted for the User name and Password, enter values
as follows:
• User name: admin
• Password: password
If you can't connect
If the Wireless Broadband Router does not respond, check the
following:
• The Wireless Broadband Router is properly installed, LAN
connection is OK, and it is powered ON. You can test the
connection by using the "Ping" command:
• Open the MS-DOS window or command prompt window.
• Enter the command:
ping 192.168.0.1
If no response is received, either the connection is not
working, or your PC's IP address is not compatible with the
Wireless Broadband Router's IP Address. (See next item.)
• If your PC is using a fixed IP Address, its IP Address must be
within the range 192.168.0.2 to 192.168.0.254 to be compatible
with the Wireless Broadband Router's default IP Address of
192.168.0.1. Also, the Network Mask must be set to
255.255.255.0. See Chapter 4 - PC Configuration for details on
checking your PC's TCP/IP settings.
• Ensure that your PC and the Wireless Broadband Router are on
the same network segment. (If you don't have a router, this must
be the case.)
• Ensure you are using the wired LAN interface. The Wireless
interface can only be used if its configuration matches your PC's
wireless settings.
16
3.3 Setup Wizard
The first time you connect to the Wireless Router, the Setup Wizard
will run automatically. (The Setup Wizard will also run if the Wireless
Router's default setting is restored.)
1. Step through the Wizard until finished.
• You need to know the type of Internet connection service
used by your ISP. Check the data supplied by your ISP.
• The common connection types are explained in the tables
below.
2. On the final screen of the Wizard, run the test and check that an
Internet connection can be established.
3. If the connection test fails:
• Check your data, the Cable/DSL modem, and all
connections.
• Check that you have entered all data correctly.
• If using a Cable modem, your ISP may have recorded the
MAC (physical) address of your PC. Run the Wizard, and on
the Cable Modem screen, use the "Clone MAC address"
button to copy the MAC address from your PC to the
Wireless Router.
17
Common Connection Types
Cable Modems
Type Details ISP Data required
Dynamic IP
Address
Static
(Fixed) IP
Address
Your IP Address is
allocated automatically,
when you connect to you
ISP.
Your ISP allocates a
permanent IP Address to
you.
Usually, none.
However, some ISP's
may require you to use a
particular Hostname,
Domain name, or MAC
(physical) address.
IP Address allocated to
you.
Some ISP's may also
require you to use a
particular Hostname,
Domain name, or MAC
(physical) address.
DSL Modems
Type Details ISP Data required
Dynamic IP
Address
Static
(Fixed)
IP Address
Your IP Address is
allocated automatically,
when you connect to you
ISP.
Your ISP allocates a
permanent IP Address to
you.
None.
IP Address allocated to
you.
PPPoE You connect to the ISP
only when required. The
IP address is usually
allocated automatically.
18
User name and
password.
PPTP PPTP is mainly used in
Europe.
You connect to the ISP
only when required. The
IP address is usually
allocated automatically,
but may be Static
(Fixed).
• Server IP Address.
• User name and
password.
• IP Address allocated
to you, if Static
(Fixed).
Other Modems (e.g. Broadband Wireless)
Type Details ISP Data required
Dynamic IP
Address
Static
(Fixed) IP
Address
Your IP Address is
allocated automatically,
when you connect to you
ISP.
Your ISP allocates a
permanent IP Address to
you.
None.
IP Address allocated to
you.
Big Pond (Telstra, Australia)
For this connection method, the following data is required:
• User Name
• Password
• Big Pond Server IP address
SingTel RAS
For this connection method, the following data is required:
• User Name
• Password
• RAS Plan
19
3.4 Home Screen
After finishing the Setup Wizard, you will see the Home screen.
When you connect in future, you will see this screen when you
connect. An example screen is shown below.
Figure 4: Home Screen
Main Menu
The main menu, on the left, contains links to the most-commonly
used screen. To see the links to the other available screens, click
"Advanced".
The main menu also contains one button:
• Log Out - When finished, you should click this button to logout.
Navigation & Data Input
• Use the menu bar on the left of the screen, and the "Back"
button on your Browser, for navigation.
20
• Changing to another screen without clicking "Save" does NOT
save any changes you may have made. You must "Save" before
changing screens or your data will be ignored.
On each screen, clicking the "Help" button will
display help for that screen.
21
3.5 LAN Screen
Use the LAN link on the main menu to reach the LAN screen. An
example screen is shown below.
Figure 5: LAN Screen
Data - LAN Screen
TCP/IP
IP Address
Subnet
Mask
IP address for the Wireless Broadband Router, as
seen from the local LAN. Use the default value
unless the address is already in use or your LAN is
using a different IP address range. In the latter case,
enter an unused IP Address from within the range
used by your LAN.
The default value 255.255.255.0 is standard for
small (class "C") networks. For other networks, use
the Subnet Mask for the LAN segment to which the
Wireless Broadband Router is attached (the same
value as the PCs on that LAN segment).
22
DHCP
Server
• If Enabled, the Wireless Broadband Router will
allocate IP Addresses to PCs (DHCP clients) on
your LAN when they start up. The default (and
recommended) value is Enabled.
• If you are already using a DHCP Server, this
setting must be disabled, and the existing DHCP
server must be re-configured to treat the
Wireless Broadband Router as the default
Gateway. See the following section for further
details.
• The Start IP Address and Finish IP Address
fields set the values used by the DHCP server
when allocating IP Addresses to DHCP clients.
This range also determines the number of
DHCP clients supported.
See the following section for further details on using
DHCP.
DHCP
What DHCP Does
A DHCP (Dynamic Host Configuration Protocol) Server allocates a
valid IP address to a DHCP Client (PC or device) upon request.
• The client request is made when the client device starts up
(boots).
• The DHCP Server provides the Gateway and DNS addresses to
the client, as well as allocating an IP Address.
• The Wireless Broadband Router can act as a DHCP server.
• You must NOT have two (2) or more DHCP Servers on the same
LAN segment. (If your LAN does not have other Routers, this
means there must only be one (1) DHCP Server on your LAN.)
