BR-6315SRg
Wireless IEEE 802.11b/g Broadband
Router with NAS and Print Server
User’s Manual
Version: 1.0(October, 2007)
1
Copyright© by Edimax Technology Co, LTD. all rights reserved. No part of this publication
may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated into
any language or computer language, in any form or by any means, electronic, mechanical,
magnetic, optical , chemical, manual or otherwise, without the prior written permission of this
company.
This company makes no representations or warranties, either expressed or implied, with
respect to the contents hereof and specifically disclaims any warranties, merchantability or
fitness for any particular purpose. Any software described in this manual is sold or licensed
"as is". Should the programs prove defective following their purchase, the buyer (and not this
company, its distributor, or its dealer) assumes the entire cost of all necessary servicing,
repair, and any incidental or consequential damages resulting from any defect in the software.
Further, this company reserves the right to revise this publication and to make changes from
time to time in the contents hereof without obligation to notify any person of such revision or
changes.
Linux Open Source Code
Certain Edimax products include software code developed by third parties, including
software code subject to the GNU General Public License ("GPL") or GNU Lesser
General Public License ("LGPL"). Please see the GNU (www.gnu.org) and LPGL
(www.gnu.org) Web sites to view the terms of each license.
The GPL Code and LGPL Code used in Edimax products are distributed without any
warranty and are subject to the copyrights of their authors. For details, see the GPL
Code and LGPL Code licenses. You can download the firmware-files at
http://www.edimax.com under "Download" page.
※ The product you have purchased and the setup screen may appear slightly different from
those shown in this QIG. For more detailed information about this product, please refer
to the User's Manual on the CD-ROM.
※ Software and specifications subject to change without notice. Please visit our web site for
the update.
※ All rights reserved. Trademarks or registered trademarks are the property of their
respective holders
1
Introduction................................................................................................................. 5
Chapter 1 .................................................................................................................. 18
1.1 Cable Modem..................................................................................................... 20
1.2 Fixed-IP xDSL .................................................................................................... 21
1.3 PPPoE................................................................................................................ 23
1.4 PPTP.................................................................................................................. 25
1.5 L2TP................................................................................................................... 27
1.6 Telstra Big Pond ................................................................................................. 29
Chapter 2 .................................................................................................................. 31
2.1 System................................................................................................................ 33
2.1.1 Time Zone........................................................................................................ 34
2.1.2 Password Settings........................................................................................... 35
2.1.3 Remote Management...................................................................................... 36
2.2 WAN................................................................................................................... 38
2.2.1 Dynamic IP...................................................................................................... 39
2.2.2 Static IP Address.............................................................................................. 39
2.2.3 PPPoE (PPP over Ethernet)............................................................................ 39
2.2.4 PPTP............................................................................................................... 39
2.2.5 L2TP................................................................................................................ 39
2.2.6 Telstra Big Pond............................................................................................... 39
2.2.7 DNS................................................................................................................. 40
2.2.8 DDNS .............................................................................................................. 41
2.3 LAN .................................................................................................................... 43
2.4 Wireless.............................................................................................................. 45
2.4.1 Basic Settings.................................................................................................. 46
2.4.2 Advanced Settings........................................................................................... 48
2.4.3 Security............................................................................................................ 50
2.4.3.1 WEP only...................................................................................................... 50
2.4.3.2 802.1x only................................................................................................... 52
2.4.3.3 802.1x WEP Static key ................................................................................. 53
2.4.3.4 WPA Pre-shared key..................................................................................... 54
2.4.3.5 WPA Radius.................................................................................................. 56
2
2.4.4 Access Control................................................................................................. 57
2.5 QoS .................................................................................................................... 59
2.6 NAT..................................................................................................................... 63
2.6.1 Port Forwarding............................................................................................... 65
2.6.2 Virtual Server................................................................................................... 67
2.6.3 Special Applications......................................................................................... 69
2.6.4 UPnP Settings................................................................................................. 72
2.6.5 ALG Settings.................................................................................................... 73
2.6.6 Static Routing .................................................................................................. 74
2.7 Firewall............................................................................................................... 76
2.7.1 Access Control................................................................................................. 77
2.7.2 URL Blocking................................................................................................... 81
2.7.3 DoS (Denial of Service)................................................................................... 82
2.7.4 DMZ................................................................................................................. 83
2.8 Print Server......................................................................................................... 84
2.8.1 LPR Printing .................................................................................................... 86
2.8.2 IPP Printing...................................................................................................... 93
2.9 File/FTP Server................................................................................................... 98
2.9.1 Users setup ..................................................................................................... 99
2.9.2 File Server......................................................................................................101
2.9.3 FTP Server.....................................................................................................104
2.9.4 Storage Tool....................................................................................................107
2.9.5 Storage Status ................................................................................................109
2.10 BT Download...................................................................................................110
2.11 Web/FTP Download.........................................................................................113
2.12 iTunes Server..................................................................................................115
2.13 Media Server...................................................................................................118
Chapter 3 .................................................................................................................119
3.1 Status and Information.......................................................................................120
3.3 Device Status.....................................................................................................122
3.4 System Log........................................................................................................123
3.5 Security Log.......................................................................................................124
3.6 Active DHCP Client............................................................................................125
3
3.7 Statistics ............................................................................................................126
Chapter 4 .................................................................................................................127
4.1 Configuration Tools............................................................................................127
4.2 Firmware Upgrade.............................................................................................128
4.3 Reset.................................................................................................................129
Appendix A ..............................................................................................................131
Glossary ..................................................................................................................133
4
Introduction
Congratulations on purchasing BR-6315SRg wireless broadband router. This
wireless broadband router is a cost-effective Internet access sharing router
with NAS and print server function, which enables multiple users to share
Internet connection, files and printer through a single internet connection.
Simply configure Internet connection settings of this wireless broadband router,
connect your PC to the LAN port of this router, and you're ready to share files
and access the Internet. As your network grows, you can connect another hub
or switch to the router’s LAN ports, allowing you to easily expand your network.
This Wireless broadband router is equipped with an IEEE 802.11g/b access
point, which allows you to build a wireless LAN. The Wireless broadband
router provides a total solution for the Small and Medium-sized Business (SMB)
and the Small Office/Home Office (SOHO) markets, giving you an instant
network today, and the flexibility to deal with tomorrow's network expansion
requirements.
Features
- High Internet access throughput
- Allow multiple users to share a single Internet connection
- Supports up to 253 network client users
- Provides two USB port for connecting USB printer or USB mass storage
devices
- Internet Access via Cable or xDSL modem
- Allow you to share your files via FTP or Network Neighborhood
- Access Servers on your LAN from the Public Network
- Equipped with four LAN ports (10/100M) and one WAN port (10/100M)
- Provides IEEE 802.11g/b wireless LAN access point
- Support DHCP (Server/Client) for easy setup
- Support advance features such as: special applications, DMZ, virtual server,
access control, firewall
- Allow you to monitor the router’s status such as: DHCP Client Log, System
Log, Security Log and Device/Connection Status
- Easy to use Web-based GUI for configuration and management
- Remote Management allows configuration and upgrades from a remote site
(over the Internet)
Minimum Requirements
- One External xDSL (ADSL) or Cable modem with an Ethernet port (RJ-45)
5
- Network Interface Card (NIC) for each Personal Computer (PC)
- Computer with a Web-Browser (Internet Explorer 5.0 or higher / Netscape
Navigator 7.2 or higher)
Package Contents
- One Wireless broadband router
- One Quick Installation Guide
- One User Manual CD
- One Power Adapter
- Ethernet Cable
- Antenna
- Accessories
Note
The WAN “idle timeout” auto-disconnect function may not work due to
abnormal activities of some network application software, computer virus or
hacker attacks from the Internet. For example, some software sends network
packets to the Internet in the background, even when you are not using the
Internet. So please turn off your computer when you are not using it. This
function also may not work with some ISP. So please make sure this function
can work properly when you use this function in the first time, especially your
ISP charge you by access time.
6
Back Panel
The diagram (fig1.0) below shows the broadband router’s back panel. The
router’s back panel is divided into four sections, LAN, WAN, USB, and Reset:
Figure 1.0
1) Local Area Network (LAN)
The Broadband router’s 4 LAN ports are where you connect your LAN’s PCs,
hubs / switches etc.
2) Wide Area Network (WAN)
The WAN port connected to your xDSL or Cable modem which linked to the
Internet.
3) USB
The USB ports allow you to share your files or printer through them. Each port
can support both printer and USB mass storage devices.
Note 1: Please plug the external power of your USB mass storage devices
before you connect them to the broadband router.
Note 2: If you have USB mass storage device (like USB external HDD), please
plug it to this NAS router’s USB 1 port, and plug the USB flash disk you wish to
share files among different PCs and notebooks to the USB 2 port.
4) Reset button
When you experience some problem on using this router, or you forgot your
password, you can press the reset button for longer than 10 seconds and the
router will reset itself to the factory default settings (warning: your original
configurations will be replaced with the factory default settings)
Front Panel
On the router’s front panel there are LEDs, which shows the status of this
router. Below is the list of each LED and its description.
