Contents About this User’s Guide ... 1 1 Getting to know your SpeedTouch™ ... 3 SpeedTouch™ LED Behaviour ... 4 Accessing your SpeedTouch™ ... 6 1.2.1 Access via the Web Interface ... 7 1.2.2 Access via CLI... 8 1.2.3 Access via FTP... 10 1.2.4 Remote Assistance ...
Page 6
Contents 4 Basic Configuration ... 35 4.1.1 4.1.2 4.1.3 4.1.4 4.1.5 4.3.1 4.3.2 4.3.3 4.3.4 4.3.5 4.3.6 4.3.7 4.3.8 4.4.1 4.4.2 4.4.3 4.4.4 Navigation... 36 Menu ... 37 Language Bar ... 38 Navigation Bar ... 39 Notification Area ... 40 Tasks ...
Page 7
Toolbox ... 57 4.5.1 Remote Assistance ... 58 4.5.2 Game & Application Sharing ... 59 4.5.3 Defined Games & Applications... 61 4.5.4 Game or Application Definition ... 62 4.5.5 New Game or Application... 64 4.5.6 Web Site Filtering ... 65 4.5.7 Web Filtering Activation...
Used symbols The following symbols are used in this User’s Guide: Terminology Generally, the SpeedTouch™605(i), SpeedTouch™608(i), SpeedTouch™608(i) WL and SpeedTouch™620(i) will be referred to as SpeedTouch™ in this User’s Guide. Documentation and THOMSON continuously develops new solutions, but is also committed to improve its existing products.
Page 12
About this User’s Guide E-DOC-CTC-20051017-0151 v1.0...
Getting to know your SpeedTouch™ 1 Getting to know your SpeedTouch™ Introduction With the SpeedTouch™605(i) and SpeedTouch™608(i) Business DSL Routers and the SpeedTouch™608 WL(i) and SpeedTouch™620(i) Wireless Business DSL Routers you can build a secure small (home-)office network, seamlessly connecting wired and wireless devices and surf the Internet at high speed, all combined in one device.
Chapter 1 Getting to know your SpeedTouch™ 1.1 SpeedTouch™ LED Behaviour Front panel LEDs The SpeedTouch™ is equipped with a number of LEDs on its front panel, indicating the state of the device during normal operation. The following table shows the meaning of the different LEDs. Indicator Name Colour...
Page 15
Indicator Name Plug-in ISDN Internet Ethernet LEDs A LED may be provided per Ethernet port to indicate link integrity (or activity). Depending on the SpeedTouch™ product you are using, a second LED (A) may be provided to indicate the 10/100Base-T selection: Indicator Name (Optional)
Chapter 1 Getting to know your SpeedTouch™ 1.2 Accessing your SpeedTouch™ Access methods Your SpeedTouch™ is accessible in one of the following ways: Access Method Can be used to Web browser Configure your SpeedTouch™ via HTTP or HTTPS. For more information, see the Web Interface”...
1.2.1 Access via the Web Interface To access the Proceed as follows: SpeedTouch™ via the Open a Web browser. Web interface In the address bar, type your SpeedTouch™’s IP address or DNS host name (http://speedtouch.lan The SpeedTouch™ the configurable aspects of the SpeedTouch™. For more information on the Web pages, see E-DOC-CTC-20051017-0151 v1.0 192.168.1.254...
Chapter 1 Getting to know your SpeedTouch™ 1.2.2 Access via CLI To access the SpeedTouch™ via the Command Line Interface (CLI) You can access the Command Line Interface (CLI) via: The embedded Expert pages. For more information, see Configuration” on page A Telnet session This requires a TCP/IP connection between the host from which the Telnet session is opened and the SpeedTouch™.
Page 19
To start a Telnet Proceed as follows: session Open a telnet application. Connect to your SpeedTouch™. Enter your SpeedTouch™ security user name and password. As soon as you have opened a session to the CLI, the SpeedTouch™ banner is displayed, followed by the CLI prompt, as shown in the example below. Username : Administrator ----------------------------------------------------------------------- * /_/______/___________________/ /________/ /___/...
