Billion Electric Company BiPAC 8501, BiPAC 8500, BiPAC 8521, BiPAC 8520 User Manual

Download

Billion BiPAC SHDSL/SHDSL.bis (VPN) Firewall Bridge/ Router

BiPAC 8500/8520

SHDSL VPN Firewall Bridge/ Router

BiPAC 8501/8521

SHDSL.bis (VPN) Firewall Bridge/Router

User Manual

Last revision 11-08-08

Billion BiPAC SHDSL/SHDSL.bis (VPN) Firewall Bridge/ Router

TTaabbllee ooff CCoonntteennttss

CCHHAAPPTTEERR 11:: IINNTTRROODDUUCCTTIIOONN..........................................................................................................................................................................................................................1

NTRODUCTION TO YOUR ROUTER

EATURES

............................................................................................................................................. 1

........................................................................................................ 1

CCHHAAPPTTEERR 22:: IINNSSTTAALLLLIINNGG TTHHEE RROOUUTTEERR..................................................................................................................................................................................4

MPORTANT NOTE FOR USING THIS ROUTER

ACKAGE CONTENTS

HE FRONT

HE REAR PORTS OF BI

LED

............................................................................................................................ 4

S OF BI

PAC 8500....................................................................................................... 5

PAC 8520....................................................................................................... 6

PAC 8501....................................................................................................... 7

PAC 8521....................................................................................................... 8

PAC 8500 / 8520 ............................................................................................. 9

PAC 8501...................................................................................................... 10

PAC 8521.......................................................................................................11

.......................................................................................... 4

ABLING

............................................................................................................................................ 12

CCHHAAPPTTEERR 33:: BBAASSIICC IINNSSTTAALLLLAATTIIOONN................................................................................................................................................................................................113

ONNECTING YOUR ROUTER

.............................................................................................................. 13

Network Configuration................................................................................................................. 14

ACTORY DEFAULT SETTINGS

............................................................................................................. 23

Web Interface (Username and Password): ................................................................................... 23

Device LAN IP Settings:.............................................................................................................. 23

ISP setting in WAN site:............................................................................................................... 23

DHCP server:................................................................................................................................ 23

LAN and WAN Port Addresses .................................................................................................... 23

NFORMATION FROM YOUR

ONFIGURING WITH YOUR WEB BROWSER

ISP........................................................................................................... 24

........................................................................................ 25

CCHHAAPPTTEERR 44:: CCOONNFFIIGGUURRAATTIIOONN..................................................................................................................................................................................................................226

TATUS

............................................................................................................................................... 27

ARP Table..................................................................................................................................... 27

Routing Table ............................................................................................................................... 28

DHCP Table.................................................................................................................................. 29

PPTP Status (BiPAC 8500/ 8501/ 8520 Only) ............................................................................. 30

IPSec Status (BiPAC 8500/ 8501/ 8520 Only)............................................................................. 31

L2TP Status (BiPAC 8500/ 8501/ 8520 Only) ............................................................................. 32

Email Status.................................................................................................................................. 32

Event Log ..................................................................................................................................... 33

Error Log ...................................................................................................................................... 33

NAT Sessions ............................................................................................................................... 34

Diagnostic..................................................................................................................................... 34

UPnP Portmap .............................................................................................................................. 35

UICK START

ONFIGURATION

..................................................................................................................................... 36

................................................................................................................................ 38

LAN (Local Area Network) ......................................................................................................... 38

WAN (Wide Area Network) ......................................................................................................... 46

System .......................................................................................................................................... 74

Firewall and Access Control......................................................................................................... 80

VPN (Virtual Private Networks) (BiPAC 8500/ 8501/ 8520 Only) ............................................. 97

QoS (Quality of Service)............................................................................................................ 136

Virtual Server (“Port Forwarding”)............................................................................................ 144

Time Schedule............................................................................................................................ 151

Advanced.................................................................................................................................... 153

AVE CONFIGURATION TO FLASH

..................................................................................................... 165

OGOUT

........................................................................................................................................... 165

CCHHAAPPTTEERR 55:: TTRROOUUBBLLEESSHHOOOOTTIINNGG................................................................................................................................................................................................11666

AAPPPPEENNDDIIXX AA:: PPRROODDUUCCTT SSUUPPPPOORRTT AANNDD CCOONNTTAACCTT IINNFFOORRMMAATTIIOONN........................................................................11667

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

Chapter 1: Introduction

Introduction to your Router

Welcome to the Billion BiPAC 8500/ 8501/ 8520/ 8521 SHDSL Router. Your SHDSL router is an “all-in-one” unit, combining an SHDSL modem, SHDSL router and Ethernet network switch, providing everything you need to get the machines on your network connected to the Internet over your SHDSL broadband connection. With features such as an SHDSL Quick-Start wizard and DHCP Server, you can be online in no time at all and with minimum fuss and configuration, catering for both first-time users and professionals who require advanced features to control their Internet connection and network.

Features

SHDSL Multi-Mode Standard

BiPAC 8500 / 8520 SHDSL supports downstream and upstream transmission rates of up to 2.3 / 4.6 Mbps, respectively, and BiPAC 8501 SHDSL.bis can support up to 5.7 Mbps on 2-wire and 8521 SHDSL.bis can support up to 11.4 Mbps on 4-wire. BiPAC 85xx series also supports rate management that allows SHDSL subscribers to select an Internet access speed suiting their needs and budgets. BiPAC 8500/ 8520 and 8501/ 8521 follows ITU standard PAM16 Line Code complies with G.991.2 and G.994.1 standards, and BiPAC 8501 follows PAM 32 Line code with G.991.2 and G.991.2.bis standards. These three models can support Annex A and B operating mode.

Fast Ethernet Switch

A 4-port 10/100Mbps fast Ethernet switch is built in with automatic switching between MDI and MDI-X for 10Base-T and 100Base-TX ports. An Ethernet straight or crossover cable can be used directly for auto detection.

