AirLive RS-1000 User Manual
AirLive RS-1000
Security Bandwidth Management
User’s Manual
Contents
System
Admin
Setting
Date/Time
Language
Permitted IP
Multiple NAT
Hack Alert
Route Table
1
3
7
16
18
19
23
28
31
DHCP
Host Table
Dynamic DNS
Logout
35
36
37
42
Software Update
Interface
Address
LAN
LAN Group
WAN
WAN Group
Service
Pre-defined
43
44
54
55
59
63
67
71
72
Custom
Group
Schedule
QoS
Authentication
Policy
73
78
82
87
92
97
Outgoing
Incoming
Content Filtering
URL Blocking
General Blocking
Virtual Server
Mapped IP
Virtual Server
98
105
113
114
119
120
122
126
LOG
Traffic Log
Event Log
Connection Log
Log Backup
Alarm
Traffic Alarm
134
135
138
141
144
147
148
Event Alarm
Accounting Report
Outbound
Inbound
Statistics
WAN Statistics
Policy Statistics
Status
Interface Status
151
154
156
162
168
170
171
173
174
ARP Table
DHCP Clients
Setup Examples
176
177
178
System
The Security Bandwidth Manager Administration and monitoring control is set by the System
Administrator. The System Administrator can add or modify System settings and monitoring
mode. The sub Administrators can only read System settings but not modify them. In System,
the System Administrator can:
1. Add and change the sub Administrator’s names and passwords;
2. Back up all Security Bandwidth Manager settings into local files;
3. Set up alerts for Hackers invasion.
What is System?
“System” is the managing of settings such as the privileges of packets that pass through the
Security Bandwidth Manager and monitoring controls. Administrators may manage, monitor,
and configure Security Bandwidth Manager settings. All configurations are “read-only” for all
users other than the Administrator; those users are not able to change any settings for the
Security Bandwidth Manager.
Admin: has control of user access to the Security Bandwidth Manager. He/she can
add/remove users and change passwords.
Setting: The Administrator may use this function to backup Security Bandwidth Manager
configurations and export (save) them to an “Administrator” computer or anywhere on the
network; or restore a configuration file to the device; or restore the Security Bandwidth
Manager back to default factory settings. Under Setting, the Administrator may enable
e-mail alert notification. This will alert Administrator(s) automatically whenever the Security
Bandwidth Manager has experienced unauthorized access or a network hit (hacking or
flooding). Once enabled, an IP address of a SMTP (Simple Mail Transfer protocol) Server is
required. Up to two e-mail addresses can be entered for the alert notifications.
Date/Time: This function enables the Security Bandwidth Manager to be synchronized either
with an Internet Server time or with the client computer’s clock.
Language: Both Chinese and English are supported in the Security Bandwidth Manager.
1
Multiple NAT Multiple NAT allows local port to set multiple subnet works and connect with
the Internet through different WAN IP Addresses.
Address:Enables the Administrator to authorize specific internal/external IP address(s for
Manager.
Hack Alert When abnormal conditions occur, the Security Bandwidth Manager will send an
e-mail alert to notify the Administrator, and also display warning messages in the Event
window of Alarm.
Route Table Use this function to enable the Administrator to add static routes for the
networks when the dynamic route is not efficient enough.
DHCP Administrator can configure DHCP (Dynamic Host Configuration Protocol) settings
for the LAN (LAN) network.
Dynamic DNS The Dynamic DNS (require Dynamic DNS Service) allows you to alias a
dynamic IP address to a static hostname, allowing your device to be more easily accessed by
specific name. When this function is enabled, the IP address in Dynamic DNS Server will be
automatically updated with the new IP address provided by ISP
Logout Administrator logs out the Security Bandwidth Manager. This function protects
your system while you are away.
Software Update The administrator can update the device’s software with the latest version.
Administrators may visit distributor’s web site to download the latest firmware.
Administrators may update the device firmware to optimize its performance and keep up with
the latest fixes for intruding attacks.
2
Admin
On the left hand menu, click on Setup, and then select Admin below it. The current list of
Administrator(s) shows up.
!!
Figure1-1
Settings of the Administration table
Administrator Name: The username of Administrators for the Security Bandwidth Manager.
The user admin cannot be removed.
Privilege: The privileges of Administrators (Admin or Sub Admin)
The username of the main Administrator is Administrator with read / write privilege.
Sub Admins may be created by the Admin by clicking
New Sub Admin
have read only privilege.
Configure: Click Modify to change the “Sub Administrator’s” password and click Remove
to delete a “Sub Administrator.”
