How it Works
Draytek
Loading...
Vigor2920n
User Manual
355 pgs7.93 Mb0
User Manual
317 pgs7.65 Mb0
User Manual
434 pgs9.56 Mb0
User Manual
370 pgs9.67 Mb0
User Manual
251 pgs5.06 Mb0
User Manual
40 pgs1.73 Mb0

Draytek Vigor2920n, Vigor2920 User Manual

Download
Page 1
Page 2
Vigor2920 Series User’s Guide
ii
Page 3
Vigor2920 Series User’s Guide
iii
Dual-WAN Security Router
User’s Guide
Version: 1.1
Firmware Version: V3.3.6
Date: 07/12/2010
Page 4
Vigor2920 Series User’s Guide
iv
Copyright Information
Copyright Declarations
Copyright 2010 All rights reserved. This publication contains information that is protected by copyright. No part may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated into any language without written permission from the copyright holders.
Trademarks
The following trademarks are used in this document:
z Microsoft is a registered trademark of Microsoft Corp. z Windows, Windows 95, 98, Me, NT, 2000, XP, Vista and Explorer are
trademarks of Microsoft Corp.
z Apple and Mac OS are registered trademarks of Apple Inc. z Other products may be trademarks or registered trademarks of their respective
manufacturers.
Safety Instructions and Approval
Safety Instructions
z Read the installation guide thoroughly before you set up the router. z The router is a complicated electronic unit that may be repaired only be
authorized and qualified personnel. Do not try to open or repair the router yourself.
z Do not place the router in a damp or humid place, e.g. a bathroom. z The router should be used in a sheltered area, within a temperature range of +5 to
+40 Celsius.
z Do not expose the router to direct sunlight or other heat sources. The housing and
electronic components may be damaged by direct sunlight or heat sources.
z Do not deploy the cable for LAN connection outdoor to prevent electronic shock
hazards.
z Keep the package out of reach of children. z When you want to dispose of the router, please follow local regulations on
conservation of the environment.
Warranty
We warrant to the original end user (purchaser) that the router will be free from any defects in workmanship or materials for a period of two (2) years from the date of purchase from the dealer. Please keep your purchase receipt in a safe place as it serves as proof of date of purchase. During the warranty period, and upon proof of purchase, should the product have indications of failure due to faulty workmanship and/or materials, we will, at our discretion, repair or replace the defective products or components, without charge for either parts or labor, to whatever extent we deem necessary tore-store the product to proper operating condition. Any replacement will consist of a new or re-manufactured functionally equivalent product of equal value, and will be offered solely at our discretion. This warranty will not apply if the product is modified, misused, tampered with, dam aged by an act of God, or subjected to abnormal working conditions. The warranty does not cover the bundled or licensed software of other vendors. Defects which do not significantly affect the usability of the product will not be covered by the warranty. We reserve the right to revi se the m anual and onli ne documentation and to make changes from time to time in the contents hereof without obligation to notify any person of such revision or changes.
Be a Registered Owner
Web registration is preferred. You can register your Vigor router via http://www.DrayTek.com.
Firmware & Tools Updates
Due to the continuous evolution of DrayTek technology, all routers will be regularly upgraded. Please consult the DrayTek web site for more information on newest firmware, tools and documents.
http://www.DrayTek.com
Page 5
Vigor2920 Series User’s Guide
v
European Community Declarations
Manufacturer: DrayTek Corp.
Address: No. 26, Fu Shing Road, HuKou Township, HsinChu Industrial Park, Hsin-Chu, Taiwan 303
Product: Vigor2920 Series Router DrayTek Corp. declares that Vigor2920 Series of routers are in compliance with the following essential
requirements and other relevant provisions of R&TTE Directive 1999/5/EEC. The product conforms to the requirements of Electro-Magnetic Compatibility (EMC) Directive 2004/108/EC by
complying with the requirements set forth in EN55022/Class B and EN55024/Class B. The product conforms to the requirements of Low Voltage (LVD) Directive 2006/95/EC by complying with the
requirements set forth in EN60950-1.
Regulatory Information
Federal Communication Commission Interference Statement This equipment has been tested and found to comply with the limits for a Class B digital device, pursuant to Part
15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference in a residential installation. This equipment generates, uses and can radiate radio frequency energy and, if not installed and used in accordance with the instructions, may cause harmful interference to radio communications. However, there is no guarantee that interference will not occur in a particular installation. If this equipment does cause harmful interference to radio or televisio n recept i on , whi ch can be determined by turning the equipment of f and on, the user is encouraged to try to correct the interference by one of the following measures:
z Reorient or relocate the receiving antenna. z Increase the separation between the equipment and receiver. z Connect the equipment into an outlet on a circuit different from that to which the receiver is connected. z Consult the dealer or an experienced radio/TV technician for help.
This device complies with Part 15 of the FCC Rules. Operation is subject to the following two conditions: (1) This device may not cause harmful interference, and (2) This device may accept any interference received, including interference that may cause undesired operation.
Please visit http://www.DrayTek.com/user/AboutRegulatory.php
This product is designed for 2.4GHz WLAN network throughout the EC region and Switzerland with restrictions in France. Please see the user manual for the applicable networks on your product.
Page 6
Vigor2920 Series User’s Guide
vi
Page 7
Vigor2920 Series User’s Guide
vii
TTaabbllee ooff CCoonntteennttss
1
Preface ...............................................................................................................1
1.1 Web Configuration Buttons Explanation................................................................................. 1
1.2 LED Indicators and Connectors.............................................................................................. 2
1.2.1 For Vigor2920................................................................................................................... 2
1.2.2 For Vigor2920n................................................................................................................. 4
1.2.3 For Vigor2920Vn............................................................................................................... 6
1.3 Hardware Installation .............................................................................................................. 8
1.4 Printer Installation ................................................................................................................... 9
2
Configuring Basic Settings ............................................................................15
2.1 Two-Level Management........................................................................................................15
2.2 Accessing Web Page............................................................................................................ 15
2.3 Changing Password.............................................................................................................. 16
2.4 Quick Start Wizard................................................................................................................ 18
2.4.1 For WAN1/WAN2............................................................................................................ 19
2.4.2 For WAN3.......................................................................................................................24
2.5 Service Activation Wizard...................................................................................................... 25
2.6 Online Status......................................................................................................................... 28
2.6.1 Physical Connection.......................................................................................................28
2.6.2 Virtual WAN.................................................................................................................... 29
2.7 Saving Configuration............................................................................................................. 29
2.8 Support Area......................................................................................................................... 30
3
U s e r M o d e O p e r a t i o n............................................................................................31
3.1 WAN...................................................................................................................................... 31
3.1.1 Basics of Internet Protocol (IP) Network......................................................................... 31
3.1.2 General Setup................................................................................................................. 33
3.1.3 Internet Access............................................................................................................... 38
3.1.4 Load-Balance Policy.......................................................................................................46
3.2 LAN ....................................................................................................................................... 48
3.2.1 Basics of LAN ................................................................................................................. 48
3.2.2 General Setup................................................................................................................. 49
3.3 NA T....................................................................................................................................... 52
3.3.1 Port Redirection.............................................................................................................. 53
3.3.2 DMZ Host........................................................................................................................ 55
3.3.3 Open Ports...................................................................................................................... 57
Page 8
Vigor2920 Series User’s Guide
viii
3.4 Applications........................................................................................................................... 59
3.4.1 Dynamic DNS................................................................................................................. 59
3.4.2 UPnP............................................................................................................................... 62
3.5 VoIP....................................................................................................................................... 63
3.5.1 DialPlan .......................................................................................................................... 65
3.5.2 SIP Accounts.................................................................................................................. 74
3.5.3 Phone Settings ............................................................................................................... 78
3.5.4 Status.............................................................................................................................. 83
3.6 Wireless LAN ........................................................................................................................ 84
3.6.1 Basic Concepts............................................................................................................... 84
3.6.2 General Setup................................................................................................................. 86
3.6.3 Security........................................................................................................................... 88
3.6.4 Access Control................................................................................................................ 90
3.6.5 Station List...................................................................................................................... 91
3.7 USB Application.................................................................................................................... 91
3.7.1 USB General Settings..................................................................................................... 92
3.7.2 USB User Management.................................................................................................. 93
3.6.3 File Explorer.................................................................................................................... 95
3.6.4 USB Disk Status............................................................................................................. 95
3.8 System Maintenance............................................................................................................. 96
3.8.1 System Status................................................................................................................. 96
3.8.2 User Password ............................................................................................................... 97
3.8.3 Time and Date................................................................................................................ 98
3.8.4 Reboot System............................................................................................................... 99
3.8.5 Firmware Upgrade..........................................................................................................99
3.8.6 Activation ...................................................................................................................... 100
3.9 Diagnostics.......................................................................................................................... 101
3.9.1 DHCP Table.................................................................................................................. 101
3.9.2 Traffic Graph................................................................................................................. 102
3.9.3 Ping Diagnosis.............................................................................................................. 103
3.9.4 Trace Route.................................................................................................................. 104
4
A d m i n M o d e O p e r a t i o n.......................................................................................105
4.1 WAN.................................................................................................................................... 105
4.1.1 Basics of Internet Protocol (IP) Network....................................................................... 105
4.1.2 General Setup............................................................................................................... 107
4.1.3 Internet Access.............................................................................................................111
4.1.4 Load-Balance Policy..................................................................................................... 119
4.1.5 Multi-VLAN.................................................................................................................... 121
4.2 LAN ..................................................................................................................................... 124
4.2.1 Basics of LAN ............................................................................................................... 124
4.2.2 General Setup............................................................................................................... 126
4.2.3 Static Route.................................................................................................................. 129
4.2.4 VLAN............................................................................................................................. 132
4.2.5 Bind IP to MAC............................................................................................................. 133
4.3 NA T..................................................................................................................................... 134
4.3.1 Port Redirection............................................................................................................ 135
4.3.2 DMZ Host...................................................................................................................... 137
Page 9
Vigor2920 Series User’s Guide
ix
4.3.3 Open Ports.................................................................................................................... 139
4.4 Firewall................................................................................................................................ 142
4.4.1 Basics for Firewall......................................................................................................... 142
4.4.2 General Setup............................................................................................................... 144
4.4.3 Filter Setup ................................................................................................................... 147
4.4.4 DoS Defense ................................................................................................................ 156
4.5 User Management............................................................................................................... 159
4.5.1 General Setup............................................................................................................... 160
4.5.2 User Profile................................................................................................................... 161
4.5.3 User Group................................................................................................................... 164
4.5.4 User Online Status........................................................................................................ 165
4.6 Objects Settings.................................................................................................................. 166
4.5.1 IP Object....................................................................................................................... 166
4.6.2 IP Group ....................................................................................................................... 168
4.6.3 Service Type Object ..................................................................................................... 170
4.6.4 Service Type Group...................................................................................................... 171
4.5.5 Keyword Object ............................................................................................................ 172
4.6.6 Keyword Group............................................................................................................. 173
4.6.7 File Extension Object.................................................................................................... 174
4.7 CSM Profile......................................................................................................................... 176
4.7.1 APP Enforcement Profile.............................................................................................. 177
4.7.2 URL Content Filter Profile............................................................................................. 180
4.7.3 Web Content Filter Profile............................................................................................. 184
4.8 Bandwidth Management ..................................................................................................... 187
4.8.1 Sessions Limit............................................................................................................... 187
4.8.2 Bandwidth Limit ............................................................................................................189
4.8.3 Quality of Service.......................................................................................................... 190
4.9 Applications.........................................................................................................................198
4.9.1 Dynamic DNS............................................................................................................... 198
4.9.2 Schedule....................................................................................................................... 200
4.9.3 RADIUS........................................................................................................................ 202
4.9.4 UPnP............................................................................................................................. 203
4.9.5 IGMP............................................................................................................................. 205
4.9.6 Wake on LAN................................................................................................................ 206
4.10 VPN and Remote Access.................................................................................................. 207
4.10.1 VPN Client Wizard...................................................................................................... 207
4.10.2 VPN Server Wizard..................................................................................................... 213
4.10.3 Remote Access Control.............................................................................................. 217
4.10.4 PPP General Setup .................................................................................................... 218
4.10.5 IPSec General Setup.................................................................................................. 219
4.10.6 IPSec Peer Identity..................................................................................................... 220
4.10.7 Remote Dial-in User ................................................................................................... 221
4.10.8 LAN to LAN................................................................................................................. 225
4.10.9 Connection Management ........................................................................................... 233
4.11 Certificate Management.................................................................................................... 234
4.11.1 Local Certificate.......................................................................................................... 234
4.11.2 Trusted CA Certificate ................................................................................................ 236
4.11.3 Certificate Backup....................................................................................................... 237
4.12 VoIP................................................................................................................................... 237
4.12.1 DialPlan ...................................................................................................................... 239
4.12.2 SIP Accounts.............................................................................................................. 248
Page 10
Vigor2920 Series User’s Guide
x
4.12.3 Phone Settings ...........................................................................................................251
4.12.4 Status.......................................................................................................................... 257
4.13 Wireless LAN .................................................................................................................... 258
4.13.1 Basic Concepts........................................................................................................... 258
4.13.2 General Setup............................................................................................................. 260
4.13.3 Security....................................................................................................................... 263
4.13.4 Access Control............................................................................................................ 265
4.13.5 WPS............................................................................................................................ 267
4.13.6 WDS............................................................................................................................ 269
4.13.7 Advanced Setting........................................................................................................ 272
4.13.8 WMM Configuration.................................................................................................... 273
4.13.9 AP Discovery.............................................................................................................. 274
4.13.10 Station List................................................................................................................ 275
4.14 USB Application................................................................................................................ 276
4.14.1 USB General Settings................................................................................................. 276
4.14.2 USB User Management.............................................................................................. 277
4.14.3 File Explorer................................................................................................................ 279
4.14.4 USB Disk Status......................................................................................................... 280
4.15 System Maintenance......................................................................................................... 281
4.15.1 System Status............................................................................................................. 281
4.15.2 TR-069........................................................................................................................ 282
4.15.3 Administrator Password.............................................................................................. 283
4.15.4 User Password ........................................................................................................... 284
4.15.5 Configuration Backup ................................................................................................. 284
4.15.6 Syslog/Mail Alert......................................................................................................... 286
4.15.7 Time and Date............................................................................................................ 288
4.15.8 Management............................................................................................................... 289
4.15.9 Reboot System........................................................................................................... 290
4.15.10 Firmware Upgrade.................................................................................................... 291
4.15.11 Activation.................................................................................................................. 292
4.16 Diagnostics........................................................................................................................ 293
4.16.1 Dial-out Trigger........................................................................................................... 293
4.16.2 Routing Table ............................................................................................................. 294
4.16.3 ARP Cache Table....................................................................................................... 295
4.16.4 DHCP Table................................................................................................................ 295
4.16.5 NAT Sessions Table................................................................................................... 296
4.16.6 Data Flow Monitor....................................................................................................... 296
4.16.7 Traffic Graph............................................................................................................... 298
4.16.8 Ping Diagnosis............................................................................................................ 299
4.16.9 Trace Route................................................................................................................ 300
5
Application and Examples............................................................................301
5.1 Create a LAN-to-LAN Connection Between Remote Office and Headquarter................... 301
5.2 Create a Remote Dial-in User Connection Between the Teleworker and Headquarter...... 309
5.3 QoS Setting Example.......................................................................................................... 313
5.4 LAN – Created by Using NAT ............................................................................................. 317
5.5 Upgrade Firmware for Y our Router..................................................................................... 319
5.6 Request a certificate from a CA server on Windows CA Server......................................... 322
5.7 Request a CA Certificate and Set as Trusted on Windows CA Server............................... 326
Page 11
Vigor2920 Series User’s Guide
xi
5.8 Creating an Account for MyVigor ........................................................................................ 328
5.8.1 Creating an Account via Vigor Router.......................................................................... 328
5.8.2 Creating an Account via MyVigor Web Site.................................................................. 332
Trouble Shooting .........................................................................................337
6.1 Checking If the Hardware Status Is OK or Not....................................................................337
6.2 Checking If the Network Connection Settings on Your Computer Is OK or Not ................. 338
6.3 Pinging the Router from Y our Computer............................................................................. 340
6.4 Checking If the ISP Settings are OK or Not........................................................................ 341
6.5 Problems for 3G Network Connection ................................................................................ 341
6.6 Backing to Factory Default Setting If Necessary ................................................................ 342
6.7 Contacting Your Dealer....................................................................................................... 343
Page 12
Page 13
Vigor2920 Series User’s Guide
1
1
PPrreeffaaccee
Vigor2920 series is a broadband router. It integrates IP layer QoS, NAT session/bandwidth management to help users control works well with large bandwidth.