Multi-Protocol to establish a connection

It supports PPPoA (RFC 2364 - PPP over ATM Adaptation Layer 5), RFC 1483 encapsulation over ATM (bridged or routed), PPP over Ethernet (RFC 2516), and IPoA (RFC1577) to establish a connection with the ISP. The product also supports VC-based and LLC-based multiplexing.

Quick Installation Wizard

It supports a WEB GUI page to install this device quickly. With this wizard, end users not only can enter the information they get from their ISP easily, it also enables immediate internet suffing.

Universal Plug and Play (UPnP) and UPnP NAT Traversal

This protocol is used to enable simple and robust connectivity among stand-alone devices and PCs from many different vendors. It makes networking simple and affordable for users. UPnP architecture leverages TCP/IP and the Web to enable seamless proximity networking in addition to controling data transfer among networked

Chapter 1: Introduction

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

devices. With this feature enabled, users can now connect to Net meeting or MSN Messenger seamlessly.

Network Address Translation (NAT)

Allows multi-users to access outside resources such as the Internet simultaneously with one IP address/one Internet access account. Many application layer gateways (ALG) are supported such as web browser, ICQ, FTP, Telnet, E-mail, News, Net2phone, Ping, NetMeeting, IP phone and others.

SOHO Firewall Security with DoS and SPI

Along with the built-in NAT natural firewall feature, the router also provides advanced hacker pattern-filtering protection. It can automatically detect and block Denial of Service (DoS) attacks. The router is built with Stateful Packet Inspection (SPI) to determine if a data packet is allowed access to the private LAN through the firewall.

Domain Name System (DNS) relay

It provides an easy way to map the domain name (a friendly name for users such as www.yahoo.com) and IP address. When a local machine sets its DNS server with this router IP address, every DNS conversion request packet from the PC to this router will be forwarded to the real DNS of an outside network.

Dynamic Domain Name System (DDNS)

The Dynamic DNS service allows you to alias a dynamic IP address to a static hostname. This dynamic IP address is the WAN IP address. For example, to use the service, you must first apply for an account from a DDNS service like http://www.dyndns.org/. More than 5 DDNS servers are supported.

Quality of Service (QoS)

QoS gives you full control over which type of outgoing data traffic should be given priority by the router, ensuring important data like gaming packets, customer information, or management information move through the router speed fast, even under heavy load. The QoS features are configurable by source IP address, destination IP address, protocol, and port. You can throttle the speed of different types of outgoing data passing through the router to ensure P2P users don’t saturate the upload bandwidth, or office browsing doesn’t bring client web serving to a halt. Alternatively, you can simply change the priority of different types of upload data and let the router sort out the actual speeds of each data transmission.

Virtual Private Network (VPN) (BiPAC 8500/ 8501/ 8520 Only)

It allows user to establish a virtual network with a remote computer. In this way data can be transmitted securedly through the virtual tunnel formed within the network. User can use embedded PPTP and L2TP client/server, IKE and IPSec which are supported by this router to make a VPN connection or run the PPTP client in PC and the router which provides IPSec and PPTP pass through function to establish a VPN connection if the user likes to run the PPTP client in his local computer.

Virtual Server (“port forwarding”)

Users can specify some services to be visible from outside users. The router can detect incoming service requests and forward either a single port or a range of ports to specific local computer for handling. For example, a user can assign a PC in the LAN acting as a WEB server inside and expose it to the outside network. Outside users can browse inside web servers directly while it is protected by NAT. A DMZ host setting is also provided to a local computer exposed to the outside network, Internet.

Chapter 1: Introduction

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

Rich Packet Filtering

Not only filters the packet based on IP address, but also based on Port numbers. It will

filter packets from and to the Internet. It also provides a higher level of security control.

Dynamic Host Configuration Protocol (DHCP) client and server

In the WAN site, the DHCP client can get an IP address from the Internet Service Provider (ISP) automatically. In the LAN site, the DHCP server can allocate a range of client IP addresses including IP address, subnet mask as well as DNS IP address and distribute them to local computers. It provides an easy way to manage the local IP network.

Static and RIP1/2 Routing

It has routing capability and supports easy static routing table or RIP1/2 routing protocol.

Simple Network Management Protocol (SNMP)

It is an easy way to remotely manage the router via SNMP.

Web based GUI

It supports web based GUI for configuration and management. It is user-friendly and comes with on-line help. It also supports remote management capability for remote users to configure and manage this product.

Firmware Upgradeable

Device can be upgraded to the latest firmware through the WEB based GUI.

Rich Management Interfaces

It supports flexible management interfaces with local console port, LAN port, and WAN port. Users can use terminal applications through the console port to configure and manage the device, or Telnet, WEB GUI, and SNMP through LAN or WAN ports to configure and manage the device.

Chapter 1: Introduction

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

Only use the power adapter that comes with the package. Using

Important note for using this Router

Warning

Attention

 Do not use the router in high humidity or high temperatures.

 Do not use the same power source for the router as other

equipment.

 Do not open or repair the case yourself. If the router is too

hot, turn off the power immediately and have it repaired at a qualified service center.

 Avoid using this product and all accessories outdoors.

 Place the router on a stable surface.



a different voltage rating power adaptor may damage the router.

Chapter 2: Installing the Router

Package Contents

SHDSL Firewall Bridge/Router (BiPAC 8500/8520) or SHDSL.bis Firewall Bridge/Router

(BiPAC 8501/8521)

CD-ROM containing the online manual

RJ-11 SHDSL/telephone Cable (One Cable for BiPAC 8500/8501) (Two Cables for

BiPAC 8520/8521)

Ethernet (CAT-5 LAN) Cable

Console (PS2-RS232) Cable

AC-DC power adapter (12V DC, 1A)

Quick Start Guide

Chapter 2: Installing the router

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

The Front LEDs of BiPAC 8500

LED Meaning

1 LINE

LAN Port

1X — 4X

(RJ-45 connector)

Lit when successfully connected to SHDSL line and when it is synchronized.