Chapter 1 Getting to know your SpeedTouch™ 1.2.3 Access via FTP To access the SpeedTouch™ via the File Transfer Protocol (FTP) File system To open an FTP session File system structure You can access the file system of the SpeedTouch™ via the File Transfer Protocol (FTP), in order to: Restore or back up configuration files, templates or language packs.
Page 21
File system access In the different directories you have the following rights: rights Directory root active Common FTP Depending on the access rights you have in a directory, you can use one of the commands following commands: Use the command ... hash delete E-DOC-CTC-20051017-0151 v1.0...
Page 22
Chapter 1 Getting to know your SpeedTouch™ FTP file transfer Quote site command To allow correct file transfers, set the transfer mode to “binary”: at the ftp prompt, type and press ENTER. Turn on the hashing option to see the progression of the file transfer: At the hash ftp prompt, type and press ENTER.
1.2.4 Remote Assistance To access the You can make your SpeedTouch accessible from the Internet with regard to remote SpeedTouch™ remotely support. In this way, you can allow your help desk to access your SpeedTouch™ remotely. To enable remote Proceed as follows: access Go to the SpeedTouch™...
Page 24
Chapter 1 Getting to know your SpeedTouch™ E-DOC-CTC-20051017-0151 v1.0...
2 Local Network Setup Introduction The SpeedTouch™ offers you the following local networking solutions: Wired Ethernet Wireless Ethernet Device settings Once you have connected a device, you can personalise its settings. For more information, see E-DOC-CTC-20051017-0151 v1.0 “ Configure” on page Chapter 2 Local Network Setup...
Chapter 2 Local Network Setup 2.1 Wired Ethernet Local network Standard wiring procedure Ethernet link check Device settings Managed Ethernet switch The Ethernet ports on the back panel allow you to connect the SpeedTouch™ to an existing 10 or 100Base-T Ethernet network or one (or more) computer(s) with an installed Ethernet card.
Chapter 2 Local Network Setup 2.2 Wireless Ethernet Introduction The SpeedTouch™ 608 WL/620Wi-Fi® certified IEEE 802.11g compliant wireless access point allows multiple computers to connect wirelessly to your local network over the SpeedTouch™ Wireless LAN environment. The SpeedTouch™ is backward compatible with IEEE 802.11b, which means 802.11b and 802.11g devices can coexist in the same wireless network.
Chapter 2 Local Network Setup 2.2.1 Wireless Basics 802.11b/g Wireless Fidelity Access Point Network Name or SSID Radio channels 802.11b is an IEEE standard, operating at 2,4 GHz at a speed of up to 11 Mb/s. 802.11g, a newer IEEE standard also operating at 2,4 GHz, gives you up to 54 Mb/s speed, more security and better performance.
Page 29
Chapter 2 Local Network Setup Antennas Direct the external antenna to allow optimization of the wireless link. If for example the antenna is erect, wireless links in the horizontal plane are favoured. Please note that the antenna characteristics are influenced by the environment, that is by reflections of the radio signal against walls or ceilings.
Chapter 2 Local Network Setup 2.2.2 Connecting Wireless Clients for the First Time Wireless default settings To prepare wireless clients for the first time To configure wireless clients for the first time After every Reset-to-Defaults, the SpeedTouch™ wireless access point configuration is returned to its initial default settings.
Page 31
First-time association The example below shows how the SpeedTouch™ wireless network is presented example towards a Windows XP Service Pack 2 system. Proceed as follows to associate your wireless client to the SpeedTouch™: Click the network icon in the notification area: The Wireless Network Connection window appears: In the Choose a wireless network list, select the SpeedTouch™...
Chapter 2 Local Network Setup 2.2.3 Wireless Security Introduction Security settings Network Name (SSID) Since the SpeedTouch™ wireless environment is a radio environment, precautions must be taken to ensure that your wireless network is safe from malicious intruders. To secure your wireless network, the following wireless access point settings can be personalised: Your Network Name (SSID) ACL setting...
Page 33
Access Control List The SpeedTouch™ features a managed Access Control List (ACL) and a physical (ACL) registration mechanism in the form of the Association / Registration button on the back panel of your SpeedTouch™. On the Wireless Access Point page, you have the following options for the ACL: New stations are Allowed (automatically): All new stations can access the SpeedTouch™.