By adopting hardware-based VPN platform and hardware encryption of AES/DES/3DS, the router increases the performance of VPN greatly, and offers several protocols (such as IPSec/PPTP/L2TP) with up to 2 VPN tunnels.
The object-based design used in SPI (Stateful Packet Inspection) firewall allows users to set firewall policy with ease. CSM (Content Security Management) provides users control and management in IM (Instant Messenger) and P2P (Peer to Peer) more efficiency than before. By the way, DoS/DDoS prevention and URL/Web content filter strengthen the security outside and control inside.
Object-based firewall is flexible and allows your network be safe. In addition, Vigor2920 series supports USB interface for connecting USB printer to share printer or USB storage device for sharing files.
Vigor2920 series provides two-level management to simplify the configuration of network connection. The user mode allows user accessing into WEB interface via simple configuration. However, if users want to have advanced configurations, they can access into WEB interface through admin mode.
11..11 WWeebb CCoonnffiigguurraattiioonn BBuuttttoonnss EExxppllaannaattiioonn
Several main buttons appeared on the web pages are defined as the following:
Save and apply current settings.
Cancel current settings and recover to the previous saved settings.
Clear all the selections and parameters settings, including selection from
drop-down list. All the values must be reset with factory default settings.
Add new settings for specified item.
Edit the settings for the selected item.
Delete the selected item with the corresponding settings.
Note: For the other buttons shown on the web pages, please refer to Chapter 4 for detailed explanation.
Page 14
Vigor2920 Series User’s Guide
2
11..22 LLEEDD IInnddiiccaattoorrss aanndd CCoonnnneeccttoorrss
Before you use the Vigor router, please get acquainted with the LED indicators and connectors first.
11..22..11 FFoorr VViiggoorr22992200
LED Status Explanation
Blinking The router is powered on and ru n ning normally. ACT (Activity) Off The router is powered off. On USB device is connected and ready for use. USB Blinking The data is transmitting.
CSM On The profile(s) of CSM (Content Security
Management) for IM/P2P, URL/Web Content Filter application is enabled from Firewall >>General
Setup. (Such profile must be established under CSM menu).
WCF On The Web Content Filter is active. (It is enabled
from Firewall >> General Setup).
On The WAN1 or WAN2 connection is ready. WAN1/2 Blinking It will blink while transmitting data. On The DoS/DDoS function is active. DoS
Blinking It will blink while an attack is detected. VPN On The VPN tunnel is active. QoS
On The QoS function is active.
LED on Connector
On The port is connected.
Off The port is disconnected.
Left LED (Green)
Blinking The data is transmitting.
On The port is connected with 100Mbps.
WAN1
Right LED (Green)
Off The port is connected with 10Mbps when left LED
is on. On The port is connected. Off The port is disconnected.
Left LED (Green)
Blinking The data is transmitting. On The port is connected with 1000Mbps.
WAN2(Giga)
Right LED (Green)
Off The port is connected with 10/100Mbps when left
LED is on. On The port is connected. Off The port is disconnected.
Left LED (Green)
Blinking The data is transmitting. On The port is connected with 1000Mbps.
GigaLAN 1/2/3/4
Right LED (Green)
Off The port is connected with 10/100Mbps when left
LED is on.
Page 15
Vigor2920 Series User’s Guide
3
Interface Description
Factory Reset Restore the default settings. Usage: Turn on the router (ACT LED is blinking).
Press the hole and keep for more than 5 seconds. When you see the ACT LED begins to blink rapidly than usual, release the button. Then the router will
restart with the factory default configuration. GigaLAN (1-4) Connecters for local networked devices. WAN1/WAN2(Giga) Connecters for remote networked devices. USB Connecter for 3G Modem or printer.
PWR
Connecter for a power adapter. ON/OFF
Power Switch.
Page 16
Vigor2920 Series User’s Guide
4
11..22..22 FFoorr VViiggoorr22992200nn
LED Status Explanation
Blinking The router is powered on and ru n ning normally. ACT (Activity) Off The router is powered off. On USB device is connected and ready for use. USB Blinking The data is transmitting.
CSM On The profile(s) of CSM (Content Security
Management) for IM/P2P, URL/Web Content Filter application is enabled from Firewall >>General
Setup. (Such profile must be established under CSM menu).
On
Wireless access point is ready.
WLAN
Blinking
It will blink slowly while wireless traffic goes through.
If ACT and WLAN LEDs blink quickly and simultaneously when WPS is working, and it will return to normal condition after two minutes. (You need to setup WPS within 2 minutes.)
On The WAN1 or WAN2 connection is ready. WAN1/2 Blinking It will blink while transmitting data. On The DoS/DDoS function is active. DoS
Blinking It will blink while an attack is detected. VPN On The VPN tunnel is active. QoS
On The QoS function is active.
LED on Connector
On The port is connected.
Off The port is disconnected.
Left LED (Green)
Blinking The data is transmitting.
On The port is connected with 100Mbps.
WAN1
Right LED (Green)
Off The port is connected with 10Mbps when left LED
is on. On The port is connected. Off The port is disconnected.
Left LED (Green)
Blinking The data is transmitting. On The port is connected with 1000Mbps.
WAN2(Giga)
Right LED (Green)
Off The port is connected with 10/100Mbps when left
LED is on. On The port is connected. Off The port is disconnected.
Left LED (Green)
Blinking The data is transmitting. On The port is connected with 1000Mbps.
GigaLAN 1/2/3/4
Right LED (Green)
Off The port is connected with 10/100Mbps when left
LED is on.
Page 17
Vigor2920 Series User’s Guide
5
Interface Description
Wireless LAN ON/OFF/WPS
Press "Wireless LAN ON/OFF/WPS" button once to wait for client device making network connection through WPS. Press "Wireless LAN ON/OFF/WPS" button twice to enable (WLAN LED on) or disable (WLAN LED off) wireless connection.
Factory Reset Restore the default settings. Usage: Turn on the router (ACT LED is blinking).
Press the hole and keep for more than 5 seconds. When you see the ACT LED begins to blink rapidly than usual, release the button. Then the router will
restart with the factory default configuration. GigaLAN (1-4) Connecters for local networked devices. WAN1/WAN2(Giga) Connecters for remote networked devices. USB Connecter for 3G Modem or printer.
PWR
Connecter for a power adapter. ON/OFF
Power Switch.
Page 18
Vigor2920 Series User’s Guide
6
11..22..33 FFoorr VViiggoorr22992200VVnn
LED Status Explanation
Blinking The router is powered on and ru n ni n g no rmally. ACT (Activity) Off The router is powered off. On USB device is connected and ready for use. USB Blinking The data is transmitting.
CSM On The profile(s) of CSM (Content Security
Management) for IM/P2P, URL/Web Content Filter application can be enabled from Firewall >>General Setup. (Such profile must be established under CSM menu).
On
Wireless access point is ready.
WLAN
Blinking
It will blink slowly while wireless traffic goes through.
If ACT and WLAN LEDs blink quickly and simultaneously when WPS is working, and it will return to normal condition after two minutes. (You need to setup WPS within 2 minutes.)
On The WAN1 or WAN2 connection is ready. WAN1/2 Blinking It will blink while transmitting data. On A PSTN phone call comes (in and out). However,
when the phone call is disconnected, the LED will be off.
Line
Off There is no PSTN phone call. On The phone connected to this port is off-hook. Off The phone connected to this port is on-hook.
Phone 1/2
Blinking A phone call comes.
LED on Connector
On The port is connected. Off The port is disconnected.
Left LED (Green)
Blinking The data is transmitting. On The port is connected with 1000Mbps.
WAN1/ WAN2 (Giga)
Right LED (Green)
Off The port is connected with 10/100Mbps when left
LED is on. On The port is connected. Off The port is disconnected.
Left LED (Green)
Blinking The data is transmitting. On The port is connected with 1000Mbps.
GigaLAN 1/2/3/4
Right LED (Green)
Off The port is connected with 10/100Mbps when left
LED is on.
Page 19
Vigor2920 Series User’s Guide
7
Interface Description
Wireless LAN ON/OFF/WPS
Press "Wireless LAN ON/OFF/WPS" button once to wait for client device making network connection through WPS. Press "Wireless LAN ON/OFF/WPS" button twice to enable (WLAN LED on) or disable (WLAN LED off) wireless connection.
Factory Reset Restore the default settings. Usage: Turn on the router (ACT LED is blinking).
Press the hole and keep for more than 5 seconds. When you see the ACT LED begins to blink rapidly than usual, release the button. Then the router will
restart with the factory default configuration. Phone 1/2 Connecter for analog phone(s). Line Connector for PSTN life line. GigaLAN (1-4) Connecters for local networked devices. WAN1/WAN2(Giga) Connecters for remote networked devices. USB Connecter for Mobile HDD, 3G Modem or print er.
PWR
Connecter for a power adapter. ON/OFF
Power Switch.
Page 20
Vigor2920 Series User’s Guide
8
11..33 HHaarrddwwaarree IInnssttaallllaattiioonn
Before starting to configure the router, you have to connect your devices correctly.
1. Connect the cable Modem/DSL Modem/Media Converter to any WAN port of router
with Ethernet cable (RJ-45).
2. Connect one end of an Ethernet cable (RJ-45) to one of the LAN ports of the router and
the other end of the cable (RJ-45) into the Ethernet port on your computer.
3. Connect one end of the power adapter to the router’s power port on the rear panel, and
the other side into a wall outlet.
4. Power on the device by pressing down the power switch on the rear panel.
5. The system starts to initiate. After completing the system test, the ACT LED will light
up and start blinking.
(For the detailed information of LED status, please refer to section 1.1.)
Page 21
Vigor2920 Series User’s Guide
9
11..44 PPrriinntteerr IInnssttaallllaattiioonn
You can install a printer onto the router for sharing printing. All the PCs connected this router can print documents via the router. The example provided here is made based on Windows XP/2000. For Windows 98/SE/Vista, please visit www.DrayTek.com.