Lit when connected to an Ethernet device. Green for 100Mbps; Orange for 10Mbps. Blinking when data is Transmitted / Received.

3 SYS Lit when the system is ready.

4 PWR Lit when power is ON.

Chapter 2: Installing the router

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

The Front LEDs of BiPAC 8520

LED Meaning

LINE 1 & 2

Lit when successfully connected to SHDSL line and when it is synchronized.

LAN Port 1X — 4X

(RJ-45 connector)

Lit when connected to an Ethernet device. Green for 100Mbps; Orange for 10Mbps. Blinking when data is Transmitted / Received.

4 SYS Lit when the system is ready.

5 PWR Lit when power is ON.

Chapter 2: Installing the router

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

The Front LEDs of BiPAC 8501

LED Meaning

1 PWR Lit when power is ON.

2 SYS Lit when the system is ready.

LAN Port

1X — 4X

(RJ-45 connector)

4 LINE

Lit when connected to an Ethernet device. Green for 100Mbps; Orange for 10Mbps. Blinking when data is Transmitted / Received.

Lit when successfully connected to SHDSL line and when it is synchronized.

Chapter 2: Installing the router

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

1 2 3 4 5

The Front LEDs of BiPAC 8521

LED Meaning

1 PWR Lit green when power is ON.

2 SYS

LAN Port

1X — 4X

(RJ-45 connector)

LINE 1 & 2

Flashes when the system is being started. Then lit green when the system is ready.

Lit when connected to an Ethernet device. Green for 100Mbps; Orange for 10Mbps. Blinking when data is Transmitted / Received.

The green LED will flash steadily when successfully connected to SHDSL line and when it is synchronized.

Chapter 2: Installing the router

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

The Rear Ports of BiPAC 8500 / 8520

Port Meaning

Power Switch Power ON/OFF switch

PWR Connect the supplied power adapter to this jack.

To be sure the device is being turned on  press RESET button for:

1-3 seconds: quick reset the device. 6 seconds above, and power off, power on the device:

RESET

LAN 1X — 4X

(RJ-45 connector)

CONSOLE

restore to factory default settings. (Cannot login to the router or forgot your Username/Password. Press the button for more than 6 seconds).

Caution: After pressing the RESET button for more than 6 seconds, to be sure you power cycle the device again.

Connect a UTP Ethernet cable (Cat-5 or Cat-5e) to one of the four LAN ports when connecting to a PC or an office/home network of 10Mbps or 100Mbps.

Connect a PS2/RS-232 cable to this port when connecting to a PC’s RS-232 port (9-pin serial port).

LINE

Only BiPAC 8520 has two Line jack ports. BiPAC 8500 has one.

Chapter 2: Installing the router

1X — 2X

(RJ-11 connector)

Connect the supplied RJ-11 (“telephone”) cable to this port when connecting to the SHDSL line.

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

3 1

2 4 6

The Rear Ports of BiPAC 8501

Port Meaning

1 Power Switch Power ON/OFF switch

2 PWR Connect the supplied power adapter to this jack.

3 RESET

LAN

1X — 4X

(RJ-45 connector)

5 CONSOLE

6 LINE

To be sure the device is being turned on->press RESET button for:

1-3 seconds: quick reset the device. 6 seconds above, and power off, power on the device: restore to

factory default settings. (Cannot login to the router or forgot your Username/Password. Press the button for more than 6 seconds).

Caution: After pressing the RESET button for more than 6 seconds, to be sure you power cycle the device again.

Connect a UTP Ethernet cable (Cat-5 or Cat-5e) to one of the four LAN ports when connecting to a PC or an office/home network of 10Mbps or 100Mbps.

Connect a PS2/RS-232 cable to this port when connecting to a PC’s RS-232 port (9-pin serial port).

Connect the supplied RJ-11 (“telephone”) cable to this port when connecting to SHDSL line.

Chapter 2: Installing the router

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

3 1 2

4 6

The Rear Ports of BiPAC 8521

Port Meaning

1 Power Switch Power ON/OFF switch

2 PWR Connect the supplied power adapter to this jack.

To be sure the device is being turned on->press RESET button for: 1-3 seconds: quick reset the device. Press 6 seconds above to power off the device, then power on the

3 RESET

device to restore the factory default settings. (Used when cannot login to the router or forgot your Username/Password. Press the button for more than 6 seconds).

Caution: After pressing the RESET button for more than 6 seconds, to

be sure you power cycle the device again.

LAN

Connect a UTP Ethernet cable (Cat-5 or Cat-5e) to one of the four

1X — 4X

LAN ports when connecting to a PC or an office/home network of 10Mbps or 100Mbps.

(RJ-45 connector)

Connect a PS2/RS-232 cable to this port when connecting to a PC’s

5 CONSOLE

RS-232 port (9-pin serial port).

LINE

Connect the supplied RJ-11 (“telephone”) cable to this port when

1X — 2X

connecting to SHDSL line.

(RJ-11 connector)

Chapter 2: Installing the router

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

Cabling

One of the most common causes to problem is bad cabling or SHDSL line(s). Make sure that all connected devices are turned on. On the front panel of the product is a row of LEDs. Verify that the LAN Link and SHDSL line LEDs are lit. If they are not, verify that you are using the proper cables.

Chapter 2: Installing the router

Billion BiPAC SHDSL/SHDSL.bis (VPN) Firewall Bridge/ Router

Chapter 3: Basic Installation

The router can be configured with your web browser. A web browser is included as a standard application in the following operating systems: Linux, Mac OS, Windows 98/NT/2000/XP/Me, etc. The product provides an easy and user-friendly interface for configuration.

Please check your PC’s network components. The TCP/IP protocol stack and Ethernet network adapter must be installed. If not, please refer to your Windows-related or other operating system manuals.

