Planet Technology BM-525 User Guide

BM-525 Bandwidth Management Gateway User’s Manual
Bandwidth Management Gateway
BM-525
User’s Manual
BM-525 Bandwidth Management Gateway User’s Manual
Copyright© 2006 by PLANET Technology Corp. All rights reserved. No part of this publication may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated into any language or computer language, in any form or by any means, electronic, mechanical, magnetic, optical, chemical, manual or otherwise, without the prior written permission of PLANET. PLANET makes no representations or warranties, either expressed or implied, with respect to the contents hereof and specifically disclaims any warranties, merchantability or fitness for any particular purpose. Any software described in this manual is sold or licensed "as is". Should the programs prove defective following their purchase, the buyer (and not this company, its distributor, or its dealer) assumes the entire cost of all necessary servicing, repair, and any incidental or consequential damages resulting from any defect in the software. Further, this company reserves the right to revise this publication and to make changes from time to time in the contents hereof without obligation to notify any person of such revision or changes. All brand and product names mentioned in this manual are trademarks and/or registered trademarks of their respective holders.
Disclaimer
PLANET Technology does not warrant that the hardware will work properly in all environments and applications, and makes no warranty and representation, either implied or expressed, with respect to the quality, performance, merchantability, or fitness for a particular purpose. PLANET has made every effort to ensure that this User’s Manual is accurate; PLANET disclaims liability for any inaccuracies or omissions that may have occurred. Information in this User’s Manual is subject to change without notice and does not represent a commitment on the part of PLANET. PLANET assumes no responsibility for any inaccuracies that may be contained in this User’s Manual. PLANET makes no commitment to update or keep current the information in this User’s Manual, and reserves the right to make improvements to this User’s Manual and/or to the products described in this User’s Manual, at any time without notice. If you find information in this manual that is incorrect, misleading, or incomplete, we would appreciate your comments and suggestions.
Trademarks
The PLANET logo is a trademark of PLANET Technology. This documentation may refer to numerous hardware and software products by their trade names. In most, if not all cases, these designations are claimed as trademarks or registered trademarks by their respective companies.
CE mark Warning
This is a class B device. In a domestic environment, this product may cause radio interference, in which case the user may be required to take adequate measures.
Federal Communication Commission Interference Statement
This equipment has been tested and found to comply with the limits for a Class B digital device, pursuant to Part 15 of FCC Rules. These limits are designed to provide reasonable protection against harmful interference in a residential installation. This equipment generates, uses, and can radiate radio frequency energy and, if not installed and used in accordance with the instructions, may cause harmful interference to radio communications. However, there is no guarantee that interference will not occur in a particular installation. If this equipment does cause harmful interference to radio or television reception, which can be determined by turning the equipment off and on, the user is encouraged to try to correct the interference by one or more of the following measures:
1. Reorient or relocate the receiving antenna.
2. Increase the separation between the equipment and receiver.
3. Connect the equipment into an outlet on a circuit different from that to which the receiver is connected.
4. Consult the dealer or an experienced radio technician for help.
BM-525 Bandwidth Management Gateway User’s Manual
FCC Caution:
To assure continued compliance (example-use only shielded interface cables when connecting to computer or peripheral devices). Any changes or modifications not expressly approved by the party responsible for compliance could void the user’s authority to operate the equipment. This device complies with Part 15 of the FCC Rules. Operation is subject to the Following two conditions: (1) This device may not cause harmful interference, and (2) this Device must accept any interference received, including interference that may cause undesired operation.
R&TTE Compliance Statement
This equipment complies with all the requirements of DIRECTIVE 1999/5/EC OF THE EUROPEAN PARLIAMENT AND THE COUNCIL OF 9 March 1999 on radio equipment and telecommunication terminal Equipment and the mutual recognition of their conformity (R&TTE) The R&TTE Directive repeals and replaces in the directive 98/13/EEC (Telecommunications Terminal Equipment and Satellite Earth Station Equipment) As of April 8, 2000.
WEEE
To avoid the potential effects on the environment and human health as a result of the presence of hazardous substances in electrical and electronic equipment, end users of electrical and electronic equipment should understand the meaning of the crossed-out wheeled bin symbol. Do not dispose of WEEE as unsorted municipal waste and have to collect such WEEE separately.