Before using it, please follow the steps below to configure settings for connected computers (or wireless clients).
1. Connect the printer with the router through USB/parallel port.
2. Open Start->Settings-> Printer and Faxes.
3. Open File->Add Printer. A welcome dialog will appear. Please click Next.
Page 22
Vigor2920 Series User’s Guide
10
4. Click Local printer attached to this computer and click Next.
5. In this dialog, choose Create a new port Type of port and use the drop down list to
select Standard TCP/IP Port. Click Next.
Page 23
Vigor2920 Series User’s Guide
11
6. In the following dialog, type 192.168.1.1 (router’s LAN IP) in the field of Printer Name
or IP Address and type IP_192.168.1.1 as the port name. Then, click Next.
7. Click Standard and choose Generic Network Card.
8. Then, in the following dialog, click Finish.
Page 24
Vigor2920 Series User’s Guide
12
9. Now, your system will ask you to choose right name of the printer that you installed onto
the router. Such step can make correct driver loaded onto your PC. When you finish the selection, click Next.
10. For the final stage, you need to go back to Control Panel-> Printers and edit the
property of the new printer you have added.
11. Select "LPR" on Protocol, type p1 (number 1) as Queue Name. Then click OK. Next
please refer to the red rectangle for choosing the correct protocol and LPR name.
Page 25
Vigor2920 Series User’s Guide
13
The printer can be used for printing now. Most of the printers with different manufacturers are compatible with vigor router.
Note 1: Some printers with the fax/scanning or other additional functions are not supported. If you do not know whether your printer is supported or not, please visit www.DrayTek.com to find out the printer list. Open Support >FAQ; find out the link of
Printer Server and click it; then click the What types of printers are compatible with Vigor router? link.
Note 2: Vigor router supports printing request from computers via LAN ports but not
WAN port.
Page 26
Vigor2920 Series User’s Guide
14
This page is left blank.
Page 27
Vigor2920 Series User’s Guide
15
2
C
Coonnffiigguurriinngg
B
Baassiicc SSeettttiinnggss
For using the router properly, it is necessary for you to change the password of web configuration for security and adjust primary basic settings.
22..11 TTwwoo--LLeevveell MMaannaaggeemmeenntt
This chapter explains how to setup a password for an administrator/user and how to adjust basic/advanced settings for accessing Internet successfully.
For user mode operation, do not type any word on the window and click Login for the simple web pages for configuration. Yet, for admin mode operation, please type “admin/admin” on Username/Password and click Login for full configuration.
22..22 AAcccceessssiinngg WWeebb PPaaggee
1. Make sure your PC connects to the router correctly.
Notice: You may either simply set up your computer to get IP dynamically from the router or set up the IP address of the computer to be the same subnet as the default IP address of Vigor router 192.168.1.1. For the detailed information, please refer to the later section - Trouble Shooting of the guide.
2. Open a web browser on your PC and type http://192.168.1.1. The following window
will be open to ask for username and password.
3. For user mode operation, do not type any word on the window and click Login for the
simple web pages for configuration. Yet, for admin mode operation, please type “admin/admin” on Username/Password and click Login for full configuration.
Notice: If you fail to access to the web configuration, please go to “Trouble Shooting” for detecting and solving your problem.
4.
Page 28
Vigor2920 Series User’s Guide
16
5. The web page can be logged out according to the chosen condition. The default setting is
Auto Logout, which means the web configuration system will logout after 5 minutes without any operation. Change the setting for your necessity.
22..33 CChhaannggiinngg PPaasssswwoorrdd
No matter user mode operation or admin mode operation, please change the password for the original security of the router.
1. Open a web browser on your PC and type http://192.168.1.1. A pop-up window will
open to ask for username and password.
2. Please type “admin/admin” on Username/Password for admin mode. Otherwise, do not
type any word (both username and password are Null for user mode) on the window and click Login on the window.
3. Now, the Main Screen will appear.
Main screen for admin mode operation (full configuration)
Page 29
Vigor2920 Series User’s Guide
17
Main screen for user mode operation (simple configuration)
Note: The home page will change slightly in accordance with the type of the router
you have.
4. Go to System Maintenance page and choose Administrator Password/User
Password.
or
5. Enter the login password (the default is blank) on the field of Old Password. Type New
Password. Then click OK to continue.
6. Now, the password has been changed. Next time, use the new password to access the
Web Configurator for this router.
Page 30
Vigor2920 Series User’s Guide
18
22..44 QQuuiicckk SSttaarrtt WWiizzaarrdd
Notice: Quick Start Wizard for user mode operation is the same as for admin mode operation.
If your router can be under an environment with high speed NAT, the configuration provide here can help you to deploy and use the router quickly. The first screen of Quick Start Wizard is entering login password. After typing the password, please click Next.
Page 31
Vigor2920 Series User’s Guide
19
On the next page as shown below, please select the WAN interface that you use. If Ethernet interface is used, please choose WAN1/2 (based on the physical hardware connection); if 3G USB modem is used, please choose WAN3. Choose Auto negotiation as the physical type for your router. Then click Next for next step.
WAN1/WAN2 and WAN3 will bring up different configuration page. Refer to the following for detailed information.
22..44..11 FFoorr WWAANN11//WWAANN22
Choose WAN1/WAN2 and click Next to display the following page. Please select the appropriate Internet access type according to the information from your ISP.
For example, you should select PPPoE mode if the ISP provides you PPPoE interface. Then click Next for next step.
Page 32
Vigor2920 Series User’s Guide
20
22..44..11..11 PPPPPPooEE
PPPoE stands for Point-to-Point Protocol over Ethernet. It relies on two widely accepted standards: PPP and Ethernet. It connects users through an Ethernet to the Internet with a common broadband medium, such as wireless device or cable modem. All the users over the Ethernet can share a common connection.
PPPoE is used for most of modem users. All local users can share one PPPoE connection for accessing the Internet. Your service provider will provide you information about user name, password, and authentication mode.
If your ISP provides you the PPPoE connection, please select PPPoE for this router. The following page will be shown:
User Name Assign a specific valid user name provided by the ISP. Password Assign a valid password provided by the ISP. Confirm Password Retype the password. Click Next for viewing summary of such connection.
Page 33
Vigor2920 Series User’s Guide
21
Click Finish. A page of Quick Start Wizard Setup OK!!! will appear. Then, the system status of this protocol will be shown.
22..44..11..22 PPPPTTPP//LL22TTPP
Click PPTP/L2TP as the protocol. Type in all the information that your ISP provides for this protocol.
Click Next for viewing summary of such connection.
Page 34
Vigor2920 Series User’s Guide
22
Click Finish. A page of Quick Start Wizard Setup OK!!! will appear. Then, the system status of this protocol will be shown.
22..44..11..33 SSttaattiicc IIPP
Click Static IP as the protocol. Type in all the information that your ISP provides for this protocol.
After finishing the settings in this page, click Next to see the following page.
Page 35
Vigor2920 Series User’s Guide
23
Click Finish. A page of Quick Start Wizard Setup OK!!! will appear. Then, the system status of this protocol will be shown.
22..44..11..44 DDHHCCPP
Click DHCP as the protocol. Type in all the information that your ISP provides for this protocol.
After finishing the settings in this page, click Next to see the following page.
Page 36
Vigor2920 Series User’s Guide
24
Click Finish. A page of Quick Start Wizard Setup OK!!! will appear. Then, the system status of this protocol will be shown.
22..44..22 FFoorr WWAANN33
To use 3G USB modem for network connection, please choose WAN3.
Then, click Next to continue.
Click Finish. A page of Quick Start Wizard Setup OK!!! will appear. Then, the system status of this protocol will be shown.
Page 37
Vigor2920 Series User’s Guide
25
22..55 SSeerrvviiccee AAccttiivvaattiioonn WWiizzaarrdd
Service Activation Wizard can guide you to activate WCF service (Web Content Filter) with a quick and easy way. For the Service Activation Wizard is only available for admin
operation, therefore, please type “admin/admin” on Username/Password while Logging into the web configurator.
Note: Be aware that Web Content Filter (WCF) is not a built-in service of Vigor router,
but a service powered by Commtouch. If you want to use such service (trial or formal edition), you have to perform the procedure of activation first. For the service of formal edition, please contact with your dealer for detailed information.
Service Activation Wizard is a tool which allows you to use trial version or update the license of WCF directly without accessing into the server (MyVigor) located on http://myvigor.draytek.com
. For using Web Content Filter Profile, please refer to later section
Web Content Filter Profile for detailed information. Now, follow the steps listed below to activate WCF feature for your router.
1. Open Service Activation Wizard.
2. The screen of Service Activation Wizard will be shown as follows. Choose the one you
need and click Next. In this case, we choose to activate free trial edition.
Free trial edition: it offers a period of trial for you to get acquainted with WCF function. Formal edition with license key: it offers a period of valid time (e.g., one year) for WCF
function.
Note: If you activate Formal edition with license key first, the free trial edition will be invalid.
Page 38
Vigor2920 Series User’s Guide
26
3. In the following page, you can activate the Web content filter services at the same time
or individually. When you finish the selection, please click Next.
Commtouch is the web content filter based on Commtouch operated in the worldwide. There is a 30-day trial period. After trial, you can purchase DrayTek's prepared Commtouch GlobalView WCF package from retailing outlets.
4. Setting confirmation page will be displayed as follows, please click Next.
5. Wait for a moment till the following page appears.
When such page appears, you can enable or disable these services for your necessity. Then, click Finish.
Page 39
Vigor2920 Series User’s Guide
27
Note: The service will be activated and applied as the default rule configured in Firewall>>General Setup.
6. Now, the web page will display the service that you have activated according to your
selection(s). The valid time for the free trial of these services is 30-day.
Later, if you need to extend the license valid time for the same service, you can also use the Service Activation Wizard again to reach your goal by clicking the radio button of Formal edition with license key and clicking Next.
Page 40
Vigor2920 Series User’s Guide
28
22..66 OOnnlliinnee SSttaattuuss
22..66..11 PPhhyyssiiccaall CCoonnnneeccttiioonn
Such page displays the physical connection status such as LAN connection status, WAN connection status, ADSL information, and so on.
If you select PPPoE as the protocol, you will find out a link of Dial PPPoE or Drop PPPoE in the Online Status web page.
Detailed explanation is shown below:
LAN Status
Primary DNS Displays the IP address of the primary DNS. Secondary DNS Displays the IP address of the secondary DNS. IP Address Displays the IP address of the LAN interface. TX Packets Displays the total transmitted packets at the LAN interface. RX Packets Displays the total number of received packets at the LAN interface.
WAN Status
Line Displays the physical connection (Ethernet) of this interface. Name Displays the name set in WAN1/WAN web page. Mode Displays the type of WAN connection (e.g., PPPoE). Up Time Displays the total uptime of the interface.
Page 41
Vigor2920 Series User’s Guide
29
IP Displays the IP address of the WAN interface. GW IP Displays the IP address of the default gateway. TX Packets Displays the total transmitted packets at the WAN interface. TX Rate Displays the speed of transmitted octets at the WAN interface. RX Packets Displays the total number of received packets at the WAN interface. RX Rate Displays the speed of received octets at the WAN interface.
Note: The words in green mean that the WAN connection of that interface is ready for
accessing Internet; the words in red mean that the WAN connection of that interface is not ready for accessing Internet.
22..66..22 VViirrttuuaall WWAANN
Such page displays the virtual WAN connection information. Virtual WAN are used by TR-069 management, VoIP service and so on. The Application field will list the purpose of such WAN connection.
22..77 SSaavviinngg CCoonnffiigguurraattiioonn
Each time you click OK on the web page for saving the configuration, you can find messages showing the system interaction with you.
Ready indicates the system is ready for you to input settings. Settings Saved means your settings are saved once you click Finish or OK button.
Page 42
Vigor2920 Series User’s Guide
30
22..88 SSuuppppoorrtt AArreeaa
When you click the menu item under Support Area, you will be guided to visit www.draytek.com and open the corresponding pages directly.
Click Support Area>>Product Registration, the following web page will be displayed.
Page 43
Vigor2920 Series User’s Guide
31
3
U
Usseerr
M
Mooddee
O
Oppeerraattiioonn
This chapter will guide users to execute simple configuration through user mode operation. As for other examples of application, please refer to chapter 5.
1. Open a web browser on your PC and type http://192.168.1.1. The window will ask for
typing username and password.
2. Do not type any word (both username and password are Null for user operation) on the
window and click Login on the window.
Now, the Main Screen will appear. Be aware that “User mode” will be displayed on the bottom left side.
33..11 WWAANN
Quick Start Wizard offers user an easy method to quick setup the connection mode for the router. Moreover, if you want to adjust more settings for different WAN modes, please go to WAN group.