Using the Wireless Broadband Router's DHCP Server
This is the default setting. The DHCP Server settings are on the LAN
screen. On this screen, you can:
23
• Enable or Disable the Wireless Broadband Router's DHCP
Server function.
• Set the range of IP Addresses allocated to PCs by the DHCP
Server function.
You can assign Fixed IP Addresses to some devices
while using DHCP, provided that the Fixed IP
Addresses are NOT within the range used by the
DHCP Server.
Using another DHCP Server
You can only use one (1) DHCP Server per LAN segment. If you
wish to use another DHCP Server, rather than the Wireless
Broadband Router's, the following procedure is required.
• Disable the DHCP Server feature in the Wireless Broadband
Router. This setting is on the LAN screen.
• Configure the DHCP Server to provide the Wireless Broadband
Router's IP Address as the Default Gateway.
To Configure your PCs to use DHCP
This is the default setting for TCP/IP for all non-Server versions of
Windows.
See Chapter 4 - Client Configuration for the procedure to check
these settings.
24
3.6 Wireless Screen
The Wireless Broadband Router's settings must match the other
Wireless stations.
Note that the Wireless Broadband Router will automatically accept
802.11b, 802.11g and 802.11n Draft, and no configuration is
required for this feature.
To change the Wireless Broadband Router's default settings for the
Wireless Access Point feature, use the Wireless link on the main
menu to reach the Wireless screen. An example screen is shown
below.
Figure 6: Wireless Screen
25
Data - Wireless Screen
Identification
Region
Station
name
SSID
Options
802.11 Mode
Select the correct domain for your location. It is your
responsibility to ensure:
• That the Wireless Broadband Router is only
used in domains for which is licensed.
• That you select the correct domain, so that only
the legal channels for that domain can be
selected.
This is the same as the "Device Name" for the
Wireless Broadband Router.
This is also called the "Network Name".
• If using an ESS (Extended Service Set, with
multiple access points) this ID is called an
ESSID (Extended Service Set Identifier).
• To communicate, all Wireless stations should
use the same SSID/ESSID.
Select the desired mode:
• Off - If selected, the wireless function is
disabled.
• 802.11b + g + n - 802.11.g, 802.11b and
802.11n Wireless stations will be able to use the
Wireless Broadband Router.
Channel No.
Select the Channel you wish to use on your Wireless
LAN.
• If you experience interference (shown by lost
connections and/or slow data transfers) you may
need to experiment with different channels to
see which channel is the best.
• If using multiple Access Points, adjacent Access
Points should use different Channels to reduce
interference.
26
Broadcast
SSID
If enabled, the Wireless Broadband Router will
broadcast its SSID. This allows PCs and other
wireless stations to detect this Access Point and use
the correct SSID.
If disabled, PC users will have to manually enter the
SSID and other details of the wireless interface
before they can connect to this Access Point.
Wireless Security
Current
Setting
Configure
Button
The current Wireless security is displayed. The
default value is Disabled.
Click this button to access the Wireless security subscreen, and view or change the settings. See the
following section for details.
MAC Level Access Control
Allow
Wireless
access by
Use this feature to determine which Wireless
stations can use the Access Point. The options are:
• All Wireless Stations - All wireless stations can
use the access point, provided they have the
correct SSID and security settings.
• Selected Wireless stations only - Only
selected wireless stations can use the Access
Point. To select the required wireless stations,
click the "Select Stations" button.
Allow LAN
access by …
• All Wireless Stations - All wireless stations can
use the access point to access your LAN.
• Selected Wireless stations only - Only
selected wireless stations access your LAN. To
select the required wireless stations, click the
"Select Stations" button.
27
Allow
Internet
access by …
Select
Stations
Button
EWC Setting
Bandwidth
Wide
Channel
WPS Button
Wireless QoS
Enable
WMM
• All Wireless Stations - All wireless stations can
use the access point to access the Internet.
• Selected Wireless stations only - Only
selected wireless stations use the access point
to access the Internet. To select the required
wireless stations, click the "Select Stations"
button.
Click this button to manage the trusted PC database.
Select the desired bandwidth from the drop-down
list.
Select the desired option as required.
Click this button to access the WPS (Wi-Fi Protected
Setup) sub-screen to change the settings.
Enable WMM (Wi-Fi Multimedia) function. The
default value is Enable.
28
Wi-Fi Protected Setup
Figure 7: Wi-Fi Protected Screen
Data - WPS Screen
Wi-Fi Protected Setup
Input
Enrollee’s PIN
Change AP
Setting
Enter the PIN code to the client device.
Click the Auto generate button to have the new
pin code displayed in the field.
29
3.7 Wireless Security
This screen is accessed by clicking the "Configure" button on the
Wireless screen. There are 5 options for Wireless security:
• Disabled - no data encryption is used.
• WEP - data is encrypted using the WEP standard.
• WPA-PSK - data is encrypted using the WPA-PSK standard.
This is a later standard than WEP, and provides much better
security than WEP. If all your Wireless stations support WPAPSK, you should use WPA-PSK rather than WEP.
• WPA2-PSK - This is a further development of WPA-PSK, and
offers even greater security, using the AES (Advanced
Encryption Standard) method of encryption.
• WPAM-PSK(Mixed) - This method, sometimes called "Mixed
Mode", allows clients to use EITHER WPA-PSK (with TKIP) OR
WPA2-PSK (with AES).
WEP Wireless Security
Figure 8: WEP
30
Data - WEP Screen
WEP Data Encryption
Authentication
Key Size
Passphrase
Key
Key Value
Normally this can be left at the default value of
"Auto". If that fails, select the appropriate value "Open System" or "Shared Key." Check your
wireless station's documentation to see what
method to use.
Select the WEP Encryption level:
• 64-bit (sometimes called 40-bit) encryption
• 128-bit (sometimes called 104 bit) encryption
If desired, you can generate a key from a phrase,
instead of entering the key value directly. Enter
the desired phrase, and click the "Generate Keys"
button.
Select the key you wish to be the default.