There are ways to connect to the router, either through an external repeater hub to the router or directly connecting with PCs. However, to be sure PCs have an Ethernet interface installed properly prior to connecting to the router. You ought to configure your PCs to obtain an IP address through a DHCP server or a fixed IP address that must be in the same subnet as the router. The default IP address of the router is 192.168.1.254 and the subnet mask is

255.255.255.0 (i.e. any attached PC must be in the same subnet, and have an IP address in the range of 192.168.1.1 to 192.168.1.253). The best and easiest way is to configure the PC to get an IP address automatically from the router using DHCP. If you encounter any problem accessing the router’s web interface it may also be advisable to uninstall any kind of software firewall on your PCs, as they can cause problems accessing the 192.168.1.254 IP address of the router. Users should make their own decisions on how to best protect their network.

Please follow the steps below for your PC’s network environment installation.

Any TCP/IP capable workstation can be used to communicate with or through the SHDSL Router. To configure other types of workstations, please consult the manufacturer’s documentation.

Connecting your router

1. Connect the Router to a LAN (Local Area Network) and the SHDSL LINE.

2. Power on the device.

3. Make sure the PWR and SYS LEDs are lit steadily and that the relevant LAN LED are lit.

Chapter 3: Basic Installation

Billion BiPAC SHDSL/SHDSL.bis (VPN) Firewall Bridge/ Router

Network Configuration

For Windows Vista

1. Go to Start. Click on Network.

2. Then click on Network and Sharing Center at the top

bar.

3. When the Network and Sharing Center window

pops up, select and click on

Manage network connections on the left

window pane.

4. Select the Local Area Connection, and right click

the icon to select Properties.

Chapter 3: Basic Installation

5. Select Internet Protocol Version 4 (TCP/IPv4) then

click Properties.

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

6. In the TCP/IPv4 properties window, select the Obtain an IP address

automatically and Obtain DNS Server address automatically radio

buttons. Then click OK to exit the setting.

7. Click OK again in the Local Area Connection Properties window to apply

the new configuration.

Chapter 3: Basic Installation

For Windows XP

1. Go to Start / Control Panel

(in Classic View). In the

Control Panel, double-click on Network Connections

2. Double-click Local Area

Connection.

3. In the Local Area

Connection Status window,

click Properties.

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

Chapter 3: Basic Installation

4. Select Internet Protocol

(TCP/IP) and click Properties.

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

5. Select the Obtain an IP

address automatically and the Obtain DNS server address automatically radio buttons.

6. Click OK to finish the

configuration.

Chapter 3: Basic Installation

For Windows 2000

1. Go to Start / Settings / Control Panel. In the Control

Panel, double-click on

Network and Dial-up Connections.

2. Double-click Local Area Connection.

3. In the Local Area Connection Status window click Properties.

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

Chapter 3: Basic Installation

4. Select Internet Protocol (TCP/IP) and click Properties.

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

5. Select the Obtain an IP address automatically and the Obtain DNS server address automatically radio

buttons.

6. Click OK to finish the configuration.

Chapter 3: Basic Installation

For Windows 98/Me

1. Go to Start / Settings / Control Panel. In the Control

Panel, double-click on

Network and choose the Configuration tab.

2. Select TCP/IP ->NE2000 Compatible, or the name of

your Network Interface Card (NIC) in your PC. Then click

Properties.

3. Select the Obtain an IP address automatically radio

button.

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

Chapter 3: Basic Installation

4. Then select the DNS

Configuration tab.

5. Select the Disable DNS radio

button and click OK to finish the configuration.

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

Chapter 3: Basic Installation

For Windows NT4.0

1. Go to Start / Settings / Control Panel. In the Control Panel,

double-click on Network and choose the Protocols tab.

2. Select TCP/IP Protocol and click Properties.

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

3. Select the Obtain an IP address from a DHCP server

radio button and click OK.

Chapter 3: Basic Installation

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

sure you power

cycle the device again.

Factory Default Settings

Before configuring your router, you need to know the following default settings.

Web Interface (Username and Password):

Username: admin

Password: admin

The default username and password are “admin” and “admin” respectively.

Attention

If you ever forget the username/password to login to the router, you may press the RESET button up to 6 seconds to restore the factory default settings.

Caution: After pressing the RESET button for more than 6 seconds, to be

Device LAN IP Settings:

IP Address: 192.168.1.254

Subnet Mask: 255.255.255.0

ISP setting in WAN site:

PPPoE

DHCP server:

DHCP server is enabled.

Start IP Address: 192.168.1.100

IP pool counts: 100

LAN and WAN Port Addresses

The parameters of LAN and WAN ports are pre-set in the factory. The default values are shown below.

LAN Port WAN Port

IP address 192.168.1.254

Subnet Mask 255.255.255.0

DHCP server function Enabled

IP addresses for distribution to PCs

Chapter 3: Basic Installation

The PPPoE function is enabled to automatically get the WAN port configuration from the ISP.

100 IP addresses ranging from

192.168.1.100 to 192.168.1.199

Billion BiPAC SHDSL/SHDSL.bis (VPN) Firewall Bridge/ Router

Information from your ISP

Before configuring this device, you have to check with your ISP (Internet Service Provider) to find out what kind of service is provided such as DHCP (Obtain an IP Address Automatically, Static IP (Fixed IP Address) and PPPoE.

Gather the information as illustrated in the following table and keep it for reference.

VPI/VCI, VC / LLC-based multiplexing, Username, Password, Service Name,

PPPoE

and Domain Name System (DNS) IP address (it can be automatically assigned by your ISP when you connect or be set manually).

PPPoE / PPPoE with Pass-through

VPI/VCI, VC / LLC-based multiplexing, Username, Password, Service Name, and Domain Name System (DNS) IP address (it can be automatically assigned by your ISP when you connect or be set manually). In addition, an additional WAN address can be assigned using PPPoE dialer.

VPI/VCI, VC / LLC-based multiplexing, Username, Password and Domain

PPPoA

Name System (DNS) IP address (it can be automatically assigned by your ISP when you connect or be set manually).