33..11..11 BBaassiiccss ooff IInntteerrnneett PPrroottooccooll ((IIPP)) NNeettwwoorrkk
IP means Internet Protocol. Every device in an IP-based Network including routers, print server, and host PCs, needs an IP address to identify its location on the network. To avoid address conflicts, IP addresses are publicly registered with the Network Information Centre (NIC). Having a unique IP address is mandatory for those devices participated in the public network but not in the private TCP/IP local area networks (LANs), such as host PCs under the management of a router since they do not need to be accessed by the public. Hence, the NIC has reserved certain addresses that will never be registered publicly. These are known as private IP addresses, and are listed in the following ranges:
Page 44
Vigor2920 Series User’s Guide
32
From 10.0.0.0 to 10.255.255.255 From 172.16.0.0 to 172.31.255.255 From 192.168.0.0 to 192.168.255.255
WWhhaatt aarree PPuubblliicc IIPP AAddddrreessss aanndd PPrriivvaattee IIPP AAddddrreessss
As the router plays a role to manage and further protect its LAN, it interconnects groups of host PCs. Each of them has a private IP address assigned by the built-in DHCP server of the Vigor router. The router itself will also use the default private IP address: 192.168.1.1 to communicate with the local hosts. Meanwhile, Vigor router will communicate with other network devices through a public IP address. When the data flow passing through, the Network Address Translation (NAT) function of the router will dedicate to translate public/private addresses, and the packets will be delivered to the correct host PC in the local area network. Thus, all the host PCs can share a common Internet connection.
GGeett YYoouurr PPuubblliicc IIPP AAddddrreessss ffrroomm IISSPP
In ADSL deployment, the PPP (Point to Point)-style authentication and authorization is required for bridging customer premises equipment (CPE). Point to Point Protocol over Ethernet (PPPoE) connects a network of hosts via an access device to a remote access concentrator or aggregation concentrator. This implementation provides users with significant ease of use. Meanwhile it provides access control, billing, and type of service according to user requirement.
When a router begins to connect to your ISP, a serial of discovery process will occur to ask for a connection. Then a session will be created. Your user ID and password is authenticated via PAP or CHAP with RADIUS authentication system. And your IP address, DNS server, and other related information will usually be assigned by your ISP.
NNeettwwoorrkk CCoonnnneeccttiioonn bbyy 33GG UUSSBB MMooddeemm
For 3G mobile communication through Access Point is popular more and more, Vigor2920 adds the function of 3G network connection for such purpose. By connecting 3G USB Modem to the USB port of Vigor2920, it can support HSDPA/UMTS/EDGE/GPRS/GSM and the future 3G standard (HSUPA, etc). Vigor2920n/Vn with 3G USB Modem allows you to receive 3G signals at any place such as your car or certain location holding outdoor activity and share the bandwidth for using by more people. Users can use four LAN ports on the router to access Internet. Also, they can access Internet via 802.11n wireless function of Vigor2920n/Vn, and enjoy the powerful firewall, bandwidth management, VPN features of Vigor2920n/Vn series.
After connecting into the router, 3G USB Modem will be regarded as the third WAN port. However, the original Ethernet WAN1/WAN2 still can be used and Load-Balance can be done in the router. Besides, 3G USB Modem in WAN3 also can be used as backup device.
Page 45
Vigor2920 Series User’s Guide
33
Therefore, when WAN1/WAN2 is not available, the router will use 3.5G for supporting automatically. The supported 3G USB Modem will be listed on Draytek web site. Please visit www.draytek.com for more detailed information.
Below shows the menu items for WAN.
33..11..22 GGeenneerraall SSeettuupp
This section will introduce some general settings of Internet and explain the connection modes for WAN1, WAN2 and WAN3 in details.
This router supports multiple-WAN function. It allows users to access Internet and combine the bandwidth of the multiple-WAN to speed up the transmission through the network. Each WAN port can connect to different ISPs even if the ISPs use different technology to provide telecommunication service (such as Cable modem). If any connection problem occurred on one of the ISP connections, all the traffic will be guided and switched to the normal communication port for proper operation. Please configure WAN1, WAN2 and WAN3 settings.
This webpage allows you to set general setup for WAN1, WAN2 and WAN3 respectively.
Load Balance Mode
This option is available for multiple-WAN for getting enough bandwidth for each WAN port. If you know the practical bandwidth for your WAN interface, please choose the setting of
According to Line Speed. Otherwise, please choose Auto Weight to let the router reach the best load balance.
Index
Click the WAN interface link under Index to access into the WAN configuration page.
Enable
V means such WAN interface is enabled and ready to be used.
Physical Mode / Type
Display the physical mode and physical type of such WAN interface.
Line Speed
Display the downstream and upstream rate of such WAN
Page 46
Vigor2920 Series User’s Guide
34
interface.
Active Mode
Display whether such WAN interface is used as Active device or backup device.
Backup WAN
Display the Backup WAN interface for such WAN when it is disabled.
Note: In default, each WAN port is enabled.
WWAANN11//WWAANN22 wwiitthh EEtthheerrnneett
Be aware that WAN2 is fixed with physical mode of Giga Ethernet.
Enable
Choose Yes to invoke the settings for this WAN interface. Choose No to disable the settings for this WAN interface.
Display Name
Type the description for such WAN interface.
Physical Mode
Display the physical mode of such WAN interface.
Physical type
You can change the physical type for WAN2 or choose Auto negotiation for determined by the system.
Line Speed
If your choose According to Line Speed as the Load Balance Mode, please type the line speed for downloading and
uploading for such WAN interface. The unit is kbps.
VLAN Tag insertion
Enable – Enable the function of VLAN with tag.
The router will add specific VLAN number to all packets on the
Page 47
Vigor2920 Series User’s Guide
35
WAN while sending them out. Please type the tag value and specify the priority for the packets
sending by WAN1.
Disable – Disable the function of VLAN with tag. Tag value – Type the value as the VLAN ID number. The
range is form 0 to 4095. Priority – Type the packet priority number for such VLAN.
The range is from 0 to 7.
Active Mode and Backup WAN/Backup Type
Active Mode – Determine the WAN interface will be active for
always (Always On) or be treated as a backup WAN interface (Backup WAN).
Backup WAN/Backup Type – Determine the role of such WAN interface. It will be changed according to the Active Mode specified.
If you choose Always On as Active Mode, you can choose one of the backup WAN interfaces from the Backup WAN drop down list. Later, when such WAN is disconnected for some reason, the backup WAN will be activated automatically to prevent data transmission from connection interrupted.
If you choose Backup as the Active Mode, Backup WAN will be changed into Backup Type. You have to specify which role the WAN interface should play if you want to backup multiple WANs. However, ignore this setting if you want to backup a single WAN.
When any WAN disconnect – Such backup WAN will be activated when any master WAN interface disconnects.
When all WAN disconnect – Such backup WAN will be activated only when all master WAN interfaces disconnect.
Page 48
Vigor2920 Series User’s Guide
36
WWAANN33 wwiitthh UUSSBB
To use 3G network connection through 3G USB Modem, please configure WAN3 interface.
Enable
Choose Yes to invoke the settings for this WAN interface. Choose No to disable the settings for this WAN interface.
Display Name
Type the description for such WAN interface.
Physical Mode
Display the physical mode of such WAN interface.
Physical type
In such WAN interface, no type can be selected.
Line Speed
If your choose According to Line Speed as the Load Balance Mode, please type the line speed for downloading and
uploading for such WAN interface. The unit is kbps.
Active Mode and Backup WAN/Backup Type
Active Mode – Determine the WAN interface will be active for
always(Always On) or be treated as a backup WAN interface(Backup WAN).
Backup WAN/Backup Type – Determine the role of such WAN interface. It will be changed according to the Active Mode specified.
If you choose Always On as Active Mode, you can choose one of the backup WAN interfaces from the Backup WAN drop down list. Later, when such WAN is disconnected for some reason, the backup WAN will be activated automatically to prevent data transmission from connection interrupted.
If you choose Backup as the Active Mode, Backup WAN will be changed into Backup Type. You have to specify which role
Page 49
Vigor2920 Series User’s Guide
37
the WAN interface should play if you want to backup multiple WANs. However, ignore this setting if you want to backup a single WAN.
When any WAN disconnect – Such backup WAN will be activated when any master WAN interface disconnects.
When all WAN disconnect – Such backup WAN will be activated only when all master WAN interfaces disconnect.
Page 50
Vigor2920 Series User’s Guide
38
33..11..33 IInntteerrnneett AAcccceessss
For the router supports multi-WAN function, the users can set different WAN settings (for WAN1/WAN2/WAN3) for Internet Access. Due to different Physical Mode for WAN interfaces, the Access Mode for these connections also varies. Refer to the following figures.
Index
Display the WAN interface.
Display Name
It shows the name of the WAN1/WAN2/WAN3 that entered in general setup.
Physical Mode
It shows the physical connection for WAN1(Ethernet)/WAN2 (Ethernet) /WAN3 (3G USB Modem) according to the real network connection.
Access Mode
Use the drop down list to choose a proper access mode. The details page of that mode will be popped up. If not, click Details Page for accessing the page to configure the settings.
Details Page
This button will open different web page according to the access mode that you choose in WAN interface.
DDeettaaiillss PPaaggee ffoorr PPPPPPooEE iinn WWAANN11//WWAANN22
To choose PPPoE as the accessing protocol of the internet, please select PPPoE from the Internet Access menu. The following web page will be shown.
Page 51
Vigor2920 Series User’s Guide
39
Enable/Disable
Click Enable for activating this function. If you click Disable, this function will be closed and all the settings that you adjusted in this page will be invalid.
ISP Access Setup
Enter your allocated username, password and authentication parameters according to the information provided by your ISP.
Username – Type in the username provided by ISP in this field.
Password – Type in the password provided by ISP in this field.
WAN Connection Detection
Such function allows you to verify whether network connection is alive or not through ARP Detect or Ping Detect.
Mode – Choose ARP Detect or Ping Detect for the system to execute for WAN detection.
Ping IP – If you choose Ping Detect as detection mode, you have to type IP address in this field for pinging.
TTL (Time to Live) – Displays value for your reference. TTL value is set by telnet command.
MTU
It means Max Transmit Unit for packet. The default setting is
1442.
PPP/MP Setup
PPP Authentication – Select PAP only or PAP or CHAP for
PPP. If you want to connect to Internet all the time, you can check Always On.
Idle Timeout – Set the timeout for breaking down the Internet after passing through the time without any action.
IP Address Assignment Method (IPCP)
Usually ISP dynamically assigns IP address to you each time you connect to it and request. In some case, your ISP provides service to always assign you the same IP address whenever you request. In this case, you can fill in this IP address in the Fixed IP field. Please contact your ISP before you want to use this function.
Page 52
Vigor2920 Series User’s Guide
40
WAN IP Alias - If you have multiple public IP addresses and would like to utilize them on the WAN interface, please use WAN IP Alias. You can set up to 8 public IP addresses other than the current one you are using.
Fixed IP – Click Yes to use this function and type in a fixed IP address in the box of Fixed IP Address.
Default MAC Address – You can use Default MAC Address or specify another MAC address by typing on the boxes of MAC Address for the router.
Specify a MAC Address – Type the MAC address for the router manually.
After finishing all the settings here, please click OK to activate them.
DDeettaaiillss PPaaggee ffoorr SSttaattiicc oorr DDyynnaammiicc IIPP iinn WWAANN11//WWAANN22
For static IP mode, you usually receive a fixed public IP address or a public subnet, namely multiple public IP addresses from your ISP service providers. In most cases, a Cable service provider will offer a fixed public IP. If you have a public subnet, you could assign an IP address or many IP address to the WAN interface.
To use Static or Dynamic IP as the accessing protocol of the internet, please choose Static or Dynamic IP mode from Internet Access menu. The following web page will be shown.
Page 53
Vigor2920 Series User’s Guide
41
Static or Dynamic IP
Click Enable for activating this function. If you click Disable, this function will be closed and all the settings that you adjusted in this page will be invalid.
Keep WAN Connection
Normally, this function is designed for Dynamic IP environments because some ISPs will drop connections if there is no traffic within certain periods of time. Check Enable
PING to keep alive box to activate this function. PING to the IP - If you enable the PING function, please
specify the IP address for the system to PING it for keeping alive. PING Interval - Enter the interval for the system to execute the PING operation.
WAN Connection Detection
Such function allows you to verify whether network connection is alive or not through ARP Detect or Ping Detect. Mode – Choose ARP Detect or Ping Detect for the system to execute for WAN detection. Ping IP – If you choose Ping Detect as detection mode, you have to type IP address in this field for pinging. TTL (Time to Live) – Displays value for your reference. TTL value is set by telnet command.
MTU
It means Max Transmit Unit for packet. The default setting is 1442.
RIP Protocol
Routing Information Protocol is abbreviated as RIP RFC1058specifying how routers exchange routing tables information. Click Enable RIP for activating this function.
WAN IP Network
This group allows you to obtain an IP address automatically
Page 54
Vigor2920 Series User’s Guide
42
Settings
and allows you type in IP address manually. WAN IP Alias - If you have multiple public IP addresses and
would like to utilize them on the WAN interface, please use WAN IP Alias. You can set up to 8 public IP addresses other than the current one you are using.
Obtain an IP address automatically – Click this button to obtain the IP address automatically if you want to use Dynamic IP mode.
Router Name: Type in the router name provided by ISP. Domain Name: Type in the domain name that you have
assigned. Specify an IP address – Click this radio button to specify some data if you want to use Static IP mode.
IP Address: Type the IP address. Subnet Mask: Type the subnet mask. Gateway IP Address: Type the gateway IP address. Default MAC Address: Click this radio button to use default
MAC address for the router. Specify a MAC Address: Some Cable service providers specify
a specific MAC address for access authentication. In such cases you need to click the Specify a MAC Address and enter the MAC address in the MAC Address field.