Safety
This equipment is designed with the utmost care for the safety of those who install and use it. However, special attention must be paid to the dangers of electric shock and static electricity when working with electrical equipment. All guidelines of this and of the computer manufacture must therefore be allowed at all times to ensure the safe use of the equipment.
Revision
User’s Manual for Bandwidth Management Gateway Model: BM-525 Rev: 1.0 (August, 2006)
Part No: EM-BM525v1
BM-525 Bandwidth Management Gateway User’s Manual
Table of Contents
CHAPTER 1: INTRODUCTION..............................................................................1
1.1 FEATURES.............................................................................................................. 1
PACKAGE CONTENTS.............................................................................................2
1.2
BANDWIDTH MANAGEMENT GATEWAY TOP VIEW.................................................2
1.3
BANDWIDTH MANAGEMENT GATEWAY REAR PANEL ............................................2
1.4
SPECIFICATION ...................................................................................................... 3
1.5
CHAPTER 2: SYSTEM.............................................................................................. 4
2.1 ADMINISTRATION ..................................................................................................4
ADMIN...................................................................................................................5
2.2
PERMITTED IPS......................................................................................................8
2.3
LOGOUT ................................................................................................................ 9
2.4
SOFTWARE UPDATE .............................................................................................10
2.5
CONFIGURE ......................................................................................................... 11
2.6
SETTINGS.............................................................................................................12
2.7
DATE/TIME..........................................................................................................22
2.8
MULTIPLE SUBNET ..............................................................................................23
2.9
ROUTE TABLE....................................................................................................28
2.10
DHCP ............................................................................................................... 32
2.11
DDNS...............................................................................................................34
2.12
2.13
HOST TABLE......................................................................................................36
LANGUAGE........................................................................................................37
2.14
CHAPTER 3 INTERFACE ......................................................................................38
3.1 INTERFACE...........................................................................................................39
LAN....................................................................................................................42
3.2
WAN...................................................................................................................43
3.3
DMZ...................................................................................................................48
3.4
CHAPTER 4 POLICY OBJECT.............................................................................50
4.1 ADDRESS............................................................................................................. 50
EXAMPLE ............................................................................................................53
4.2
SERVICE...............................................................................................................60
4.3
CUSTOM ..............................................................................................................63
4.4
GROUP.................................................................................................................67
4.5
SCHEDULE...........................................................................................................70
4.6
QOS.....................................................................................................................73
4.7
BM-525 Bandwidth Management Gateway User’s Manual
4.8 EXAMPLE ............................................................................................................77
AUTHENTICATION................................................................................................79
4.9
EXAMPLE ..........................................................................................................85
4.10
CONTENT BLOCKING .........................................................................................89
4.11
URL..................................................................................................................93
4.12
SCRIPT...............................................................................................................96
4.13
4.14
P2P ...................................................................................................................98
IM...................................................................................................................100
4.15
DOWNLOAD.....................................................................................................102
4.16
VIRTUAL SERVER.............................................................................................104
4.17
EXAMPLE ........................................................................................................108
4.18
CHAPTER 5 POLICY............................................................................................122
5.1 POLICY..............................................................................................................124
EXAMPLE ..........................................................................................................128
5.2
CHAPTER 6 ANOMALY FLOW IP.....................................................................146
6.1 SETTINGS...........................................................................................................147
CHAPTER 7 MONITOR .......................................................................................157
7.1 LOG..................................................................................................................157
TRAFFIC LOG.....................................................................................................159
7.2
EVENT LOG .......................................................................................................164
7.3
CONNECTION LOG .............................................................................................167
7.4
LOG BACKUP.....................................................................................................170
7.5
ACCOUNTING REPORT .......................................................................................172
7.6
OUTBOUND........................................................................................................175
7.7
INBOUND ...........................................................................................................181
7.8
STATISTICS.........................................................................................................187
7.9
WAN...............................................................................................................189
7.10
POLICY ............................................................................................................191
7.11
WAKE ON LAN................................................................................................ 193
7.12
STATUS ............................................................................................................195
7.13
INTERFACE.......................................................................................................196
7.14
AUTHENTICATION............................................................................................198
7.15
ARP TABLE .....................................................................................................199
7.16
DHCP CLIENTS...............................................................................................200
7.17
BM-525 Bandwidth Management Gateway User’s Manual

Chapter 1: I ntroduction

The BM-525 is specifically designed for SOHO networks. It has built-in one 10/100Mbps Ethernet LAN, DMZ, and WAN ports. No broadband router is required for users with only one public IP address. It also supports virtual server, Multi-DMZ, and dynamic DNS functions that are very useful for our customers to share local resources with Internet users.