RFC 1483 Bridged

VPI/VCI, VC / LLC-based multiplexing to use Bridged Mode.

RFC 1483 Routed

IPoA Routed (IP over ATM)

VPI/VCI, VC / LLC-based multiplexing, IP address, Subnet mask, Gateway address, and Domain Name System (DNS) IP address (it is a fixed IP address).

Chapter 3: Basic Installation

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

Configuring with your Web Browser

Open your web browser, enter the IP address of your router, which by default is 192.168.1.254, and click “Go”, a user name and password window prompt will appear. The default username

and password are “admin” and “admin”.

Congratulation! You are now successfully logon to SHDSL Router!

Chapter 3: Basic Installation

Billion BiPAC SHDSL/SHDSL.bis (VPN) Firewall Bridge/ Router

Chapter 4: Configuration

At the configuration homepage, the left navigation pane where bookmarks are provided links you directly to the desired setup page, including:

Status

- ARP Table

- Routing Table

- DHCP Table

- PPTP Status

- IPSec Status

- L2TP Status

- Email Status

- Event Log

- Error Log

- NAT Sessions

- Diagnostic

- UPnP Portmap

Quick Start

Configuration

- LAN

- WAN

- System

- Firewall

- VPN (BiPAC 8500/ 8501/ 8520 Only)

- QoS

- Virtual Server

- Time Schedule

- Advanced

Save Config to FLASH Language (provides user interface in English and French languages). Logout

Please click the links to see the relevant sections of this manual for detailed instructions on how to configure the SHDSL VPN Firewall Bridged Router.

Chapter 4: Configuration

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

Status

ARP Table

This section displays the router’s ARP (Address Resolution Protocol) Table, which shows the mapping of Internet (IP) addresses to Ethernet (MAC) addresses. This is a useful & quick way to determine the MAC address of your PCs network interface through the router’s Firewall – MAC Address Filter function. See the Firewall section of this manual for more information on this feature.

IP Address: A list of IP addresses of devices on your LAN (Local Area Network).

MAC Address: The MAC (Media Access Control) addresses for each device on your LAN.

Interface: The interface name (on the router) that this IP Address connects to.

Static: Static status of the ARP table entry:

 “no” for dynamically-generated ARP table entries

 “yes” for static ARP table entries added by the user

Chapter 4: Configuration

Billion BiPAC SHDSL/SHDSL.bis (VPN) Firewall Bridge/ Router

Routing Table

Valid: It indicates a successful routing status.

Destination: The IP address of the destination network.

Netmask: The destination netmask address.

Gateway/Interface: The IP address of the gateway or existing interface that this route will

use.

Cost: The number of hops counted as the cost of the route.

RIP Routing Table

Destination: The IP address of the destination network.

Netmask: The destination netmask address.

Gateway: The IP address of the gateway that this route will use.

Cost: The number of hops counted as the cost of the route.

Chapter 4: Configuration

Billion BiPAC SHDSL/SHDSL.bis (VPN) Firewall Bridge/ Router

DHCP Table

Leased: The DHCP assigned IP addresses information.

IP Address: A list of IP addresses of devices on your LAN (Local Area Network).

Expired: The expired IP addresses information.

Permanent: The fixed host mapping information

Leased Table

IP Address: The IP address that assigned to client.

MAC Address: The MAC address of client.

Client Host Name: The Host Name (Computer Name) of client.

Expiry: The current lease time of client.

Expired Table

Please refer the Leased Table.

Permanent Table

Name: The name you assigned to the Permanent configuration.

IP Address: The fixed IP address for the specify client.

MAC Address: The MAC Address that you want to assign the fixed IP address

Maximum Lease Time: The maximum lease time interval you allow to clients

Chapter 4: Configuration

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

PPTP Status (BiPAC 8500/ 8501/ 8520 Only)

This shows details of your configured PPTP VPN Connections.

• Name: The name you assigned to the particular PPTP connection in your VPN configuration.

• Type: The type of connection (dial-in/dial-out).

• Enable: Whether the connection is currently enabled.

• Active: Whether the connection is currently active.

• Tunnel Connected: Whether the VPN Tunnel is currently connected.

• Call Connected: If the Call for this VPN entry is currently connected.

• Encryption: The encryption type used for this VPN connection.

Chapter 4: Configuration

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

IPSec Status (BiPAC 8500/ 8501/ 8520 Only)

This shows details of your configured IPSec VPN Connections.

• Name: The name you assigned to the particular VPN entry.

• Active: Whether the VPN Connection is currently Active.

• Connection State: Whether the VPN is Connected or Disconnected.

• Statistics: Statistics for this VPN Connection.

• Local Subnet: The local IP Address or Subnet used.

• Remote Subnet: The Subnet of the remote site.

• Remote Gateway: The Remote Gateway IP address.

• SA: The Security Association for this VPN entry.

Chapter 4: Configuration

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

L2TP Status (BiPAC 8500/ 8501/ 8520 Only)

This shows details of your configured L2TP VPN Connections.

• Name: The name you assigned to the particular L2TP connection in your VPN configuration.

• Type: The type of connection (dial-in/dial-out).

• Enable: Whether the connection is currently enabled.

• Active: Whether the connection is currently active.

• Tunnel Connected: Whether the VPN Tunnel is currently connected.

• Call Connected: If the Call for this VPN entry is currently connected.

• Encryption: The encryption type used for this VPN connection.

Email Status

Details and status for the Email Account you have configured the router to check. Please see the Advanced section of this manual for details on this function.

Chapter 4: Configuration

Billion BiPAC SHDSL/SHDSL.bis (VPN) Firewall Bridge/ Router

Event Log

This page displays the router’s Event Log entries. Major events are logged to this window, such as when the router’s ADSL connection is disconnected, and Firewall events such as when you have enabled Intrusion or Blocking Logging in the Configuration – Firewall section of the interface. Please see the Firewall section of this manual for more details on how to enable Firewall logging.