7
Figure 1.1
LED
Light
Status
PWR ON Router is powered on
WAN
10/100M
ON WAN port is connected at 100Mbps
Off WAN port is connected at 10Mbps
ON WAN is connected
WAN
LNK/ACT
Off WAN is unconnected
Flashing WAN port is sending / receiving data
ON LAN port is connected at 100Mbps LAN
10/100M
Off LAN port is connected at 10Mbps
(Port 1-4)
LAN
LNK/ACT
ON LAN port is connected
Off LAN port is unconnected
(Port 1-4)
Flashing LAN port is sending / receiving data
Description
USB
WLAN-G
ON USB storage device is connected
Off USB storage device is not connected
Flashing USB printer is printing
ON Wireless LAN has been activated
Off Wireless LAN is disabled
Flashing Wireless LAN is sending / receiving data
8
Setup Diagram
Figure 1.2 below shows a typical setup for a Local Area Network (LAN).
Figure 1.2
Getting started
This is a step-by-step instruction on how to start using the router and get
connected to the Internet.
1) Setup your network as shown in the setup diagram above (fig 1.2).
2) You will need to set your LAN PC clients so that it can obtain an IP address
automatically. All LAN clients require an IP address. Just like the mailing
address in real world, it allows LAN clients to find one another. (If you already
configured your PC to obtain an IP automatically, please jump to step 3, page
11)
Configure your PC to obtain an IP address automatically
Broadband router’s DHCP function is switched on by default; this means that
you can obtain an IP address automatically once you’ve configured your PC
to obtain an IP address automatically. This section will show you how to
configure your PC’s so that it can obtain an IP address automatically for either
Windows 95/98/Me, 2000 or NT operating systems. For other operating
systems (Macintosh, Sun, etc.), follow the manufacturer’s instructions. The
9
following is a step-by-step illustration on how to configure your PC to obtain
an IP address automatically for:
2a) Windows 95/98/Me
2b) Windows XP
2c) Windows 2000, and
2d) Windows NT.
2a) Windows 95/98/Me
1. Click the Start button and select Settings, then click Control Panel. The
Control Panel window will appear.
2. Double-click Network icon. The Network window will appear.
3. Check your list of Network Components. If TCP/IP is not installed, click the
Add button to install it; if TCP/I P is installed, jump to step 6.
4. In the Network Component Type dialog box, select Protocol and click Add
button.
5. In the Select Network Protocol dialog box, select Microsoft and TCP/IP and
then click the OK button to start installing the TCP/IP protocol. You may need
your Windows installation CD to complete the installation.
6. After installing TCP/IP, go back to the Network dialog box. Select TCP/IP
from the list of Network Components and then click the Properties butt on.
7. Check each of the tabs and verify the following settings:
•Bindings: Check Client for Microsoft Networks and File and printer sharing
for Microsoft Networks.
•Gateway: All fields are blank.
•DNS Configuration: Select Disable DNS.
•WINS Configuration: Select Disable WINS Resolution.
•IP Address: Select
Obtain IP address autom atically.
10
8. Reboot the PC. Your PC will now obtain an IP address automatically from
your Broadband Router’s DHCP server.
Note: Please make sure that the Broadband router is the only DHCP server on
your LAN.
Once you’ve configured your PC to obtain an IP address automatically,
please proceed to Step 3
2b) Windows XP
1. Click the Sta rt button and select Settings, then click Network Connections.
The Network Connections window will appear.
2. Double-click Local Area Connection icon. The Local Area Connection
window will appear.
3. Check your list of Network Components. You should see Internet Protocol
[TCP/IP] on your list. Select it and click the Properties button.
4. In the Internet Protocol (TCP/IP) Properties window, select Obtain an IP
address automatically and Obtain DNS server address automatically as
shown on the following screen.
11
5. Click OK to confirm the setting. Your PC will now obtain an IP address
automatically from your Broadband Router’s DHCP server.
Note: Please make sure that the Broadband router is the only DHCP server on
your LAN.
Once you’ve configured your PC to obtain an IP address automatically,
please proceed to Step 3
2c) Windows 2000
1. Click the Start button and select Settings, then click Control Panel. The
Control Panel window will appear.
2. Double-click Network and Dial-up Connections icon. In the Network and
Dial-up Connection window, double-click Local Area Connection icon. The
Local Area Connection window will appear.
3. In the Local Area Connection window, click the Properties button.
4. Check your list of Network Components. You should see Internet Protocol
[TCP/IP] on your list. Select it and click the Properties button.
5. In the Internet Protocol (TCP/IP) Properties window, select Obtain an IP
address automatically and Obtain DNS server address automatically as
shown on the following screen.
12
6. Click OK to confirm the setting. Your PC will now obtain an IP address
automatically from your Broadband Router’s DHCP server.
Note: Please make sure that the Broadband router is the only DHCP server on
your LAN.
Once you’ve configured your PC to obtain an IP address automatically,
please proceed to Step 3
.
2d) Windows NT
1. Click the Start button and select Settings, then click Control Panel. The
Control Panel window will appear.
2. Double-click Network icon. The Network window will appear. Select the
Protocol tab from the Network window.
3. Check if the TCP/IP Protocol is on your list of Network Protocols. If TCP/IP is
not installed, click the Add button to install it now. If TCP/IP is installed, go to
step 5.
13
4. In the Select Network Protocol window, select the TCP/IP Protocol and click
the Ok button to start installing the TCP/IP protocol. You may need your
Windows CD to complete the installation.
5. After you install TCP/IP, go back to the Network window. Select TCP/IP from
the list of Network Protocols and then click the Properties button.
6. Check each of the tabs and verify the following settings:
• IP Address: Select Obtain an IP address from a DHCP server.
• DNS: Make all fields blank.
• WINS: Make all fields blank.
• Routing: Make all fields blank.
7. Click OK to confirm the setting. Your PC will now obtain an IP address
automatically from your Broadband Router’s DHCP server.
Note: Please make sure that the Broadband router is the only DHCP server on
your LAN.
Once you’ve configured your PC to obtain an IP address automatically,
please proceed to Step 3
14
3) Once you have configured your PCs to obtain an IP address automatically,
the router’s DHCP server will automatically give each of your LAN clients an IP
address. By default the Broadband Router’s DHCP server is enabled so that
you can obtain an IP address automatically. To see if you have obtained an IP
address, see Appendix A.
Note: Please make sure that the Broadband router’s DHCP server is the
only DHCP server on your LAN. If there is another DHCP on your network,
then you’ll need to switch one of the DHCP servers off. (To disable the
Broadband router’s DHCP server see chapter 2 LAN Port)
4) Once your PC has obtained an IP address from your router, enter the
default IP address 192.168.2.1 (broadband router’s IP address) into your
PC’s web browser and press <enter>
5) The login screen below will appear. Enter the “User Name” and “Password”
and then click <OK> to login.
Note: By default the user name is “admin” and the password is “1234”. For
security reasons it is recommended that you change the password as
soon as possible (in General setup/system/password, see chapter 2)
6) The HOME page screen below will appear. The Home Page is divided into
15
four sections, Quick Setup Wizard, General Setup, Status Info and
System Tools.
Quick Setup Wizard (Chapter 1)
Select your Internet connection type and setup the configurations needed to
connect to your Internet Service Provider (ISP).
General Setup (Chapter 2)
This section contains configurations for the Broadband router’s advanced
functions such as: address mapping, virtual server, access control, hacker
attack prevention, DMZ, special applications and other functions to meet your
needs.
Status Info (Chapter 3)
In this section you can see the Broadband router's system information, Internet
Connection, Device Status, System Log, Security Log and DHCP client
information.
Tools (Chapter 4)
This section contains the broadband router’s tool sets - tools include
configuration, firmware upgrade and Reset. Configuration tools allow you to
16
backup (save), restore, or restore to factory default configuration for your
Broadband router. The firmware upgrade tool allows you to upgrade your
Broadband router's firmware. The RESET tool allows you to reset your
Broadband router.
7) Click on Quick Setup Wizard (see chapter 1) to start configuring settings
required by your ISP so that you can start accessing the Internet. The other
sections (General Setup, Status Information and Tools) do not need to be
configured unless you wish to implement/monitor more advanced
features/information.
Select the section (Quick Setup Wizard, General Setup, St atus Information
and Tools) you wish to configure and proceed to the corresponding chapter.
17
Chapter 1
Quick Setup
The Quick Setup section is designed to get you using the broadband router as
quickly as possible. In the Quick Setup you are required to fill in only the
information necessary to access the Internet. Once you click on the Quick
Setup Wizard in the HOME page, you should see the screen below.
Step 1) Time Zone
The Time Zone allows your router to base its time on the settings configured
here, this will affect functions such as log entries and firewall settings.
Parameter Description
Set Time Zone
Time Server
Address
Daylight Savings
Times From
Times to
Select the time zone of the country you are living. The
router will set its time based on your selection
You can manually assign time server address if the
default time server dose not work
The router can also take Daylight savings into account. If
you wish to use this function, you must check/tick the
enable box to enable your daylight saving configuration
(below)
Select the period in which you wish to start using daylight
saving
Select the period in which you wish to stop using daylight
saving
18
Click on NEXT to proceed to the next page (step 2): Broadband Type.