Chapter 2 Local Network Setup 2.2.4 Connecting Additional Wireless Clients Preconditions Security issues Registering wireless clients Registering clients via Web pages Make sure that: The SpeedTouch™ is turned on and ready for service. The SpeedTouch™ has been configured as DHCP server (default). The wireless client adapters have been installed on all the computers you want to connect to the WLAN.
Page 35
Registering clients via Proceed as follows to register new wireless network clients via the association the association button button: Push the Association button on the SpeedTouch™ back panel for at least two seconds. The WLAN LED toggles between green and red. The ACL will be unlocked for a time frame of one minute.
Chapter 2 Local Network Setup 2.2.5 Extending the Range of Your Wirelstess Wireless Distribution System (WDS) Preconditions Network The SpeedTouch™ features the Wireless Distribution System (WDS) functionality. This feature allows you to extend the range of your wireless network by introducing one or more WDS-enabled devices into your wireless network.
Page 37
To configure WDS Proceed as follows: Go to the SpeedTouch™ Web pages. In the menu, select Home Network. Click your WLAN. In the upper right corner, click Configure. On the Wireless Access Point page, in the Pick a task list, click Configure WDS. Select WDS Enabled.
Page 38
Chapter 2 Local Network Setup E-DOC-CTC-20051017-0151 v1.0...
3 Internet Connectivity Dial-In Clients Introduction If you want to set up initial Internet connectivity using the Home Install Wizard on the Setup CD or the embedded Easy Setup, refer to the provided Installation and Setup Guide. Access methods Depending on the configuration of the SpeedTouch™ you may have: Direct access: As soon as the initial configuration is finished, immediate and uninterrupted WAN access is provided.
Page 40
Chapter 3 Internet Connectivity Dial-In Clients Embedded PPP dial-in clients Broadband host PPPoE dial-in clients The SpeedTouch™’s embedded PPP dial-in client allows you to establish an Internet connection for computers residing on your local network, using only one computer of the network to control the client. If this computer runs: Any Operating System you can always use the SpeedTouch™...
3.1 SpeedTouch™ Web Pages Introduction As the SpeedTouch™ Web pages are controllable from any Operating System with an installed Web browser, the method to establish PPP sessions described later, can be used on any computer system. For more information on Internet connection setup, refer to the provided Installation and Setup Guide.
Page 42
Chapter 3 Internet Connectivity Dial-In Clients Terminating an Internet session Proceed as follows to close an active PPP connection: Go to the SpeedTouch™ Web pages. Click Disconnect at the appropriate broadband connection. The SpeedTouch™ embedded PPP dial-in client closes the Internet connection. The Internet Link status changes to Disconnected and your computer is offline.
3.2 Internet Gateway Device Control Agent Introduction Windows XP users can easily establish PPP sessions, thanks to the Windows XP Internet Gateway Device (IGD) Discovery and Control Client that allows you to control the SpeedTouch™ directly from you computer. Preconditions Make sure that: The following subcomponents of the Windows XP Networking Services are added to your Windows XP system:...
Page 44
Chapter 3 Internet Connectivity Dial-In Clients Internet connection status Terminating an Internet session As long as the SpeedTouch™ embedded PPP dial-in client is connected, you can view the connection status and some counters by double-clicking the Internet Connection icon in the Network Connections window. Proceed as follows to terminate an Internet session: In the Windows taskbar, click Start.
4 Basic Configuration Embedded The SpeedTouch™ comes with embedded Web pages, providing an interface to the software installed on the device. It allows easy setup and management of the SpeedTouch™ via your Web browser from any PC connected to the SpeedTouch™. “1.2.1 Access via the Web Interface”...
Chapter 4 Basic Configuration 4.1 Navigation Navigation components The SpeedTouch™ Web interface consists of the following components: Menu Language Bar Navigation Bar Notification Area Tasks Navigation bar Notification area Menu Language bar Tasks E-DOC-CTC-20051017-0151 v1.0...
4.1.1 Menu Menu items The menu is located on the left side of the page and consists of the following menu items: SpeedTouch: Provides basic information on the SpeedTouch™. Broadband Allows you to view/configure your broadband connections. Toolbox: Allows you to assign games or applications to a device and secure your Internet connection.
