Starbridge Networks Lynx L-320 User Manual

Download

Web Interface User’s Guide

ADSL 2/2+ 4 Port Ethernet Router

Version 1.1

Table of Contents

Chapter 1 About this Manual.......................................................5

1.1 Introduction ....................................................................5

1.2 Scope and Purpose...........................................................5

1.3 Targeted Audience ...........................................................5

1.4 Manual Organization.........................................................5

Chapter 2 ADSL Ethernet Router Description.................................6

2.1 Features .........................................................................6

2.2 Lynx L-320 Overview........................................................8

Chapter 3 Your Gateway At A Glance ...........................................9

3.1 Ports and Buttons ............................................................9

3.2 Lynx L-320 Overview...................................................... 10

Chapter 4 Installing The Lynx L- 320 ......................................... 12

Chapter 5 Setting Up the Lynx L-320 ......................................... 13

5.1 Logging into your Lynx L-320 .......................................... 13

5.2 Basic............................................................................ 14

5.3 LAN / DHCP Configuration ............................................... 15

5.4 Diagnostic Test.............................................................. 17

5.4.1 Ping Test................................................................. 18

5.4.2 Modem Test............................................................. 18

5.5 Advanced...................................................................... 19

5.5.1 WAN Connection....................................................... 20

5.5.2 New Connection ....................................................... 20

5.5.3 ADSL Modulation ...................................................... 20

5.5.4 Quickstart ...............................................................21

5.5.5 LAN Configuration (VLAN).......................................... 23

5.5.6 LAN Clients.............................................................. 26

5.5.7 Application (UPnP).................................................... 26

5.5.8 SNTP ...................................................................... 27

5.5.9 SNMP...................................................................... 28

5.5.10 IP QoS....................................................................29

5.5.11 IGMP Multicast ......................................................... 30

5.5.12 Port Forwarding........................................................ 31

5.5.13 MAC Filtering (Bridge Filters)...................................... 32

5.5.14 Access Control ......................................................... 33

5.5.15 Routing (Static Routing) ............................................ 34

5.5.16 Dynamic Routing......................................................35

5.5.17 System Password ..................................................... 36

5.5.18 Firmware Upgrade .................................................... 37

5.5.19 Restore to Default .................................................... 37

5.6 Security........................................................................ 38

5.6.1 IP Filters ................................................................. 38

5.6.2 LAN Isolation ........................................................... 39

5.7 Status .......................................................................... 40

5.7.1 Connection Status .................................................... 40

5.7.2 System Log ............................................................. 41

5.7.3 Remote Log Settings................................................. 42

5.7.4 Network Statistics..................................................... 42

5.7.5 DHCP Clients............................................................ 43

5.7.6 Modem Status.......................................................... 43

5.7.7 Product Information.................................................. 44

5.8 Help............................................................................. 44

Appendix A: Troubleshooting......................................................45

The Lynx L-320 is not functional............................................... 45

I can’t connect to the Lynx L-320 ............................................. 45

The DSL Link LED continues to blink but does not go solid ........... 46

The DSL Link LED is always off................................................. 46

APPENDIX B: Lynx L-320 terms .................................................. 47

What is a firewall?.................................................................. 47

What is NAT?......................................................................... 47

What is a DMZ?...................................................................... 47

What is a Gateway?................................................................ 48

Safety Summary Messages

WARNING HIGH VOLTAGE

If used in the equipment. Make sure equipment is properly grounded BEFORE opening. Failure to observe safety precautions may result in Electrick Shock to user.

CAUTION

Check voltages before connecting equipment to power supplies. Wrong voltages applied may result in damage to equipment.

Chapter 1 About this Manual

1.1 Introduction

This manual provides a general product overview and description of its subsystems and components and basic operation and preventive maintenance instructions of the Lynx L-320.

1.2

Scope and Purpose

This manual provides the following:

• An overview of the Lynx L-320 system configuration and connectivity;

• General description and specifications of the Lynx L-320 system

components;

• Operating instructions of the system and equipment;

1.3 Targeted Audience

This manual is designed and developed for the operators and users who are required to operate and perform first-level maintenance of the Lynx L-320. It assumes the user of this manual has basic knowledge and experience in operating similar modem configuration and computer systems equipment.

1.4 Manual Organization

The manual is divided into the following chapters:

1. Chapter 1 – About this Manual; this chapter provides an introduction to the manual’s scope and purpose, targeted audience and contents organization.

2. Chapter 2 – ADSL Ethernet Router Description; this chapter provides the system configuration diagram description on the system support features.

3. Chapter 3 – Your Gateway At A Glance; this chapter provides an overview of the system configuration, composition, connectivity and introduction and general description of the Lynx L-320.

4. Chapter 4 – Installing the Lynx L-320; this chapter provides description of the Lynx L-320 installation process.

5. Chapter 5 – Setting Up the Lynx L-320; this chapter provides description of all function within the Web User Interface.