Step 2) Broadband Type
In this section you have to select one of four types of connections that you will
be using to connect your broadband router’s WAN port to your ISP (see
screen below).
Note: Different ISP’s require different methods of connecting to the Internet,
please check with your ISP as to the type of connection it requires.
Menu Description
Cable Modem Your ISP will assign you with an IP address automatically
Fixed-IP xDSL Your ISP gave you an IP address already
PPPoE xDSL Your ISP requires you to use Point-to-Point Protocol over
Ethernet (PPPoE)
PPTP xDSL Your ISP requires you to use a Point-to-Point Tunneling
Protocol (PPTP)
19
L2TP xDSL Your ISP requires you to use a Layer Two Tunneling
Protocol (L2TP)
Telstra Big Pond This Protocol only used for Telstra Big Pond Internet
service in Australia
Click on one of the WAN type and then proceed to the manual’s relevant
sub-section (1.1, 1.2, 1.3, 1.4, 1.5 or 1.6). Click on Back to return to the
previous screen.
1.1 Cable Modem
Choose Cable Modem if your ISP will assign you with an IP address
automatically (i.e. DHCP). Some ISP’s may also require that you fill in
additional information such as host name and MAC address (see screen
below).
Note: The Host Name and MAC address section is optional and you can skip
this section if your ISP does not require these settings.
Parameters Description
If your ISP requires a Host Name, type in the host name
Host Name
provided by your ISP, otherwise leave it blank if your ISP
does not require a Host Name.
Your ISP may require a particular MAC address to
MAC Address
connect to the Internet. This MAC address is the PC’s
MAC address that your ISP had originally connected your
Internet connection to. Type in this MAC address in this
20
A
section or use the “Clone MAC Address” button to replace
the WAN MAC address with the MAC address of that PC
(you have to be using that PC for the Clone MAC Address
button to work). To find out the PC’s MAC address see
ppendix A. (see Glossary for an explanation on MAC
address)
Click <OK> when you have finished the configuration above. Congratulations!
You have completed the configuration for the Cable Modem connection. You
can start using the router now, if you wish to use some of the advance features
supported by this router see chapter 2, 3, 4.
1.2 Fixed-IP xDSL
Select Fixed-IP xDSL if your ISP has given you a specific IP address for you to
use. Your ISP should provide all the information required in this section.
Parameters Description
IP address This is the IP address that your ISP has given you.
Subnet Mask Enter the Subnet Mask provided by your ISP (e.g.
255.255.255.0)
DNS address This is the ISP’s DNS server IP address
Gateway IP
This is the ISP’s IP address gateway
address
21
Click <OK> when you have finished the configuration above. Congratulations!
You have completed the configuration for the Fixed-IP x DSL connection. You
can start using the router now, if you wish to use some of the advance features
supported by this router see chapter 2, 3,
22
1.3 PPPoE
Select PPPoE if your ISP requires the PPPoE protocol to connect you to the
Internet. Your ISP should provide all the information required in this section.
Parameter Description
User Name
Password
Service Name
Enter the User Name provided by your ISP for the PPPoE
connection
Enter the Password provided by your ISP for the PPPoE
connection
This is optional. Enter the Service name of your ISP when
your ISP requires it, otherwise leave it blank.
This is optional. You can specify the maximum size of
MTU
your transmission packet to the Internet. Leave it as it is if
you to not wish to set the maximum packet size. Please
ask your ISP for detailed information.
If you select “Continuous”, the router will maintain the
connection to the ISP. If the WAN connection drops, the
router will reconnect to the ISP automatically.
Connection T ype
If you select “Connect On Demand”, the router will
auto-connect to the ISP when someone wants to use the
Internet and keep connected until the WAN idle timeout.
The router will drop the WAN connection if the time period
23
that no one is using the Internet exceeds the “Idle Time”.
If you select “Manual”, the router will connect to ISP only
when you click “Connect” manually from the Web
management interface. The WAN connection will not
disconnect because of idle timeout. If the WAN line drops
and connected at a latter time again, the router will not
connect to the ISP by itself.
You can specify an idle time (minutes) for the WAN port.
This means if no packets have been sent (no one using
the Internet) during this specified period, the router will
automatically disconnect the connection to your ISP.
Note: This “idle timeout” function may not work due to
abnormal activities of some network application software,
Idle Time
computer virus or hacker attacks from the Internet. For
example, some software sends data to the Internet in the
background, even when you are not using the Internet. So
please turn off your computer when you are not using it.
This function also may not work with some ISP. So please
make sure this function can work properly when you use
this function in the first time, especially when your ISP
charge you by the connection time.
Click <OK> when you have finished the configuration above. Congratulations!
You have completed the configuration for the PPPoE connection. You can start
using the router now, if you wish to use some of the advance features
supported by this router see chapter 2, 3, 4.
24
1.4 PPTP
Select PPTP if your ISP requires the PPTP protocol to connect you to the
Internet. Your ISP should provide all the information required in this section.
Parameter Description
Obtain an IP
address
Use the following
IP Address
The ISP requires you to obtain an IP address by DHCP
automatically before connecting to the PPTP server.
The ISP gave you a static IP to be used to connect IP
address to the PPTP server
IP Address
Subnet Mask
This is the IP address that your ISP gave you to establish
a PPTP connection
Enter the Subnet Mask provided by your ISP (e.g.
255.255.255.0)
25
Gateway Enter the IP address of the ISP’s Gateway
User ID
Password
Enter the User Name provided by your ISP for the PPTP
connection. Sometimes called as Connection ID
Enter the Password provided by your ISP for the PPTP
connection
If your LAN has a PPTP gateway, then enter that PPTP
PPTP Gateway
gateway’s IP address here. If you do not have a PPTP
gateway then enter the ISP’s Gateway IP address, same
as above
Connection ID This is the ID given by your ISP, and this is optional.
BEZEQ-ISRAE
Select this item if you are using the service provided by
BEZEQ in Israel.
If you select “Continuous”, the router will maintain the
connection to the ISP. If the WAN line breaks down and
links again at a latter time, the router will reconnect to the
ISP automatically; if you select “Connect On D em and”,
the router will auto-connect to the ISP when someone
wants to use the Internet and keep connected until the
WAN idle timeout. The router will close the WAN
Connection T ype
connection if the time period that no one is using the
Internet exceeds the “Idle Time”.
If you select “Manual”, the router will connect to ISP only
when you click “Connect” manually from the Web
management interface. The WAN connection will not be
disconnected because of idle timeout. If the WAN line
breaks down and got connected again at a latter time, the
router will not connect to the ISP by itself.
Idle Time
You can specify an idle time threshold (minutes) for the
WAN port. This means if no packets has been sent (no
one using the Internet) throughout this specified period,
then the router will automatically disconnect the
connection to your ISP.
Note: This “idle timeout” function may not work due to
abnormal activities of some network application software,
computer virus or hacker attacks from the Internet. For
example, some software sends network packets to the
Internet in the background, even when you are not using
the Internet. So please turn off your computer when you
are not using it. This function also may not work with
some ISP. So please make sure this function can work
26
properly when you use this function in the first time,
especially your ISP charge you by time used
Click <OK> when you have finished the configuration above. Congratulations!
You have completed the configuration for the PPTP connection. You can start
using the router now, if you wish to use some of the advance features
supported by this router see chapter 2, 3, 4.
1.5 L2TP
Select L2TP if your ISP requires the L2TP protocol to connect you to the
Internet. Your ISP should provide all the information required in this section.
Parameter Description
Obtain an IP
address
The ISP requires you to obtain an IP address by DHCP
automatically before connecting to the L2TP server.
27
MAC Address
Your ISP may require a particular MAC address to
connect to the Internet. This MAC address is the PC's
MAC address that you originally made your Internet
connection. Type in this MAC address in this section or
use the "Clone MAC Address" button to replace the WAN
MAC address with the MAC address of that PC (you have
to be using that PC for the Clone MAC Address button to
work). To find out the PC's MAC address see Appendix A.
(see Glossary for an explanation on MAC address)
Use the following
IP Address
IP Address
Subnet Mask
The ISP gave you a static IP to be used to connect to the
L2TP server.
This is the IP address that your ISP has given you to
establish a L2TP connection.
Enter the Subnet Mask provided by your ISP (e.g.
255.255.255.0)
Gateway Enter the IP address of the ISP Gateway
User ID
Password
Enter the User Name provided by your ISP for the PPTP
connection. Sometimes called a Connection ID
Enter the Password provided by your ISP for the PPTP
connection
If your LAN has a L2TP gateway, then enter that L2TP
L2TP Gateway
gateway IP address here. If you do not have a L2TP
gateway then enter the ISP’s Gateway IP address above
This is optional. You can specify the maximum size of
MTU
your transmission packet to the Internet. Keep default
value if you do not wish to set a maximum packet size.