Chapter 4 Basic Configuration 4.1.2 Language Bar Language bar The language bar is located under the SpeedTouch™ logo and allows you to change the language of the SpeedTouch™ Web interface. The language bar will only be shown if more than one language is available. E-DOC-CTC-20051017-0151 v1.0...
4.1.3 Navigation Bar Navigation bar The navigation bar is located at the top of the page and allows you to: View the current user name. Click this name to change your password or switch to another user. View the current position on the SpeedTouch™ Web interface. Get context-related Help information.
Chapter 4 Basic Configuration 4.1.4 Notification Area Notification area The notification area is located under the Error messages, indicated by a red traffic light. Warnings, indicated by an orange traffic light. Information, indicated by a green traffic light. If none of these events occur, the notification area will not be shown. Navigation Bar and is used to display: E-DOC-CTC-20051017-0151 v1.0...
Chapter 4 Basic Configuration 4.1.5 Tasks Tasks To allow a quick configuration of your SpeedTouch™, some pages may offer you a number of related tasks in the Pick a task list. These tasks will guide you to the page where you can perform the selected task. E-DOC-CTC-20051017-0151 v1.0...
Chapter 4 Basic Configuration 4.2 Home SpeedTouch™ home page The SpeedTouch™ home page gives you a short overview of all the configurable aspects of the SpeedTouch™: SpeedTouch Broadband Connection Toolbox Office Network E-DOC-CTC-20051017-0151 v1.0...
4.3 SpeedTouch The SpeedTouch menu The SpeedTouch menu consists of the following items: Information Configuration Event Logs Update The SpeedTouch page The SpeedTouch page gives you some basic information on the SpeedTouch™: Product Configuration E-DOC-CTC-20051017-0151 v1.0 Information Chapter 4 Basic Configuration...
Chapter 4 Basic Configuration 4.3.1 Information Information The Information page summarizes important information on your SpeedTouch™. You may need this information when you contact your helpdesk. E-DOC-CTC-20051017-0151 v1.0...
4.3.2 SpeedTouch™ Easy Setup Easy Setup Wizard The Easy Setup Wizard helps you to configure your SpeedTouch™ Internet connection. Proceed as follows to configure the SpeedTouch™ using the SpeedTouch™ Easy Setup wizard: In the left menu, click SpeedTouch. In the Pick a task list, click Set up. The Easy Setup wizard will now guide you through the configuration of your SpeedTouch™.
Chapter 4 Basic Configuration 4.3.3 Restart Restarting your SpeedTouch™ Proceed as follows: In the left menu, click SpeedTouch. In the Pick a task list, click Restart.The following message appears: Click Yes, restart my SpeedTouch. The SpeedTouch™ restarts. The SpeedTouch™ returns to the Home page.
4.3.4 Configuration Overview The Overview page displays the current configuration of your SpeedTouch™. Details The Details page displays more detailed information on the current configuration of your SpeedTouch™. Configure The Configure page allows you to change the current configuration. If you want to: Reconfigure your SpeedTouch™: Click Configuration Wizard under Service Configuration.
Chapter 4 Basic Configuration 4.3.5 Back up & Restore Introduction Accessing the Backup & Restore page Saving your current configuration Restoring a previously saved configuration The Back up & Restore page allows you to: Save your current configuration. Restore a previously saved configuration. Proceed as follows: In the SpeedTouch menu, click Configuration.
4.3.6 Reset to Factory Defaults Introduction The Reset to Factory Defaults page allows you to reset the SpeedTouch™ to return to the initial configuration of your SpeedTouch™. All your changes will be deleted.The following message appears: Resetting the Proceed as follows: SpeedTouch™...
Chapter 4 Basic Configuration 4.3.7 Event Logs Event Logging Recorded Events Category The Event Logs page summarizes the last events recorded on your SpeedTouch™. The Recorded Events table gives you an overview of the last event logs that have been recorded since the SpeedTouch™ was turned on. The first column of the table indicates the importance of the event log.