Chapter 2 ADSL Ethernet Router Description

The Lynx L-320 ADSL 2/2+ 4 port Ethernet Router is the perfect high-speed WAN router. This full-featured product is specifically designed to connect to the Internet and directly connect to your local area network via high speed 10/100 Mbps Ethernet

Targeted at the residential and SOHO users, it is the ideal solution to provide a 4 in 1 device for both high speed broadband connectivity via a combined ADSL2/2+ ready Modem support, Routing functionality for multi-user sharing, 4 port AutoMDI/MDIx 10/100 Switch and true Firewall capability functionality.

This router also provides future proof functionality with higher data transmission rates with ADSL2, ADSL2+, Extended Reach-ADSL support.

For game users, the Lynx L-320 has already pre configured for several low latency game ports. Just click on the game you are playing on line and the rest is done for you

The Lynx L-320 is fully compatible with all PCs; as long as the PC supports an Ethernet interface and is running a TCP/IP protocol stack, your PC can have high-speed WAN access. So, plug in the Lynx L-320, configure it and enjoy the fast Internet access like never before.

Security is provided via a double Stateful Packet Inspection and NAT based Firewall. VPN Passthrough and DMZ support provide additional security support for telecommuters as well as allow flexibility while maintaining security against malicious hackers.

Features

2.1

ADSL/ATM Support

• ANSI T1.413 issue 2, ITU-T G.992.1 (G.dmt) and G.992.2 (G.lite)

compliant

• ADSL2, ADSL2+, RE-ADSL compliant

• Rate Adaptive modem at 32 Kbps steps

• Dynamic Adaptive Equalisation to improve Carrier’s service area

• Bridge Tap Mitigation support

• ATM Layer with Traffic shaping QoS Support (UBR, CBR, VBR-rt, VBR-

nrt)

• AAL ATM Attributes - AAL5

• Multiple PVC up to 8 support (Bridge Support)

• Spectral compatibility with POTS

• F5 OAM Loopback/Send and Receive

Encapsulation Support

• RFC2684 Bridge and Routed LLC and VC Mux support

• RFC2364 PPPoA Client support

• RFC2516 PPPoE Client support

• RFC2225/RFC1577 Classical IP Support

• Transparent Bridge Support

• PAP/CHAP/MS-CHAP for Password Authenication Support

Network Support

• Static IP, Dynamic RIP routing support

• IP/TCP/UDP/ICMP/ARP/RARP Application Support

• Network Address Translation (NAT)

• Port Mapping/Forwarding

• Easy setup of Port Forwarding rules for popular Games/Application

• NAT Application Level Gateway for popular applications

• DHCP Server/Relay/client

• DNS Relay Agent

• DMZ support

• Single Session IP Sec and PPTP/L2TP VPN pass through support

• PPP Always on with configurable timeout

• PPP Dial on Demand

• Universal Plug and Play Support

Management Support

• Web Based HTTP management GUI

• TFTP/FTP Support for Firmware Upgrade

• Web Based Firmware Upgrade (Local)

• Soft Factory Reset Button via Web GUI

• Diagnostic Test (DSL, OAM, Network, Ping Test)

• Telnet/CLI (Read Only)

• Syslog Support

• Firmware upgrade-able for future feature enhancement.

Security Support

• NAT for basic Firewall support

• Packet Filtering Firewall Support

• Stateful Packet Inspection Support

• Protection against Denial of Service attacks

• Password Authentication to Modem

External Connectors:

• 1 x RJ-11 Telephone socket for ADSL line

• 4 x RJ45 for 10/100Base-T Ethernet (MDI-X)

• 1 x DC Jack for Power Input

• 1 x Factory Default Reset Button

2.2 Lynx L-320 Overview

Fig 1-1 shows the system configuration diagram of a typical Lynx L-320 connection.

Computers or Laptops with Ethernet Network Cards

To Computers or Laptops with Ethernet Network Cards

Figure 1-1: Lynx L-320 Configuration Diagram

Chapter 3 Your Gateway At A Glance

The Lynx L-320 has different ports and LEDs. Let’s take a look at the different options.

3.1 Ports and Buttons

Reset and Restore to Factory Defaults: The restore to factory defaults feature will set the Lynx L-320 to its factory default configuration by resetting the Lynx L-320. You may need to place the Lynx L-320 into its factory defaults if the configuration is changed; you loose the ability to interface to the Lynx L-320 via the web interface, or following a software upgrade. To reset the Lynx L-320, simply press the reset button for about ~ 10 seconds. The Lynx L-320 will be reset to its factory defaults and after about 30 ~ 40 seconds the Lynx L-320 will become operational again.

LAN (local area network) ETHERNET port: There are 4 Ethernet ports available for connection to four Ethernet network devices. If 4 ports are not enough, you can connect to one of them a hub or a switch.

Power is where you connect the power. Make sure to observe the proper power requirements. The required power is 9 volts.

DSL Port: This is the WAN interface that connects directly to your phone line.

3.2 Lynx L-320 Overview

Front Indicators

1 2

3 4

1 POWER Lights up when power is supplied to the Lynx L-320.

2 ETH/ACT Lights up when the Ethernet cable is properly connected from your Lynx L-

320 to the Ethernet Card.

Flickers when the ADSL is transmitting/receiving data.