Connection T ype
If you select “Continuous”, the router will maintain the
connection to the ISP. If the WAN line breaks down and
links again at a latter time, the router will auto-reconnect
to the ISP. If you select “Connect On Demand”, the router
will connect to the ISP automatically when someone
wants to use the Internet and keep connected until the
WAN idle timeout. The router will close the WAN
connection if the time period that no one is using the
Internet exceeds the “Idle Time”. If you select “Manual”,
the router will connect to ISP only when you click
“Connect” manually from the Web user interface. The
WAN connection will not be disconnected due to the idle
timeout. If the WAN line breaks down and latter links
again, the router will not connect to the ISP by itself.
28
The WAN “idle timeout" auto-disconnect function may not
work due to abnormal activities of some network
application software, computer virus or hacker attacks
from the Internet. For example, some software sends
network packets to the Internet in the background, even
when you are not using the Internet. This function also
Idle Time Out
may not work with some ISP. So please make sure this
function can work properly when you use this function in
the first time, especially your ISP charge you by time
used. Due to the many uncontrollable issues, we do not
guarantee the WAN “idle timeout" auto-disconnect
function will always work. In order to prevent from extra
connection fee, please TURN OFF THE ROUTER WHEN
YOU ARE NOT USING INTERNET.
Click <OK> when you have finished the configuration above. Congratulations!
You have completed the configuration for the L2TP connection. You can start
using the router now, if you wish to use some of the advance features
supported by this router see chapter 2, 3, 4.
1.6 Telstra Big Pond
Select Telstra Big Pond if your ISP requires the Telstra Big Pond protocol to
connect you to the Internet. Your ISP should provide all the information
required in this section. Telstra Big Pond protocol is used by the ISP in
Australia.
Parameter Description
User Name Enter the User Name provided by your ISP for the Telstra
29
Big Pond connection
Password Enter the Password provided by your ISP for the Telstra
Big Pond connection
User decide login
server manually
Select if you want to assign the IP of Telstra Big Pond’s
login server manually.
Login Server The IP of the Login Ser ver.
Click <OK> when you have finished the configuration above. Congratulations!
You have completed the configuration for the Telstra Big Pond connection. You
can start using the router now, if you wish to use some of the advance features
supported by this router see chapter 2, 3, 4.
30
Chapter 2
General Settings
Once you click on the General Setup button at the Home Page, you should
see the screen below.
If you have already configured the Quick Setup Wizard, you DO NOT need to
configure anything thing in the General Setup screen for you to start using the
Internet.
The General Setup contains advanced features that allow you to configure the
router to meet your network’s needs such as: Wireless, Address Mapping,
Virtual Server, Access Control, Hacker Attack Prevention, Special Applications,
DMZ and other functions.
Below is a general description of what advance functions are available in this
broadband router.
Menu Description
This section allows you to set the Broadband router’s
System
system time zone, password and remote management
administrator.
WAN
This section allows you to select the connection method
in order to establish a connection with your ISP (same as
31
the Quick Setup Wizard section)
You can specify the LAN segment’s IP address, subnet
LAN
Mask, enable/disable DHCP and select an IP range for
your LAN
Wireless Setup the wireless LAN’s SSID, WEP key, MAC filtering.
QoS You can setup the QoS bandwidth control policy.
You can configure the Address Mapping, Virtual Server
NAT
and Special Applications functions in this section. This
allows you to specify what user/packet can pass your
router’s NAT.
Firewall The Firewall section allows you to configure Access
Control, Hacker Prevention and DMZ.
Print Server The Print Server section allows you to enable the USB
ports to support USB printer.
File/FTP Server The File/FTP Server section allows you to enable the
USB ports to support USB storage devices and share
data via File/FTP server.
BT Download The BT Download section allows you to enable the USB
ports to support USB storage devices and downloa d data
via BitTorrent protocol.
Web/FTP
Download
The Web/FTP Download section allows you to enable the
USB ports to support USB storage devices and download
data via HTTP or FTP protocol.
iTunes Server The iTunes Server section allows you to enable the USB
ports to support USB storage devices and share
multi-media data as iTunes server.
Media Server The Media Server section allows you to enable the USB
ports to support USB storage devices and share
multi-media data via UPnP protocol.
Select one of the above General Setup selections and proceed to the manual’s
relevant sub-section
32
2.1 System
The system screen allows you to specify a time zone, to change the system
password and to specify a remote management user for the broadband router.
Parameters Description
Time Zone
Select the time zone of the country you are living. The
router will set its time based on your selection
Password Settings Allows you to define a password in order to access the
web-based management website.
Remote
Management
You can specify a Host IP address that can perform
remote management functions.
Select one of the above three system settings selections and proceed to the
manual’s relevant sub-section
33
2.1.1 Time Zone
The Time Zone allows your router to reference or base its time on the settings
configured here, which will affect functions such as Log entries and Firewall
settings.
Parameter Description
Set Time Zone
Time Server
Address
Select the time zone of the country you are living. The
router will set its time based on your selection.
The router default the “Time Server Address” is
“192.43.244.18”
The router can also take Daylight savings into account. If
Daylight Savings
you wish to use this function, you must check/tick the
enable box to enable your daylight saving configuration
(below).
Times From Select the period in which you wish to start using daylight
Saving.
Times to Select the period in which you wish to stop using daylight
Saving.
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
34
2.1.2 Password Settings
You can change the password required to log into the broadband router's
system web-based management. By default, there is no password. So please
assign a password to the Administrator as soon as possible, and store it in a
safe place. Passwords can contain 0 to 12 alphanumeric characters, and are
case sensitive.
Parameters Description
Current
Password
Enter your current password for the remote management
administrator to login to your Broadband router.
Note: By default there is NO password
New Password Enter your new password
Enter your new password again for verification purposes
Confirmed
Password
Note: If you forget your password, you’ll have to reset
the router to the factory default (No password) with the
reset button (see router’s back panel)
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
35
2.1.3 Remote Management
The remote management function allows you to designate a host in the
Internet the ability to configure the Broadband router from a remote site. Enter
the designated host IP Address in the Host IP Address field.
Parameters Description
This is the IP address of the host in the Internet that will
have management/configuration access to the
Broadband router from a remote site. This means if you
are at home and your home IP address has been
designated the Remote Management host IP address for
this router (located in your company office), then you’ll be
able to configure this router from your home. If the Host
Host Address
Address is 0.0.0.0, means anyone can access the
router’s web-based configuration from a remote location,
if they know the password.
Click the Enabled box to enable the Remote
Management function.
Note: When you want to access the web-based
management from a remote computer, you must enter
the router’s WAN IP address (e.g. 10.0.0.1) into your
web-browser followed by colon and port number 8080,
36
e.g. 10.0.0.1:8080 (see below). You’ll also need to know
the password set in the Password Setting screen in order
to access the router’s web-based management.
Port The port number of remote management web interface.
Enabled Select “Enabled” to enable the remote management
function.
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advanced functions or start using the router (with the
advanced settings in place)
37
2.2 WAN
Use the WAN Settings screen if you have already configured the Quick Setup
Wizard section and you would like to change your Internet connection type.
The WAN Settings screen allo ws to specify the type of WAN port connect you
want to establish with your ISP. The WAN settings offer the following selections
for the router’s WAN port, Dynamic IP, Static IP Address, PPPoE, PPTP,
L2TP, Telstra Big Pond, DNS and DDNS.
Parameters Description
Dynamic IP Your ISP will assign you an IP address automatically
Static IP Your ISP gave you an IP address already
PPPoE Your ISP requires PPPoE connection.
PPTP
Your ISP requires you to use Point-to-Point Tunneling
Protocol (PPTP) connection.
L2TP Your ISP requires L2TP connection.
Telstra Big Pond Your ISP requires Telstra Big Pond connection.
38
DNS You can specify a DNS server that you wish to use
You can specify a DDNS server that you wish to use and
DDNS
Once you have made a selection, click <More Configuration> at the bottom
of the screen and proceed to the manual’s relevant sub-section
configure the user name and password provided by you
DDNS service provider.
2.2.1 Dynamic IP
Choose the Dynamic IP selection if your ISP will assign you an IP address
automatically. Some ISP’s may also require that you fill in additional
information such as Host Name, Domain Name and MAC address (see
chapter 1 “Cable Modem” for more detail)
2.2.2 Static IP Address
Select Static IP address if your ISP assigned you with a specific IP address for
you to use. Your ISP should provide all the information required in this section.
(See chapter 1 “Fixed IP” for more detail)
2.2.3 PPPoE (PPP over Ethernet)
Select PPPoE if your ISP requires the PPPoE protocol to connect you to the
Internet. Your ISP should provide all the information required in this section.
(See chapter 1 “PPPoE” for more detail)
2.2.4 PPTP
Select PPTP if your ISP requires the PPTP protocol to connect you to the
Internet. Your ISP should provide all the information required in this section.
(See chapter 1 “PPTP” for more detail)
2.2.5 L2TP
Select L2TP if your ISP requires the L2TP protocol to connect to the Internet.