3
. Sub Admins
Changing the Main/Sub-Administrator’s Password
Step 1. The Modify Administrator Password window will appear. Enter in the required
information:
" Password: enter original password.
" New Password: enter new password
" Confirm Password: enter the new password again.
Step 2. Click OK to confirm password change or click Cancel to cancel it.
Figure1-2
4
Adding a new Sub Administrator
Step 1. In the Add New Sub Administrator window:
" Sub Admin Name: enter the username of new Sub Admin.
" Password: enter a password for the new Sub Admin.
" Confirm Password: enter the password again.
Step 2. Click OK to add the user or click Cancel to cancel the addition.
Figure 1-3
5
Removing a Sub Administrator
Step 1. In the Administration table, locate the Administrator name you want to edit, and
click on the Remove option in the Configure field.
Step 2. The Remove confirmation pop-up box will appear. Click OK to remove that Sub
Admin or click Cancel to cancel.
Figure1-4 Remove Sub Admin
6
Settings
The Administrator may use this function to backup Security Bandwidth Manager
configurations and export (save) them to an “Administrator” computer or anywhere on the
network; or restore a configuration file to the device; or restore the Security Bandwidth
Manager back to default factory settings.
Entering the Settings window
Click Setting in the System menu to enter the Settings window. The Bandwidth Manager
Configuration settings will be shown on the screen.
!!
Figure1-5 Setting
7
Exporting Security Bandwidth Manager settings
Step 1. Under Bandwidth Manager Configuration, click on the Download button next
to Export System Settings to Client.
Step 2. When the File Download pop-up window appears, choose the destination place
to save the exported file. The Administrator may choose to rename the file if
preferred.
Figure1-6 Select the location where the exported files to be saved
8
Importing Security Bandwidth Manager settings
Under Bandwidth Manager Configuration, click on the Browse button next to Import
System Settings. When the Choose File pop-up window appears, select the file which
contains the saved Security Bandwidth Manager Settings, then click OK.
Click OK to import the file into the Security Bandwidth Manager or click Cancel to cancel
importing.
Figure1-7 Location and filename for saving imported file
9
Restoring Factory Default Settings
Step 1. Select Reset Factory Settings under Bandwidth Manager Configuration.
Click OK at the bottom-right of the screen to restore the factory settings.
Figure1-8 Select Reset Factory Settings
10
Enabling E-mail Alert Notification
Step 1. Select Enable E-mail Alert Notification under E-Mail Settings. This function
will enable the Security Bandwidth Manager to send e-mail alerts to the System
Administrator when the network is being attacked by hackers or when emergency
conditions occur.
Step 2. SMTP Server IP: Enter SMTP server’s IP address.
Step 3. E-Mail Address 1: Enter the first e-mail address to receive the alarm notification.
Step 4. E-Mail Address 2: Enter the second e-mail address to receive the alarm
notification. (Optional)
Click OK on the bottom-right of the screen to enable E-mail alert notification.
Figure1-9 Enable E-mail Alert Notification
11
Web Manager (WAN Interface) (Remote UI Manager)
The administrator can change the port number used by HTTP port anytime.
(Remote UI Manager)
Step 1. Set Web Manager (WAN Interface). The administrator can change the port
number used by HTTP port anytime.
Figure1-10 Web Manager
12
MTU (set networking packet length)
The administrator can modify the networking packet length.
Step 1. MTU Setting. Modify the networking packet length.
Figure1-11 MTU
13
To-Bandwidth Manager Packets Log
Once this function is enabled, every packet passing through the Firewall will
be recorded for the administrator to trace.
Step 1. Select this option to the device’s To-Bandwidth Manager Packets Log. Once
this function is enabled, every packet to this appliance will be recorded for system
manager to trace.
Figure1-12 Enable To Bandwidth Manager Packets Log
14
Security Bandwidth Manager Reboot
Once this function is enabled, the Security Bandwidth Manager will be rebooted.
Reboot Security
Bandwidth Manager: Click Reboot.
A confirmation pop-up box will appear. Follow the confirmation pop-up box, click OK to restart
Security
Bandwidth Manager or click Cancel to discard changes
Figure1-13 Reboot Security Bandwidth Manager
15
Date/Time
Synchronizing the Bandwidth Manager with the System Clock
Admins can configure the Security Bandwidth Manager.s date and time by either
syncing to an Internet Network Time Server (NTP) or by syncing to your computer.s
clock.
Follow these steps to sync to an Internet Time Server
Step 1. Enable synchronization by checking the box.