3 DSL Lights up when the ADSL connection is established. Flickers when the Lynx L-320 is trying to establish a connection with the

ADSL Service Provider

4 Internet Lights up when the PPP connection to the ISP is established.

Back Panel

1 POWER SWITCH

To power on or off the modem.

1 2 3 4 5

I - Indicates ON position

- Indicate OFF position

2 DC IN To connect to the Power Adapter that comes with your package.

3 ETHERNET

10/100 Base-T Ethernet jack (RJ-45) to connect to your Ethernet Network card or Ethernet Hub / Switch.

4 RESET

To reset your Lynx L-320 to factory default settings.

5 ADSL

Telephone jack (RJ-11) to connect to your Telephone Wall Socket (ADSL line).

Chapter 4 Installing The Lynx L- 320

1. Locate a suitable location for the Lynx L-320. For connections to the Ethernet and DSL interfaces, please refer to the Quick Guide.

2. Connect the AC Power Adapter. Depending upon the type of network, you may want to put the power supply on an uninterruptible supply (UPS).

Note: Please use the power adapter supplied with the Lynx L-320. A different adapter may damage the product.

Computers or Laptops with Ethernet Network Cards

To Computers or Laptops with Ethernet Network Cards

Figure 1-2: Lynx L-320 Connection Diagram

Chapter 5 Setting Up the Lynx L-320

The basic tabs consist of features which are catered for basic users. This section will guide you through your Lynx L-320’s configuration. The Lynx

L-320 is shipped with a standard PPP configuration.

5.1 Logging into your Lynx L-320

To configure your Lynx L-320, open your web browser. You may get an error message at this point; this is normal.

1. Type the default IP address (192.168.1.1) or login.router on on the web address bar.

2. Press the Enter key and the following screen will appear.

Note: Before sitting up your Lynx L-320, make sure you have followed

the steps detailed in your Quick Guide. You should have your computer configured for DHCP mode and have proxies disabled on your browser. Upon accessing the Lynx L-320, if the browser still displays a login redirection screen, you should check your browser’s settings and ensure that the JavaScript support is enabled. If the screen shown in Figure 1-5 is not attainable, you must delete your temporary Internet files to clear the web cache.

Figure 1-3: Setup Page

Upon entering the default IP address or the short-cut name (login.router), if the user is first time login, the user will be brought to the “Basic” page. See Fig 1.3. The Basic page is meant for basic users whom only require easy connectivity to the Internet without worrying about any other advance configuration setting. If you are in doubt for what content to enter for the Protocol, VPI and VCI, please contact your Service Provider for assistance.

For those who have their routers configured, you will be directed to the “Basic Home” page. See Fig 1-4.

Figure 1-4: Basic Home Screen

Basic

5.2

If you have already configured your router and wish to change your current configuration, click on the ‘Setup’ link. Fig 1-5 will appear.

Figure 1-5: Basic Home Page

Click on Apply after entering your settings and then click on Save.

Note: after clicking on Apply, please be sure to click on “Save” to register the username/password or any other changes.

5.3 LAN / DHCP Configuration

On one side of your Lynx L-320, you have your own Local Area network (LAN) connections. This is where you plug in your local computers to the Lynx L-320. The Lynx L-320 is normally configured to automatically provide all the PC's on your network with Internet addresses.

To enable or disable DHCP, Click setup. Under LAN Setup, select DHCP Configuration. This will bring up the screen shown in Fig 1-6. The Start IP Address is where the DHCP server starts issuing IP addresses. This value must be greater than the Lynx L-320 IP address value. For example if the Lynx L-320 IP address is 192.168.1.1 (default) than the starting IP address must be 192.168.1. 2 (or higher). The End IP Address is where the DHCP server stops issuing IP addresses. The ending address cannot exceed a

subnet limit of 254. Hence the max value for our default gateway is

192.168.1.254. If the DHCP server runs out of DHCP addresses, users will

not get access to network resources. If this happens you can increase the Ending IP address (to the limit of 255) or reduce the lease time. The Lease Time is the amount of time a network user will be allowed connection to the Lynx L-320 with their current dynamic IP address. The amount of time is in units of minutes; the default value is 3600 minutes (60 hours). Note: If you change the start or end values, make sure the values are still within the same subnet as the gateways IP address. In other words, if the gateways IP address is 192.168.1.1 (default) and you change the DHCP start/end IP addresses to be 192.128.1.2/192.128.1.100, you will not be able to communicate to the Lynx L-320 if your PC has DHCP enabled. In addition to the DHCP server feature, the Lynx L-320 supports the DHCP relay function. When the Lynx L-320 is configured as DHCP server, it assigns the IP addresses to the LAN clients. When the Lynx L-320 is configured as DHCP relay, it is responsible for forwarding the requests and responses negotiating between the DHCP clients and the server.

By turning off the DHCP server and relay the network administrator must carefully configure the IP address, Subnet Mask and DNS settings of every computer on your network. Do not assign the same IP address to more than one computer and your Lynx L-320 must be on the same subnet as all the other computers.