For bandwidth management, packets can be classified based on IP address, IP subnet, and TCP/UDP port number. The device has more than 40 of the most common protocols such as H.323, Oracle, HTTP, FTP, and so on for easy definition. The administrator can then define policies to ensure committed and maximum bandwidth levels for inbound and outbound traffic in each class. The administrator can also define three priority levels for each policy to ensure high priority packets receive the maximum available bandwidth. In addition, each policy can have a schedule defined for when the policy is activated or inactivated in increments of 30 minutes.
Both the NAT mode and DMZ mode are supported, and therefore can maintain the existing network infrastructure without reconfiguring. The BM-525 provides policy-based firewall protection and several hacker protections to prevent hackers’ attack. Besides, the comprehensive alarm and log function allow the network manager to easily enhance the security of local network.
1.1 Features
One 10/100Mbps LAN, DMZ, and WAN port NAT mode and DMZ mode DMZ mode requires no changing for the original network structure Traffic classification based on IP, IP range/subnet, and TCP/UDP port range Guaranteed and maximum bandwidth with three levels of priorities Policy-based bandwidth management Assign daily and weekly access schedule to each individual policy Professional Monitor function includes Log, Accounting Report, Statistics, and Status MRTG-like Traffic Statistics, easy to trace and analyze Multi-Servers Load Balancing Dynamic DNS and DHCP server functions Content Filter includes URL, Script, P2P, IM, and Download blocking Hacker Alert and Anomaly Flow Detection Virtual Server and IP mapping (Multi-DMZ Host) Multi-language Web UI and easy to manage User authentication based on user name and password
- 1 -
BM-525 Bandwidth Management Gateway User’s Manual
1.2 Package Contents
The following items should be included:
Bandwidth Management Gateway Power Adapter Quick Installation Guide User’s Manual CD
If any of the contents are missing or damaged, please contact your dealer or distributor immediately.
1.3 Bandw idth Managem ent Gatew ay Top View
LED Description PWR Power is supplied to this device. WAN Steady on indicates the port is connected to other network
device. Blink to indicates there is traffic on the port
LAN Steady on indicates the port is connected to other network
device. Blink to indicates there is traffic on the port
DMZ Steady on indicates the port is connected to other network
device. Blink to indicates there is traffic on the port
1.4 Bandw idth Managem ent Gatew ay Rear Panel
Port or button Description Power 12V DC, 1.5A
RESET WAN
Press this button to restore to factory default settings. Connect to your xDSL/Cable modem or other Internet
connection device
- 2 -
BM-525 Bandwidth Management Gateway User’s Manual
LAN
Connect to your local PC, switch, or other local network device
DMZ
Connect to your local PC, switch, or other local network device
1.5 Specification
Product Bandwidth Management Gateway Model BM-525 Hardware
WAN 1 x 10/100Base-TX Connections LAN
DMZ Button Reset button for hardware reset / factory default System LED PWR, WAN, LAN, DMZ Software Maximum Bandwidth 25Mbps Maximum concurrent session Management Web (English, Traditional Chinese, Simplified Chinese) Operation Mode DMZ_NAT, DMZ_Transparent, NAT WAN connection type in NAT mode Traffic Classification IP, IP subnet, and TCP/UDP port Bandwidth Allocation Policy rules with Inbound/Outbound traffic management
Log Traffic Log, Event Log, Connection Log, Log backup by mail or Statistics WAN port statistics and policy statistics with graph display
Firewall Security Policy-based access control
Hacker Alert and Anomaly Flow Detection
Alarm Traffic alarm for user-defined traffic level
Other Functions Firmware Upgradeable through Web
1 x 10/100Base-TX, Auto-MDI/MDI-X 1 x 10/100Base-TX, Auto-MDI/MDI-X
20,000
PPPoE, DHCP, and Fixed IP
Guaranteed and maximum bandwidth Scheduled in unit of 30 minutes 3 Priorities
syslog server
Stateful Packet Inspection (SPI) Scheduled in unit of 30 minutes Detect SYN Attack, Detect ICMP Flood, Detect UDP Flood, Detect Ping of Death Attack, Detect Tear Drop Attack, Detect IP Spoofing Attack, Filter IP Route Option, Detect Port Scan Attack, Detect Land Attack, Virus-Infected Blocking, E-Mail Alert Notification, NetBIOS Notification
Event alarm for hacker attack The alarm message can sent to administrator by e-mail
NTP support Configuration Backup and Restore through Web Dynamic DNS support Multiple NAT and multiple DMZ (mapped IP) support Multiple server load balancing
- 3 -
BM-525 Bandwidth Management Gateway User’s Manual

Chapter 2: System

2.1 Administration
“System” is the managing of settings such as the privileges of packets that pass through the BM-525 and monitoring controls. The System Administrators can manage, monitor, and configure BM-525 settings. But all configurations are “read-only” for all users other than the System Administrator; those users are not able to change any setting of the BM-525.