DNS Server IP Address
Type in the primary IP address for the router if you want to use Static IP mode. If necessary, type in secondary IP address for necessity in the future.
Page 55
Vigor2920 Series User’s Guide
43
DDeettaaiillss PPaaggee ffoorr PPPPTTPP//LL22TTPP iinn WWAANN11//WWAANN22
To use PPTP/L2TP as the accessing protocol of the internet, please choose PPTP/L2TP from Internet Access menu. The following web page will be shown.
PPTP/L2TP Client Mode
Enable PPTP- Click this radio button to enable a PPTP client
to establish a tunnel to a DSL modem on the WAN interface. Enable L2TP - Click this radio button to enable a L2TP client
to establish a tunnel to a DSL modem on the WAN interface. Disable – Click this radio button to close the connection through PPTP or L2TP.
Server Address - Specify the IP address of the PPTP/L2TP server if you enable PPTP/L2TP client mode.
Specify Gateway IP Address – Specify the gateway IP address for DHCP server.
ISP Access Setup
Username -Type in the username provided by ISP in this field. Password -Type in the password provided by ISP in this field.
MTU
It means Max Transmit Unit for packet. The default setting is
1442.
PPP Setup
PPP Authentication - Select PAP only or PAP or CHAP for
PPP. Idle Timeout - Set the timeout for breaking down the Internet
after passing through the time without any action.
IP Address Assignment Method(IPCP)
Fixed IP - Usually ISP dynamically assigns IP address to you
each time you connect to it and request. In some case, your ISP provides service to always assign you the same IP address whenever you request. In this case, you can fill in this IP address in the Fixed IP field. Please contact your ISP before you want to use this function. Click Yes to use this function and type in a fixed IP address in the box.
Page 56
Vigor2920 Series User’s Guide
44
WAN IP Alias - If you have multiple public IP addresses and would like to utilize them on the WAN interface, please use WAN IP Alias. You can set up to 8 public IP addresses other than the current one you are using.
Fixed IP - Usually ISP dynamically assigns IP address to you each time you connect to it and request. In some case, your ISP provides service to always assign you the same IP address whenever you request. In this case, you can fill in this IP address in the Fixed IP field. Please contact your ISP before you want to use this function. Click Yes to use this function and type in a fixed IP address in the box.
Fixed IP Address -Type a fixed IP address.
WAN IP Network Settings
Obtain an IP address automatically – Click this button to
obtain the IP address automatically. Specify an IP address – Click this radio button to specify
some data.
IP Address – Type the IP address. Subnet Mask – Type the subnet mask.
After finishing all the settings here, please click OK to activate them.
DDeettaaiillss PPaaggee ffoorr PPPPPP iinn WWAANN33
To use PPP (for 3G USB Modem) as the accessing protocol of the internet, please choose Internet Access from WAN menu. Then, select PPP mode for WAN3. The following web
page will be shown.
Page 57
Vigor2920 Series User’s Guide
45
Enable / Disable
Click Enable for activating this function. If you click Disable, this function will be closed and all the settings that you adjusted in this page will be invalid.
SIM PIN code
Type PIN code of the SIM card that will be used to access Internet.
Modem Initial String
Such value is used to initialize USB modem. Please use the default value. If you have any question, please contact to your ISP.
APN Name
APN means Access Point Name which is provided and required by some ISPs. Type the name and click Apply.
Modem Initial String2
The initial string 1 is shared with APN. In some cases, users may need another initial AT command to
restrict 3G band or do any special settings.
Modem Dial String
Such value is used to dial through USB mode. Please use the default value. If you have any question, please contact to your ISP.
PPP Username
Type the PPP username (optional).
PPP Password
Type the PPP password (optional).
WAN Connection Detection
Such function allows you to verify whether network connection is alive or not through ARP Detect or Ping Detect.
Mode – Choose ARP Detect or Ping Detect for the system to execute for WAN detection.
Ping IP – If you choose Ping Detect as detection mode, you have to type IP address in this field for pinging.
TTL (Time to Live) – Displays value for your reference. TTL value is set by telnet command.
Page 58
Vigor2920 Series User’s Guide
46
After finishing all the settings here, please click OK to activate them.
33..11..44 LLooaadd--BBaallaannccee PPoolliiccyy
This router supports the function of load balancing. It can assign traffic with protocol type, IP address for specific host, a subnet of hosts, and port range to be allocated in WAN interface. The user can assign traffic category and force it to go to dedicate network interface based on the following web page setup. Twenty policies of load-balance are supported by this router.
Note: Load-Balance Policy is running only when more than one WAN interface is activated.
Index
Click the number of index to access into the load-balance policy configuration web page.
Enable
Check this box to enable this policy.
Protocol
Use the drop-down menu to change the protocol for the WAN interface.
WAN
Use the drop-down menu to change the WAN interface.
Src IP Start
Displays the IP address for the start of the source IP
Src IP End
Displays the IP address for the end of the source IP.
Dest IP Start
Displays the IP address for the start of the destination IP.
Dest IP End
Displays the IP address for the end of the destination IP.
Dest Port Start
Displays the IP address for the start of the destination port.
Dest Port End
Displays the IP address for the end of the destination port.
Move UP/Move Down
Use Up or Down link to move the order of the policy.
Page 59
Vigor2920 Series User’s Guide
47
Click Index 1 to access into the following page for configuring load-balance policy.
Enable
Check this box to enable this policy.
Protocol
Use the drop-down menu to choose a proper protocol for the WAN interface.
Binding WAN interface
Choose the WAN interface (WAN1 / WAN2 / WAN3) for binding.
Auto failover to other WAN – Check this button to lead the data passing through other WAN automatically when the selected WAN interface is failover.
Src IP Start
Type the source IP start for the specified WAN interface.
Src IP End
Type the source IP end for the specified WAN interface. If this field is blank, it means that all the source IPs inside the LAN will be passed through the WAN interface.
Dest IP Start
Type the destination IP start for the specified WAN interface.
Dest IP End
Type the destination IP end for the specified WAN interface. If this field is blank, it means that all the destination IPs will be passed through the WAN interface.
Dest Port Start
Type the destination port start for the destination IP.
Dest Port End
Type the destination port end for the destination IP. If this field is blank, it means that all the destination ports will be passed through the WAN interface.
Page 60
Vigor2920 Series User’s Guide
48
33..22 LLAANN
Local Area Network (LAN) is a group of subnets regulated and ruled by router. The design of network structure is related to what type of public IP addresses coming from your ISP.
33..22..11 BBaassiiccss ooff LLAANN
The most generic function of Vigor router is NAT. It creates a private subnet of your own. As mentioned previously, the router will talk to other public hosts on the Internet by using public IP address and talking to local hosts by using its private IP address. What NAT does is to translate the packets from public IP address to private IP address to forward the right packets to the right host and vice versa. Besides, Vigor router has a built-in DHCP server that assigns private IP address to each local host. See the following diagram for a briefly understanding.
In some special case, you may have a public IP subnet from your ISP such as
220.135.240.0/24. This means that you can set up a public subnet or call second subnet that each host is equipped with a public IP address. As a part of the public subnet, the Vigor router will serve for IP routing to help hosts in the public subnet to communicate with other public hosts or servers outside. Therefore, the router should be set as the gateway for public hosts.
Page 61
Vigor2920 Series User’s Guide
49
WWhhaatt iiss RRoouuttiinngg IInnffoorrmmaattiioonn PPrroottooccooll ((RRIIPP))
Vigor router will exchange routing information with neighboring routers using the RIP to accomplish IP routing. This allows users to change the information of the router such as IP address and the routers will automatically inform for each other.
33..22..22 GGeenneerraall SSeettuupp
This page provides you the general settings for LAN. Click LAN to open the LAN settings page and choose General Setup.
1st IP Address
Type in private IP address for connecting to a local private network (Default: 192.168.1.1).
1st Subnet Mask
Type in an address code that determines the size of the network. (Default: 255.255.255.0/ 24)
For IP Routing Usage
Click Enable to invoke this function. The default setting is
Page 62
Vigor2920 Series User’s Guide
50
Disable.
2
nd
IP Address
Type in secondary IP address for connecting to a subnet. (Default:
192.168.2.1/ 24)
2
nd
Subnet Mask
An address code that determines the size of the network. (Default:
255.255.255.0/ 24)
2
nd
DHCP Server
You can configure the router to serve as a DHCP server for the 2nd subnet.
Start IP Address: Enter a value of the IP address pool for the DHCP server to start with when issuing IP addresses. If the 2nd IP address of your router is 220.135.240.1, the starting IP address must be 220.135.240.2 or greater, but smaller than
220.135.240.254. IP Pool Counts: Enter the number of IP addresses in the pool.
The maximum is 10. For example, if you type 3 and the 2nd IP address of your router is 220.135.240.1, the range of IP address by the DHCP server will be from 220.135.240.2 to
220.135.240.11. MAC Address: Enter the MAC Address of the host one by one
and click Add to create a list of hosts to be assigned, deleted or edited IP address from above pool. Set a list of MAC Address for 2
nd
DHCP server will help router to assign the correct IP address of the correct subnet to the correct host. So those hosts in 2
nd
subnet won’t get an IP address belonging to 1st subnet.
RIP Protocol Control
Disable - deactivates the RIP protocol. It will lead to a stoppage
of the exchange of routing information between routers. (Default)
1st Subnet - Select the router to change the RIP information of
Page 63
Vigor2920 Series User’s Guide
51
the 1st subnet with neighboring routers. 2nd Subnet - Select the router to change the RIP information of
the 2nd subnet with neighboring routers.
DHCP Server Configuration
DHCP stands for Dynamic Host Configuration Protocol. The router by factory default acts a DHCP server for your network so it automatically dispatch related IP settings to any local user configured as a DHCP client. It is highly recommended that you leave the router enabled as a DHCP server if you do not have a DHCP server for your network.
If you want to use another DHCP server in the network other than the Vigor Router’s, you can let Relay Agent help you to redirect the DHCP request to the specified location.
Enable Server - Let the router assign IP address to every host in the LAN.
Disable Server – Let you manually assign IP address to every host in the LAN.
Relay Agent – (1
st
subnet/2nd subnet) Specify which subnet
that DHCP server is located the relay agent should redirect the DHCP request to.
Start IP Address - Enter a value of the IP address pool for the DHCP server to start with when issuing IP addresses. If the 1st IP address of your router is 192.168.1.1, the starting IP address must be 192.168.1.2 or greater, but smaller than 192.168.1.254.
IP Pool Counts - Enter the maximum nu mber of PCs t hat you want the DHCP server to assign IP addresses to. The default is 50 and the maximum is 253.
Gateway IP Address - Enter a value of the gateway IP address for the DHCP server. The value is usually as same as the 1st IP address of the router, which means the router is the default gateway.
DHCP Server IP Address for Relay Agent - Set the IP address of the DHCP server you are going to use so the Relay Agent can help to forward the DHCP request to the DHCP server.
DNS Server Configuration
DNS stands for Domain Name System. Every Internet host must have a unique IP address, also they may have a human-friendly, easy to remember name such as www.yahoo.com. The DNS server converts the user-friendly name into its equivalent IP address.
Force DNS manual setting -
Force Vigor router to use DNS
servers in this page instead of DNS servers given by the Internet Access server (PPPoE, PPTP, L2TP or DHCP server).
Primary IP Address -You must specify a DNS server IP address here because your ISP should provide you with usually more than one DNS Server. If your ISP does not provide it, the router will automatically apply default DNS Server IP address:
194.109.6.66 to this field. Secondary IP Address - You can specify secondary DNS server
IP address here because your ISP often provides you more than
Page 64
Vigor2920 Series User’s Guide
52
one DNS Server. If your ISP does not provide it, the router will automatically apply default secondary DNS Server IP address:
194.98.0.1 to this field. The default DNS Server IP address can be found via Online
Status:
If both the Primary IP and Secondary IP Address fields are left empty, the router will assign its own IP address to local users as a DNS proxy server and maintain a DNS cache.
If the IP address of a domain name is already in the DNS cache, the router will resolve the domain name immediately. Otherwise, the router forwards the DNS query packet to the external DNS server by establishing a WAN (e.g. Cable) connection.
33..33 NNAATT
Usually, the router serves as an NAT (Network Address Translation) router. NAT is a mechanism that one or more private IP addresses can be mapped into a single public one. Public IP address is usually assigned by your ISP, for which you may get charged. Private IP addresses are recognized only among internal hosts.
When the outgoing packets destined to some public server on the Internet reach the NAT router, the router will change its source address into the public IP address of the router, select the available public port, and then forward it. At the same time, the router shall list an entry in a table to memorize this address/port-mapping relationship. When the public server response, the incoming traffic, of course, is destined to the router’s public IP address and the router will do the inversion based on its table. Therefore, the internal host can communicate with external host smoothly.
The benefit of the NAT includes: z Save cost on applying public IP address and apply efficient usage of IP address.
NAT allows the internal IP addresses of local hosts to be translated into one public IP address, thus you can have only one IP address on behalf of the entire internal hosts.
z Enhance security of the internal network by obscuring the IP address. There are
many attacks aiming victims based on the IP address. Since the attacker cannot be aware of any private IP addresses, the NAT function can protect the internal network.
On NAT page, you will see the private IP address defined in RFC-1918. Usually we use the
192.168.1.0/24 subnet for the router. As stated before, the NAT facility can map one or more IP addresses and/or service ports into different specified services. In other words, the NAT function can be achieved by using port mapping methods.