Figure 1-6: LAN / DHCP Configuration

5.4 Diagnostic Test

Diagnostic Test is used for investigating whether the Lynx L-310 is properly connected to the WAN Network. See Fig 1-7. This test may take a few seconds to complete. To perform the test, select your connection from the list and press the Test button. Before running this test, make sure you have a valid DSL link.

Figure 1-7: Diagnostics Test Screen

After running the Diagnostic Test, the screen will indicate that the portion which pass or fail the test. Please click on the Help links, which will provide remedy to the problem as shown in Fig 1-8. The purpose of the “Fix It” button is to restore the router’s VPI and VCI to its originated setting.

Figure 1-8: Diagnostic Test Result screen

5.4.1 Ping Test

Once you have your Lynx L-320 configured, ensure you can ping the network. You can access the Ping Test page by clicking on the “here” hyperlink in Diagnostic Page. Type the target address that you want to ping. If your PC is connected to the Lynx L-320 via the default DHCP configuration, you should be able to Ping the network address 192.168.1.1. See Fig 1-9. If your ISP has provided their server address, try to ping the address. If the pings for both the WAN and the LAN sides are complete and you have the proper protocols configured, you should be able to surf the Internet. By default when you select ping test, the Lynx L-320 will ping itself 3 times. The Lynx L-320 passed the Ping test; this basically means that the TCP/IP protocol is up and running. If this first Ping test does not pass, the TCP/IP protocol is not loaded for some reason; you should restart the Lynx L-320.

5.4.2 Modem Test

This test can be used to check whether your Modem is properly connected to the Network. Select your connection from the list and press the ‘Test’ button. See Fig 1-10.

Figure 1-9: Ping Test Screen

Figure 1-10: Modem Test

5.5 Advanced

This mode is catered for advance users, a brief explanation of the links are listed as shown below.

Figure 1-11: Advanced Screen

5.5.1 WAN Connection

On the other side of the Lynx L-320 is where your Wide Area Network (WAN) connection; also referred to as a broadband connection. This WAN connection is different for every WAN supplier. Most of the configuration you will perform will be in this area. Local Area Network Connection(s).

5.5.2 New Connection

A new connection is basically a virtual connection. Your Lynx L-320 can support up to 8 different (unique) virtual connections. If you have multiple different virtual connections, you may need to utilize the static and dynamic routing capabilities of the modem to pass data correctly.

Figure 1-12: New Connection (PPPOE Connection Setup)

5.5.3 ADSL Modulation

To configure the DSL modulation type, Click setup. Under WAN Setup, select Modem Setup. This will bring up the modem setup screen. Leave the default value if you are unsure or the DSL/ISP did not provide this information. For most all cases, this screen should not be modified.

Figure 1-13: ADSL Modulation (Modem Setup)

5.5.4 Quickstart

PPPoE is also known as RFC 2516. It is a method of encapsulating PPP packets over Ethernet. PPP or Point-to-Point protocol is a method of establishing a network connection/session between network hosts. It usually provides a mechanism of authenticating users.

To configure the gateway for PPPoE, click on Setup and then click on New Connection. The default PPPoE connection setup is displayed. At the Type field select PPPoE and the PPPoE connection setup page is displayed. Give your PPPoE connection a unique name; the name must not have spaces and cannot begin with numbers. In this case the unique name is called PPPoE1. Select the encapsulation type (LLC or VC); if you are not sure just use the default mode. Select the VPI and VCI settings; your DSL service provider or your ISP will supply these; in this case the DSL service provider is using 0,100. Also select the quality of service (QOS); leave the default value if you are unsure or the ISP did not provide this information.

Following is a description of the different options:

3. Username: The username for the PPPoE access; this is provided by your DSL service provider or your ISP.

4. Password: The password for the PPPoE access; this is provided by your DSL service provider or your ISP.

5. On-Demand: Enables on-demand mode. The connection will disconnect if no activity is detected after the specified idle timeout value.

6. Idle Timeout: Specifies that PPPoE connection should disconnect if the link has no activity detected for n seconds. This field is used in conjunction with the On-Demand feature. To ensure that the link is always active, enter a 0 in this field.

7. Keep Alive: When on-demand option is not enable, this value specifies the time to wait without being connected to your provider before terminating the connection. To ensure that the link is always active, enter a 0 in this field.

8. Set Route: Specify this connection as the default-route.

9. Enforce MTU: Check this box if you experience problems accessing the

Internet over a PPPoE connection. This feature will force all TCP traffic to conform with PPP MTU by changing TCP Maximum Segment Size to PPP MTU.

Figure 1-14: Quickstart (PPPOE Connection Setup)

5.5.5 LAN Configuration (VLAN)

The Virtual LANs (VLANs) is a group of devices on different physical LAN segments, which can communicate with each other as if there are all in the same physical LAN segment. VLANs provide a number of benefits over the network. Refer to Figure 1-15.

Figure 1-15 : LAN Configuration (VLAN)

For example, the modem has 3 bridge PVCs configured. Refer to Figure 1-16 and 1-17.