Error Log

Any errors encountered by the router (e.g. invalid names given to entries) are logged to this window.

Chapter 4: Configuration

Billion BiPAC SHDSL/SHDSL.bis (VPN) Firewall Bridge/ Router

NAT Sessions

This section lists all current NAT sessions between interface of types external (WAN) and internal (LAN).

Diagnostic

It tests the connection of computer(s) which is connected to LAN ports and also the WAN Internet connection. If PING www.google.com is shown FAIL and the rest is PASS, you ought to check if your PC’s DNS setting is correct.

Chapter 4: Configuration

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

UPnP Portmap

The section lists all port-mapping established using UPnP (Universal Plug and Play). Please see the Advanced section of this manual for more details on UPnP and the router’s UPnP configuration options.

Chapter 4: Configuration

Billion BiPAC SHDSL/SHDSL.bis (VPN) Firewall Bridge/ Router

Quick Start

For detailed instructions on configuring your WAN settings, please see the WAN section of this manual.

Usually, the only details you will need for the Quick Start wizard to get you online are your login (often in the form of username@ispname), your password and the encapsulation type. In addition to this, you can either provide a specific DNS, or check the Enable box to get the DNS automatically from your ISP.

Your ISP will be able to supply all the details you need, alternatively, if you have deleted the current WAN Connection in the WAN – ISP section of the interface, you can use the router’s PVC Scan feature to attempt to determine the Encapsulation types offered by your ISP.

Click Start to begin scanning for encapsulation types offered by your ISP. If the scan is successful you will then be presented with a list of supported options:

Chapter 4: Configuration

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

Select the desired option from the list and click Apply to return to the Quick Start interface to continue configuring your ISP connection. Please note that the contents of this list will vary, depending on what is supported by your ISP.

Chapter 4: Configuration

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

Configuration

When you click this item, you will get the following sub-items to configure your router:

LAN, WAN, System, Firewall, VPN (not available in 8521), QoS, Virtual Server, Time Schedule and Advanced

These functions are described below in the following sections.

LAN (Local Area Network)

There are seven items within the LAN section: Bridge Interface, Ethernet, IP Alias, Ethernet Client Filter, Port Setting and DHCP Server.

Bridge Interface

You can setup member ports for each VLAN group under Bridge Interface section. From the example, two VLAN groups need to be created.

Ethernet: P1 (Port 1)

Ethernet1: P2, P3 and P4 (Port 2, 3, 4) Please uncheck P2, P3, P4 from Ethernet VLAN port first.

Note: You should setup each VLAN group with caution. Each Bridge Interface is arranged in this order.

Bridge Interface VLAN Port (Always starts

with)

Ethernet P1 / P2 / P3 / P4 Ethernet1 P2 / P3 / P4 Ethernet2 P3 / P4 Ethernet3 P4

Chapter 4: Configuration

Billion BiPAC SHDSL/SHDSL.bis (VPN) Firewall Bridge/ Router

Edit Ethernet Interface Parameter

Click on a specific Ethernet you that you wish to edit its interface parameter under the Bridged

Interface section.

You can also edit the Ethernet Interface parameter such as its Acceptable Frame Type; Filter

Type or PVID for Untagged Frames. When the editing is complete, click Apply to save the

changes and then click Return to go back to the Bridged Interface page.

Management Interface: To specify which VLAN group is responsible for device management,

like doing web management.

Note: NAT/NAPT can be applied to management interface only.

Ethernet

Primary IP Address

• IP Address: The default IP of this router.

• SubNetmask: The default subnet mask of this router.

• RIP: RIP v1, RIP v2, and RIP v2 Multicast. Check to enable RIP function.

Chapter 4: Configuration

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

IP Alias

This function supports the creation of multiple virtual IP interfaces on this router. It helps to connect two or more local networks to the ISP or a remote node. In this case, an internal router is not required.

Click Add to add a new IP alias.

• IP Address: Specify an IP address on this virtual interface.

• SubNetmask: Specify a subnet mask on this virtual interface.

• Security Interface: Specify the firewall setting on this virtual interface.

• Internal: The network is behind NAT. All traffic will translate network address when being

sent out to the Internet if NAT is enabled.

• External: There is no NAT on this IP interface and it is connecting to the Internet directly.

This is used when provided with multiple public IP addresses by ISP. In this case, you

can use the public IP address in the local network with gateway IP address point to the

IP address on this interface.

• DMZ: Specify this network to the DMZ area. There is no NAT on this interface

Chapter 4: Configuration

Billion BiPAC SHDSL/SHDSL.bis (VPN) Firewall Bridge/ Router

Ethernet Client Filter

The Ethernet Client Filter supports up to 16 Ethernet network machines that helps you to manage your network control to accept traffic from specific authorized machines or to restrict unwanted machine(s) to access your LAN.

There are no pre-define Ethernet MAC address filter rules; you can add the filter rules to meet your requirements.

Ethernet Client Filter: Default setting is set to Disable.

• Allowed: check to authorize specific device accessing your LAN by inserting the MAC Address in the space provided or click . Make sure your PC’s MAC is listed.

• Blocked: check to prevent unwanted device from accessing your LAN by inserting the MAC Address in the space provided or click . Make sure your PC’s MAC is

not listed.

The maximum number of client is 16. The MAC address is 6 byte long; it is presented only in hexadecimal characters. The number 0 - 9 and letters a - f are acceptable.

Note: Follow the MAC Address Format xx:xx:xx:xx:xx:xx. Semicolon ( : ) must be included

Candidates: automatically detects devices connected to the router through the Ethernet. .

→ Active PC in LAN

Chapter 4: Configuration

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

Active PC in LAN displays a list of IP Address & MAC Address of each individual Ethernet device which is connected to the router.

You can check the box next to the IP address to block or allow. Then, click Add to insert to the Ethernet Client Filter table. The maximum number of Ethernet client is 16.