Your ISP should provide all the information required in this section. (See
chapter 1 “L2TP” for detailed information)
2.2.6 Telstra Big Pond
Select Telstra Big Pond if your ISP requires the Telstra Big Pond protocol to
connect to the Internet. Your ISP should provide all the information required in
this section. Telstra Big Pond protocol is used by the ISP in Australia. (See
chapter 1 “Telstra Big Pond” for more detail)
39
2.2.7 DNS
A Domain Name System (DNS) server is like an index of IP addresses and
Web addresses. If you type a Web address into your browser, such as
www.router.com, a DNS server will find that name in its index and the
matching IP address. Most ISPs provide a DNS server for speed and
convenience. If your Service Provider connects you to the Internet with
dynamic IP settings, it is likely that the DNS server IP address is provided
automatically. However, if there is a DNS server that you would rather use,
you need to specify the IP address of that DNS server here.
Parameters Description
DNS address
Secondary DNS
Address
(optional)
Fill in the ISP’s DNS server IP address; or you can specify
your own preferred DNS server IP address
This is optional. You can enter another DNS server’s IP
address as a backup. The secondary DNS will be used
when the above DNS fail.
Click <Apply> at the bottom of the screen to save the configurations. You can
40
now configure other advance sections or start using the router (with the
advanced settings in place)
2.2.8 DDNS
DDNS allows you to map the static domain name to a dynamic IP address.
You must get an account, password and your static domain name from the
DDNS service providers. This router supports DynDNS, TZO and other
common DDNS service providers.
Parameters Default Description
Enable/Disable Disable Enable/Disable the DDNS function of
this router
Provider Select a DDNS service provider
Domain name Your static domain name that use
DDNS
Account/E-mail
Password/Key
The account that your DDNS service
provider assigned to you
The password you set for the DDNS
service account above
41
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
42
2.3 LAN
The LAN Port screen below allows you to specify a private IP address for your
router’s LAN ports as well as a subnet mask for your LAN segment.
Parameters Default Description
This is the router’s LAN port IP address
IP address 192.168.2.1
(Your LAN clients default gateway IP
address)
IP Subnet Mask 255.255.255.0
Specify a Subnet Mask for your LAN
segment
If 802.1d Spanning Tree function is
802.1d Spanning
Tree
Disabled
enabled, this router will use the spanning
tree protocol to prevent from network loop
happened in the LAN ports.
DHCP Server Enabled
You can enable or disable the DHCP
server. By enabling the DHCP server the
43
Lease Time
IP Address Pool
router will automatically give your LAN
clients an IP address. If the DHCP is not
enabled then you’ll have to manually set
your LAN client’s IP addresses; make sure
the LAN Client is in the same subnet as
this broadband router if you want the router
to be your LAN client’s default gateway
When enabled, DHCP service will
temporarily give your LAN clients an IP
address. In the Lease Time setting you can
specify the time period that the DHCP
lends an IP address to your LAN clients.
The DHCP will change your LAN client’s IP
address when this time period is reached
You can select a particular IP address
range for your DHCP server to issue IP
addresses to your LAN Clients.
Note: By default the IP range is from:
192.168.2.100 to 192.168.2.200. If you
want your PC to have a static/fixed IP
address then you’ll have to choose an IP
address outside this IP address Pool.
Domain Name
You can specify a Domain Name for your
LAN.
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
44
2.4 Wireless
Wireless Access Point builds a wireless LAN and can let all PCs equipped with
IEEE 802.11b or 801.11g wireless network adaptor connect to your Intranet. It
supports WEP and WPA2 encryption to enhance the security of your wireless
network.
Parameters Default
Description
Enable or
disable
Wireless
Enable
You can select to enable or disable the wireless
access point module of this router.
module
function
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
45
2.4.1 Basic Settings
You can set parameters that are used for the wireless stations to connect to
this router. The parameters include Mode, ESSID, Channel Number and
Associated Client.
Parameters Default Description
Mode
It allows you to set the AP to AP, Bridge or
WDS mode.
It allows you to select the wireless band:
Band
802.11b and / or 802.11g. You can select B+G
mode to allow both 802.11b and 802.11g clients
to connect to this wireless access point.
This is the name of the wireless access point.
ESSID default
All devices in the same wireless LAN should
have the same ESSID.
Channel
Number
11
The wireless channel used by the wireless
access point. All devices in the same wireless
LAN should use the same channel.
MAC If you want to combine more than one network,
46
address you have to set this access point to “AP
Bridge-Point to Point mode”, “AP Bridge-Point
to Multi-Point mode” or “AP Bridge-WDS
mode”. You have to enter the MAC addresses
of other access points which will join the same
wireless network.
Click the “Set Security” button, and then a
“WDS Security Settings” will pop up. You can
Set Security
set the security parameters used to bridge
access points together here, when you set your
AP in AP Bridge mode. You can refer to section
4.3 “Security Settings” for detailed instructions.
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advanced sections or start using the router (with the
advanced settings in place)
47
2.4.2 Advanced Settings
You can set advanced wireless LAN parameters of this router. The parameters
include Authentication Type, Fragment Threshold, RTS Threshold, Beacon
Interval, preamble Type, etc. You should not change these parameters unless
you know their function and effects.
Parameters Description
Fragment
Threshold
"Fragment Threshold" specifies the maximum
fragmentation size of data packet to be transmitted. If this
value is too low, it will result in bad performance.
When the packet size is smaller the RT S threshold, the
RTS Threshold
wireless access point will not use the RTS/CTS
mechanism to send this packet.
The interval of time that this wireless access point
Beacon Interval
broadcast a beacon. Beacon is used to synchronize the
wireless network.
DTIM Period
The DTIM period you specify here indicates how often the
clients served by this access point should check for
48
Data Rate
Preamble T ype
Broadcast
ESSID
IAPP
buffered data which still exists on the AP and waiting for
pickup.
The “Data Rate” is the rate this access point used to
transmit data packets. The access point will use the
highest possible selected transmission rate to transmit the
data packets.
The “Long Preamble” can provide better wireless LAN
compatibility while the “Short Preamble” can provide
better wireless LAN performance.
If you enable “Broadcast ESSID”, every wireless station
located within the coverage of this access point will
discover this access point more easily. If you are building
a wireless network which will open to the public, it’s
recommended to enable this feature. Disabling “Broadcast
ESSID” can provide better security.
If you enable “IAPP”, it will allow wireless station roaming
between IAPP enabled access points within the same
wireless LAN.
It is recommended to enable the protection mechanism.
This mechanism can decrease the rate of data collision
CTS Protect
between 802.11b and 802.11g wireless stations. When the
protection mode is enabled, the throughput of the AP will
be a little lower due to many of frame traffic will be
transmitted.
You can adjust the wireless transmit power here. By
Tx Power
reduce the TX power, you can reduce the wireless
coverage to make it only cover the area you need.
Turbo Mode
By enable the turbo mode, you can enhance the
throughput up to 35Mbps.
WMM stands for Wi-Fi Multimedia. It is a standard created
to define quality of service (QoS) in Wi-Fi networks. This
WMM
adds prioritized capabilities to Wi-Fi networks and
optimizes their performance when multiple concurring
applications, each with different latency and throughput
requirements, compete for network resources.
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
49
2.4.3 Security
This Router provides complete wireless LAN security functions, include WEP,
IEEE 802.11x, IEEE 802.11x with WEP, WPA with pre-shared key and WPA
with RADIUS. With these security functions, you can prevent your wireless
LAN from illegal access. Please make sure your wireless stations use the
same security function.
2.4.3.1 WEP only
When you select 64-bit or128-bit WEP key, you have to enter WEP keys to
encrypt data. You can generate the key by yourself and enter it. You can enter
four WEP keys and select one of them as default key. Then the router can
receive any packets encrypted by one of the four keys.
Parameters Default Description
Key Length
64-bit
You can select the WEP key length for
encryption, 64-bit or 128-bit. Larger WEP key
length will provide higher level of security, but
the data throughput will be lowered.
Key Format
You can select ASCII Characters (alphanumeric
format) or Hexadecimal Digits ("A-F", "a-f" and
50
"0-9") to be the WEP Key.
For example: ASCII Characters: guest
Hexadecimal Digits: 12345abcde
Select one of the four keys to encrypt your
Default Key
data. Only the key you select it in the "Default
key" will be used.
The WEP keys are used to encrypt data
transmitted over the wireless network. Fill the
text box by following the rules: 64-bit WEP:
Key 1 - Key
4
input 10-digit Hex values (in the "A-F", "a-f" and
"0-9" range) or 5-digit ASCII character as the
encryption keys.
128-bit WEP: input 26-digit Hex values ("A-F",
"a-f" and "0-9") or 13-digit ASCII characters as
the encryption keys.
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
51
2.4.3.2 802.1x only
IEEE 802.1x is an authentication protocol. Every user must use a valid
account to login to this Access Point before accessing the wireless LAN. The
authentication is processed by a RADIUS server. This mode only
authenticates user by IEEE 802.1x, but it does not encryption the data during
communication.
Parameters Description
RADIUS Server
The IP address of external RADIUS server.
IP address
RADIUS Server
The service port of the external RADIUS server.
Port
RADIUS Server
The password used by external RADIUS server.
Password
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
52
2.4.3.3 802.1x WEP Static key
IEEE 802.1x is an authentication protocol. Every user must use a valid
account to login to this Access Point before accessing the wireless LAN. The
authentication is processed by a RADIUS server. This mode also uses WEP to
encrypt the data during communication.
