Atlantis Land A02-RA440, A02-RA340 User Manual

WebShare 340/440

ADSL2+ VPN Router

A02-RA340

A02-RA440

USER’S MANUAL

A02-RA3(4)40_ME01

Where solutions begin

Company certified ISO 9001:2000

WebShare 340/440

Copyright
The Atlantis Land logo is a registered trademark of Atlantis Land SpA. All other names
mentioned mat be trademarks or registered trademarks of their respective owners. Subject to
change without notice. No liability for technical errors and/or omissions.

Disclaimer

This company makes no representations or warranties, either expressed or implied, with
respect to the contents hereof and specifically disclaims any warranties, merchantability or
fitness for any particular purpose. Any software described in this manual is sold or licensed
"as is". Should the programs prove defective following their purchase, the buyer (and not this
company, its distributor, or its dealer) assumes the entire cost of all necessary servicing,
repair, and any incidental or consequential damages resulting from any defect in the
software. Further, this company reserves the right to revise this publication and to make
changes from time to time in the contents hereof without obligation to notify any person of
such revision or changes.

WebShare 340/440

TABLE OF CONTENTS

CHAPTER 1............................................. 1

1.1 AN OVERVIEW OF THE ADSL2+ VPN ROUTER ........................................................................... 1

1.2 PACKAGE CONTENTS .................................................................................................................... 2

1.3 ADSL2+ VPN ROUTER FEATURES .............................................................................................. 2

1.4 ADSL2+ VPN ROUTER APPLICATION .......................................................................................... 5

CHAPTER 2............................................. 6

2.1 CAUTIONS FOR USING THE ADSL2+ VPN ROUTER..................................................................... 6

2.2 THE FRONT LEDS ......................................................................................................................... 6

2.3 THE REAR PORTS.......................................................................................................................... 7

2.4 CABLING......................................................................................................................................... 8

CHAPTER 3........................................... 11

3.1 BEFORE CONFIGURATION ........................................................................................................... 11

3.2 CONNECTING THE ADSL2+ VPN ROUTER ................................................................................ 11

3.3 CONFIGURING PC IN WINDOWS.................................................................................................. 12

For Windows 95/98/ME.............................................................................................................. 12

For Windows NT4.0 .................................................................................................................... 14

For Windows 2000 ...................................................................................................................... 15

For Windows XP.......................................................................................................................... 17

3.3.1 Configuration Check ......................................................................................................... 19

3.4 FACTORY DEFAULT SETTINGS .................................................................................................... 19

3.4.1 Username and Password................................................................................................. 20

3.4.2 LAN and WAN Port Addresses ....................................................................................... 20

3.5 INFORMATION FROM THE ISP ...................................................................................................... 20

3.6 CONFIGURING WITH THE WEB BROWSER ................................................................................... 21

3.6.1 STATUS.............................................................................................................................. 21

3.6.2 Quick Start Guide.............................................................................................................. 23

3.6.3 CONFIGURATION............................................................................................................ 24

3.6.3.1 LAN ............................................................................................................................... 24

3.6.3.1.1 Bridge Filtering.................................................................................................... 24

3.6.3.1.2 Ethernet................................................................................................................ 25

3.6.3.1.3 Ethernet Client Filter .......................................................................................... 26

3.6.3.1.4 DHCP Server....................................................................................................... 28

3.6.3.2 WAN .............................................................................................................................. 30

3.6.3.2.1 ISP ........................................................................................................................ 30

3.6.3.2.2 DNS ...................................................................................................................... 34

3.6.3.2.3 ADSL .................................................................................................................... 35

3.6.3.3 System............................................................................................................................ 36

3.6.3.3.1 Time Zone............................................................................................................ 36

3.6.3.3.2 Remote Access................................................................................................... 36

WebShare 340/440

3.6.3.3.3 Firmware Upgrade.............................................................................................. 37

3.6.3.3.4 Backup/Restore .................................................................................................. 38

3.6.3.3.5 Restart.................................................................................................................. 39

3.6.3.3.6 User Management.............................................................................................. 39

3.6.3.4 Firewall .......................................................................................................................... 41

3.6.3.4.1 General Settings ................................................................................................. 41

3.6.3.4.2 Packet Filering .................................................................................................... 43

3.6.3.4.3 Intrusion Detection.............................................................................................. 46

3.6.3.4.4 Url Filtering .......................................................................................................... 47

3.6.3.4.5 Firewall Log ......................................................................................................... 49

3.6.3.5 VPN................................................................................................................................ 50

3.6.3.5.1 VPN - PPTP......................................................................................................... 50