Chapter 4 Basic Configuration 4.3.8 Update Updating the The Update page allows you to: SpeedTouch™ system View System Information. software View information on the current System Firmware. Update your SpeedTouch™ from a remote server. Use this option if you want your SpeedTouch™ to check the internet for new firmware and update if it found one.
Chapter 4 Basic Configuration 4.4 Broadband Connection The Broadband Connection menu The Broadband Connection page The Broadband Connection menu consists of following menu items: DSL Connection Internet Services The Broadband Connection page gives you a short status overview of the connections configured on the SpeedTouch™.
4.4.1 Connectivity Check Introduction On this page, you can perform a connectivity check on an Internet service of your SpeedTouch™. The following message appears: Checking your Internet Proceed as follows: connectivity In the left menu, click Broadband Connection. In the Pick a task list, click Check connectivity to the Internet. In the Internet Service to Check list, click the Internet service that you want to check.
Chapter 4 Basic Configuration 4.4.2 DSL Connection Overview Details Click Overview to view basic information on your DSL connection. Click Details to view more detailed information on your DSL connection. E-DOC-CTC-20051017-0151 v1.0...
4.4.3 Internet Services Internet Services The Internet Services page displays information on your Internet Connection(s). information To view more detailed information on a specific connection, click the View more link of the corresponding connection. E-DOC-CTC-20051017-0151 v1.0 If you configured a dial-up connection you can establish/terminate the connection by clicking Connect/Disconnect.
Chapter 4 Basic Configuration 4.4.4 Internet Service Settings Accessing the Internet Service Settings page Overview Details Proceed as follows: In the Broadband Connection menu, click Internet Services. Click the View more link of the Internet service you want to view. The Overview page gives you basic information on the selected Internet Service.
4.5 Toolbox The Toolbox menu The Toolbox menu consists of the following menu items: Remote Assistance Allows you to make your SpeedTouch™ accessible for remote support. Game & Application Sharing Allows you to share services and games that you run in your private network towards the Internet.
Chapter 4 Basic Configuration 4.5.1 Remote Assistance Enabling Remote Assistance Terminating remote assistance The Remote Assistance page allows you to make your SpeedTouch™ accessible for remote support. If you want to enable remote assistance, you must be connected to the Internet.
4.5.2 Game & Application Sharing Overview The Overview page summarizes the applications or games installed on a particular local host on your network, for which the SpeedTouch™ should accept inbound initiated connections coming from the Internet. Configure On the Configure page, you can: Select Use UPnP to enable UPnP on the SpeedTouch™.
Page 70
Chapter 4 Basic Configuration Assign a game or application to a specific network device. E-DOC-CTC-20051017-0151 v1.0...
4.5.3 Defined Games & Applications Accessing the Defined Proceed as follows to access the Defined Games & Applications page: Games & Applications In the Toolbox menu, click Game & Application Sharing. page In the Pick a task list, click Modify a game or application. The Defined Games &...
Chapter 4 Basic Configuration 4.5.4 Game or Application Definition Accessing the Game or Application Definition page Overview Configure Proceed as follows to access the Game or Application Definition page: In the Toolbox menu, click Game & Application Sharing. In the Pick a task list, click Modify a game or application. Click the name of the game or application you want to view/change.
Page 73
Adding a Port Proceed as follows: Translation rule Click the Edit link of the TCP/UDP port definition of the game or application. In the Protocol list, click the protocol the game or application uses. In the Port Range box, type the port range the game or application uses. In the Translate To box, type the port range to which the SpeedTouch™...
Chapter 4 Basic Configuration 4.5.5 New Game or Application Creating a new game or application Proceed as follows: In the Toolbox menu, click Game & Application Sharing. In the Pick a task list, click Create a new game or application.The following window appears: Type the name of the game or application in the Name box.
4.5.6 Web Site Filtering Web Site Filtering The SpeedTouch™ allows you to block/allow particular Web sites: Based on the Web site’s URL. Based on the Web site’s content. By redirecting a Web site to another Web site. Overview The Overview page displays: The current Address Based Filtering rules.
Page 76
Chapter 4 Basic Configuration Deny access to a specific Web site Allow access to a specific Web site Redirect a Web site Use this feature if: Allow is selected under Action for Unknown Sites. Block is selected under Action for Unknown Sites and you want to make an exception on an allow rule.