For detailed instructions of WEP settings, please refer to section 2.4.3.1 “WEP
only”. For the 802.1x settings, please refer to section 2.4.3.2 “802.1x only”.
53
2.4.3.4 WPA Pre-shared key
Wi-Fi Protected Access (WPA) is an advanced security standard. You can use
a pre-shared key to authenticate wireless stations and encrypt data during
communication. It uses TKIP or CCMP (AES) to change the encryption key
frequently. So the encryption key will not be known by hackers easily, and this
will improve security.
Parameters Description
WPA(TKIP)
TKIP will change the encryption key frequently to enhance
the wireless LAN security.
WPA2 AES uses CCMP protocol to change encryption key
WPA2(AES)
frequently. AES can provide high level encryption to enhance
the wireless LAN security.
WPA2 Mixed
WPA2 Mixed will use TKIP or AES based on the other
communication peer automatically.
You may select Passphrase (alphanumeric format) or
Pre-shared
Key Format
Hexadecimal Digits (in the “A-F”, “a-f” and “0-9” range) to be
the Pre-shared Key. For example:
Passphrase: iamguest
54
Hexadecimal Digits: 12345abcde
The Pre-shared key is used to authenticate and encrypt data
Pre-shared
Key
transmitted over the wireless network. Fill the text box by
following the rules listed here: Hex WEP: input 64-digit Hex
values (“A-F”, “a-f” and “0-9”) or at least 8 character pass
phrase as the pre-shared keys.
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
55
2.4.3.5 WPA Radius
Wi-Fi Protected Access (WPA) is an advanced security standard. You can use
an external RADIUS server to authenticate wireless stations and provide the
session key to encrypt data during communication. It uses TKIP or CCMP
(AES) to change the encryption key frequently, and this will improve security.
Parameters Description
WPA(TKIP)
TKIP will change the encryption key frequently to enhance
the wireless LAN security.
WPA2 AES uses CCMP protocol to change encryption key
WPA2(AES)
frequently. AES can provide high level encryption to
enhance the wireless LAN security.
WPA2 Mixed
RADIUS Server
WPA2 MIXED will use TKIP or AES based on the other
communication peer automatically.
The IP address of external RADIUS server.
IP address
RADIUS Server
The service port of the external RADIUS server.
Port
RADIUS Server
The password used by external RADIUS server.
Password
56
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
2.4.4 Access Control
This wireless router provides MAC Address Control, which prevents
unauthorized MAC Addresses from accessing your wireless network.
Parameters Description
Enable wireless
Enable wireless access control
access control
Fill in the "MAC Address" and "Comment" of the wireless
Add MAC
address into the
list
station to be added and then click "Add". Then this wireless
station will be added into the "Current Access Control List"
below. If you find any issues before adding it and want to
correct it. Just click "Clear" and both "MAC Address" and
"Comment" fields will be cleared.
If you want to remove some MAC address from the "Current
Remove MAC
address from list
Access Control List ", select the MAC addresses you want
to remove in the list and then click "Delete Selected". If you
want remove all MAC addresses from the table, click
"Delete All" button. Click "Reset" will clear your current
57
selections.
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
58
2.5 QoS
The QoS function can classify Internet application traffic by source/destination
IP address and port number. You can assign priority for each type of
application and reserve bandwidth for it. The packets of applications with
higher priority will always go first. Lower priority applications will get bandwidth
after higher priority applications get enough bandwidth. This can let you have a
better experience in using delay-sensitive services like Internet phone, video
conference …etc. All the applications not specified by you are classified as
rule name “Others”. The rule with smaller priority number has higher priority;
the rule with larger priority number has lower priority. You can adjust the
priority of the rules by moving them up or down.
Note: If the total assigned bandwidth of higher priority applications is larger
than the maximum bandwidth provided by the WAN port, then other
applications will not get any bandwidth.
59
Parameters Description
Enable/Disable
QoS
Total Download
Bandwidth
Total Upload
Bandwidth
Add a QoS rule
into the table
Remove QoS
rules from table
Edit a QoS rule
You can check “Enable QoS” to enable QoS function for
the WAN port. You also can uncheck “Enable QoS” to
disable QoS function for the WAN port.
Here you can set maximum download bandwidth for all the
users of the router.
Here you can set the maximum upload bandwidth for all
the users of the router.
Click “Add”, and the QoS rule form will appear. Click
“Apply” after filling the form and the rule will be added into
the table.
If you want to remove some QoS rules from the table,
select the QoS rules you want to remove in the table and
then click "Delete Selected". If you want to remove all QoS
rules from the table, just click "Delete All" button. Click
"Reset" will clear your current selections.
Select the rule you want to edit and click “Edit”, then the
detailed information of the selected QoS rule will appear.
Click “Apply” after editing the form and the rule will be
saved.
Adjust QoS rule
priority
You can select the rule and click “Move Up” to make its
priority higher. You also can select the rule and click “Move
Down” to make its priority lower.
Edit QoS Rule:
You can assign packet classification criteria by its local IP range, remote IP
range, traffic type, protocol, local port range and remote port range parameters.
The parameters you leave blank will be ignored. The priority of this rule will be
applied to packets that match the classification criteria of this rule. You can
limit bandwidth consumed by packets that match this rule or guarantee
bandwidth required by packets that match this rule.
60
Parameters Description
Rule Name The name of this rule.
You can assign the download or upload bandwidth in Kbps
(1024 bit per second). You can limit the maximum
Bandwidth
bandwidth consumed by this rule by selecting “Maximum”.
You also can reserve enough bandwidth for this rule by
selecting “Guarantee”.
Enter the local IP address range of the packets that this
Local IP
Address
rule will apply to. If you assign 192.168.2.3 – 192.168.2.5,
it means 3 IP addresses: 192.168.2.3, 192.168.2.4 and
192.168.2.5
Enter the local port range of the packets that this rule will
apply to. You can assign a single port number here or
Local Port
Range
assign a range of port numbers by assigning the first port
number and the last port number of the range. The two
numbers are separated by a dash “-“, for example
“101-150” means from port number 100 to port number
150 – the range of 50 port numbers.
Remote IP
Address
Enter the remote IP address range of the packets that this
rule will apply to. If you assign 192.168.2.3 – 192.168.2.5,
it means 3 IP addresses: 192.168.2.3, 192.168.2.4 and
192.168.2.5
61
Remote Port
Range
Traffic Type
Enter the remote port range of the packets that this rule will
apply to. You can assign a single port number here or
assign a range of port numbers by assigning the first port
number and the last port number of the range. The two
numbers are separated by a dash “-“, for example
“101-150” means from port number 101 to port number
150, which indicates 50 port numbers.
Select the traffic type of the packet s that this rule will apply
to. We list some popular applications here to ease the
configuration. You also can get the same result by using
other parameters, for example source or destination port
number, if you are familiar with the application protocol.
Protocol
Select the protocol type of the packets that this rule will
apply to.
Apply Apply and exit the form.
Reset Clear the content of this form.
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
62
2.6 NAT
Network Address Translation (NAT) allows multiple users at your local site to
access the Internet through a single Public IP Address or multiple Public IP
Addresses. NAT provides Firewall protection from hacker attacks and has the
flexibility to allow you to map private IP addresses to public IP addresses for
key services such as Websites and FTP.
Parameters Description
You can have different ser vices (e.g. email, FTP, Web etc.)
going to different service servers/clients in your LAN. The
Port Forwarding
Port Forwarding function allows you to redirect a particular
range of service port numbers (from the Internet/WAN
Ports) to a particular LAN IP address.
You can have different ser vices (e.g. email, FTP, Web etc.)
going to different service servers/clients in your LAN. The
Virtual Server
Virtual Server allows you to redirect a particular service
port number (from the Internet/WAN Port) to a particular
LAN IP address and its service port number.
Special
Applications
Some applications require multiple connections, such as
Internet games, video conferencing, Internet telephony and
63
UPnP Setting
others. In this section you can configure the router to
support these types of applications.
It allows to enable or disable UPnP feature her e. After you
enable the UPnP feature, all client systems that support
UPnP, like Windows XP, can discover this router
automatically and access the Internet through this router
without any configuration. The NAT Traversal function
provided by UPnP can let applications that support UPnP
smoothly connect to Internet sites without any
incompatibility problem due to the NAPT port translation.
ALG Setting
Static Routing
You can let special applications that require “Application
Layer Gateway” to be supported here.
You can disable NAT function and setup the routing rules
manually.
Click on one of the above NAT selections and proceed to the manual's
relevant sub-section.
64
2.6.1 Port Forwarding
The Port Forwarding allows you to redirect a particular range of service port
numbers (from the Internet/WAN Ports) to a particular LAN IP address. It helps
you to host some servers behind the router NAT firewall.
Parameters Description
Enable Port
Enable Port Forwarding
Forwarding
This is the private IP of the server behind the NAT firewall.
Private IP
Note: You need to give your LAN PC clients a fixed/static
IP address in order to make port forwarding function
working properly.
This is the protocol type to be forwarded. You can choose
Type
to forward “TCP” or “UDP” packets only or select “both” to
forward both “TCP” and “UDP” packets.