3.6.3.5.2 VPN - IPSec ........................................................................................................ 59

3.6.3.6 QoS ................................................................................................................................ 65

3.6.3.6.1 Prioritization......................................................................................................... 65

3.6.3.6.2 Outbound IP Throttling (LAN to WAN) ........................................................... 66

3.6.3.6.3 Inbound IP Throttling (WAN to LAN) ............................................................... 66

3.6.3.7 Virtual Server................................................................................................................. 67

3.6.3.8 Time Schedule ............................................................................................................... 70

3.6.3.9 Advanced ....................................................................................................................... 71

3.6.3.9.1 Static Route ......................................................................................................... 71

3.6.3.9.2 Dynamic DNS...................................................................................................... 72

3.6.3.9.3 Check Emails ...................................................................................................... 72

3.6.3.9.4 Device Management .......................................................................................... 73

3.6.3.9.5 IGMP..................................................................................................................... 75

3.6.4 Save Config To Flash ....................................................................................................... 76

3.6.5 Logout ................................................................................................................................. 76

APPENDIX A ......................................... 77

APPENDIX B ......................................... 78

APPENDIX C ......................................... 79

A02-RA3(4)40_ME01 (January 2006, V1.00)

WebShare 340/440

Chapter 1

Introduction

1.1 An Overview of the ADSL2+ VPN Router

Broadband Sharing and IP sharing

The ADSL VPN Firewall Router supports 4 x 10/100 Mbps auto-negotiating Fast Ethernet
ports for connection to your PC or LAN and downstream (with built-in ADSL2+ modem) rate
up to 24Mbps. Power by NAT technology, dozens of network users can surf on the Internet
and share the ADSL connection simultaneously by using one ISP account and one single IP
address.

Security: Firewall & VLAN

This product also serves as an Internet firewall, protecting your network from being accessed
by outside users. Not only provide the natural firewall function (Network Address Translation,
NAT), it also provides rich firewall features to secure user's network.
The VLANs allow to segment the traffic of net and, in this way, they improve management
and performance of entire network.

VPN

The router supports embedded Virtual Private Network (VPN) protocols and up to 16
simultaneous IPSec VPN tunnels for users to establish private encrypted tunnels over the
public Internet (up to 4 VPN tunnels on A02-RA340). With built-in DES/3DES optimized
microcode, the router enhances IPSec VPN performance significantly and ensures data
transmitted securely between two or more sites.

Quality of Service and IP Throttling

QoS gives you full control over which types of outgoing data traffic should be given priority by
the router, ensuring important data like gaming packets move through the router at lightning
speed, even under heavy load.
Using IP Throttling, bandwidth limits can be enforced on any system within your LAN, or even
on a particular application.

Easy Configuration and Management

Support web based GUI and Telnet for configuration and management. Also supports remote
management (Web and telnet) capability for remote user to configure and manage this
product. It incorporates besides a client Dynamic DNS.

1

WebShare 340/440

1.2 Package Contents

• Adsl2+ VPN Router (WebShare 340 or WebShare 440)

• One CD-ROM containing the online manual

• Vera (Multilangue Intercative Tutorial)

• One Quick Start Guide

• One RJ-11 ADSL/telephone cable

• One CAT-5 LAN cable

• One PS2/RS232 (DB9 cable)

• One AC-DC power adapter (12VDC, 1A)

If any of the above items are missing, please contact your reseller.

1.3 ADSL2+ VPN Router Features

ADSL2+ VPN Router provides the following features:

• ADSL Multi-Mode Standard: Supports downstream transmission rates of up to
8Mbps and upstream transmission rates of up to 1024Kbps. It also supports rate
management that allows ADSL subscribers to select an Internet access speed suiting
their needs and budgets. It is compliant with Multi-Mode standard (ANSI T1.413,
Issue 2; G.dmt (G.992.1); G.lite (G992.2); G.hs(G994.1); G.dmt.bis(ITU G.992.3);
Gdmt.bisplus(ITU G.992.5)].

• Fast Ethernet Switch: A 4-port 10/100Mbps fast Ethernet switch is supported in the
LAN site and automatic switching between MDI and MDI-X for 10Base-T and
100Base-TX ports is supported. An Ethernet straight or cross-over cable can be used
directly, this fast Ethernet switch will detect it automatically.

• Multi-Protocol to Establish A Connection: Supports PPPoA (RFC 2364 - PPP over
ATM Adaptation Layer 5), RFC 1483 encapsulation over ATM (bridged or routed),
PPP over Ethernet (RFC 2516), and IPoA (RFC1577) to establish a connection with
the ISP. The product also supports VC-based and LLC-based multiplexing.