• Data – 0/35

• VoIP – 0/36

• Manage – 0/88

Figure 1-16 : Create New bridge PVC

Figure 1-17 : Three bridge PVCs are created

Upon creation, the bridge PVCs are attached to LAN Group 1. They can be moved to other LAN Groups by selecting the name, clicking Remove beside the LAN Group, select again from the Interfaces box and clicking Add beside the new LAN Group.

Ports 1 and 3 (denoted by VLAN1 and VLAN3) are bridged to the Data PVC in LAN Group 1. Ports 2 and 4 (denoted by VLAN2 and VLAN4) are bridged to the VoIP PVC in LAN Group 2. The Manage PVC is alone in LAN Group 3.

Ports 1 and 3 will get traffic from Data and vice-versa. Ports 2 and 4 will not see traffic from Ports 1, 3 and Data nor the other way round.

You can change the ADSL Router’s IP address by clicking on the Configure. Your ADSL Router’s default IP address and subnet mask are

192.168.1.1/255.255.255.0; this subnet mask will allow the ADSL Router to

support 254 users. If you want to support a larger number of users you can change the subnet mask; but remember. The DHCP server is defaulted to only give out 255 IP addresses. Further remember that if you change your gateways’ IP address and you have DHCP enabled, the DHCP configuration must reside within the same subnet The default gateway is the routing device used to forward all traffic that is not addressed to a station within the local subnet. Your ISP will provide you with the default gateway Address.

The hostname can be any alphanumeric word that does not contain spaces. The domain name is used to in conjunction with the host name to uniquely identify the gateway. To access the ADSL Router’s web pages the user can type 192.168.1.1 (the default IP address) or type mygateway.ar7. The apply button will temporarily save this connection. To make the change permanent you need to click on Save Settings. Refer to Figure 1-18.

Figure 1-18 : Configure

5.5.6 LAN Clients

To add a LAN client select LAN clients, under LAN. If DHCP is used, all DHCP clients are automatically assigned. If a fixed IP address server is on the LAN and you want this server to be visible via the WAN, you must add its IP address. Once the IP address has been added to you can apply Port Forwarding and Access Control rules to this IP address.

Figure 1-19: LAN Clients

5.5.7 Application (UPnP)

UPnP, NAT and Firewall Traversal allow traffic to pass-thru the Lynx L-320 for applications using the UPnP protocol. This feature requires one active DSL connection. In presence of multiple DSL connections, select the one over, which the incoming traffic will be present, for example the default Internet connection.

To enable UPnP, you must first have a WAN connection configured. Once a WAN connection is configured, click Advanced and under Advanced, select UPnP. You must enable UPnP and then select which connection will utilize UPnP. In this case the PPPoA connection is enabled. See Fig 1-20.

Figure 1-20: UPnP

5.5.8 SNTP

SNTP (Simple Network Timing Protocol) is a protocol used to synchronize the system time to the public SNTP servers. It uses the UDP protocol on port 123 to communicate between clients and servers. When the SNTP feature is enabled, your DSL600EU will start querying for the time clock information from the primary SNTP server. If it fails to get a valid response within the “timeout” period, it will try for “retry” number of times, before moving to the Secondary SNTP server. If it fails to get a valid response from Secondary STNP server within valid retry times, it starts querying Tertiary SNTP server. If it fails to get a valid response from all the servers, then the program stops. When a valid response is received from one of the server, the program sleeps for “Polling_interval” amount of minutes, before starting the whole process again.

Use the following procedures to enable SNTP.

1. Check Enable SNTP.

2. Primary SNTP Server - The IP address or the host name of the primary

SNTP server.

3. Secondary SNTP Server - The IP address or the host name of the secondary SNTP server.

4. Tertiary SNTP Server - The IP address or the host name of the tertiary SNTP server.

5. Timeout - If the DSL600EU failed to connect to a SNTP server within the ‘Timeout’ period, it will retry the connection.

6. Polling Interval - Time between a successful connection with a SNTP server and a new attempt to connect to an SNTP server.

7. Retry Count - The number of times the DSL600EU will try to connect to an SNTP server before it try to connect to the next server in line.

8. Time Zone - The time zone of the DSL600EU.

9. Day Light - Check/uncheck this option to enable/disable day light

saving. See Fig 1-21.

Figure 1-21: SNTP

5.5.9 SNMP

SNMP (Simple Network Management Protocol) is a troubleshooting and management protocol, which uses the UDP protocol on port 161 to communicate between clients and servers. SNMP uses a manager MIB (management information base) agent solution to fulfill the network management needs. The agent is a separate station that can request data from an SNMP agent in each of the different managed system in the network. The agent uses the MIBs as dictionaries of manageable objects. Each SNMPmanaged device has at least one agent that can respond to the queries from the NMS. The SNMP agent supports GETS, SETS, and TRAPS for 4 groups with MIB-II: System, Interface, IP, and ICMP. The SNMP agent supports three-community names authentication. See Fig 22.

