D Link DWLG730APB1 Users Manual
Using the Configuration Utility in Router Mode (continued)
Advanced > Virtual Server
The DWL-G730AP can be configured as a virtual server so that remote users accessing
Web or FTP services via the public IP address can be automatically redirected to local
servers in the LAN (Local Area Network).
The DWL-G730AP firewall feature filters out unrecognized packets to protect your LAN
network so all computers networked with the DWL-G730AP are invisible to the outside
world. If you wish, you can make some of the LAN computers accessible from the
Internet by enabling Virtual Server. Depending on the requested service, the DWL-G730AP
redirects the external service request to the appropriate server within the LAN network.
The DWL-G730AP is also capable of port-redirection meaning incoming traffic to a
particular port may be redirected to a different port on the server computer .
Each virtual service that is created will be listed at the bottom of the screen in the Virtual
Servers List. There are pre-defined virtual services already in the table. You may use
them by enabling them and assigning the server IP to use that particular virtual service.
41
Using the Configuration Utility in Router Mode (continued)
Advanced > Virtual Server (continued)
Virtual ServerName-
Private IP-
Protocol Type-
Private Port-
Public Port-
Schedule-
Example #1:
Select Enabled or Disabled.
Enter the name referencing the virtual service.
The server computer in the LAN (Local Area Network) that will be
providing the virtual services.
The protocol used for the virtual service.
The port number of the service used by the Private IP computer .
The port number on the WAN (Wide Area Network) side that will
be used to access the virtual service.
The schedule of time when the virtual service will be enabled.
The schedule may be set to Always, which will allow the
particular service to always be enabled. If it is set to From,
select the time frame for the service to be enabled. If the
system time is outside of the scheduled time, the service will
be disabled.
If you have a Web server that you wanted Internet users to
access at all times, you would need to enable it. Web
(HTTP) server is on LAN (Local Area Network) computer
192.168.0.25. HTTP uses port 80, TCP.
Name: Web Server
Private IP: 192.168.0.25
Protocol Type: TCP
Private Port: 80
Public Port: 80
Schedule: always
42
Using the Configuration Utility in Router Mode (continued)
Advanced > Virtual Server (continued)
Click on this icon to edit the virtual service
Click on this icon to delete the virtual service
Example #2:
If you have an FTP server that you wanted Internet users to access by WAN port 2100
and only during the weekends, you would need to enable it as such. FTP server is on
LAN computer 192.168.0.30. FTP uses port 21, TCP.
Name: FTP Server
Private IP: 192.168.0.30
Protocol Type: TCP
Private Port: 21
Public Port: 2100
Schedule: From: 01:00AM to 01:00AM, Sat to Sun
All Internet users who want to access this FTP Server
must connect to it from port 2100. This is an example of
port redirection and can be useful in cases where there
are many of the same servers on the LAN network.
43
Using the Configuration Utility in Router Mode (continued)
Advanced > Applications
Some applications such
as Internet gaming, video
conferencing, Internet
telephony and others,
require multiple
connections. These
applications save
difficulties working
through NA T (Network
Address Translation).
Special Applications
makes some of these
applications work with
the DWL-G730AP. If you
need to run applications
that require multiple
connections, specify the
port normally associated
with an application in the
“Trigger Port” field, select
the protocol type as TCP
or UDP, then enter the public ports associated with the trigger port to open them for
inbound traffic.
Note! Only one PC can use each Special Application tunnel.
Name:
Trigger Port:
This is the name referencing the special application.
This is the port used to trigger the application. It can be either
a single port or a range of ports.
Trigger Type: This is the protocol used to trigger the special application.
Public Port:
This is the port number on the WAN side that will be used to
access the application. You may define a single port or a
range of ports. You can use a comma to add multiple ports or
port ranges.
Public Type: This is the protocol used for the special application.
Special Applications List
The DWL-G730AP provides some predefined applications in the table on the bottom of
the Web page. Select the application you want to use and enable it.
44
Using the Configuration Utility in Router Mode (continued)
Advanced > Filters > IP Filters
Filters are used to deny or allow LAN (Local Area Network) computers from accessing
the Internet. The DWL-G730AP can be setup to deny internal computers by their IP or
MAC addresses. The DWL-G730AP can also block users from accessing restricted
web sites.
IP Filters:
IP:
Port:
Protocol Type:
Schedule:
Use IP Filters to deny LAN IP addresses from accessing the
Internet. Y ou can deny specific port numbers or all port s for
the specific IP address.
The IP address of the LAN computer that will be denied
access to the Internet.
The single port or port range that will be denied access to the
Internet.
Select the protocol type
This is the schedule of time when the IP Filter will be enabled.
45
Using the Configuration Utility in Router Mode (continued)
Advanced > Filters > URL Blocking
URL Blocking:
Delete:
Apply:
Select Enable or Disable. Enter the words or word contained
in the URL that you wish to block. Click Apply to activate the
URL blocking.
Select the URL block that you want to delete. Click
Delete.
Click Apply to save changes.
46
Using the Configuration Utility in Router Mode (continued)
Advanced > Filters > MAC Filters
Disable MAC
Filters:
Allow:
Deny:
Name:
Clear:
MAC Address:
Clone:
Apply:
Click to Disable MAC Filters.
Allow only those devices with the listed MAC addresses
access to the network.
Deny the devices that are listed from accessing the network.
Enter a name for the device.
Click Clear to erase the name.