• Quick Installation Wizard: Supports a WEB GUI page to install this device quickly.
With this wizard, an end user can enter the information easily which they from the ISP,
then surf the Internet immediately.

• Universal Plug and Play (UPnP) and UPnP NAT Traversal: This protocol is used to
enable simple and robust connectivity among stand-alone devices and PCs from
many different vendors. It makes network simple and affordable for users. UPnP
architecture leverages TCP/IP and the Web to enable seamless proximity networking
in addition to control and data transfer among networked devices.

• Network Address Translation (NAT): Allows multi-users to access outside resource
such as Internet simultaneously with one IP address/one Internet access account.
Besides, many application layer gateway (ALG) are supported such as web browser,
ICQ, FTP, Telnet, E-mail, News, Net2phone, Ping, NetMeeting and others.

2

WebShare 340/440

• Firewall: Supports SOHO firewall with NAT technology. Automatically detects and
blocks the Denial of Service (DoS) attack. The URL-blocking, packet filtering are also
supported. The hacker’s attack will be recorded associated with timestamp in the
security logging area. More firewall features will be added continually, please visit our
web site to download latest firmware.

• VLAN: A VLAN is a group of end-stations that are not constrained by their physical
location and can communicate as if a common broadcast domain, a LAN. The primary
utility of using VLAN is to reduce latency and need for routers, using faster switching
instead. Other VLAN utility includes:

• Security, Security is increased with the reduction of opportunity in
eavesdropping on a broadcast network because data will be switched to
only those confidential users within the VLAN.

• Cost Reduction, VLANs can be used to create multiple broadcast domains,
thus eliminating the need of expensive routers.

• Port-based (or port-group) VLAN is the common method of implementing a
VLAN, and is the one supplied in the Switch.

• QoS: QoS gives you full control over which types of outgoing data traffic should be
given priority by the Router, ensuring important data like gaming packets move
through the Router at lightning speed, even under heavy load.

• Domain Name System (DNS) relay: provides an easy way to map the domain name
(a friendly name for users such as www.yahoo.com) and IP address. When a local
machine sets its DNS server with this router’s IP address, then every DNS conversion
requests packet from the PC to this router will be forwarded to the real DNS in the
outside network. After the router gets the reply, then forwards it back to the PC.

• Dynamic Domain Name System (DDNS): The Dynamic DNS service allows you to
alias a dynamic IP address to a static hostname. This dynamic IP address is the WAN
IP address. For example, to use the service, you must first apply an account from this
free Web server http://www.dyndns.org/. There are more than 5 DDNS servers
supported.

• PPP over Ethernet (PPPoE): Provide embedded PPPoE client function to establish a
connection. Users can get greater access speed without changing the operation
concept, sharing the same ISP account and paying for one access account. No
PPPoE client software is required for the local computer. The Always ON, Dial On
Demand and auto disconnection (Idle Timer) functions are provided too.

• Virtual Server: Users can specify some services to be visible from outside users. The
router can detect incoming service request and forward it to the specific local
computer to handle it. For example, users can assign a PC in a LAN acting as a WEB
server inside and expose it to the outside network. Outside users can browse an
inside web server directly while it is protected by NAT. A DMZ host setting is also
provided to a local computer exposed to the outside network, Internet

• Rich Packet Filtering: Not only filters the packet based on IP address, but also based
on Port numbers. It also provides a higher-level security control.

3

WebShare 340/440

• Dynamic Host Control Protocol (DHCP) client and server: In the WAN site, the
DHCP client can get an IP address from the Internet Server Provider (ISP)
automatically. In the LAN site, the DHCP server can allocate up to 253 client IP
addresses and distribute them including IP address, subnet mask as well as DNS IP
address to local computers. It provides an easy way to manage the local IP network.

• Static and RIP1/2 Routing: Supports an easy static table or RIP1/2 routing protocol
to support routing capability.

• SNTP: An easy way to get the network real time information from an SNTP server.

• SNMP: SNMP is an application layer protocol that is used for managing networks

(V1,V2 and V3)

• Web based GUI: supports web based GUI for configuration and management. It is
user-friendly with an on-line help, providing necessary information and assist user
timing. It also supports remote management capability for remote users to configure
and manage this product.

• Firmware Upgradeable: the device can be upgraded to the latest firmware through
the WEB based GUI.

• Rich management interfaces: Supports flexible management interfaces with local
console port, LAN port, and WAN port. Users can use terminal application through
console port to configure and manage the device, or Telnet, WEB GUI, and SNMP
through LAN or WAN ports to configure and manage a device.