Page 77
Redirecting all Web Proceed as follows: sites Type “*” in the Web Site box. Click Redirect in the Action list. Type the URL of the Web site you want to redirect to (for example “mycompany.com/internetpolicy.htm”) in the Redirect box. Click Add. Type the URL of the Web site you want to redirect to (for example “mycompany.com/internetpolicy.htm”) in the Web Site box.
Chapter 4 Basic Configuration 4.5.7 Web Filtering Activation Accessing this page Web Filtering Activation page Standard license activation Proceed as follows: In the Toolbox menu, click Web Site Filtering. In the Pick a task list, click Activate Web Filtering License. This page you can: Activate a Web Filtering evaluation license.
4.5.8 Content Level Accessing the Content Proceed as follows: Level page In the Toolbox menu, click Web Site Filtering. Click Configure. Click the Edit link of the content level you want to edit. Overview The Content Level page gives you an overview of the different categories and their rules.
Chapter 4 Basic Configuration 4.5.9 New Content Level Accessing the New Content Level page Procedure Content level creation Content level configuration On this page you to create a new content level. Proceed as follows to access this page: In the Toolbox menu, click Web Site Filtering. In the upper right corner, click Configure.
Page 81
Content level definition Only Web sites that match the selected content level will be allowed. Proceed as follows: If you want to: Click Apply. Content level activation To activate your new content level: In the Toolbox menu, click Web Site Filtering. In the upper right corner, click Configure.
Chapter 4 Basic Configuration 4.5.10 Firewall About the firewall Overview Configure Security Levels The firewall allows you to secure traffic from and to the SpeedTouch™. There are different security levels, depending on the degree of security you need. The Overview page summarizes the overall security policy configured on your SpeedTouch™.
Page 83
Low: All outgoing connections are allowed. All incoming connections are blocked, except for ICMP (Internet Control Management Protocol) and inbound connections assigned to a local host via Game and Application Sharing. Disabled: All in- and outgoing traffic is allowed to pass through your SpeedTouch™, including Game and Application Sharing.
Page 84
Chapter 4 Basic Configuration Select a row using the Edit link to modify the security rule. Click Add to create a new security rule. Edit or define following parameters of the rule: The Name of the security rule The Source Interface and IP Address (range) Use Any as IP address in case all traffic for the interface should be parsed.
Chapter 4 Basic Configuration 4.5.11 Intrusion Detection Intrusion Detection Your SpeedTouch™ protects your network against malicious intrusions. The Intrusion Detection page shows you the intrusions you are protected against. The Protected Intrusions table shows the number of times the SpeedTouch™ actively protected your network against each intrusion since last statistics reset.
Chapter 4 Basic Configuration 4.5.12 Dynamic DNS Dynamic DNS Overview Configure The Dynamic DNS service allows you to assign a dynamic DNS host name (for example john.dyndns.org) to a broadband connection even if it is using a dynamic IP address. As soon as the device gets a new IP address, the dynamic DNS server updates its entry to the new IP address.
4.5.13 User Management Overview The Overview page gives you an overview of the currently configured users and their privileges. Click the name of a user to edit his user account. Configure On the Configure page, you can: Click Add to create a new user account. Click Edit to change a user account.
Page 88
Chapter 4 Basic Configuration User WAN_Admin User Guest Privileges This user can perform only WAN related configurations via any access channel from any origin. This user has access to the GUI (Overview pages, remote assistance) via HTTP or HTTPS access channel from LAN origin only.
4.5.14 Edit User Editing a user account Proceed as follows: In the Toolbox menu, click User Management. Under Local User Data, click the name of the user you want to edit. The Edit User page appears. On this page, you can: E-DOC-CTC-20051017-0151 v1.0 Click Reset Password to reset the password of the selected user to the user name.
Chapter 4 Basic Configuration 4.5.15 Change Default User The Default User page Changing the default user On this page you can change the default user. If users browse to the SpeedTouch™ Web pages, they will be automatically logged on with this account. To allow users to automatically log on under this account, this default user account must be configured with a blank password.