Figure 1-22: SNMP Management

5.5.10 IP QoS

When QoS is enabled in the AR7, the designated machine, application or person would have precedence over peers when competing for bandwidth. The IP QoS Setup page allows you to configure QoS for a connection, view previously configured QoS rules, add a new rule, or delete an existing rule. Each output device has three priority queues associated with transmit data. The high priority queues have strict priority over the medium priority and low priority queues, and therefore can exhaust all available bandwidth. The web UI will allow the user to select the weights of the medium and low priority queues in increments of 10 percent so that that the sum of the weights of the 2 queues is equal to 100 percent. These queues will be serviced on a Round Robin priority basis according to the weights assigned, after the high priority queues have been completely serviced. See Fig 1-23.

Figure 1-23: IP QoS

5.5.11 IGMP Multicast

If the Lynx L-320 is connected to more than one network, you may need to set up a static route between them. A static route is a pre-defined pathway that network information must travel to reach a specific host or network. You can use static routing to allow different IP domain users to access the Internet through the Lynx L-320.

The New Destination IP is the address of the remote LAN network or host to which you want to assign a static route. Enter the IP address of the host for which you wish to create a static route here. For a standard Class C IP domain, the network address is the first three fields of the New Destination IP, while the last field should be 0. The Subnet Mask identifies which portion of an IP address is the network portion, and which portion is the host portion. For a full Class C Subnet, the Subnet Mask is 255.255.255.0. The Gateway IP address should be the IP address of the gateway device that allows for contact between the Gateway and the remote network or host. The Hop Count determines the maximum number of steps between network nodes that data packets will travel. A node is any device on the network (such as a router or switch). See Fig 1-24.

Figure 1-24: IGMP Multicast

5.5.12 Port Forwarding

Using the Port Forwarding page, you can provide local services (for example web hosting) for people on the Internet or play Internet games. When users send this type of request to your network via the Internet, the Lynx L-320 will forward those requests to the appropriate PC. Port forwarding can be used with DHCP assigned addresses but remember that a DHCP address is dynamic (not static). For example, if you were configuring a Netmeeting server, you would want to assign this server a static IP address so that the IP address is not reassigned. Also remember that if an Internet user is trying to access an Internet application, they must use the WAN IP address. The port forwarding will translate the WAN IP address into a LAN IP address.

To configure a service, game, or other application select the external connection (for example the Internet connection), from the Home screen, click Advanced and under Advanced, select Port Forwarding. Next select the computer hosting the service and add the corresponding firewall rule. If you want to add a custom application, select the User category, click New and fill in the port, protocols and description for your application.

For example, if you want to host a Netmeeting session, from the Home screen, click Advanced and under Advanced, select Port Forwarding. First select the IP address for your Netmeeting server. Next select the Audio/Video category and add Netmeeting to the applied rules box. To view the management rules, highlight Netmeeting and select view; this will display the pre configured protocols and ports that Netmeeting will use. Now

assuming that your WAN connection is correct, you can run Netmeeting from your server and call users that are on the Internet. If you know your WAN IP address, users can call you. See Fig 1-25.

Figure 1-25: Port Forwarding

5.5.13 MAC Filtering (Bridge Filters)

The bridge filtering mechanism provides a way for the users to define rules to allow/deny frames through the bridge based on source MAC address, destination MAC address and/or frame type. When bridge filtering is enabled, each frame is examined against the each defined filter rules sequentially. When a matched is determined, the appropriate filtering action (determined by the access type selected ... i.e. allow or deny) is performed. Please note that the bridge filter will only examine frames from interfaces, which are part of the bridge itself. Twenty filter rules are supported with bridge filtering. See Fig 1-26.

Figure 1-26: MAC Filtering (Bridge Filters)

5.5.14 Access Control

Access control allows you to open the access from the Internet LAN to the following management ports of the DSL600EU:

• Telnet

• Web

• FTP

• TFTP

• Secure Shell (SSH)

• SNMP

Fig 1-27 shows the default Access Control screen. The Access Control is disabled by default, remote management from the WAN side IP addresses is denied, most services from the LAN side IP addresses is enabled. Remember to:

1. Check Enable Access Control to enable this feature. (This will enable the IP Access List field)

2. You can select an IP from the IP Access List, or enter a new IP and check ADD

3. Change the LAN and / or WAN configurations of the IP address

4. Click Apply

Figure 1-27: Access Control

5.5.15 Routing (Static Routing)

Figure 1-28: Static Routing

5.5.16 Dynamic Routing

Dynamic Routing allows the Lynx L-320 to automatically adjust to physical changes in the network. The Lynx L-320, using the RIP protocol, determines the network packets’ route based on the fewest number of hops between the source and the destination. The RIP protocol regularly broadcasts routing information to other Lynx L-320s on the network. The Direction determines the direction that RIP routes will be updated. Selecting In means that the Lynx L-320 will only incorporate received RIP information. Selecting Out means that the Lynx L-320 will only send out RIP information. Selecting both means that the Lynx L-320 will incorporate received RIP information and send out updated RIP information.

The protocol is dependent upon the entire network. Most networks support Rip v1. If RIP v1 is selected, routing data will be sent in RIP v1 format. If Rip V2 is selected, routing data will be sent in RIP v2 format using subnet broadcasting. If Rip V1 Compatible is selected, routing data will be sent in RIP v2 format using multicasting. See Fig 1-29.