Port Range The range of ports to be forward to the private IP.
Comment The description of this setting.
Add Port Fill in the "Private IP", “Type”, “Port Range” and
65
Forwarding "Comment" of the setting to be added and then click "Add".
Then this Port Forwarding setting will be added into the
"Current Port Forwarding Table" below. If you found any
typo before adding it and want to correct it, just click
"Clear" and the fields will be cleared.
If you want to remove some Port Forwarding settings from
the “Current Port Forwarding Table", select the Port
Remove Port
Forwarding
Forwarding settings you want to remove in the table and
then click "Delete Selected". If you want remove all Port
Forwarding settings from the table, just click "Delete All"
button. Click "Reset" will clear your current selections.
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
66
2.6.2 Virtual Server
Use the Virtual Server function when you want different servers/clients in your
LAN to handle different service/Internet application type (e.g. Email, FTP, Web
server etc.) from the Internet. Computers use numbers called port numbers to
recognize a particular service/Internet application type. The Virtual Server
allows you to redirect a particular service port number (from the Internet/WAN
Port) to a particular LAN private IP address and its service port number. (See
Glossary for an explanation on Port number)
Parameters Description
Enable Virtual
Enable Virtual Server.
Serve
This is the LAN client/host IP address that the Public
Port number packet will be sent to.
Private IP
Note: You need to give your LAN PC clients a fixed/static
IP address in order to make Virtual Server working
properly.
Private Port
This is the port number (of the above Private IP host) that
the below Public Port number will be changed to when the
67
packet enters your LAN (to the LAN Server/Client IP)
Type
Select the port number protocol type (TCP, UDP or both).
If you are unsure, keep it untouched.
Enter the service (service/Internet application) port
number from the Internet that will be redirected to the
Public Port
above Private IP address host in your LAN
Note: Virtual Server function will have priority over the
DMZ function if there is a conflict between the Virtual
Server and the DMZ settings.
Comment You can enter the description of this setting here.
Fill in the "Private IP", "Private Port", "Type", “Public Port”
and "Comment" of the setting to be added and then click
Add Virtual
Server
"Add". Then this Virtual Server setting will be added into
the "Current Virtual Server Table" below. If you found any
typo before adding it and want to correct it, just click
"Clear" and the fields will be cleared.
If you want to remove some Virtual Server settings from
the “Current Virtual Server Table", select the Virtual
Remove Virtual
Server
Server settings you want to remove in the table and then
click "Delete Selected". If you want remove all Vi rtu al
Server settings from the table, just click "Delete All"
button. Click "Reset" will clear your current selections.
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
Note: The function of NAS FTP/HTTP server will be affected after you setting
FTP/HTTP server in Virtual Server, due to the priority of settings in Virtual
Server are higher than in NAS.
68
Example: Virtual Server
The diagram below demonstrates one of the ways you can use the Virtual
Server function. Use the Virtual Server when you want the web server located
in your private LAN to be accessible to Internet users. The configuration below
means that any request coming form the Internet to access your web server
will be translated to your LAN’s web server (192.168.2.2).
Note: For the virtual server to work properly Internet/remote users must know
your global IP address. (For websites you will need to have a fixed/static
global/public IP address)
2.6.3 Special Applications
Some applications require multiple connections, such as Internet games, video
conferencing, Internet telephony and others. In this section you can configure
the router to support multiple connections for these types of applications.
69
Parameters Description
Enable Trigger
Enable the Special Application function.
Port
Trigger Port
Trigger Type
This is the outgoing (Outbound) range of port numbers for
this particular application
Select whether the outbound port protocol is “TCP”,
“UDP” or both.
Enter the In-coming (Inbound) port or port range for
this type of application (e.g. 2300-2400, 47624)
Public Port
Note: Individual port numbers are separated by a comma
(e.g. 47624, 5775, and 6541 etc.). To input a port range
use a “dash” to separate the two port number range (e.g.
2300-2400)
Public T ype
Select the Inbound port protocol type: “TCP”, “UDP” or
both
Comment The description of this setting.
Popular
applications
This section lists many popular applications that require
multiple connections. Select an application from the
Popular Applications selection and click “Add”. It will
70
Add Special
Application
Remove
Special
Application
automatically list the Public Ports required for this popular
application you’d specified.
Fill in the "Trigger Port", "Trigger Type”, “Public Port”,
"Public Type", "Public Port" and "Comment" of the setting
to be added and then click "Add". Then this S p ecial
Application setting will be added to the "Current
Trigger-Port Table" below. If you found any typo before
adding it and want to correct it, just click "Clear" and the
fields will be cleared.
If you want to add a popular application, select one
“Popular Application” and then click “Add”.
If you want to remove some Special Application settings
from the "Current Trigger-Port Table", select the Special
Application settings you want to remove in the table and
then click "Delete Selected". If you want remove all
Special Applications settings from the table, just click
"Delete All" button. Click "Reset" will clear your current
selections.
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
Example: Special Applications
If you need to run applications that require multiple connections, specify the
port (outbound) normally associated with that application in the "Trigger Port"
field. Then select the protocol type (TCP or UDP) and enter the public ports
associated with the trigger port to open them up for inbound traffic.
Example:
Trigger
ID
Port
1 28800 UDP
Trigger
Type
Public Port
2300-2400,
47624
Public
Type
TCP
Comment
MSN Game
Zone
2 6112 UDP 6112 UDP Battle.net
In the example listed above, when a user triggered port 28800 (outbound) for
MSN Game Zone then the router will direct incoming packets for ports
2300-2400 and 47624 to that user.
Note: Only one LAN client can use a particular special application at a time.
71
2.6.4 UPnP Settings
With UPnP, all PCs in you Intranet will discover this router automatically. So
you do not have to do any configuration for your PC, and they can access the
Internet through this router automatically.
Parameters Default Description
You can Enable or Disable UPnP feature
here. After you enable the UPnP feature, all
client systems that support UPnP, like
Windows XP, can discover this router
automatically and access the Internet
UPnP Feature Disable
through this router without any configuration.
The NAT Traversal function provided by
UPnP can let applications which support
UPnP smoothly connect to Internet websites
and avoid any incompatibility problem due to
the NAPT port translation.
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
72
2.6.5 ALG Settings
You can select applications that require “Application Layer Gateway” support.
Parameters Default Description
You can enable “Application Layer Gateway”
Enable
function, and the router will let selected
application correctly pass though the NAT
gateway.
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
73
2.6.6 Static Routing
This router provides static routing function when NAT is disabled. With static
routing, the router can forward packets according to your routing rules. The IP
sharing function will not work any more in static routing mode.
Note: The DMZ function of firewall will not work if static routing is enabled.
Parameters Description
Enable S tatic
Routing
Static routing function is disabled by default. You have to
enable the static routing function, to make your routing rules
take effect.
74
Destination
The network address of destination LAN.
LAN IP
Subnet Mask The subnet mask of destination LAN.
Default
Gateway
Hop Count
The next stop gateway of the path toward the destination
LAN. This is the IP of the nei ghbor router that this router
should communicate with on the path to the destination LAN.
The number of hops (routers) to pass through to reach the
destination LAN.
Interface The interface that go to the next hop (router).
Fill in the "Destination LAN IP", "Subnet Mask”, “Default
Gateway”, "Hop Count" and "Interface" of the rule to be
Add a Rule
added and click "Add". Then this static routing rule will be
added to the "Static Routing Table" listed below. If you found
any typo before adding it and want to correct it, just click
"Reset" and the fields will be cleared.
If you want to remove some routing rules from the "Static
Remove a
Rule
Routing Table", select the rules you want to remove in the
table and click "Delete Selected". If you want remove all
rules from the table, just click "Delete All" button. Click
"Reset" will clear your current selections.
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
75
2.7 Firewall
This broadband router provides extensive firewall protection by restricting
connection parameters, thus limiting the risk of hacker attack, and defending
against a wide array of common Internet attacks. However, for applications
that require unrestricted access to the Internet, you can configure a specific
client/server to be located in Demilitarized Zone (DMZ).
Note: To enable the Firewall settings select Enable and click Apply
Parameters Description
Access Control Access control allows you to specify which computer can
or cannot access to certain Internet applications
URL Blocking URL Blocking allows you to specify which URLs can not
be accessed by users.
76
DoS The Broadband router's firewall can block common hacker
attacks and can log the attack activities.
The DMZ function allows you to redirect all packet s going
DMZ
to your WAN port IP address to a particular IP address in
your LAN.
Click on one of the firewall selections and proceed to the manual’s relevant
sub-section
2.7.1 Access Control
If you want to restrict users from accessing certain Internet
applications/services (e.g. Internet websites, email, FTP etc.), this is the place
to set that configuration. Access Control allows users to define the traffic type
permitted in your LAN. You can control which PC client can have access to
these services.
Parameters Description
Deny
Allow
If you select “Deny”, then all PCs will be allowed to access
Internet, except those PCs listed in the list below.
If you select “Allow”, then all PCs will be denied to access
Internet. expect those PCs listed in the list below.
Filter client PCs Fill “IP Filtering Table” to filter PC clients by IP.