Transmitted data is ALWAYS encrypted using the
Default Key; the other Keys are for decryption
only.
You must enter a Key Value for the Default Key.
Enter the key value or values you wish to use. The
Key is required, the other keys are optional. Other
stations must have the same key.
31
WPA-PSK Wireless Security
Figure 9: WPA-PSK
Data - WPA-PSK Screen
Authentication WPA-PSK
Passphrase
(PSK)
Key Lifetime
Encryption
Like WEP, data is encrypted before transmission.
WPA is more secure than WEP, and should be
used if possible. WPA-PSK is the version of WPA,
which does NOT require a Radius Server on your
LAN.
Enter the PSK. Data is encrypted using a key
derived from the network key. Other Wireless
Stations must use the same network key. The
PSK must be from 8 to 63 characters in length.
This determines how often the encryption key is
changed. You can change the default value if
desired.
The WPA-PSK standard allows different
encryption methods to be used. Select the desired
option. Wireless Stations must use the same
encryption method.
32
WPA2-PSK Wireless Security
Figure 10: WPA2-PSK
Data - WPA2-PSK Screen
Authentication WPA2-PSK
Passphrase
(PSK)
Key Lifetime
Encryption
This is a further development of WPA-PSK, and
offers even greater security, using the AES
(Advanced Encryption Standard) method of
encryption.
Enter the PSK. Data is encrypted using a key
derived from the network key. Other Wireless
Stations must use the same network key. The
PSK must be from 8 to 63 characters in length.
This determines how often the encryption key is
changed. You can change the default value if
desired.
The WPA2-PSK standard allows different
encryption methods to be used. Select the desired
option. Wireless Stations must use the same
encryption method.
33
WPAM-PSK Wireless Security
Figure 11: WPAM-PSK
Data - WPAM-PSK Screen
Authentication WPAM-PSK
Passphrase
(PSK)
Key Lifetime
Encryption
This method, sometimes called "Mixed Mode",
allows clients to use EITHER WPA-PSK (with
TKIP) OR WPA2-PSK (with AES).
Enter the PSK (network key). Data is encrypted
using a key derived from the network key. Other
Wireless Stations must use the same network
key. The PSK must be from 8 to 63 characters in
length.
This determines how often the encryption key is
changed. You can change the default value if
desired.
The WPAM-PSK standard allows different
encryption methods to be used. Select the desired
option. Wireless Stations must use the same
encryption method.
34
3.8 Password Screen
The password screen allows you to assign a password to the
Wireless Broadband Router.
Figure 12: Password Screen
Old Password
New password
Verify password
You will be prompted for the password when you connect, as shown
below.
Enter the existing password in this field.
Enter the new password here.
Re-enter the new password here.
35
Figure 13: Password Dialog
• The "User Name" is always admin
• Enter the password for the Wireless Broadband Router, as set
on the Password screen above.
36
4 PC Configuration
This Chapter details the PC Configuration required
on the local ("Internal") LAN.
4.1 Overview
For each PC, the following may need to be configured:
• TCP/IP network settings
• Internet Access configuration
• Wireless configuration
4.2 Windows Clients
This section describes how to configure Windows clients for Internet
access via the Wireless Broadband Router.
The first step is to check the PC's TCP/IP settings.
The Wireless Broadband Router uses the TCP/IP network protocol
for all functions, so it is essential that the TCP/IP protocol be
installed and configured on each PC.
TCP/IP Settings - Overview
If using the default Wireless Broadband Router settings,
and the default Windows TCP/IP settings, no changes
need to be made.
• By default, the Wireless Broadband Router will act as a DHCP
Server, automatically providing a suitable IP Address (and
related information) to each PC when the PC boots.
• For all non-Server versions of Windows, the default TCP/IP
setting is to act as a DHCP client.
37
If using a Fixed (specified) IP address, the following
changes are required:
• The Gateway must be set to the IP address of the Wireless
Broadband Router
• The DNS should be set to the address provided by your ISP.
If your LAN has a Router, the LAN Administrator
must re-configure the Router itself. Refer to Chapter
8 - Advanced Setup for details.
38
Checking TCP/IP Settings - Windows 2000:
1. Select Control Panel - Network and Dial-up Connection.
2. Right - click the Local Area Connection icon and select
Properties. You should see a screen like the following:
Figure 22: Network Configuration (Win 2000)
3. Select the TCP/IP protocol for your network card.
4. Click on the Properties button. You should then see a screen like
the following.
39
Figure 23: TCP/IP Properties (Win 2000)
5. Ensure your TCP/IP settings are correct, as described below.
Using DHCP
To use DHCP, select the radio button Obtain an IP Address
automatically. This is the default Windows setting. Using this is
recommended. By default, the Wireless Broadband Router will act
as a DHCP Server.
Restart your PC to ensure it obtains an IP Address from the Wireless
Broadband Router.
Using a fixed IP Address ("Use the following IP Address")
If your PC is already configured, check with your network
administrator before making the following changes.
• Enter the Wireless Broadband Router's IP address in the Default
gateway field and click OK. (Your LAN administrator can advise
40
you of the IP Address they assigned to the Wireless Broadband
Router.)
• If the DNS Server fields are empty, select Use the following DNS
server addresses, and enter the DNS address or addresses
provided by your ISP, then click OK.
41
Checking TCP/IP Settings - Windows XP
1. Select Control Panel - Network Connection.
2. Right click the Local Area Connection and choose Properties.
You should see a screen like the following:
Figure 24: Network Configuration (Windows XP)
3. Select the TCP/IP protocol for your network card.
4. Click on the Properties button. You should then see a screen like
the following.
42
Figure 25: TCP/IP Properties (Windows XP)
5. Ensure your TCP/IP settings are correct.
Using DHCP
To use DHCP, select the radio button Obtain an IP Address
automatically. This is the default Windows setting. Using this is
recommended. By default, the Wireless Broadband Router will act
as a DHCP Server.
Restart your PC to ensure it obtains an IP Address from the Wireless
Broadband Router.
Using a fixed IP Address ("Use the following IP Address")
If your PC is already configured, check with your network
administrator before making the following changes.