Below shows the menu items for NAT.
Page 65
Vigor2920 Series User’s Guide
53
33..33..11 PPoorrtt RReeddiirreeccttiioonn
Port Redirection is usually set up for server related service inside the local network (LAN), such as web servers, FTP servers, E-mail servers etc. Most of the case, you need a public IP address for each server and this public IP address/domain name are recognized by all users. Since the server is actually located inside the LAN, the network well protected by NAT of the router, and identified by its private IP address/port, the goal of Port Redirection function is to forward all access request with public IP address from external users to the mapping private IP address/port of the server.
The port redirection can only apply to incoming traffic. To use this function, please go to NAT page and choose Port Redirection web page. The
Port Redirection Table provides 20 port-mapping entries for the internal hosts.
Press any number under Index to access into next page for configuring port redirection.
Page 66
Vigor2920 Series User’s Guide
54
Enable
Check this box to enable such port redirection setting.
Mode
Two options (Single and Range) are provided here for you to choose. To set a range for the specific service, select Range. In Range mode, if the public port (start port and end port) and the starting IP of private IP had been entered, the system will calculate and display the ending IP of private IP automatically.
Service Name
Enter the description of the specific network service.
Protocol
Select the transport layer protocol (TCP or UDP).
WAN IP
Select the WAN IP used for port redirection. There are eight WAN IP alias that can be selected and used for port redirection. The default setting is All which means all the incoming data from any port will be redirected to specified range of IP address and port.
Public Port
Specify which port can be redirected to the specified Private IP and Port of the internal host. If you choose Range as the port
redirection mode, you will see two boxes on this field. Simply type the required number on the first box. The second one will be assigned automatically later.
Private IP
Specify the private IP address of the internal host providing the service. If you choose Range as the port redirection mode, you will see two boxes on this field. Type a complete IP address in the first box (as the starting point) and the fourth digits in the second box (as the end point).
Private Port
Specify the private port number of the service offered by the internal host
Note that the router has its own built-in services (servers) such as Telnet, HTTP and FTP etc. Since the common port numbers of these services (servers) are all the same, you may need to reset the router in order to avoid confliction.
Page 67
Vigor2920 Series User’s Guide
55
33..33..22 DDMMZZ HHoosstt
As mentioned above, Port Redirection can redirect incoming TCP/UDP or other traffic on particular ports to the specific private IP address/port of host in the LAN. However, other IP protocols, for example Protocols 50 (ESP) and 51 (AH), do not travel on a fixed port. Vigor router provides a facility DMZ Host that maps ALL unsolicited data on any protocol to a single host in the LAN. Regular web surfing and other such Internet activities from other clients will continue to work without inappropriate interruption. DMZ Host allows a defined internal user to be totally exposed to the Internet, which usually helps some special applications such as Netmeeting or Internet Games etc.
The security properties of NAT are somewhat bypassed if you set up DMZ host. We suggest you to add additional filter rules or a secondary firewall.
Click DMZ Host to open the following page:
Page 68
Vigor2920 Series User’s Guide
56
DMZ Host for WAN2 and WAN3 is slightly different with WAN1. See the following figure.
If you previously have set up WAN Alias for PPPoE or Static or Dynamic IP mode, you will find them in Aux. WAN IP for your selection.
Enable
Check to enable the DMZ Host function.
Private IP
Enter the private IP address of the DMZ host, or click Choose PC to select one.
Choose PC
Click this button and then a window will automatically pop up, as depicted below. The window consists of a list of private IP addresses of all hosts in your LAN network. Select one private IP address in the list to be the DMZ host.
When you have selected one private IP from the above dialog, the IP address will be shown on the following screen. Click OK to save the setting.
Page 69
Vigor2920 Series User’s Guide
57
33..33..33 OOppeenn PPoorrttss
Open Ports allows you to open a range of ports for the traffic of special applications. Common application of Open Ports includes P2P application (e.g., BT, KaZaA, Gnutella,
WinMX, eMule and others), Internet Camera etc. Ensure that you keep the application involved up-to-date to avoid falling victim to any security exploits.
Click Open Ports to open the following page:
Index
Indicate the relative number for the particular entry that you want to offer service in a local host. You should click the appropriate index number to edit or clear the corresponding entry.
Comment
Specify the name for the defined network service.
WAN Interface
Display the WAN interface for such NAT profile.
Aux. WAN IP
Display the WAN IP address specified in WAN IP Alias page.
Local IP Address
Display the private IP address of the local host offering the service.
Status
Display the state for the corresponding entry. X or V is to represent the Inactive or Active state.
To add or edit port settings, click one index number on the page. The index entry setup page will pop up. In each index entry, you can specify 20 port ranges for diverse services.
Page 70
Vigor2920 Series User’s Guide
58
Enable Open Ports
Check to enable this entry.
Comment
Make a name for the defined network application/service.
WAN Interface
Specify the WAN interface that will be used for this entry.
Local Computer
Enter the private IP address of the local host or click Choose PC to select one.
Choose PC
Click this button and, subsequently, a window having a list of private IP addresses of local hosts will automatically pop up. Select the appropriate IP address of the local host in the list.
Protocol
Specify the transport layer protocol. It could be TCP, UDP, or
----- (none) for selection.
Start Port
Specify the starting port number of the service offered by the local host.
End Port
Specify the ending port number of the service offered by the local host.
Page 71
Vigor2920 Series User’s Guide
59
33..44 AApppplliiccaattiioonnss
Below shows the menu items for Applications.
33..44..11 DDyynnaammiicc DDNNSS
The ISP often provides you with a dynamic IP address when you connect to the Internet via your ISP. It means that the public IP address assigned to your router changes each time you access the Internet. The Dynamic DNS feature lets you assign a domain name to a dynamic WAN IP address. It allows the router to update its online WAN IP address mappings on the specified Dynamic DNS server. Once the router is online, you will be able to use the registered domain name to access the router or internal virtual servers from the Internet. It is particularly helpful if you host a web server, FTP server, or other server behind the router.
Before you use the Dynamic DNS feature, you have to apply for free DDNS service to the DDNS service providers. The router provides up to three accounts from three different DDNS service providers. Basically, Vigor routers are compatible with the DDNS services supplied by most popular DDNS service providers such as www.dyndns.org, www.no-ip.com, www.dtdns.com, www.changeip.com, www.dynamic- nameserver.com. You should visit their websites to register your own domain name for the router.
Enable the Function and Add a Dynamic DNS Account
1. Assume you have a registered domain name from the DDNS provider, say
hostname.dyndns.org, and an account with username: test and password: test.
2. In the DDNS setup menu, check Enable Dynamic DNS Setup.
Enable Dynamic DNS Setup
Check this box to enable DDNS function.
Set to Factory Default
Clear all profiles and recover to factory settings.
Auto-Update interval
Set the time for the router to perform auto update for DDNS service.
Index
Click the number below Index to access into the setting page of DDNS setup to set account(s).
WAN Interface
Display the WAN interface used.
Page 72
Vigor2920 Series User’s Guide
60
Domain Name
Display the domain name that you set on the setting page of DDNS setup.
Active
Display if this account is active or inactive.
View Log
Display DDNS log status.
Force Update
Force the router updates its information to DDNS server.
3. Select Index number 1 to add an account for the router. Check Enable Dynamic DNS
Account, and choose correct Service Provider: dyndns.org, type the registered hostname: hostname and domain name suffix: dyndns.org in the Domain Name block. The following two blocks should be typed your account Login Name: test and Password: test.
Enable Dynamic DNS Account
Check this box to enable the current account. If you did check the box, you will see a check mark appeared on the Active column of the previous web page in step 2).
WAN Interface
WAN1/WAN2/WAN3 First - While connecting, the
router will use WAN1/WAN2/WAN3 as the first channel for such account. If WAN1/WAN2/WAN3 fails, the router will use another WAN interface instead. WAN1/WAN2/WAN3 Only - While connecting, the router will use WAN1/WAN2/WAN3 as the only channel for such account.
Service Provider
Select the service provider for the DDNS account.
Service Type
Select a service type (Dynamic, Custom or Static). If you choose Custom, you can modify the domain that is chosen in the Domain Name field.
Domain Name
Type in one domain name that you applied previously.
Page 73
Vigor2920 Series User’s Guide
61
Use the drop down list to choose the desired domain.
Login Name
Type in the login name that you set for applying domain.
Password
Type in the password that you set for applying domain.
Wildcard and Backup MX
The Wildcard and Backup MX features are not supported for all Dynamic DNS providers. You could get more detailed information from their websites.
4. Click OK button to activate the settings. You will see your setting has been saved.
Disable the Function and Clear all Dynamic DNS Accounts
In the DDNS setup menu, uncheck Enable Dynamic DNS Setup, and push Clear All button to disable the function and clear all accounts from the router.
Delete a Dynamic DNS Account
In the DDNS setup menu, click the Index number you want to delete and then push Clear All button to delete the account.
Page 74
Vigor2920 Series User’s Guide
62
33..44..22 UUPPnnPP
The UPnP (Universal Plug and Play) protocol is supported to bring to network connected devices the ease of installation and configuration which is already available for directly connected PC peripherals with the existing Windows 'Plug and Play' system. For NAT routers, the major feature of UPnP on the router is “NAT Traversal”. This enables applications inside the firewall to automatically open the ports that they need to pass through a router. It is more reliable than requiring a router to work out by itself which ports need to be opened. Further, the user does not have to manually set up port mappings or a DMZ. UPnP is available on Windows XP and the router provide the associated support for MSN Messenger to allow full use of the voice, video and messaging features.
Enable UPNP Service
Accordingly, you can enable either the Connection Control Service or Connection Status Service.
After setting Enable UPNP Service setting, an icon of IP Broadband Connection on Router on Windows XP/Network Connections will appear. The connection status and control status will be able to be activated. The NAT Traversal of UPnP enables the multimedia features of your applications to operate. This has to manually set up port mappings or use other similar methods. The screenshots below show examples of this facility.
The UPnP facility on the router enables UPnP aware applications such as MSN Messenger to discover what are behind a NAT router. The application will also learn the external IP address and configure port mappings on the router. Subsequently, such a facility forwards packets from the external ports of the router to the internal ports used by the application.
Page 75
Vigor2920 Series User’s Guide
63
The reminder as regards concern about Firewall and UPnP
Can't work with Firewall Software
Enabling firewall applications on your PC may cause the UPnP function not working properly. This is because these applications will block the accessing ability of some network ports.
Security Considerations
Activating the UPnP function on your network may incur some security threats. You should consider carefully these risks before activating the UPnP function.
¾ Some Microsoft operating systems have found out the UPnP weaknesses and hence
you need to ensure that you have applied the latest service packs and patches.
¾ Non-privileged users can control some router functions, including removing and
adding port mappings.
The UPnP function dynamically adds port mappings on behalf of some UPnP-aware applications. When the applications terminate abnormally, these mappings may not be removed.
33..55 VVooIIPP
Note: This function is used for “V” models.
Voice over IP network (VoIP) enables you to use your broadband Internet connection to make toll quality voice calls over the Internet.
There are many different call signaling protocols, methods by which VoIP devices can talk to each other. The most popular protocols are SIP, MGCP, Megaco and H.323. These protocols are not all compatible with each other (except via a soft-switch server).
The Vigor V models support the SIP protocol as this is an ideal and convenient deployment for the ITSP (Internet Telephony Service Provider) and softphone and is widely supported. SIP is an end-to-end, signaling protocol that establishes user presence and mobility in VoIP structure. Every one who wants to talk using his/her SIP Uniform Resource Identifier, “SIP Address”. The standard format of SIP URI is
sip: user:password @ host: port
Some fields may be optional in different use. In general, "host” refers to a domain. The “userinfo” includes the user field, the password field and the @ sign following them. This is
Page 76
Vigor2920 Series User’s Guide
64
very similar to a URL so some may call it “SIP URL”. SIP supports peer-to-peer direct calling and also calling via a SIP proxy server (a role similar to the gatekeeper in H.323 networks), while the MGCP protocol uses client-server architecture, the calling scenario being very similar to the current PSTN/ISDN network.
After a call is setup, the voice streams transmit via RTP (Real-Time Transport Protocol). Different codecs (methods to compress and encode the voice) can be embedded into RTP packets. Vigor V models provide various codecs, including G.711 A/µ-law, G.723, G.726 and G.729 A & B. Each codec uses a different bandwidth and hence provides different levels of voice quality. The more bandwidth a codec uses the better the voice quality, however the codec used must be appropriate for your Internet bandwidth.
Usually there will be two types of calling scenario, as illustrated below:
z Calling via SIP Servers
First, the Vigor V models of yours will have to register to a SIP Registrar by sending registration messages to validate. Then, both parties’ SIP proxies will forward the sequence of messages to caller to establish the session.
If you both register to the same SIP Registrar, then it will be illustrated as below:
The major benefit of this mode is that you don’t have to memorize your friend’s IP address, which might change very frequently if it’s dynamic. Instead of that, you will only have to using dial plan or directly dial your friend’s account name if you are with the same SIP Registrar.
z Peer-to-Peer
Before calling, you have to know your friend’s IP Address. The Vigor VoIP Routers will build connection between each other.