4

WebShare 340/440

1.4 ADSL2+ VPN Router Application

5

WebShare 340/440

Chapter 2

Using ADSL2+ VPN Router

2.1 Cautions for using the ADSL2+ VPN Router

Do not place the ADSL2+ VPN Router under high humidity and high
temperature.
Do not use the same power source for ADSL2+ VPN Router with other
equipment.
Do not open or repair the case yourself. If the ADSL2+ VPN Router is too
hot, turn off the power immediately and have a qualified serviceman repair it.
Place the ADSL2+ VPN Router on a stable surface.
Only use the power adapter that comes with the package.

2.2 The Front LEDs

LED Meaning

POWER
SYS

LAN (1-4)

6

Lit when power ON.
Lit when system is ready.
Lit when connected to Ethernet device
Green for 100Mbps; Orange for 10Mbps

Blinking when data transmit/received.

ADSL2+ VPN Router

ADSL

PPP/MAIL

Lit when successfully connected to an ADSL DSLAM.

Steady glow when there is a PPPoA / PPPoE connection.
Blinking if there is a new incoming mail.

2.3 The Rear Ports

PORT Meaning

LINE
(RJ-11) (6)

PS2 (CONSOLE) (5)

LAN
(4 *RJ-45)* (4)

RESET (3)

POWER (Jack) (2)

POWER Switch (1)

Connect the supplied RJ-11 cable to this port
when connecting to the ADSL/telephone
network.
Connect RS232 cable to the PC.

Connect an UTP Ethernet cable to one of the
four LAN ports when connecting to a PC or an
office/home network of 10Mbps or 100Mbps.
Press this button in order to reset the router or
restore configuration.
Refeer to the following timing:
0-3 seconds: Router reset
3-6 seconds: no action
6 seconds or more: Restore factory settings.
Connect the supplied power adapter to this
jack.
A Power ON/OFF switch

7

WebShare 340/440

2.4 Cabling

The most common problem is bad cabling or ADSL line. Make sure that all connected
devices are turned on. On the front of the product is a bank of LEDs. As a first check, verify
that the LAN Link, ADSL , PWR and SYS LEDs are lit. If they are not, verify that you are
using the proper cables.
Ensure that all other devices connected to the same telephone line as your router (e.g.
telephones, fax machines, analog modems) have a line filter (A01-AF2) connected between
them and the wall socket (unless you are using a Central Splitter or Central Filter installed by
a qualified and licensed electrician), and ensure that all line filters are correctly installed and
the right way around.

Missing line filters or line filters installed the wrong way around can
cause problems with your ADSL connection, including frequent
disconnections.

8

ADSL2+ VPN Router

If the ADSL Led flashes periodically You have to force modulation. Click
on Configuration, WAN then ADSL. On the combo-box Connection

Mode please choose ADSL. Press Apply and then click on Save Config
to Flash.

9

WebShare 340/440

10

WebShare 340/440

Chapter 3

Configuration

The ADSL2+ VPN Router can be configured with your Web browser. The web browser is
included as a standard application in the following operation systems, UNIX, Linux, Mac OS,
Windows 95/98/NT/2000/Me, and etc. The product provides a very easy and user-friendly
interface for configuration.

3.1 Before Configuration

This section describes the configuration required by LAN-attached PCs that communicate
with the ADSL2+ VPN Router, either to configure the device or for network access. These
PCs must have an Ethernet interface installed properly, be connected to the ADSL2+ VPN
Router either directly or through an external repeater hub, and have TCP/IP installed and
configured to obtain an IP address through a DHCP server or a fixed IP address that must be
in the same subnet of the ADSL2+ VPN Router.
The default IP address of the ADSL2+ VPN Router is 192.168.1.254 and subnet mask is

255.255.255.0. The best and easy way is to configure the PC to get an IP address from the
ADSL2+ VPN Router.
Also make sure you have UNINSTALLED any kind of software firewall that can cause
problems while accessing the 192.168.1.254 IP address of the router.
Please follow the steps below for PC’s network environment installation. First of all, please
check your PC’s network components. The TCP/IP protocol stack and Ethernet network
adapter must be installed. If not, please refer to MS Windows related manuals.

Any TCP/IP capable workstation can be used to communicate with or
through the ADSL2+ VPN Router. To configure other types of
workstations, please consult the manufacturer’s documentation.

3.2 Connecting the ADSL2+ VPN Router

• Connect the ADSL2+ VPN Router to a LAN (Local Area Network) and the
ADSL/telephone network.

• Power on the device

• Make sure the PWR is lit steady & LAN/ADSL LED is lit.

• Before taking the next step, make sure you have uninstalled any software firewall.