43
• In the Default gateway field, enter the Wireless Broadband
Router's IP address and click OK. Your LAN administrator can
advise you of the IP Address they assigned to the Wireless
Broadband Router.
• If the DNS Server fields are empty, select Use the following DNS
server addresses, and enter the DNS address or addresses
provided by your ISP, then click OK.
44
Internet Access
To configure your PCs to use the Wireless Broadband Router for
Internet access:
• Ensure that the DSL modem, Cable modem, or other permanent
connection is functional.
• Use the following procedure to configure your Browser to access
the Internet via the LAN, rather than by a Dial-up connection.
For Windows 2000
1. Select Start Menu - Settings - Control Panel - Internet Options.
2. Select the Connection tab, and click the Setup button.
3. Select "I want to set up my Internet connection manually, or I
want to connect through a local area network (LAN)" and click
Next.
4. Select "I connect through a local area network (LAN)" and click
Next.
5. Ensure all of the boxes on the following Local area network
Internet Configuration screen are unchecked.
6. Check the "No" option when prompted "Do you want to set up an
Internet mail account now?".
7. Click Finish to close the Internet Connection Wizard.
Setup is now completed.
For Windows XP
1. Select Start Menu - Control Panel - Network and Internet
Connections.
2. Select Set up or change your Internet Connection.
3. Select the Connection tab, and click the Setup button.
4. Cancel the pop-up "Location Information" screen.
5. Click Next on the "New Connection Wizard" screen.
6. Select "Connect to the Internet" and click Next.
7. Select "Set up my connection manually" and click Next.
8. Check "Connect using a broadband connection that is always
on" and click Next.
9. Click Finish to close the New Connection Wizard.
Setup is now completed.
45
Accessing AOL
To access AOL (America On Line) through the Wireless Broadband
Router, the AOL for Windows software must be configured to use
TCP/IP network access, rather than a dial-up connection. The
configuration process is as follows:
• Start the AOL for Windows communication software. Ensure that
it is Version 2.5, 3.0 or later. This procedure will not work with
earlier versions.
• Click the Setup button.
• Select Create Location, and change the location name from
"New Locality" to "Wireless Broadband Router".
• Click Edit Location. Select TCP/IP for the Network field. (Leave
the Phone Number blank.)
• Click Save, then OK.
Configuration is now complete.
• Before clicking "Sign On", always ensure that you are using the
"Wireless Broadband Router" location.
46
4.3 Macintosh Clients
From your Macintosh, you can access the Internet via the Wireless
Broadband Router. The procedure is as follows.
1. Open the TCP/IP Control Panel.
2. Select Ethernet from the Connect via pop-up menu.
3. Select Using DHCP Server from the Configure pop-up menu.
The DHCP Client ID field can be left blank.
4. Close the TCP/IP panel, saving your settings.
Note:
If using manually assigned IP addresses instead of DHCP, the
required changes are:
• Set the Router Address field to the Wireless Broadband Router's
IP Address.
• Ensure your DNS settings are correct.
47
4.4 Linux Clients
To access the Internet via the Wireless Broadband Router, it is only
necessary to set the Wireless Broadband Router as the "Gateway".
Ensure you are logged in as "root" before attempting any
changes.
Fixed IP Address
By default, most UNIX installations use a fixed IP Address. If you
wish to continue using a fixed IP Address, make the following
changes to your configuration.
• Set your "Default Gateway" to the IP Address of the Wireless
Broadband Router.
• Ensure your DNS (Name server) settings are correct.
To act as a DHCP Client (recommended)
The procedure below may vary according to your version of Linux
and X -windows shell.
1. Start your X Windows client.
2. Select Control Panel - Network
3. Select the "Interface" entry for your Network card. Normally, this
will be called "eth0".
4. Click the Edit button, set the "protocol" to "DHCP", and save this
data.
5. To apply your changes
• Use the "Deactivate" and "Activate" buttons, if available.
• OR, restart your system.
4.5 Other Unix Systems
To access the Internet via the Wireless Broadband Router:
• Ensure the "Gateway" field for your network card is set to the IP
Address of the Wireless Broadband Router.
• Ensure your DNS (Name Server) settings are correct.
48
4.6 Wireless Station Configuration
This section applies to all Wireless stations wishing to use the
Wireless Broadband Router's Access Point, regardless of the
operating system which is used on the client.
To use the Wireless Access Point in the Wireless Broadband Router,
each Wireless Station must have compatible settings, as follows:
Mode The mode must be set to Infrastructure (rather than
Ad-hoc)
Access points only operate in Infrastructure mode.
SSID
(ESSID)
Wireless
Security
This must match the value used on the Wireless
Broadband Router. The default value is Wireless.
Note! The SSID is case sensitive.
By default, Wireless security on the Wireless
Broadband Router is disabled.
• If Wireless security remains disabled on the
Wireless Broadband Router, all stations must
have wireless security disabled.
• If Wireless security is enabled on the Wireless
Router (either WEP or WPA-PSK, WPA2-PSK),
each station must use the same settings as the
Wireless ADLS Router.
49
4.7 Wireless Configuration on Windows XP
If using Windows XP to configure the Wireless interface on your PC,
the configuration procedure is as follows:
1. Open the Network Connections folder. (Start - Settings - Network
Connections).
Figure 26: Network Connections (Windows XP)
2. Right-click the Wireless Network Connection, check that it is
enabled (menu option says Disable, rather than Enable) and
then select View Available Wireless Networks.
3. You will then see a list of wireless networks.
50
Figure 27 Wireless Networks (Windows XP)
4. The next step depends on whether or not Wireless security has
been enabled on the Wireless Broadband Router.
If the "Broadcast SSID" setting on the Wireless
Broadband Router has been disabled, its SSID will
NOT be listed.
See the following section "If the SSID is not listed"
for details of dealing with this situation.
If Wireless Security is Disabled
If Wireless security on the Wireless Broadband Router is disabled,
Windows will warn you that the Wireless network is not secure.