Our Vigor V models firstly apply efficient codecs designed to make the best use of
Page 77
Vigor2920 Series User’s Guide
65
available bandwidth, but Vigor V models also equip with automatic QoS assurance. QoS Assurance assists to assign high priority to voice traffic via Internet. You will always have the required inbound and outbound bandwidth that is prioritized exclusively for Voice traffic over Internet but you just get your data a little slower and it is tolerable for data traffic.
33..55..11 DDiiaallPPllaann
This page allows you to set phone book and digit map for the VoIP function. Click the Phone Book and Digit Map links on the page to access into next pages for dialplan settings.
Enable Secure Phone It allows users to have encrypted RTP stream with the peer side
using the same protocol (ZRTP+SRTP). Check this box to have secure call.
Enable SAS Voice Prompt If it is enabled, SAS prompt will be heard for both ends every
time. If it is disabled, no SAS prompt will be heard any more.
AApppplliiccaattiioonn ffoorr SSeeccuurree PPhhoonnee
Enable SAS Voice Prompt, for ex: if vigor router A calls vigor router B with checking Enable Secure Phone and Enable SAS Voice Prompt, then:
1. After the connection established, vigor router A will send SAS voice prompt to A and
vigor router B will send the SAS voice prompt to B.
2. Then the RTP traffic is secured until the call ends.
3. If vigor router A wants to call vigor router B again next time, both A and B will not hear
any voice prompt again even checking Enable SAS Voice Prompt on web UI. It means only the first call between them will have voice prompt.
Enable SAS Voice Prompt, for ex: if vigor router A calls vigor router B with checking Enable Secure Phone but not Enable SAS Voice Prompt, then:
1. After the connection established, vigor router A will NOT send SAS voice prompt to
vigor router A and vigor router B will NOT send the SAS voice prompt to vigor router B.
Page 78
Vigor2920 Series User’s Guide
66
2. Even no voice prompt, but the RTP traffic is still secured until the call ends.
Note: If the incoming or outgoing calls do not match any entry on the phonebook, the router will try to make the call "being protected". But, if the call ends up "unprotected"(e.g. peer side does not support ZRTP+SRTP), the router will not play out a warning message.
PPhhoonnee BBooookk
In this section, you can set your VoIP contacts in the “phonebook”. It can help you to make calls quickly and easily by using “speed-dial” Phone Number. There are total 60 index entries in the phonebook for you to store all your friends and family members’ SIP addresses. Loop through and Backup Phone Number will be displayed if you are using Vigor 2820V for setting the phone book.
Click any index number to display the dial plan setup page.
Enable Click this to enable this entry. Phone Number The speed-dial number of this index. This can be any number
you choose, using digits 0-9 and * .
Display Name The Caller-ID that you want to be displayed on your friend’s
screen. This let your friend can easily know who’s calling without memorizing lots of SIP URL Address.
Page 79
Vigor2920 Series User’s Guide
67
SIP URL Enter your friend’s SIP Address. Dial Out Account Choose one of the SIP accounts for this profile to dial out. It is
useful for both sides (caller and callee) that registered to different SIP Registrar servers. If caller and callee do not use the same SIP server, sometimes, the VoIP phone call connection may not succeed. By using the specified dial out account, the successful connection can be assured.
Loop through Choose PSTN to enable loop through function.
Backup Phone Number When the VoIP phone is obstructs or the Internet breaks down
for some reasons, the backup phone will be dialed out to replace the VoIP phone number. At this time, the phone call will be changed from VoIP phone into PSTN call according to the loop through direction chosen. Note that, during the phone switch, the blare of phone will appear for a short time. And when the VoIP phone is switched into the PSTN phone, the telecom co. might charge you for the connection fee. Please type in backup phone number (PSTN number) for this VoIP phone setting.
Page 80
Vigor2920 Series User’s Guide
68
DDiiggiitt MMaapp
For the convenience of user, this page allows users to edit prefix number for the SIP account with adding number, stripping number or replacing number. It is used to help user having a quick and easy way to dial out through VoIP interface.
Enable Check this box to invoke this setting. Match Prefix The phone number set here is used to add, strip, or replace the
OP number.
Mode None - No action.
Add - When you choose this mode, the OP number will be
added with the prefix number for calling out through the specific VoIP interface. Strip - When you choose this mode, the OP number will be deleted by the prefix number for calling out through the specific VoIP interface. Take the above picture (Prefix Table Setup web page) as an example, the OP number of 886 will be deleted completely for the prefix number is set with 886. Replace - When you choose this mode, the OP number will be replaced by the prefix number for calling out through the specific VoIP interface. Take the above picture (Prefix Table Setup web page) as an example, the prefix number of 03 will be replaced by 8863. For example: dial number of “031111111” will be changed to “88631111111” and sent to SIP server.
Page 81
Vigor2920 Series User’s Guide
69
OP Number The front number you type here is the first part of the account
number that you want to execute special function (according to the chosen mode) by using the prefix number.
Min Len Set the minimal length of the dial number for applying the
prefix number settings. Take the above picture (Prefix Table Setup web page) as an example, if the dial number is between 7 and 9, that number can apply the prefix number settings here.
Max Len Set the maximum length of the dial number for applying the
prefix number settings.
Interface Choose the one that you want to enable the prefix number
settings from the saved SIP accounts. Please set up one SIP account first to make this interface available. This item will be changed according to the port settings configured in VoIP>> Phone Settings.
CCaallll BBaarrrriinngg
Call barring is used to block phone calls coming from the one that is not welcomed.
Click any index number to display the dial plan setup page.
Page 82
Vigor2920 Series User’s Guide
70
Enable Click this to enable this entry. Call Direction Determine the direction for the phone call, IN – incoming call,
OUT-outgoing call, IN & OUT – both incoming and outgoing calls.
Barring Type Determine the type of the VoIP phone call, URI/URL or
number.
Specific URI/URL or Specific Number
This field will be changed based on the type you selected for barring Type.
Route All means all the phone calls will be blocked with such
mechanism.
Additionally, you can set advanced settings for call barring such as Block Anonymous, Block Unknown Domain or Block IP Address. Simply click the relational links to open the web page.
For Block Anonymous – this function can block the incoming calls without caller ID on the interface (Phone port) specified in the following window. Such control also can be done based on preconfigured schedules.
For Block Unknown Domain – this function can block incoming calls (through Phone port) from unrecognized domain that is not specified in SIP accounts. Such control also can be done based on preconfigured schedules.
Page 83
Vigor2920 Series User’s Guide
71
For Block IP Address – this function can block incoming calls (through Phone port) coming from IP address. Such control also can be done based on preconfigured schedules.
RReeggiioonnaall
This page allows you to process incoming or outgoing phone calls by regional. Default values (common used in most areas) will be shown on this web page. You can change the number based on the region that the router is placed.
Enable Regional Check this box to enable this function. Last Call Return [Miss] Sometimes, people might miss some phone calls. Please dial
number typed in this field to know where the last phone call comes from and call back to that one.
Last Call Return [In] You have finished an incoming phone call, however you want
to call back again for some reason. Please dial number typed in this field to call back to that one.
Last Call Return [Out] Dial the number typed in this field to call the previous outgoing
phone call again.
Page 84
Vigor2920 Series User’s Guide
72
Call Forward [All][Act] Dial the number typed in this field to forward all the incoming
calls to the specified place.
Call Forward [Deact] Dial the number typed in this field to release the call forward
function.
Call Forward [Busy][Act] Dial the number typed in this field to forward all the incoming
calls to the specified place while the phone is busy.
Call Forward [No Ans][Act] Dial the number typed in this field to forward all the incoming
calls to the specified place while there is no answer of the connected phone.
Do Not Disturb [Act] Dial the number typed in this field to invoke the function of
DND.
Do Not Distrub [Deact] Dial the number typed in this field to release the DND function. Hide caller ID [Act] Dial the number typed in this field to make your phone number
(ID) not displayed on the display panel of remote end.
Hide caller ID [Deact] Dial the number typed in this field to release this function. Call Waiting [Act] Dial the number typed in this field to make all the incoming
calls waiting for your answer.
Call Waiting [Deact] Dial the number typed in this field to release this function. Block Anonymous[Act] Dial the number typed in this field to block all the incoming
calls with unknown ID.
Block Anonymous[Deact] Dial the number typed in this field to release this function. Block Unknown Domain
[Act]
Dial the number typed in this field to block all the incoming calls from unknown domain.
Block Unknown Domain [Deact]
Dial the number typed in this field to release this function.
Block IP Calls [Act] Dial the number typed in this filed to block all the incoming
calls from IP address.
Block IP Calls [Deact] Dial the number typed in this field to release this function. Block Last Calls [Act] Dial the number typed in this field to block the last incoming
phone call.
Page 85
Vigor2920 Series User’s Guide
73
PPSSTTNN SSeettuupp
Some emergency phone (e.g., 911) or special phone cannot be dialed out by using VoIP and can be called out through PSTN line only. To solve this problem, this page allows you to set five sets of PSTN number for dialing without passing through Internet. Please type the number in the field of phone number for PSTN relay.
Then, check the Enable box to make the PSTN number available for dial whenever you need.
Page 86
Vigor2920 Series User’s Guide
74
33..55..22 SSIIPP AAccccoouunnttss
In this section, you set up your own SIP settings. When you apply for an account, your SIP service provider will give you an Account Name or user name, SIP Registrar, Proxy, and Domain name. (The last three might be the same in some case). Then you can tell your folks your SIP Address as in Account Name@ Domain name
As Vigor VoIP Router is turned on, it will first register with Registrar using AuthorizationUser@Domain/Realm. After that, your call will be bypassed by SIP Proxy to the destination using AccountName@Domain/Realm as identity.
Note: Selection items for Ring Port will differ according to the router you have.
Index Click this link to access into next page for setting SIP account. Profile Display the profile name of the account. Domain/Realm Display the domain name or IP address of the SIP registrar
server. Proxy Display the domain name or IP address of the SIP proxy server. Account Name Display the account name of SIP address before @. Codec Display the codec used by such account. Ring Port Specify which port will ring when receiving a phone call. Set
Phone, ISDN1-S0 or ISDN-TE as the default ring port for the
SIP account. If you choose Phone or ISDN1-S0, the ISDN2-TE
selection will be dimmed, vice versa. There are ten internal
Page 87
Vigor2920 Series User’s Guide
75
lines with numbers (30 – 39) offered for ISDN-S0. You can
specify any one of them as ring port for specified SIP account.
By the way, ISDN-S0 can be used by mapping with MSN
numbers. Status Show the status for the corresponding SIP account. R means
such account is registered on SIP server successfully. – means
the account is failed to register on SIP server.
STUN Server Type in the IP address or domain of the STUN server. External IP Type in the gateway IP address. SIP PING interval The default value is 150 (sec). It is useful for a Nortel server
NAT Traversal Support.
Profile Name Assign a name for this profile for identifying. You can type
similar name with the domain. For example, if the domain name
is draytel.org, then you might set draytel-1 in this field. Register via If you want to make VoIP call without register personal
information, please choose None and check the box to achieve
the goal. Some SIP server allows user to use VoIP function
without registering. For such server, please check the box of
Call without Registration. Choosing Auto is recommended.
Page 88
Vigor2920 Series User’s Guide
76
The system will select a proper way for your VoIP call.
SIP Port Set the port number for sending/receiving SIP message for
building a session. The default value is 5060. Your peer must
set the same value in his/her Registrar.
Domain/Realm Set the domain name or IP address of the SIP Registrar server. Proxy Set domain name or IP address of SIP proxy server. By the time
you can type :port number after the domain name to specify
that port as the destination of data transmission (e.g.,
nat.draytel.org:5065) Act as Outbound Proxy Check this box to make the proxy acting as outbound proxy. Display Name The caller-ID that you want to be displayed on your friend’s
screen. Account Number/Name Enter your account name of SIP Address, e.g. every text before
@. Authentication ID Check the box to invoke this function and enter the name or
number used for SIP Authorization with SIP Registrar. If this
setting value is the same as Account Name, it is not necessary
for you to check the box and set any value in this field. Password The password provided to you when you registered with a SIP
service. Expiry Time The time duration that your SIP Registrar server keeps your
registration record. Before the time expires, the router will send
another register request to SIP Registrar again. NAT Traversal Support If the router (e.g., broadband router) you use connects to
internet by other device, you have to set this function for your
necessity.
None – Disable this function.
Stun – Choose this option if there is Stun server provided for
your router.
Manual – Choose this option if you want to specify an external
IP address as the NAT transversal support.
Nortel – If the soft-switch that you use supports Nortel solution,
you can choose this option. Ring Port Set Phone 1 and/or Phone 2 as the default ring port(s) for this
SIP account.
Page 89
Vigor2920 Series User’s Guide
77
Ring Pattern Choose a ring tone type for the VoIP phone call.
Prefer Codec Select one of five codecs as the default for your VoIP calls. The
codec used for each call will be negotiated with the peer party
before each session, and so may not be your default choice. The
default codec is G.729A/B; it occupies little bandwidth while
maintaining good voice quality.
If your upstream speed is only 64Kbps, do not use G.711 codec.
It is better for you to have at least 256Kbps upstream if you
would like to use G.711.
Only the selected Codec will be applied.
Single Codec – If the box is checked, only the selected Codec
will be applied. Packet Size The amount of data contained in a single packet. The default
value is 20 ms, which means the data packet will contain 20 ms
voice information.