4.5.16 Add User Adding users Proceed as follows: In the Toolbox menu, click User Management. In the Pick a task list, click Add new user. The Add User page appears. Under User definition you can configure: E-DOC-CTC-20051017-0151 v1.0 The name of the new user. The password of the new user will be equal to the user name;...
Chapter 4 Basic Configuration 4.6 Office Network Office Network Menu The Office Network page Viewing (wireless) client information The Office Network menu consists of the following items: Devices Allows you the view/configure the devices detected on your local network. Interfaces Allows you to view/configure the interfaces that are available on the SpeedTouch™.
4.6.1 Devices Overview The Overview page gives you an overview of the devices that are currently connected to the SpeedTouch™ network. Click on a device name to get more information on a specific device. Configure The Configure page gives you an overview of the devices that are currently connected to the SpeedTouch™...
Chapter 4 Basic Configuration 4.6.2 Device Settings Accessing the device settings page Overview Proceed as follows: In the Office Network menu, click Devices. In the Detected Device(s) list, click the name of the device you want to view. The Overview page displays the following items: Information allows you to view: Status shows whether the device is currently connected to the SpeedTouch™...
Page 95
Chapter 4 Basic Configuration Configure The Configure page allows you to: Change the device information. Allow a game or service running on this device to be initiated from the Internet. E-DOC-CTC-20051017-0151 v1.0...
Chapter 4 Basic Configuration 4.6.3 Assign Public IP Introduction Assigning the public IP address to a device On this page you can assign the public IP address of your Internet Connection(s) to a specific device on your local network. You might want to do this if: You do not want to use the Network Address Translation engine of your SpeedTouch™.
4.6.4 Wireless Device Settings Availability This page is only available on SpeedTouch™ devices equipped with a wireless access point. Accessing the wireless Proceed as follows: device settings page In the Office Network menu, click Devices. In the Detected Device(s) list, click the name of the wireless device you want to view.
Chapter 4 Basic Configuration 4.6.5 Access Point Settings Availability Accessing the Access Point settings Overview Details This page is only available on SpeedTouch™ devices equipped with a wireless access point. Proceed as follows: In the left menu, click Office Network. Under Wireless, click the name of the Access Point you want to view or configure.
Page 99
Allow multicast from Broadband Network: Displays whether you to allow/deny multicast messages from the Internet. WMM: Displays whether WMM is enabled or disabled.For more information about WMM, see Under Security the following fields are available: Broadcast Network Name: By default the SpeedTouch™ broadcasts its network name, allowing you to easily recognise your wireless network in the list of available networks.
Page 100
Chapter 4 Basic Configuration WPA-PSK WPA Encryption 64 bit, Hexadecimal: The 40-bit Network key must consist of 10 hexadecimal digits. 128 bit, Alphanumeric: The 104-bit Network key consists of 13 alphanumeric characters. 128 bit, Hexadecimal: The 104-bit Network key consists of 26 hexadecimal digits. Click Apply to immediately apply your changes.
Page 101
In the WPA Version list, click the desired WPA version. Click Apply to immediately apply your changes. Configure your wireless client(s) with the same settings. Access control on the The following modes are available: SpeedTouch™ New stations are allowed (automatically): All New stations can access the SpeedTouch™...
Page 102
Chapter 4 Basic Configuration Allowing new wireless If you selected New stations are allowed (via registration) or in the New stations are not allowed list, wireless clients have to be added manually. Proceed as follows: In the Office Network menu, click Devices. In the Pick a task list, click Search for wireless devices.
4.6.6 Configuring WDS Availability This page is only available on SpeedTouch™ devices equipped with a wireless access point. What is WDS The Wireless Distribution System (WDS) allows you to extend the range of your wireless network by introducing one or more WDS-enabled devices into your wireless network.
Chapter 4 Basic Configuration 4.6.7 Interfaces Interfaces overview The Interfaces page gives you an overview of the interfaces used on your SpeedTouch™. If you want to know more about the network settings of a specific interface, click the name of the interface you want to view. E-DOC-CTC-20051017-0151 v1.0...