51
Figure 28 Insecure Wireless Network (Windows XP)
To connect:
• Check the checkbox Allow me to connect to the selected
wireless network, even though it is not secure.
• The Connect button will then be available. Click the Connect
button, and wait a few seconds for the connection to be
established.
If using WEP Data Encryption
If WEP data encryption has been enabled on the Wireless
Broadband Router, Windows will detect this, and show a screen like
the following.
52
Figure 29: WEP (Windows XP)
To connect:
• Enter the WEP key, as set on the Wireless Broadband Router, in
the Network Key field.
• Re-enter the WEP key into the Confirm Network key field.
• Disable the checkbox Enable IEEE 802.1x authentication for this
network.
• Click the
Connect button.
If this fails, click the Advanced button, to see a screen like the
following:
53
Figure 30: Advanced - Wireless Networks
Select the SSID for the Wireless Broadband Router, and click
Configure, to see a screen like the following:
54
Figure 31: Wireless Network Properties - WEP
Configure this screen as follows:
• Set Network Authentication to match the Wireless Broadband
Router. (If the setting on the Wireless Broadband Router is
"Auto", then either Open or Shared can be used.)
• For Data Encryption, select WEP.
• For the Network key and Confirm network key, enter the default
key value used on the Wireless Broadband Router. (Windows
will determine if 64bit or 128bit encryption is used.)
• The Key index must match the default key index on the
Wireless Broadband Router. The default value is 1.
• Ensu
re the options The key is provided for me automatically and
This is a computer-to-computer (ad hoc) network are unchecked.
55
• Click OK to save and close this dialog.
• This wireless network will now be listed in Preferred Networks on
the screen below.
Figure 32: Preferred Networks
Click OK to establish a connection to the Wireless Broadband Router.
56
If using WPA-PSK Data Encryption
If WPA-PSK data encryption has been enabled on the Wireless
Broadband Router, it does not matter which network is selected on
the screen below. Just click the Advanced button.
Figure 33: Wireless Networks (Windows XP)
You will then see a screen like the example below.
57
Figure 34: Advanced - Wireless Networks
Select the SSID for the Wireless Broadband Router, and click
Configure, to see a screen like the following:
58
Figure 35: Wireless Network Properties- WPA-PSK
Configure this screen as follows:
• Set Network Authentication to WPA-PSK.
• For Data Encryption, select TKIP.
• For the Network key and Confirm network key, enter the network
key (PSK) used on the Wireless Broadband Router.
• Ensu
re the option, this is a computer-to-computer (ad hoc)
network is unchecked.
• Click OK to save and close this dialog.
• This wireless network will now be listed in Preferred Networks on
the screen below.
59
Figure 36: Preferred Networks
Click OK to establish a connection to the Wireless Broadband Router.
If the SSID is not listed
If the "Broadcast SSID" setting on the Wireless Broadband Router
has been disabled, its SSID will NOT be listed on the screen below.
60
Figure 37: Wireless Networks (Windows XP)
In this situation, you need to obtain the SSID from your network
administrator, and then follow this procedure:
1. Click the Advanced button to see a screen like the example
below.
61
Figure 38: Unlisted Wireless Network
2. Click the Add button. You will see a screen like the example
below.
62
Figure 39: Add Wireless Network
3. Configure this screen as follows:
• Enter the correct SSID, as used on the Wireless Broadband
Router. Remember the SSID is case-sensitive, so be sure to
match the case, not just the spelling.
• Set Network Authentication and Data Encryption to match
the Wireless Broadband Router.
• If using data encryption (WEP or WPA-PSK), enter the key
used on the Wireless Broadband Router. See the preceding
sections for details of WEP and WPA-PSK.
• Uncheck the options The key is provided for me
automatically and This is a computer-to-computer (ad hoc)
network.
• Click OK to save and exit.
63
4. This wireless network will then be listed in Preferred Networks
on the screen below.
Figure 40: Preferred Networks
5. Click OK to establish a connection to the Wireless Broadband
Router.
64
5 Status
This Chapter details the status of the Wireless
Broadband Router.
5.1 Status
Use the Status link on the main menu to view this screen.
Figure 41: Status Screen
Data - Status Screen
Internet
Connection
Method
Broadband
Modem
Internet
Connection
Displays the current connection method, as set
in the Setup Wizard.
This shows the status of the connection from the
Wireless Router to the Broadband Modem.
Current connection status:
65
• Active
• Idle
• Failed
If there is an error, you can click the "Connection
Details" button to find out more information.
Internet IP
Address
WAN MTU
LAN
IP Address
Network Mask
DHCP Server
Wireless
Network Name
(SSID)
802.11 Mode
Channel
This IP Address is allocated by the ISP (Internet
Service Provider). If using a dynamic IP address,
and no connection currently exists, this
information is unavailable.
It displays the current value of MTU.
The IP Address of the Wireless Broadband
Router.
The Network Mask (Subnet Mask) for the IP
Address above.
This shows the status of the DHCP Server
function. The value will be "Enabled" or
"Disabled".
If using an ESS (Extended Service Set, with
multiple access points) this ID is called an
ESSID (Extended Service Set Identifier).
The current mode, as set on the Wireless
screen.
This shows the Channel currently used, as set
on the Wireless screen.
Security
System
Device Name
This indicates the current security settings for
Wireless Connections.
The current name of the Router. This name is
also the "hostname" for users with a "@Home"
type connection.
66
Firmware
Version
Buttons
Connection
Details
System Data
Refresh Screen
The version of the current firmware installed.
Click this button to open a sub-window and view
a detailed description of the current connection.
Display all system information in a sub-window.
Update the data displayed on screen.
67
5.2 Connection Status - PPPoE
If using PPPoE (PPP over Ethernet), a screen like the following
example will be displayed when the "Connection Details" button is
clicked.
Figure 42: PPPoE Status Screen
Data - PPPoE Screen
Connection
Physical
Address
The hardware address of this device, as seen by
remote devices on the Internet. (This is different
to the hardware address seen by devices on the
68
local LAN.)