Voice Active Detector This function can detect if the voice on both sides is active or
not. If not, the router will do something to save the bandwidth
for other using. Click On to invoke this function; click off to
close the function.
Page 90
Vigor2920 Series User’s Guide
78
33..55..33 PPhhoonnee SSeettttiinnggss
This page allows user to set phone settings for Phone 1 and Phone 2 respectively. However, it changes slightly according to different model you have.
Phone List Port – there are two phone ports provided here for you to
configure. Phone1/Phone2 allow you to set general settings for
PSTN phones.
Call Feature – A brief description for call feature will be
shown in this field for your reference.
Codec –
Tone - Display the tone settings that configured in the advanced
settings page of Phone Index.
Gain - Display the volume gain settings for Mic/Speaker that
configured in the advanced settings page of Phone Index.
Default SIP Account – “draytel_1” is the default SIP account.
You can click the number below the Index field to change SIP
account for each phone port.
DTMF Relay – Display DTMF mode that configured in the
advanced settings page of Phone Index. RTP Symmetric RTP – Check this box to invoke the function. To
make the data transmission going through on both ends of local
router and remote router not misleading due to IP lost (for
example, sending data from the public IP of remote router to the
private IP of local router), you can check this box to solve this
problem.
Dynamic RTP Port Start - Specifies the start port for RTP
stream. The default value is 10050.
Dynamic RTP Port End - Specifies the end port for RTP
stream. The default value is 15000.
RTP TOS – It decides the level of VoIP package. Use the drop
Page 91
Vigor2920 Series User’s Guide
79
down list to choose any one of them.
Page 92
Vigor2920 Series User’s Guide
80
DDeettaaiilleedd SSeettttiinnggss ffoorr PPhhoonnee PPoorrtt
Click the number link for Phone port, you can access into the following page for configuring Phone settings.
Hotline Check the box to enable it. Type in the SIP URL in the field for
dialing automatically when you pick up the phone set. Session Timer Check the box to enable the function. In the limited time that
you set in this field, if there is no response, the connecting call
will be closed automatically.
T.38 Fax Function Check the box to enable the function. Call Forwarding There are four options for you to choose. Disable is to close call
forwarding function. Always means all the incoming calls will
be forwarded into SIP URL without any reason. Busy means
the incoming calls will be forwarded into SIP URL only when
the local system is busy. No Answer means if the incoming
calls do not receive any response, they will be forwarded to the
SIP URL by the time out.
SIP URL – Type in the SIP URL (e.g., aaa@draytel.org or
abc@iptel.org) as the site for call forwarded.
Time Out – Set the time out for the call forwarding. The
default setting is 30 sec.
DND (Do Not Disturb) mode
Set a period of peace time without disturbing by VoIP phone
call. During the period, the one who dial in will listen busy
tone, yet the local user will not listen any ring tone.
Page 93
Vigor2920 Series User’s Guide
81
Index (1-60) in Phone Book - Enter the index of phone book
profiles. Refer to section DialPlan – Phone Book for detailed
configuration. CLIR (hide caller ID) Check this box to hide the caller ID on the display panel of the
phone set. Call Waiting Check this box to invoke this function. A notice sound will
appear to tell the user new phone call is waiting for your
response. Click hook flash to pick up the waiting phone call. Call Transfer Check this box to invoke this function. Click hook flash to
initiate another phone call. When the phone call connection
succeeds, hang up the phone. The other two sides can
communicate, then. Default SIP Account You can set SIP accounts (up to six groups) on SIP Account
page. Use the drop down list to choose one of the profile names
for the accounts as the default one for this phone setting.
Play dial tone only when account registered - Check this box
to invoke the function. In addition, you can press the Advanced button to configure tone settings, volume gain, MISC
and DTMF mode. Advanced setting is provided for fitting the telecommunication custom for the local area of the router installed. Wrong tone settings might cause inconvenience for users. To set the sound pattern of the phone set, simply choose a proper region to let the system find out the preset tone settings and caller ID type automatically. Or you can adjust tone settings manually if you choose User Defined. TOn1, TOff1, TOn2 and TOff2 mean the cadence of the tone pattern. TOn1 and TOn2 represent sound-on; TOff1 and TOff2 represent the sound-off.
Region Select the proper region which you are located. The common
settings of Caller ID Type, Dial tone, Ringing tone, Busy
tone and Congestion tone will be shown automatically on the
page. If you cannot find out a suitable one, please choose User
Page 94
Vigor2920 Series User’s Guide
82
Defined and fill out the corresponding values for dial tone,
ringing tone, busy tone, congestion tone by yourself for VoIP
phone.
Also, you can specify each field for your necessity. It is
recommended for you to use the default settings for VoIP
communication. Volume Gain Mic Gain (1-10)/Speaker Gain (1-10) - Adjust the volume of
microphone and speaker by entering number from 1- 10. The
larger of the number, the louder the volume is. MISC Dial Tone Power Level - This setting is used to adjust the
loudness of the dial tone. The smaller the number is, the louder
the dial tone is. It is recommended for you to use the default
setting.
Ring Frequency - This setting is used to drive the frequency of
the ring tone. It is recommended for you to use the default
setting. DTMF DTMF Mode – There are four DTMF modes for you to choose.
InBand - Choose this one then the Vigor will send the DTMF
tone as audio directly when you press the keypad on the phone
OutBand - Choose this one then the Vigor will capture the
keypad number you pressed and transform it to digital form
then send to the other side; the receiver will generate the tone
according to the digital form it receive. This function is very
useful when the network traffic congestion occurs and it still
can remain the accuracy of DTMF tone.
SIP INFO- Choose this one then the Vigor will capture the
DTMF tone and transfer it into SIP form. Then it will be sent to
the remote end with SIP message.
Payload Type (rfc2833) - Choose a number from 96 to 127,
Page 95
Vigor2920 Series User’s Guide
83
the default value was 101. This setting is available for the
OutBand (RFC2833) mode.
33..55..44 SSttaattuuss
From this page, you can find codec, connection and other important call status for each port.
Refresh Seconds Specify the interval of refresh time to obtain the latest VoIP
calling information. The information will update immediately
when the Refresh button is clicked.
Port It shows current connection status for Phone(s) and ISDN ports. Status It shows the VoIP connection status.
IDLE - Indicates that the VoIP function is idle.
HANG_UP - Indicates that the connection is not established
(busy tone).
CONNECTING - Indicates that the user is calling out.
WAIT_ANS - Indicates that a connection is launched and
waiting for remote user’s answer.
ALERTING - Indicates that a call is coming.
ACTIVE-Indicates that the VoIP connection is launched. Codec Indicates the voice codec employed by present channel. PeerID The present in-call or out-call peer ID (the format may be IP or
Domain). Elapse The format is represented as hours:minutes:seconds.
Page 96
Vigor2920 Series User’s Guide
84
Tx Pkts Total number of transmitted voice packets during this
connection session. Rx Pkts Total number of received voice packets during this connection
session.
Rx Losts Total number of lost packets during this connection session. Rx Jitter The jitter of received voice packets. In Calls Accumulation for the times of in call. Out Calls Accumulation for the times of out call. Miss Calls Accumulation for the times of missing call. Speaker Gain The volume of present call. Log Display logs of VoIP calls.
33..66 WWiirreelleessss LLAANN
This function is used for “n” models.
33..66..11 BBaassiicc CCoonncceeppttss
Over recent years, the market for wireless communications has enjoyed tremendous growth. Wireless technology now reaches or is capable of reaching virtually every location on the surface of the earth. Hundreds of millions of people exchange information every day via wireless communication products. The Vigor “n” model, a.k.a. Vigor wireless router, is designed for maximum flexibility and efficiency of a small office/home. Any authorized staff can bring a built-in WLAN client PDA or notebook into a meeting room for conference without laying a clot of LAN cable or drilling holes everywhere. Wireless LAN enables high mobility so WLAN users can simultaneously access all LAN facilities just like on a wired LAN as well as Internet access
The Vigor wireless routers are equipped with a wireless LAN interface compliant with the standard IEEE 802.11n draft 2 protocol. To boost its performance further, the Vigor Router is also loaded with advanced wireless technology to lift up data rate up to 300 Mbps*. Hence, you can finally smoothly enjoy stream music and video.
Note:
* The actual data throughput will vary according to the network conditions and
environmental factors, including volume of network traffic, network overhead and building materials.
In an Infrastructure Mode of wireless network, Vigor wireless router plays a role as an Access Point (AP) connecting to lots of wireless clients or Stations (STA). All the STAs will share the same Internet connection via Vigor wireless router. The General Settings will set up the information of this wireless network, including its SSID as identification, located channel etc.
Page 97
Vigor2920 Series User’s Guide
85
SSeeccuurriittyy OOvveerrvviieeww
Real-time Hardware Encryption: Vigor Router is equipped with a hardware AES encryption engine so it can apply the highest protection to your data without influencing user experience.
Complete Security Standard Selection: To ensure the security and privacy of your wireless communication, we provide several prevailing standards on market.
WEP (Wired Equivalent Privacy) is a legacy method to encrypt each frame transmitted via radio using either a 64-bit or 128-bit key. Usually access point will preset a set of four keys and it will communicate with each station using only one out of the four keys.
WPA (Wi-Fi Protected Access), the most dominating security mechanism in industry, is separated into two categories: WPA-personal or called WPA Pre-Share Key (WPA/PSK), and WPA-Enterprise or called WPA/802.1x.
In WPA-Personal, a pre-defined key is used for encryption during data transmission. WPA applies Temporal Key Integrity Protocol (TKIP) for data encryption while WPA2 applies AES. The WPA-Enterprise combines not only encryption but also authentication.
Since WEP has been proved vulnerable, you may consider using WPA for the most secure connection. You should select the appropriate security mechanism according to your needs. No matter which security suite you select, they all will enhance the over-the-air data protection and /or privacy on your wireless network. The Vigor wireless router is very flexible and can support multiple secure connections with both WEP and WPA at the same time.
Separate the Wireless and the Wired LAN- WLAN Isolation enables you to isolate your wireless LAN from wired LAN for either quarantine or limit access reasons. To isolate means neither of the parties can access each other. To elaborate an example for business use, you may set up a wireless LAN for visitors only so they can connect to Internet without hassle of the confidential information leakage. For a more flexible deployment, you may add filters of MAC addresses to isolate users’ access from wired LAN.
Manage Wireless Stations - Station List will display all the station in your wireless network and the status of their connection.
Below shows the menu items for Wireless LAN.
Page 98
Vigor2920 Series User’s Guide
86
33..66..22 GGeenneerraall SSeettuupp
By clicking the General Settings, a new web page will appear so that you could configure the SSID and the wireless channel. Please refer to the following figure for more information.
Enable Wireless LAN Check the box to enable wireless function. Mode At present, the router can connect to Mixed (11b+11g), 11g
Only, 11b Only, Mixed (11g+11n), 11n Only and Mixed
(11b+11g+11n) stations simultaneously. Simply choose Mix
(11b+11g+11n) mode.
SSID Means the identification of the wireless LAN. SSID can be any
text numbers or various special characters. The default SSID is
"DrayTek". We suggest you to change it. Channel Means the channel of frequency of the wireless LAN. The
default channel is 6. You may switch channel if the selected
channel is under serious interference. If you have no idea of
choosing the frequency, please select Auto to let system
determine for you.
Page 99
Vigor2920 Series User’s Guide
87
Packet-OVERDRIVE This feature can enhance the performance in data transmission
about 40%* more (by checking Tx Burst). It is active only
when both sides of Access Point and Station (in wireless client)
invoke this function at the same time. That is, the wireless client
must support this feature and invoke the function, too.
Note: Vigor N61 wireless adapter supports this function.
Therefore, you can use and install it into your PC for matching
with Packet-OVERDRIVE (refer to the following picture of
Vigor N61 wireless utility window, choose Enable for
TxBURST on the tab of Option).
Hide SSID Check it to prevent from wireless sniffing and make it harder
for unauthorized clients or STAs to join your wireless LAN.
Depending on the wireless utility, the user may only see the
information except SSID or just cannot see any thing about
Vigor wireless router while site surveying. The system allows
you to set four sets of SSID for different usage. In default, the
first set of SSID will be enabled. You can hide it for your
necessity.
Page 100
Vigor2920 Series User’s Guide
88
Long Preamble This option is to define the length of the sync field in an 802.11
packet. Most modern wireless network uses short preamble with
56 bit sync field instead of long preamble with 128 bit sync
field. However, some original 11b wireless network devices
only support long preamble. Check it to use Long Preamble if
needed to communicate with this kind of devices.
33..66..33 SSeeccuurriittyy
By clicking the Security Settings, a new web page will appear so that you could configure the settings of WEP and WPA.
Mode There are several modes provided for you to choose.
Disable - Turn off the encryption mechanism.
WEP-Accepts only WEP clients and the encryption key should
be entered in WEP Key.
WPA/PSK-Accepts only WPA clients and the encryption key
should be entered in PSK.
WPA2/PSK-Accepts only WPA2 clients and the encryption
key should be entered in PSK.
Mixed (WPA+ WPA2)/PSK - Accepts WPA and WPA2
clients simultaneously and the encryption key should be entered
in PSK.
Loading...
Buy Points How it Works FAQ Contact Us Questions and Suggestions Privacy Policy Cookie Policy Terms of Use