Chapter 4: Configuration

Billion BiPAC SHDSL/SHDSL.bis (VPN) Firewall Bridge/ Router

Port Setting

This section allows you to configure the settings for the router’s Ethernet ports to solve some of the compatibility problems that may be encountered while connecting to the Internet, as well allowing users to tweak the performance of their network.

• Port # Connection Type: Six options to choose from: Auto, 10M half-duplex, 10M full- duplex, 100M half-duplex, 100M full-duplex and Disable. Sometimes, there are Ethernet compatibility problems with legacy Ethernet devices, and you can configure different types to solve compatibility issues. The default is Auto, which users should keep unless there are specific problems with PCs not being able to access your LAN.

• IPv4 TOS priority Control (Advanced users): TOS, Type of Services, is the 2 an IP packet. Bits 6-7 of this octet are reserved and bit 0-5 are used to specify the priority of the packet. This feature uses bits 0-5 to classify the packet’s priority. If the packet is high priority, it will flow first and will not be constrained by the Rate Limit. Therefore, when this feature is

enabled, the router’s Ethernet switch will check the 2

octet of each IP packet. If the value in the TOS field matches the checked values in the table (0 to 63), this packet will be treated as high priority.

octet of

Chapter 4: Configuration

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

DHCP Server

You can disable or enable the DHCP (Dynamic Host Configuration Protocol) server or enable the router’s DHCP relay functions. The DHCP protocol allows your router to dynamically assign IP addresses to PCs on your network if they are configured to obtain IP addresses automatically.

To disable the router’s DHCP Server, check Disabled and click Next, then click Apply. When the DHCP Server is disabled you will need to manually assign a fixed IP address to each PCs on your network, and set the default gateway for each PCs to the IP address of the router (by default this is 192.168.1.254).

To configure the router’s DHCP Server, check DHCP Server and click Next. You can then configure parameters of the DHCP Server including the IP pool (starting IP address and ending IP address to be allocated to PCs on your network), lease time for each assigned IP address (the period of time the IP address assigned will be valid), DNS IP address and the gateway IP address. These details are sent to the DHCP client (i.e. your PC) when it requests an IP address from the DHCP server. Click Apply to enable this function. If you check “Use Router as a DNS Server”, the Router will perform the domain name lookup, find the IP address from the network outside your network automatically and forward it back to the requesting PC in the LAN (your Local Area Network).

Chapter 4: Configuration

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

If you check DHCP Relay Agent and click Next, then you will have to enter the IP address of the DHCP server which will assign an IP address back to the DHCP client in the LAN. Use this function only if advised to do so by your network administrator or ISP.

Click Apply to enable this function.

Chapter 4: Configuration

Billion BiPAC SHDSL/SHDSL.bis (VPN) Firewall Bridge/ Router

WAN (Wide Area Network)

WAN refers to your Wide Area Network connection, i.e. your router’s connection to your ISP and the Internet. There are three items within the WAN section: ISP, DNS and SHDSL.

ISP

The factory default is PPPoE. If your ISP uses this access protocol, click Edit to input other parameters as below. If your ISP does not use PPPoE, you can change the default WAN connection entry by clicking Change.

Some ISP may provide more service via different WAN connection. In this case, you can create more connections by clicking Create to enter the configuration page to setup the type of sevice from the list then press Next to continue with the configuration. There are 5 types of ISP service to choose from: RFC 1483 Routed, PPPoA Routed, PPPoE Routed, RFC 1483 Bridged and IPoA Routed. The device can support maximum of up to 8 WAN connections.

Note: The application of multiple WAN connections depends on your Internet Service Provider.

A simpler alternative is to select Quick Start from the main menu on the left wondow pane. Please see the Quick Start section of the manual for more information.

Chapter 4: Configuration

Billion BiPAC SHDSL/SHDSL.bis (VPN) Firewall Bridge/ Router

RFC 1483 Routed Connections

• Description: User-definable name for the connection.

• VPI and VCI: Enter the information provided by your ISP.

• ATM Class: The Quality of Service for ATM layer.

• NAT: The NAT (Network Address Translation) feature allows multiple users to access the

Internet through a single IP account by sharing the single IP address. If users on your LAN have their own public IP addresses for accessing Internet directly, the NAT function can be disabled.

• Encapsulation method: Select the encapsulation format, the default is LLC Bridged. Select the one provided by your ISP.

• IP Assignment

o Obtain an IP address automatically via DHCP client: specify if the Router can

get an IP address from the ISP (Internet Service Provider) automatically.

o Use the following IP Address: Specify the IP address manually; the IP should be

Chapter 4: Configuration

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

given by you our ISP.

• RIP: RIP v1, RIP v2, and RIP v2 Multicast. Check to enable RIP function.

• MTU: Maximum Transmission Unit. The size of the largest datagram (excluding media-

specific headers) that IP will attempt to send through the interface.

• TCP MSS Clamp: This option helps to auto detect the optimal MTU size. Default is enabled.

• MAC Address Spoofing: This option is required by Service Providers. You must fill in the MAC address that is specified by your Service Provider if this is required. Default is disabled.

Chapter 4: Configuration

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

RFC 1483 Bridged Connections

• Description: User-definable name for the connection.

• VPI and VCI: Enter the information provided by your ISP.

• ATM Class: The Quality of Service for ATM layer.

• Encapsulation method: Select the encapsulation format, this is provided by your ISP.

• Acceptable Frame Type: Specify what kind of traffic can pass through this connection,

all traffic or only VLAN tagged.

• Filter Type: Specify the type of ethernet filtering performed by the named bridge interface.

All Allows all types of ethernet packets through the port. Ip Allows only IP/ARP types of ethernet packets through the port. Pppoe Allows only PPPoE types of ethernet packets through the port.

• PVID for Untagged Frames: PVID is known as Port VLAN Identifier. When an untagged packet is received by input port(s), this packet will be tagged with a specific PVID. The valid value range for PVID is 1~4094.