IP Address
Network Mask
PPPoE Link
Status
Connection Log
Connection Log
The IP Address of this device, as seen by
Internet users. This address is allocated by your
ISP (Internet Service Provider).
The Network Mask associated with the IP
Address above.
This indicates whether or not the connection is
currently established.
• If the connection does not exist, the
"Connect" button can be used to establish a
connection.
• If the connection currently exists, the
"Disconnect" button can be used to break
the connection.
• The Connection Log shows status
messages relating to the existing
connection.
• The most common messages are listed in
the table below.
• The "Clear Log" button will restart the Log,
while the Refresh button will update the
messages shown on screen.
Buttons
Connect
Disconnect
Clear Log
Refresh
If not connected, establish a connection to your
ISP.
If connected to your ISP, hang up the
connection.
Delete all data currently in the Log. This will
make it easier to read new messages.
Update the data on screen.
69
Connection Log Messages
Message Description
Connect on
Demand
Connection attempt has been triggered by the
"Connect automatically, as required" setting.
Manual connection Connection attempt started by the "Connect"
button.
Reset physical
Preparing line for connection attempt.
connection
Connecting to
Attempting to connect to the ISP's server.
remote server
Remote Server
located
ISP's Server has responded to connection
attempt.
Start PPP Attempting to login to ISP's Server and
establish a PPP connection.
PPP up
successfully
Idle time-out
reached
Able to login to ISP's Server and establish a
PPP connection.
The connection has been idle for the time
period specified in the "Idle Time-out" field.
The connection will now be terminated.
Disconnecting The current connection is being terminated,
due to either the "Idle Time-out" above, or
"Disconnect" button being clicked.
Error: Remote
Server not found
ISP's Server did not respond. This could be a
Server problem, or a problem with the link to
the Server.
Error: PPP
Connection failed
Error: Connection to
Server lost
Unable to establish a PPP connection with the
ISP's Server. This could be a login problem
(name or password) or a Server problem.
The existing connection has been lost. This
could be caused by a power failure, a link
failure, or Server failure.
70
Error: Invalid or
unknown packet
type
The data received from the ISP's Server could
not be processed. This could be caused by
data corruption (from a bad link), or the Server
using a protocol which is not supported by this
device.
71
5.3 Connection Status - PPTP
If using PPTP (Peer-to-Peer Tunneling Protocol), a screen like the
following example will be displayed when the "Connection Details"
button is clicked.
Figure 43: PPTP Status Screen
Data - PPTP Screen
Connection
Physical
Address
IP Address
The hardware address of this device, as seen by
remote devices on the Internet. (This is different to
the hardware address seen by devices on the local
LAN.)
The IP Address of this device, as seen by Internet
72
users. This address is allocated by your ISP
(Internet Service Provider).
Connection
Status
Connection Log
Connection
Log
Buttons
Connect
Disconnect
Clear Log
Refresh
This indicates whether or not the connection is
currently established.
• If the connection does not exist, the "Connect"
button can be used to establish a connection.
• If the connection currently exists, the
"Disconnect" button can be used to break the
connection.
• The Connection Log shows status messages
relating to the existing connection.
• The "Clear Log" button will restart the Log,
while the Refresh button will update the
messages shown on screen.
If not connected, establish a connection to your
ISP.
If connected to your ISP, hang up the connection.
Delete all data currently in the Log. This will make it
easier to read new messages.
Update the data on screen.
73
5.4 Connection Status - L2TP
If using L2TP, a screen like the following example will be displayed
when the "Connection Details" button is clicked.
Figure 44: L2TP Status Screen
Data - L2TP Screen
Connection
Physical
Address
IP Address
The hardware address of this device, as seen by
remote devices on the Internet. (This is different to
the hardware address seen by devices on the local
LAN.)
The IP Address of this device, as seen by Internet
74
users. This address is allocated by your ISP
(Internet Service Provider).
Connection
Status
Connection Log
Connection
Log
Buttons
Connect
Disconnect
Clear Log
Refresh
This indicates whether or not the connection is
currently established.
• If the connection does not exist, the "Connect"
button can be used to establish a connection.
• If the connection currently exists, the
"Disconnect" button can be used to break the
connection.
• The Connection Log shows status messages
relating to the existing connection.
• The "Clear Log" button will restart the Log,
while the Refresh button will update the
messages shown on screen.
If not connected, establish a connection to your
ISP.
If connected to your ISP, hang up the connection.
Delete all data currently in the Log. This will make it
easier to read new messages.
Update the data on screen.
75
5.5 Connection Status - Telstra Big Pond
An example screen is shown below.
Figure 45: Telstra Big Pond Status Screen
Data - Big Pond Screen
Connection
Physical
Address
IP Address
Connection
The hardware address of this device, as seen by
remote devices. (This is different to the hardware
address seen by devices on the local LAN.)
The IP Address of this device, as seen by Internet
users. This address is allocated by your ISP
(Internet Service Provider).
This indicates whether or not the connection is
76
Status
Connection Log
Connection
Log
Buttons
Connect
Disconnect
currently established.
• If the connection does not exist, the "Connect"
button can be used to establish a connection.
• If the connection currently exists, the
"Disconnect" button can be used to break the
connection.
• Normally, it is not necessary to use the
Connect and Disconnect buttons unless the
setting "Connect automatically, as required" is
disabled.
• The Connection Log shows status messages
relating to the existing connection.
• The Clear Log button will restart the Log,
while the Refresh button will update the
messages shown on screen.
If not connected, establish a connection to Telstra
Big Pond.
If connected to Telstra Big Pond, terminate the
connection.
Clear Log
Refresh
Delete all data currently in the Log. This will make
it easier to read new messages.
Update the data on screen.
77
5.6 Connection Details - SingTel RAS
If using the SingTel RAS access method, a screen like the following
example will be displayed when the "Connection Details" button is
clicked.
Figure 46: Connection Details - RAS
Data - RAS Screen
Internet
RAS Plan
Physical
Address
IP Address
Network
The RAS Plan which is currently used.
The hardware address of this device, as seen by
remote devices on the Internet. (This is different to
the hardware address seen by devices on the local
LAN.)