Figure 1-29: Dynamic Routing

5.5.17 System Password

You can change your Lynx L-320’s username and password by clicking on User Management. From here you can change the login name and password. You can also change the idle timeout; you will need to log back onto the Lynx L-320 once the timeout expires. If you forget your password, you can press and hold the reset to factory defaults button for 10 seconds (or more). The Lynx L-320 will reset to its factory default configuration and all custom configurations will be lost.

Figure 1-30: System Password

5.5.18 Firmware Upgrade

You can upgrade the Lynx L-320’s firmware, clicking on Update Gateway under the Tools page. To upgrade the firmware, click browse, find the firmware file to download. Make sure this is the correct file. Click on upgrade firmware. Once the upgrade is complete the Lynx L-320 will reboot. You will need to log back onto the Lynx L-320 after the firmware upgrade is completed. The firmware upgrade should take about 5 minutes to complete. Note: Do not remove power from the Lynx L-320 during the firmware upgrade procedure.

Figure 1-31: Firmware Upgrade

5.5.19 Restore to Default

The restore to factory defaults feature will set the Lynx L-320 to its factory default configuration by resetting the Lynx L-320. You may need to place the Lynx L-320 into its factory defaults if the configuration is changed, you loose the ability to interface to the Lynx L-320 via the web interface, or following a software upgrade,. To reset the Lynx L-320, simply press the reset button for about ~ 10 seconds. The Lynx L-320 will be reset to its factory defaults and after about 30 ~ 40 seconds the Lynx L-320 will become operational again.

A prompt as the one shown in Fig 1-31 will pop-up.

Security

5.6

The security feature section allows users to configure the following:

IP Filters LAN Isolation

Figure 1-32: Restore to Default prompt

URL Filters

Figure 1-33: Security

5.6.1 IP Filters

IP filter is identical to what Port blocking to Access Control. Fig 1-34 demonstrates that the router will block workstations with the IP in the defined range of 192.168.1.5 to 192.168.1.20 and port range from 2000 to

3000.

5.6.2 LAN Isolation

Figure 1-34: IP Filters

LAN isolation allows you to disable the flow of packets between up to threeuser-defined LAN groups (WLAN, USB and Ethernet). This allows you to

Figure 1-35: LAN Isolation

secure information in private portions of the LAN from other, publicly accessible LAN segments.

Status

5.7

This status section allows users to view the following connections and interfaces:

Connection Status System Log Remote Log Network Statistics DHCP Clients Modem Status Product Information

5.7.1 Connection Status

Figure 1-36: Status

Connection Status will display all the relevant information regarding your Internet Connection, it will display the type of protocol used, the WAN IP address, the connection state, the duration and if it is Disconnected the reason will be displayed. The “Disconnect” button on the right-hand side is for terminating the connection from the Internet. See Fig 1-37.

Figure 1-37: Connection Status

5.7.2 System Log

You can display the Lynx L-320’s log by going under the Status title, click on System log. From here you can view all logged information. Depending upon the severity level, this logged info will generate log reports to a remote host (if remote logging is enabled).

Figure 1-38: System Log

5.7.3 Remote Log Settings

This feature is for users to enable remote logging. Settings mentioned below are essential for this feature to work:

Log Level Adding / Deleting IP address Logging destination

Figure 1-39: Remote Log Settings

5.7.4 Network Statistics

Information regarding the Status and Statistics of your Ethernet, and DSL line will be displayed.

Figure 1-40: Network Statistics

5.7.5 DHCP Clients

Shows the users connected. It also shows the MAC address, IP address, host name and lease time.

Figure 1-41: DHCP Clients

5.7.6 Modem Status

This screen will display the Modem status and DSL statistics.

Figure 1-42: Modem Status

5.7.7 Product Information

This screen will show a summary of all the product information and software version that comes bundled with the Lynx L-320.

Figure 1-43: Product Information

5.8 Help

The Help screen takes you to the different Help Sections for Firewall, Bridge Filters, LAN Clients, LAN Group Configurations, PPP Connection, UPnP, IP QoS and RIP Help.

Figure 1-44: Help Screen

Appendix A: Troubleshooting

Below is a list of commonly asked questions. Before calling technical support, please look through these issues to see if they help to solve your problem.

The Lynx L-320 is not functional

1. Check to see that the power LED is green and than the network cables are installed correctly. Refer to the Quick Guide for more details.

2. Check to see that the ETH/LAN and PPP/WAN LEDs are green.

3. Check to see that the DSL LED is green

4. Check the settings on your PC. Again, refer to the Quick Guide for more details

5. Check the Lynx L-320’s settings.

6. From your PC, can you PING the Lynx L-320? Assuming that the Lynx L-320 has DHCP enabled and your PC is on the same subnet as the gateway, you should be able to PING the gateway.

7. Can you PING the WAN IP? Your ISP should have provided the IP address of their server. If you can ping the Lynx L-320 and your protocols are configured correctly, you should be able to ping the ISPs network. If you cannot PING the ISPs network, make sure you are using the correct protocols with the correct VPI/VCI values.