- 4 -
BM-525 Bandwidth Management Gateway User’s Manual
2.2 Admin
Define the required fields of Administrator
Administrator Name:
The user name of Administrators and Sub Administrator for the BM-525. The admin user
name cannot be removed; and the sub-admin user can be removed or configure.
The default Account: admin; Password: admin
Privilege:
The privileges of Administrators (Admin or Sub Admin). The user name of the main
Administrator is Administrator with reading / writing privilege. Administrator also can change the system setting, log system status, and to increase or delete sub-administrator. Sub-Admin may be created by the Admin by clicking
New Sub Admin
. Sub Admin have
only read and monitor privilege and cannot change any system setting value.
Configure:
Click Modify to change the “Sub-Administrator’s” password or click Remove to delete a “Sub
Administrator.”
- 5 -
Adding a new Sub Administrator
BM-525 Bandwidth Management Gateway User’s Manual
STEP 1
In the Admin Web UI, click the New Sub Admin button to create a new Sub Administrator.
STEP 2In the Add New Sub Administrator Web UI and enter the following setting:
Sub Admin Name: sub_admin Password: 12345 Confirm Password: 12345
STEP 3Click OK to add the user or click Cancel to cancel it.
Add New Sub Admin
- 6 -
BM-525 Bandwidth Management Gateway User’s Manual
Modify the Administrator’s Password
STEP 1
In the Admin Web UI, locate the Administrator name you want to edit, and click on Modify in the ConFigure field.
STEP 2‒The Modify Administrator Password Web UI will appear. Enter the following
information:
Password: admin New Password: 52364 Confirm Password: 52364
STEP 3Click OK to confirm password change.
Modify Admin Password
- 7 -
2.3 Perm itted I Ps
BM-525 Bandwidth Management Gateway User’s Manual
STEP 1
Add the following setting in Permitted IPs of Administration:
Name: Enter master IP Address: Enter 163.173.56.11 Netmask: Enter 255.255.255.255 Service: Select Ping and HTTP Click OK Complete add new permitted IPs
Setting Permitted IPs Web UI
Complete Add New Permitted IPs
To make Permitted IPs be effective, it must cancel the Ping and We b UI selection in the Web UI of
BM-525 that Administrator enter. (LAN, WAN, or DMZ Interface) Before canceling the Web U I selection of Interface, must set up the Permitted IPs first, otherwise, it wou ld cause the situation of cannot enter Web UI by appointed Interface.
- 8 -
2.4 L ogout
BM-525 Bandwidth Management Gateway User’s Manual
STEP 1
Click Logout in System to protect the system while Administrator is away.
Confirm Logout Web UI
STEP 2Click OK and the logout message will appear in Web UI.
Logout Web UI Message
- 9 -
2.5 Softw are Update
BM-525 Bandwidth Management Gateway User’s Manual
STEP 1
Select Software Update in System, and follow the steps below:
To obtain the version number from Version Number and obtain the latest version
from Internet. And save the latest version in the hardware of the PC, which manage the BM-525
Click Browse and choose the latest software version file. Click OK and the system will update automatically.
Software Update
It takes 3 minutes to update software. The sy stem will reboot after update. During the updating time,
please don’t turn off the PC or leave the Web UI. It may cause some unexpected mistakes. (Strong suggests updating the software from LAN to avoid unexpected mistakes.)
- 10 -
BM-525 Bandwidth Management Gateway User’s Manual
2.6 Configure
The Configure is according to the basic setting of the BM-525. In this section the definition is Setting, Date/Time, Multiple Subnet, Route Table, DHCP, Dynamic DNS, Hosts Table, and Language settings.
- 11 -
Loading...
+ 36 hidden pages