The IP Address of this device, as seen by Internet
users. This address is allocated by your ISP
(Internet Service Provider).
The Network Mask associated with the IP Address
78
Mask
Default
Gateway
DNS IP
Address
DHCP Client
Buttons
Release/
Renew
above.
The IP Address of the remote Gateway or Router
associated with the IP Address above.
The IP Address of the Domain Name Server which
is currently used.
This will show "Enabled" or "Disabled", depending
on whether or not this device is functioning as a
DHCP client.
If "Enabled" the "Remaining lease time" field
indicates when the IP Address allocated by the
DHCP Server will expire. The lease is automatically
renewed on expiry; use the "Renew" button if you
wish to manually renew the lease immediately.
This button is only useful if the IP address shown
above is allocated automatically on connection.
(Dynamic IP address). If you have a Fixed (Static)
IP address, this button has no effect.
• If the ISP's DHCP Server has NOT allocated
an IP Address for the Wireless Router, this
button will say "Renew". Clicking the "Renew"
button will attempt to re-establish the
connection and obtain an IP Address from the
ISP's DHCP Server.
• If an IP Address has been allocated to the
Wireless Router (by the ISP's DHCP Server),
this button will say "Release". Clicking the
"Release" button will break the connection and
release the IP Address.
Refresh
Update the data shown on screen.
79
5.7 Connection Details - Other (e.g. Fixed Wireless)
If using the “Other (e.g. Fixed Wireless)” access method, a screen
like the following example will be displayed when the "Connection
Details" button is clicked.
Figure 47: Connection Details - Other (e.g. Fixed Wireless)
Data - Fixed/Dynamic IP address Screen
Internet
Physical
Address
IP Address
The hardware address of this device, as seen by
remote devices on the Internet. (This is different to
the hardware address seen by devices on the local
LAN.)
The IP Address of this device, as seen by Internet
users. This address is allocated by your ISP
(Internet Service Provider).
80
Network
Mask
Default
Gateway
DNS IP
Address
DHCP Client
Buttons
Release/
Renew
The Network Mask associated with the IP Address
above.
The IP Address of the remote Gateway or Router
associated with the IP Address above.
The IP Address of the Domain Name Server which
is currently used.
This will show "Enabled" or "Disabled", depending
on whether or not this device is functioning as a
DHCP client.
If "Enabled" the "Remaining lease time" field
indicates when the IP Address allocated by the
DHCP Server will expire. The lease is automatically
renewed on expiry; use the "Renew" button if you
wish to manually renew the lease immediately.
This button is only useful if the IP address shown
above is allocated automatically on connection.
(Dynamic IP address). If you have a Fixed (Static)
IP address, this button has no effect.
• If the ISP's DHCP Server has NOT allocated
an IP Address for the Wireless Router, this
button will say "Renew". Clicking the "Renew"
button will attempt to re-establish the
connection and obtain an IP Address from the
ISP's DHCP Server.
• If an IP Address has been allocated to the
Wireless Router (by the ISP's DHCP Server),
this button will say "Release". Clicking the
"Release" button will break the connection and
release the IP Address.
Refresh
Update the data shown on screen.
81
6 Advanced Features
This Chapter explains when and how to use the
Wireless Broadband Router's "Advanced" Features.
6.1 Overview
The following advanced features are provided:
• Internet:
• Communication Applications
• Special Applications
• Multi-DMZ
• Access Control
• Dynamic DNS
• URL filter
• User Groups
• Options
• Schedule
• Virtual Servers
• WAN Port
82
6.2 Internet
This screen allows configuration of all advanced features relating to
Internet access.
• Communication Applications
• Special Applications
• DMZ
• Multi-DMZ
Figure 48: Internet Screen
Communication Applications
Most applications are supported transparently by the Wireless
Router. But sometimes it is not clear which PC should receive an
incoming connection. This problem could arise with the
Communication Applications listed on this screen.
83
If this problem arises, you can use this screen to set which PC
should receive an incoming connection, as described below.
Communication Applications
Select an
Application
Send incoming
calls to
This lists applications which may generate
incoming connections, where the destination PC
(on your local LAN) is unknown.
This lists the PCs on your LAN.
• If necessary, you can add PCs manually,
using the "PC Database" option on the
advanced menu.
• For each application listed above, you can
choose a destination PC.
• There is no need to "Save" after each
change; you can set the destination PC for
each application, then click "Save".
Special Applications
If you use Internet applications which use non-standard connections
or port numbers, you may find that they do not function correctly
because they are blocked by the Wireless Router's firewall. In this
case, you can define the application as a "Special Application".
Special Applications Screen
This screen can be reached by clicking the Special Applications
button on the Internet screen.
You can then define your Special Applications. You will need
detailed information about the application; this is normally available
from the supplier of the application.
Also, note that the terms "Incoming" and "Outgoing" on this screen
refer to traffic from the client (PC) viewpoint
84
Figure 49: Special Applications Screen
Data - Special Applications Screen
Checkbox
Name
Use this to Enable or Disable this Special Application
as required.
Enter a descriptive name to identify this Special
Application.
85
Incoming
Ports
Outgoing
Ports
• Type - Select the protocol (TCP or UDP) used
when you receive data from the special
application or service. (Note: Some applications
use different protocols for outgoing and incoming
data).
• Start - Enter the beginning of the range of port
numbers used by the application server, for data
you receive. If the application uses a single port
number, enter it in both the "Start" and "Finish"
fields.
• Finish - Enter the end of the range of port
numbers used by the application server, for data
you receive.
• Type - Select the protocol (TCP or UDP) used
when you send data to the remote system or
service.
• Start - Enter the beginning of the range of port
numbers used by the application server, for data
you send to it. If the application uses a single
port number, enter it in both the "Start" and
"Finish" fields.
• Finish - Enter the end of the range of port
numbers used by the application server, for data
you send to it. If the application uses a single
port number, enter it in both the "Start" and
"Finish" fields.
Using a Special Application
• Configure the Special Applications screen as required.