Step 2. Click the down arrow to select the offset time from GMT.
Step 3. Enter the Server IP Address or Server name with which you want to
synchronize.
Step 4. Update system clock every 5 minutes You can set the interval
time to synchronize with outside servers. If you set it to 0, it means
the device will not synchronize automatically.
Follow this step to sync to your computer’s clock.
Step 1. Click on the Sync button.
Click OK to apply the setting or click Cancel to discard changes.
Figure1-14 System Time
16
Language
Admins can configure the Security Bandwidth Manager Select the Language version
Step 1. Select the Language version (English Version/Traditional Chinese
Version or Simplified Chinese Version).
Step 2. Click 【OK】to set the Language version or click Cancel to discard
changes.
!!
Figure1-15 Language Setting
17
Permitted IPs
Only the authorized IP address is permitted to manage the Security Bandwidth
Manager.
!!
Figure1-16 Permitted IP Address
18
Add Permitted IP Address
Step 1. Click New Entry button.
Step 2. In IP Address field, enter the LAN IP address or WAN IP address.
" IP address:Enter the LAN IP address or WAN IP address.
" Netmask:Enter the netmask of LAN/WAN.
" Ping:Select this to allow the external network to ping the IP Address of the
Firewall.
" WebUI:Check this item, Web User can use HTTP to connect to the Setting
window of Security
BandWidth Manager.
Step 3. Click OK to add Permitted IP or click Cancel to discard changes.
Figure1-17 Add New Permitted IPs
19
Modify Permitted IP Address
Step 1.
In the table of Permitted IPs, highlight the IP you want to modify, and then click
Modify.
Step 2. In Modify Permitted IP, enter new IP address.
Step 3. Click OK to modify or click Cancel to discard changes.
Figure1-18 Modify Permitted IPs
20
Remove Permitted IP addresses
Step 1. In the table of Permitted IPs, highlight the IP you want to remove, and then click
Remove.
Step 2. In Remove Permitted IP, enter new IP address.
Step 3. In the confirm window, click OK to remove or click Cancel to discard changes.
Figure1-19 Remove Permitted IPs
21
Multiple NAT
Multiple NAT allows local port to set multiple subnetworks and connect with the Internet
through different WAN IP Addresses.
For instance:The lease line of a company applies several real IP Addresses 168.85.88.0/24,and
the company is divided into R&D department, service, sales department, procurement
department, accounting department, the company can distinguish each department by
different subnetworks for the purpose of convenient Manager. The settings are as the
following:
1.R&D department subnetwork:192.168.1.11/24(Internal) #$ 168.85.88.253(WAN)
2. Service department subnetwork:192.168.2.11/24(Internal) #$ 168.85.88.252(WAN)
3.Sales department subnetwork: 192.168.3.11/24(Internal) #$ 168.85.88.251(WAN)
4.Procurement department subnetwork 192.168.4.11/24(Internal) #$ 168.85.88.250(WAN)
5.Accounting department subnetwork 192.168.5.11/24(Internal) #$ 168.85.88.249(WAN)
The first department(R&D department) was set while setting interface IP, the other four ones
have to be added in Multiple NAT,after completing the settings, each department use the
different WAN IP Address to connect to the Internet. The settings of each department are as
the following
Service IP Address:192.168.2.1
Subnet Mask:255.255.255.0
Default Gateway:192.168.2.11
The other departments are also set by groups, this is the function of Multiple NAT.
22
Multiple NAT settings
Step 1. Click Multiple NAT in the System menu to enter Multiple NAT window.
!!
Figure1-20 Multiple NAT
Global port interface IP Address:Global port IP Address.
Local port interface IP Address:Local port IP Address and subnet Mask.
Modify: Modify the settings of Multiple NAT. Click Modify to modify the parameters of Multiple
NAT or click Delete to delete settings.
23
Add Multiple NAT
Step 1. Click the Add button below to add Multiple NAT.
Step 2. Enter the IP Address in the website name column of the new window.
" Global port interface IP Address: Select Global port IP Address.
" Local port interface IP Address: Enter Local port IP Address.
" Subnet Mask:Enter Local port subnet Mask.
Step 3. Click OK to add Multiple NAT or click Cancel to discard changes.
Figure1-21 Add Multiple NAT
24
Modify Multiple NAT
Step 1. Find the IP Address you want to modify and click Modify
Step 2. Enter the new IP Address in Modify Multiple NAT window.
Step 3. Click the OK button below to change the setting or click Cancel to discard
changes.
Figure1-22 Modify Multiple NAT
25
Loading...