77
by IP
Add PC
Remove PC
Filter client PC
by MAC
address
Add PC
Remove PC
You can click Add PC to add an access control rule for
users by IP address.
If you want to remove some PC from the "IP Filtering
Table", select the PC you want to remove in the table and
then click "Delete Selected". If you want remove all PCs
from the table, just click "Delete All" button.
Check “Enable MAC Filtering” to enable MAC Filtering.
Fill in “Client PC MAC Address” and “Comment” of the PC
which is allowed to access the Internet, and then click
“Add”. If you found any typo before adding it and want to
correct it, just click "Reset" and the fields will be cleared.
If you want to remove some PC from the "MAC Filtering
Table", select the PC you want to remove in the table and
then click "Delete Selected". If you want remove all PCs
from the table, just click "Delete All" button. If you want to
clear the selection and re-select again, just click “Reset”.
You can now configure other advance sections or start using the router.
78
Parameters Description
Client PC
The description for this client PC rule.
Description
Enter the IP address range that you wish to apply this
access control rule. This is the user’s IP address(es) that
Client PC IP
Addresses
you wish to setup an access control rule.
Note: You need to give your LAN PC clients a fixed/static
IP address, to make the access control rule working
properly.
Client PC
Service
Protocol
You can block the clients from accessing some Internet
services by checking the services you want to block.
This allows you to select UDP, TCP or both protocol types
you want to block.
You can assign up to five port ranges. The router will
Port Range
block clients from accessing Internet services which will
use these ports.
Apply Changes Click “Apply Changes” to save the setting.
Reset Click “Reset” to clear all fields.
79
Click <Apply Changes> at the bottom of the screen to save the configurations.
You can now configure other advance sections or start using the router.
Example: Access Control
In the example below, LAN client A can only access websites that use Port 80.
However, LAN client B is able to access websites and any other service that
uses ports between 80 and 999.
80
2.7.2 URL Blocking
You can block access to some web sites from particular PCs by entering a full
URL address or just keyword of the Web site.
Parameters Description
Enable URL
Enable/disable URL Blocki ng
Blocking
Fill in “URL/Keyword” and then click “Add”. You can enter
Add URL
Keyword
the full URL address or the keyword of the web site you
want to block. If you found any typo before adding it and
want to correct it, just click "Reset" and the field will be
cleared.
If you want to remove some URL keyword from the
"Current URL Blocking Table", select the URL keyword
Remove URL
Keyword
you want to remove in the table and then click "Delete
Selected". If you want remove all URL keyword from the
table, just click "Delete All" button. If you want to clear the
selection and re-select again, just click “Reset”.
You can now configure other advance sections or start using the router.
81
2.7.3 DoS (Denial of Service)
The Broadband router's firewall can block common hacker attacks, including
Denial of Service, Ping of Death, Port Scan and Sync Flood. If Internet attacks
occur the router can log the events.
Parameters Description
Ping of Death Protect from Ping of Death attack
Discard Ping
From WAN
The router’s WAN port will not respond to any Ping
requests
Port Scan Protect the router from Port Scan.
Sync Flood Protect the router from Sync Flood attack.
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
82
2.7.4 DMZ
If you have a local client PC that cannot run some specific Internet application
(e.g. Games) properly from behind the NAT firewall, then you can open the
client up to unrestricted two-way Internet access by defining a DMZ Host. The
DMZ function allows you to redirect all packets going to your WAN port IP
address to a particular IP address in your LAN. The difference between the
virtual server and the DMZ function is that the virtual server redirects a
particular service/Internet application to a particular LAN client/server, whereas
DMZ redirects all packets (regardless of services) going to your WAN IP
address to a particular LAN client/server.
Note: The priority of FTP/HTTP server i n DMZ is higher than that in NAS.
Parameters Description
Enable/disable DMZ
Enable DMZ
Note: If there’s confliction between the virtual server and
the DMZ setting, the virtual server function will have
priority over the DMZ function.
Public IP
Address
The IP address of the W AN port or any other public IP
addresses assigned to you by your ISP.
83
Input the IP address of a particular host in your LAN
that will receive all the packets originally going to the
Client PC IP
WAN port/Public IP address listed above.
Address
Note: You need to give your LAN PC clients a fixed/static
IP address for DMZ to work properly.
2.8 Print Server
The router provides Print Server function that let you share a printer to all PCs
in your Intranet. It supports LPD and IPP printing protocol.
Parameters Description
Enable Print
Server
Enable/disable USB print server. The print server function
is disabled by default to improve the performance of NAS
function.
IPP Enable to support the Internet Printing Protocols.
LPR Enable to support the Local Printing Remote Protocols.
Print Name of
It is the port name of the printer connected to USB port 1.
USB Port 1
Print Name of
It is the port name of the printer connected to USB port 2.
USB Port 2
84
Enable Internet
printing
You can check “Enable Internet printing” to share the
printer on internet, you can uncheck this option to use
printer on intranet only.
Click <Apply> at the bottom of the screen to save the configurations. You can
now configure other advance sections or st art using the router .
85
2.8.1 LPR Printing
LPR Printing (Line Printer Remote technology) allows user to connect to
printers via TCP/IP protocol for printing sharing. Computer with Windows
98SE/Me/NT/2000/XP/2003 operating system can use the protocol to share
printer over the network.
To configure the LPR setting in Windows 2000/XP/2003, please follow the
instructions listed below:
1) Click “Start”, choose “Settings” and select “Printers and Faxes”.
2) Click “Add a Printer”.
3) The “Add Printer Wizard” will appear, then Click “Next”.
86
4) Select “Local Printer attached to this computer” and click “Next”.
5) Choose “Create a new port” and “Standard TCP/IP Port”. Click “Next”.
87
6) Please make sure that the Print Server and the Printer have turned on and
connected to the network correctly before you continue. Click “Next”.
7) Enter the IP Address of the Print Server in the “Printer Name or IP Address”.
Click “Next”.
88
8) Select “Custom” and click “Settings”. When you have finished the settings at
step 9, click “Next” to continue.
9) Select “LPR” and enter “lpt1” in the “Queue Name”, click “OK”. By default
the queue name of the Print Server is “lpt1”.
89
90
10) Click “Finish”.
11) Select a suitable printer manufacturer and the printer model and click
“Next”. If your printer is not in the list, click “Have Disk…” to install the driver of
the printer. After installation, the printer model will be added to the list.
91
12) Choose to set the print whether as a default printer or not. Click “Next”.
13) You have added the network printer to the PC successfully. The
information of the printer is displayed in the windows. Click “Finish”.
92
2.8.2 IPP Printing
IPP (Internet Printing Protocol) Printing provides a convenient way of remote
printing service by TCP/IP. The Print Server can support IPP printing in
Windows 2000/XP/2003 by default. By using the IPP printing, you can share
the printer to all the PC’s that can access the Print Server by Internet Protocol
(IP).
To configure the IPP Printing on Windows 2000/XP/2003, you have to make
sure the print server has correct IP settings. If you want to share the printers to
Internet users, you have to set a valid Internet IP address to the Print Server.
You also have to make sure that there’s no gateway, router or firewall blocking
IPP protocol if you have these gateway devices installed in your network.
At client side, please follow the steps below to configure the LPR setting in
Windows 2000/XP/2003.
1) Click “Start”, choose “Settings” and select “Printers and Faxes”.
2) Click “Add a Printer”.
3) The “Add Printer Wizard” is displayed. Click “Next”.
93
4) Select “A network printer, or a printer attached to another computer”, then
click “Next”.
5) Select “Connect to a printer on the Internet or on a home or office networ k”
and enter the URL of Print Server. The URL format is “http://IP:631/Port Name”.
The IP should be the Print Server’s IP. The number 631 is IPP standard port
number. Port Name is the port name of Print Server that your printer is
connected to. The default port name is “lpt1”. One example of the URL i s
http://192.168.2.1:631/lpt1. After entering the URL of Print Server, click “Next”.
94
95
6) Select a suitable printer manufacturer and the printer model and click “Next”.
If your printer is not in the list, click “Have Disk…” to install the driver of the
printer. After installation, the printer model will be added to the list.
7) Choose to set the print whether as a default printer or not. Click “Next”.
96
8) Now you have successfully added the network printer to your PC. The
information of the printer will be displayed in the window. Click “Finish”.
97
2.9 File/FTP Server
The router provides File/FTP Server function, which lets you share the USB
mass storage device to all PCs in your Intranet or on Internet. It supports
SAMBA protocol, let you share files via network neighborhood. And also
supports FTP sever function for other computer to upload/download files from
the server by FTP client program.
Parameters Description
Users setup You can add/edit users of File/FTP server.
File Server
setup
FTP Server
setup
You can add/edit the name of file server, shared folders
and sharing policies of files that will be shared via
Network Neighborhood.
You can add/edit FTP folders and configure some
advanced settings for FTP server.
The storage tools allow you to manage the partitions of
Stor age Tools
the USB storage device. You can add, remove, or format
the partition of the USB storage device.
The storage status shows the status of both USB ports.
Storage Status
When you plug a USB storage device into the USB ports,
it will show the status of the current valid disk and partition
of this device.
98
Loading...