• On your PC, use the application normally. Remember that only
one (1) PC can use each Special application at any time. Also,
when 1 PC is finished using a particular Special Application,
there may need to be a "Time-out" before another PC can use
the same Special Application. The "Time-out" period may be up
to 3 minutes.
86
If an application still cannot function correctly, try
using the "DMZ" feature.
DMZ
This feature, if enabled, allows the DMZ computer on your LAN to be
exposed to all users on the Internet.
• The "DMZ" PC will receive all "Unknown" connections and data.
This feature is normally used with applications which do not
usually work when behind a Firewall.
• The DMZ PC is effectively outside the Firewall, making it more
vulnerable to attacks. For this reason, you should only enable
the DMZ feature when required.
• If Enabled, you must select the PC to be used as the "DMZ" PC.
Select the desired option
• Disabled - DMZ is disabled.
• Enabled- The selected PC is a standard PC on your LAN, but it
will receive any "unknown" connections and data, as described
above.
Multi-DMZ
This feature is only available if your ISP has allocated you multiple
Internet IP addresses.
If you have multiple Internet IP addresses, you can assign one DMZ
PC for each Internet IP address.
• The "DMZ PC" will receive all "Unknown" connections and data
received for the Internet IP address associated with it.
• All outgoing traffic from the DMZ PC will be assigned the WAN
IP address associated with it, rather than the shared IP address
on the WAN port. Note that ONLY the DMZ PC will use the WAN
(Internet) IP address you enter on this screen.
87
Figure 50: Multi-DMZ
To use this feature:
• Enter an IP address allocated to you by your ISP into the WAN
IP address field.
• Select the PC to be the DMZ PC for traffic sent to this IP address.
• Enable this DMZ.
The "DMZ PC" is effectively outside the Firewall,
making it more vulnerable to attacks. For this
reason, you should only enable the DMZ feature
when required.
88
6.3 Access Control
This feature is accessed by the Access Control link on the Advanced
menu.
Overview
The Access Control feature allows administrators to restrict the level
of Internet Access available to PCs on your LAN. With the default
settings, everyone has unrestricted Internet access.
To use this feature:
1. Set the desired restrictions on the "Default" group. All PCs are in
the "Default" group unless explicitly moved to another group.
2. Set the desired restrictions on the other groups ("Group 1",
"Group 2", "Group 3" and "Group 4") as needed.
3. Assign PC to the groups as required.
Restrictions are imposed by blocking "Services", or
types of connections. All common Services are predefined.
If required, you can also define your own Services.
Access Control Screen
To view this screen, select the Access Control link on the Advanced
menu.
89
Figure 51: Access Control Screen
Data - Access Control Screen
User Group
Select Group
Select the desired Group. The screen will update
to display the settings for the selected Group.
Groups are named "Default", "Group 1", "Group
2", "Group 3" and "Group 4", and cannot be renamed.
90
Internet Access
Restrictions
Block by
Schedule
Services
Edit Service
List Button
Select the desired options for the current group:
• None - Nothing is blocked. Use this to create
the least restrictive group.
• Block all Internet access - All traffic via the
WAN port is blocked. Use this to create the
most restrictive group.
• Block selected Services - You can select
which Services are to block. Use this to gain
fine control over the Internet access for a
group.
If Internet access is being blocked, you can
choose to apply the blocking only during
scheduled times. (If access is not blocked, no
Scheduling is possible, and this setting has no
effect.)
This lists all defined Services. Select the Services
you wish to block. To select multiple services,
hold the CTRL key while selecting. (On the
Macintosh, hold the SHIFT key rather than
CTRL.)
If you wish to define additional Services, or
manage the Service list, click this button to open
the "Services" screen.
Buttons
Edit Service
List
Save
Cancel
View Log
If you wish to define additional Services, or
manage the Service list, click this button to open
the "Services" screen.
Save the data on screen.
Reverse any changes made since the last "Save".
Click this to open a sub-window where you can
view the "Access Control" log. This log shows
attempted Internet accesses which have been
blocked by the Access Control feature.
91
Clear Log
Click this to clear and restart the "Access Control"
log, making new entries easier to read.
Refresh
Update the data on screen.
Services Screen
This screen is displayed when the Edit Service List button on the
Access Control screen is clicked.
Figure 52: Access Control – Services
92
Data - Services Screen
Available Services
Available
Services
"Delete"
button
Add New Service
Name
Type
Start Port
Finish Port
ICMP Type
Buttons
Delete
This lists all the available services.
Use this to delete any Service you have added.
Pre-defined Services can not be deleted.
Enter a descriptive name to identify this service.
Select the protocol (TCP, UDP, ICMP) used to the
remote system or service.
For TCP and UDP Services, enter the beginning of
the range of port numbers used by the service. If
the service uses a single port number, enter it in
both the "Start" and "Finish" fields.
For TCP and UDP Services, enter the end of the
range of port numbers used by the service. If the
service uses a single port number, enter it in both
the "Start" and "Finish" fields.
For ICMP Services, enter the type number of the
required service.
Delete the selected service from the list.
Save
Cancel
Add a new entry to the Service list, using the data
shown in the "Add New Service" area on screen.
Clear the " Add New Service " area, ready for
entering data for a new Service.
93
6.4 Dynamic DNS
This free service is very useful when combined with the Virtual
Server feature. It allows Internet users to connect to your Virtual
Servers using a URL, rather than an IP Address.
This also solves the problem of having a dynamic IP address. With a
dynamic IP address, your IP address may change whenever you
connect, which makes it difficult to connect to you.
DDNS Services work as follows:
1. You must register for the service at one of the listed DDNS
Service providers.
2. After registration, use the Service provider's normal procedure to
obtain your desired Domain name.
3. Enter your DDNS data on the Wireless Broadband Router's
DDNS screen, and enable the DDNS feature.
4. The Wireless Broadband Router will then automatically ensure
that your current IP Address is recorded at the DDNS service
provider's Domain Name Server.
5. From the Internet, users will be able to connect to your Virtual
Servers (or DMZ PC) using your Domain name, as shown on
this screen.
94
Loading...