11

WebShare 340/440

3.3 Configuring PC in Windows

For Windows 95/98/ME

1. Go to Start / Settings / Control Panel. In the Control Panel, double-click on
Network and choose the Configuration tab.

2. Select TCP / IP -> NE2000 Compatible, or the name of any Network Interface Card

(NIC) in your PC.

3. Click Properties.

4. Select the IP Address tab. In this page, click the Obtain an IP address
automatically radio button.

12

WebShare 340/440

5. Then select the DNS Configuration tab.

6. Select the Disable DNS radio button and click “OK” to finish the configuration.

13

WebShare 340/440

For Windows NT4.0

1. Go to Start / Settings / Control Panel. In the Control Panel, double-click on
Network and choose the Protocols tab.

2. Select TCP/IP Protocol and click Properties.

3. Select the Obtain an IP address from a DHCP server radio button and click
“OK”.

14

WebShare 340/440

For Windows 2000

1. Go to Start / Settings / Control Panel. In the Control Panel, double-click on
Network and Dial-up Connections.

2. Double-click LAN Area Connection.

3. In the LAN Area Connection Status window, click Properties.

15

WebShare 340/440

4. Select Internet Protocol (TCP/IP) and click Properties.

5. Select the Obtain an IP address automatically and the Obtain DNS server
address automatically radio buttons.

6. Click “OK” to finish the configuration.

16

WebShare 340/440

For Windows XP

1. Go to Start / Control Panel (in Classic View). In the Control Panel, double-click on
Network Connections.

2. Double-click Local Area Connection

3. In the LAN Area Connection Status window, click Properties.

17

WebShare 340/440

4. Select Internet Protocol (TCP/IP) and click Properties.

5. Select the Obtain an IP address automatically and the Obtain DNS server
address automatically radio buttons

6. Click “OK” to finish the configuration.

18

WebShare 340/440

3.3.1 Configuration Check

In order to verify the Ethernet Card configuration, pleas refeer to the following steps:

1. Click on Start, then Run; type in the Open field cmd.

2. When DOS window appears, type ping 192.168.1.254

The following output will be show:
Pinging 192.168.1.254with 32 bytes of data:
Reply from 192.168.1.254: bytes=32 times<10ms TTL=64
Reply from 192.168.1.254: bytes=32 times<10ms TTL=64
Reply from 192.168.1.254: bytes=32 times<10ms TTL=64

3. If the ping command doesn’t works, please check your Ethernet Card configuration.

3.4 Factory Default Settings

Before configurating this ADSL2+ VPN Router, you need to know the following default
settings.

• Username: admin

• Password : atlantis

• IP Address : 192.168.1.254

• Subnet Mask : 255.255.255.0

• DHCP server is enabled.

19

WebShare 340/440

3.4.1 Username and Password

The default username and password are admin and atlantis respectively.

If you ever forget the password to log in, you may press the RESET button to
restore the factory default settings. After turning the router on press the
Emergency/Failure Recovery Button on the back of the modem, and hold the
button in until all lights on the modem flash and it reboots with factory default
settings. The login will be reset to admin and the password will be reset to
admin, and the modem will be accessible via its default IP address at
http://192.168.1.254/

3.4.2 LAN and WAN Port Addresses

The parameters of LAN and WAN ports are pre-set in the factory. The default values are
shown below.

LAN Port

WAN Port

IP address

Subnet Mask

DHCP server
function

192.168.1.254

255.255.255.0

Enabled

N/A

3.5 Information from the ISP

Before configuring this device, you have to check with your ISP (Internet Service Provider)
what kind of service is provided such as PPPoE, PPPoA, RFC1483, IpoA.
Gather the information as illustrated in the following table and keep it for reference.

PPPoE

PPPoA

VPI/VCI, VC-based/LLC-based multiplexing, Username,
Password, Service Name, and Domain Name System
(DNS) IP address (it can be automatically assigned from
ISP or be set fixed).

VPI/VCI, VC-based/LLC-based multiplexing, Username,

Password, and Domain Name System (DNS) IP

address (it can be automatically assigned from ISP or

be set fixed).

RFC1483 Bridged

RFC1483 Routed

IPoA

VPI/VCI, VC-based/LLC-based multiplexing and configure
this product into BRIDGE Mode.

VPI/VCI, VC-based/LLC-based multiplexing, IP address,
Subnet mask, Gateway address, and Domain Name
System (DNS) IP address (it is fixed IP address).

VPI/VCI, IP address, Subnet mask, Gateway address,
and Domain Name System (DNS) IP address (it is fixed
IP address).

20