8. Make sure NAT is enabled for your connection. If NAT is disabled the Lynx L-320 will not route frames correctly (except in Bridge connection).

I can’t connect to the Lynx L-320

1. Check to see that the power LED is green and that the network cables are installed correctly; see the Quick Guide for more details.

2. Make sure that your PC and the Lynx L-320 is on the same network segment. The Lynx L-320’s default IP address is 192.168.1.1. If you are running a Windows based PC, you can open a DOS window and type IPCONFIG; make sure that the network adapter that is connected to the gateway is within the same 192.168.1.x subnet.

3. Also, your PC’s Subnet Mask should match the gateways subnet mask. The gateway has a default subnet mask of 255.255.255.0.

4. If this still does not work, press the reset button for 10 seconds. This will place the gateway into its factory default state. Go through the above procedures again.

5. Make sure NAT is enabled for your connection. If NAT is disabled the Lynx L-320 will not route frames correctly (except in Bridge connection).

The DSL Link LED continues to blink but does not go solid

1. This means that the DSL line is trying to train but for some reason it cannot establish a valid connection. The main cause of this is that you are too far away from the central office. Contact your DSL service provider for further assistance.

2. Verify that the phone line is connected directly to the wall and to the line input on the Lynx L-320.

3. Make sure that for every parallel phone line connected to telephone or fax to install with a micro filter.

Common Problems and Solutions

The DSL Link LED is always off

1. Make sure you have DSL service. You should get some kind of information from your ISP that states that DSL service is installed. You can usually tell if the service is installed by listening to the phone line; you will hear some high-pitched noise. If you do not hear high-pitched noise, contact your ISP.

2. Verify that the phone line is connected directly to the wall and to the line input on the Lynx L-320. If the phone line is connected to the phone side of the Lynx L-320 or you have a splitter installed on the phone line, the DSL light will not come on.

APPENDIX B: Lynx L-320 terms

What is a firewall?

A firewall is protection between the Internet and your local network. It acts similarly to the firewall in your car, protecting the interior of the car from the engine. Your car's firewall has very small opening that allow desired connections from the engine into the cabin (gas pedal connection, etc), but if something happens to your engine, you are protected.

The firewall in the Lynx L-320 is very similar. Only the desired connections that you allow are passed through the firewall. These connections are normally originating from the local network; such as web browsing, checking your email, downloading a file, and playing a game. However, in some cases, you can allow incoming connections so that you can run programs like a web server.

What is NAT?

NAT stands for Network Address Translation. Another name for it is Connection Sharing. What does this mean? Your ISP provides you with a single network address for you to access the Internet through. However, you may have several machines on your local network that want to access the Internet at the same time. The Lynx L-320 provides NAT functionality that converts your local network addresses to the single network address provided by your ISP. It keeps track of all these connections and makes sure that the correct information gets to the correct local machine. Occasionally, there are certain programs that don't work well through NAT. Some games, and some specialty applications have a bit of trouble. The Lynx L-320 contains special functionality to handle the vast majority of these troublesome programs and games. NAT does cause problems when you want to run a SERVER though. When running a server, please see the DMZ section below.

What is a DMZ?

DMZ really stands for Demilitarized Zone. It is a way of separating out part of your local network so that is more open to the Internet. Suppose that you want to run a web-server, or a game server. Normal servers like these are blocked from working by the NAT functionality. The solution is to "isolate"

the single local computer into a DMZ. This makes the single computer look like it is directly on the Internet, and others can access this machine.

Your machine isn't really directly connected to the Internet, and it really has an internal local network address. When you provide the servers network address to others, you must provide the address of the Lynx L-320. The Lynx L-320 "fakes" the connection to your machine. You should use the DMZ when you want to run a server that others will access from the Internet. Internal programs and servers (like print servers, etc) should NOT be connected to the DMZ

What is a Gateway?

The Internet is so large that a single network cannot handle all of the traffic and still deliver a reasonable level of service. To overcome this limitation, the network is broken down into smaller segments or subnets that can deliver good performance for the stations attached to that segment. This segmentation solves the problem of supporting a large number of stations, but introduces the problem of getting traffic from one subnet to another.

To accomplish this, devices called routers or gateways are placed between segments. If a machine wishes to contact another device on the same segment, it transmits to that station directly using a simple discovery technique. If the target station does not exist on the same segment as the source station, then the source actually has no idea how to get to the target.

One of the configuration parameters transmitted to each network device is its default gateway. This address is configured by the network administrators and it informs each personal computer or other network device where to send data if the target station does not reside on the same subnet as the source. If your machine can reach all stations on the same subnet (usually a building or a sector within a building), but cannot communicate outside of this area, it is usually because of an incorrectly configured default gateway.

Lynx: constellation introduced by J. Hevelius in 1687. The Lynx is a nocturnal wildcat with superb eyesight. The observers of this constellation would have to be “lynx-eyed” to see it.

www.starbridgenetworks.com

Starbridge Networks Lynx L-320 User Manual

Specifications and Main Features

Frequently Asked Questions

User Manual