Enter the MAC address manually .
Select the DHCP Client from the pull-down list and click
Clone to enter the MAC address into the list.
Click Apply to save the changes.
47
Using the Configuration Utility in Router Mode (continued)
Advanced > Filters > Domain Blocking
Disable:
Allow:
Deny:
Permitted
Domains:
Blocked
Domains:
Delete:
Click Disable to disable domain blocking.
Click Allow to allow access to all domains except Blocked
Domains.
Click Deny to deny access to all domains except Permitted
Domains.
Enter the permitted domains here. Click Apply.
Enter the blocked domains here. Click Apply.
Select a domain from either the permitted or blocked domain
list, and click Delete to delete this domain.
48
Using the Configuration Utility in Router Mode (continued)
Advanced > Firewall
Firewall Rules is
an advanced feature
used to deny or
allow traffic from
passing through the
DWL-G730AP. It
works in the same
way as IP Filters
with additional
settings. You can
create more detailed
access rules for the
DWL-G730AP.
When virtual
services are created
and enabled, it will
also display in
Firewall Rules.
Firewall Rules
contain all network
firewall rules
pertaining to IP
(Internet Protocol).
Note:
The DWL-G730AP MAC Address filtering rules have precedence over
the Firewall Rules.
Firewall Rules-
Enable or disable the Firewall
Name- Enter the name
ActionSourceDestination-
Schedule-
In the Firewall Rules List at the bottom of the screen,rules are prioritized from the top
(highest priority) to the bottom (lowest priority .)
Allow or Deny
Enter the IP Address range
Enter the IP Address range; the Protocol;
and the Port Range
Select Always or enter the Time Range.
49
Using the Configuration Utility in Router Mode (continued)
Advanced > DMZ
30
If you have a client PC that cannot run Internet applications properly from behind the
DWL-G730AP, then you can set the client up for unrestricted Internet access. Allowing
a computer to be exposed to the Internet, this feature is useful for gaming purposes.
Enter the IP address of the internal computer that will be the DMZ host. Using the DMZ
(Demilitarized Zone) feature may expose your local network to a variety of security
risks, so only use this option as a last resort.
DMZ-
IP Address-
Enable or Disable the DMZ. The DMZ (Demilitarized Zone)
allows a single computer to be exposed to the internet. By
default the DMZ is disabled.
Enter the IP Address of the computer to be in the DMZ
50
Using the Configuration Utility in Router Mode (continued)
Advanced > Performance
Beacon Interval: Beacons are
packets sent by an access point
to synchronize a wireless network.
Specify a beacon interval value.
Default (100) is recommended.
RTS Threshold: This value
should remain at its default
setting of 2432. If you encounter
inconsistent data flow , only
minor modifications to the value
range between 256 and 2432
are recommended.
Fragmentation: This value
should remain at its default
setting of 2346. If you experience
a high packet error rate, you may slightly increase your fragmentation threshold within
the value range of 256 to 2346. Setting the fragmentation threshold too low may result in
poor performance.
DTIM Interval (Beacon Rate): (Delivery Traffic Indication Message) Enter a value
between 1 and 255 (default is 3) for the Delivery Traf fic Indication Message (DTIM.) A
DTIM is a countdown informing clients of the next window for listening to broadcast and
multicast messages.
TX Rates: Select the transmission rate for the network. The default setting is Auto.
Mode Setting: For utmost speed, select G Mode to include only 802.11g devices in
your network. Select Mix Mode to include 802.1 1g and 802.1 1b devices in your network.
Preamble: Short Preamble is the default setting. (High traffic networks should use
the shorter preamble type.) The preamble defines the length of the CRC block (Cyclic
Redundancy Check is a common technique for detecting data transmission errors) used
in communication between the access point and the wireless network adapters.
Authentication:
Select Open System to communicate the key across the network.
Select Shared Key to limit communication only to those devices that share the
same WEP settings.
Select WPA-PSK to select Wi-Fi Protected Access without a RADIUS server.
SSID Broadcast:
the SSID name across the network. SSID is a name that identifies a wireless network.
All devices on a network must use the same SSID to establish communication.
Antenna Transmit Power: Select the transmission power of the antenna. Limiting
antenna power can be useful for security purposes.
(Service Set Identifier) Enable or Disable (default) the broadcast of
51
Using the Configuration Utility in Router Mode (continued)
T ools > Admin
At this page, the DWL-G730AP administrator can change the system password. There
are two accounts that can access the router’s Web-management interface. They are
admin and user. Admin has read/write access while user has read-only access. The
user can only view the settings but cannot make any changes.
Administrator-
PasswordUser-
Password-
Remote Management- Remote management allows the DWL-G730AP to be
configured from the Internet by a Web browser . A username and password is still required
to access the Web-management interface. In general, only a member of your network
can browse the built-in Web pages to perform Administrator tasks. This feature enables
you to perform Administrator t asks from the remote (Internet) host.
IP Address- The Internet IP address of the computer that has access to the router. If
you input an asterisk (*) into this field, then any computer will be able to access the
router. Putting an asterisk (*) into this field would present a security risk and is not
recommended.
Port- The port number used to access the router .
Example- http://x.x.x.x:8080 where x.x.x.x is the WAN IP address of the router and
8080 is the port used for the Web-mangement interface.
admin is the Administrator login name
Enter the password and enter again to confirm
user is the User login name
Enter the password and enter again to confirm
52
Loading...