Chapter 4: Configuration

Billion BiPAC SHDSL/SHDSL.bis (VPN) Firewall Bridge/ Router

PPPoA Routed Connections

• Description: User-definable name for the connection.

• VPI/VCI: Enter the information provided by your ISP.

• ATM Class: The Quality of Service for ATM layer.

• NAT: The NAT (Network Address Translation) feature allows multiple users to access the

Internet through a single IP account by sharing a single IP address. If users on your LAN have their own public IP addresses for accessing Internet directly, the NAT function can be disabled.

• Username: Enter the username provided by your ISP. You can input up to 128 alphanumeric characters (case sensitive). This will usually be in the format of “username@ispname” instead of simply “username”.

• Password: Enter the password provided by your ISP. You can input up to 128 alphanumeric characters (case sensitive).

• IP Address: specify if the Router can get an IP address from the Internet Server

Chapter 4: Configuration

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

Provider (ISP) automatically or not. Please click Obtain an IP address automatically via DHCP client to enable the DHCP client function or click Specify an IP address to disable the DHCP client function, and specify the IP address manually. The setting of this item is specified by your ISP.

• Authentication Protocol Type: Default is Chap (Auto). Your ISP will advise you whether to use Chap or Pap.

• Connection:

o Always on: If you want the router to establish a PPPoA session when starting up

and to automatically re-establish the PPPoA session when disconnected by the ISP.

o Connect to Demand: If you want to establish a PPPoA session only when there

is a packet requesting to access the Internet (i.e. when a program on your computer attempts to access the Internet).

• Idle Timeout: Auto-disconnect the broadband firewall gateway when there is no activity on the line for a predetermined period of time.

o Detail: You can define the destination port and packet type (TCP/UDP) without

being checked by the timer. It allows you to set which outgoing traffic will not trigger and reset the idle timer.

• RIP: RIP v1, RIP v2, and RIP v2 Multicast. Check to enable RIP function.

• MTU: Maximum Transmission Unit. The size of the largest datagram (excluding media-

specific headers) that IP will attempt to send through the interface.

• TCP MSS Clamp: This option helps to auto detect the optimal MTU size. Default is enabled.

Chapter 4: Configuration

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

Advanced Options (PPPoA)

• LLC Header: Select encapsulation mode, true for using LLC or false for using VC-Mux.

• Create Route: This setting specifies whether a route is to be added to the system after

IPCP (Internet Protocol Control Protocol) negotiation is complete. If set to enabled, a route will be created which directs packets to the remote end of the PPP link.

• Specific Route: Specify whether the route created when a PPP link comes up is a specific or default route. If set to enabled, the route created will only be applied to packets for the subnet at the remote end of the PPP link. The address of this subnet is obtained during IPCP negotiation.

• Subnet Mask: Set the subnet mask used for the local IP interface connected to the PPP transport. If the value 0.0.0.0 is supplied, the netmask will be calculated from the class of the IP address obtained during IPCP negotiation.

• Route Mask: Set the subnet mask used by the route that is created when a PPP link comes up. If it is set to 0.0.0.0, the subnet mask is determined by the IP address of the remote end of the link. The class of the IP address is obtained during IPCP (Internet Protocol Control Protocol) negotiation.

• MRU: Maximum Receive Unit. This is negotiated during the LCP protocol stage.

Chapter 4: Configuration

IPoA Routed Connections

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

• Description: User-definable name for the connection.

• VPI/VCI: Enter the information provided by your ISP.

• ATM Class: The Quality of Service for ATM layer.

• NAT: The NAT (Network Address Translation) feature allows multiple users to access the

Internet through a single IP account by sharing a single IP address. If users on your LAN have their own public IP addresses for accessing Internet directly, the NAT function can be disabled.

• IP Assignment

o Obtain an IP address automatically via DHCP client: specify if the Router can

get an IP address from the ISP (Internet Service Provider) automatically.

o Use the following IP Address: Specify the IP address manually; the IP should be

given by you our ISP.

Chapter 4: Configuration

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

• RIP: RIP v1, RIP v2, and RIP v2 Multicast. Check to enable RIP function.

• MTU: Maximum Transmission Unit. The size of the largest datagram (excluding media-

specific headers) that IP will attempt to send through the interface.

• TCP MSS Clamp: This option helps to auto detect the optimal MTU size. Default is enabled.

Chapter 4: Configuration

PPPoE Connections

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

• Description: User-definable name for this connection.

• VPI/VCI: Enter the information provided by your ISP.

• ATM Class: The Quality of Service for ATM layer.

• NAT: The NAT (Network Address Translation) feature allows multiple users to access the

Internet through a single IP account by sharing a single IP address. If users on your LAN have their own public IP addresses for accessing Internet directly, the NAT function can be disabled.

• Username: Enter the username provided by your ISP. You can input up to 128

Chapter 4: Configuration

Billion BiPAC 8500/8501/8520/8521 SHDSL (VPN) Firewall Bridge/ Router

alphanumeric characters (case sensitive). This will usually be in the format of “username@ispname” instead of simply “username”.

• Password: Enter the password provided by your ISP. You can input up to 128 alphanumeric characters (case sensitive).

• Service Name: This item is for identification purposes. If it is required, your ISP will provide you the information. Maximum input is 20 alphanumeric characters.

• IP Address: specify if the Router can get an IP address from the Internet Server Provider (ISP) automatically or not. Please click Obtain an IP address automatically via DHCP client to enable the DHCP client function or click Specify an IP address to disable the DHCP client function, and specify the IP address manually. The setting of this item is specified by your ISP.

• Authentication Protocol: Default is Chap (Auto). Your ISP will advise you whether to use Chap or Pap.

• Connection

o Always on: If you want the router to establish a PPPoE session when starting up

and to automatically re-establish the PPPoE session when disconnected by the ISP.

o Connect on Demand: If you want to establish a PPPoE session only when there

is a packet requesting access to the Internet (i.e. when a program on your computer attempts to access the Internet).