4.6.8 Interface Settings Overview The Overview page gives you an overview of the current interface settings. Configure The Configure page allows you to: Change the IP address settings of the SpeedTouch™. Change the DHCP IP address pool settings. Assigning a new IP Under IP Addresses, proceed as follows: address to the Type the IP address of your choice (for example 192.168.1.1) in the left text...
Chapter 4 Basic Configuration 4.6.9 DHCP Pool DHCP Pool page Accessing the DHCP Pool page On the DHCP Pool page, you can create/change a DHCP pool. Proceed as follows: In the Office Network menu, click Interfaces. Click the name of the interface which DHCP pool settings you want to change. Click Configure.
Page 107
Components of the The following settings are available for configuration: DHCP Pool page Interface: The SpeedTouch™ interface to which the DHCP pool applies. Start Address: The start IP address of the DHCP server’s address pool. End Address: The end IP address of the DHCP server’s address pool. Subnet Mask: The subnet mask of the DHCP server’s address pool.
5 Expert Configuration Introduction The SpeedTouch™ Expert Mode pages allows for advanced configuration and maintenance of your SpeedTouch™ device. While the Basic pages are mainly constructed to allow you to overview and diagnose the running product and its configuration, the Expert Mode pages have been designed to allow in-depth configuration of every aspect of your SpeedTouch™.
Page 110
Chapter 5 Expert Configuration Expert Mode navigation The Navigation and notification area displays the current user and the site navigator, as well as notification messages, if applicable. In addition, following action buttons are always available on every page: Click ... To ...
Chapter 5 Expert Configuration 5.1 Home Overview The Expert Mode home page is in fact the same as the SpeedTouch™ home page in Basic Mode; it provides an instant overview of all aspects of your SpeedTouch™ configuration and operational status. For more information, see Home Basic Configuration...
Chapter 5 Expert Configuration 5.2 SpeedTouch™ Overview The SpeedTouch™ menu consists of the following topics: Click ... To ... Easy Setup start the embedded Easy Setup wizard. System Information view important SpeedTouch™ information. Connections start/stop PPP connection sessions. Diagnostics view detailed system and configuration information of the SpeedTouch™...
Chapter 5 Expert Configuration 5.2.1 Easy Setup Introduction Click Easy Setup to start the SpeedTouch™ Easy Setup wizard. The Easy Setup wizard provides an easy way to prepare the SpeedTouch™ for Internet connectivity. Depending on the installed wizard templates (see “...
Chapter 5 Expert Configuration 5.2.2 System Information Overview Diagnostics DSL Line Info Configuration The System Information page is the SpeedTouch™ expert start page. It consists of four sections: Diagnostics DSL Line Info Configuration System Select Diagnostics to view the results of the System Self Test, LAN connectivity and DSL synchronisation test: If result is ...
Page 115
System Select System to view some important system information of the SpeedTouch™. The System table lists the SpeedTouch™’s: Product Name Physical Address. This worldwide unique hardware address is also called Medium Access Control (MAC) address. Software Release Board Name Serial Number Product Code E-DOC-CTC-20051017-0151 v1.0 Most of the information is also listed on the identification label on the...
Chapter 5 Expert Configuration 5.2.3 Connections Overview Connections Start/stop PPP sessions The Connections page allows you to start and stop PPP connection sessions. All existing PPP connections are listed in the If no PPP connections have been defined, this table is empty. In the Connections table, per interface, following information is provided: Interface: the name of the PPP connection interface Destination: the name of the ATM interface of the PPP connection...
5.2.4 Diagnostics Overview The Diagnostics page provides in-depth information, counters and statistical data on the SpeedTouch™ system settings, and its LAN and WAN connections. The diagnostics are broken down into three expandible categories: System Per category an overall status is displayed: If the status is ...
Chapter 5 Expert Configuration 5.2.5 Syslog Overview Messages Configuration The Syslog page consists of two sections: Messages Configuration This section allows to overview system log and alert messages your SpeedTouch™ generated during operation. System log messages are used to provide a historical overview of events, errors, and messages generated during SpeedTouch™...
Page 119
To change or delete a destination: Select the applicable interface If needed, make your changes and click: Facility Following priority facilities are possible for a syslog message generated by the SpeedTouch™. The facilities are listed by descending priority, each followed by (notation, priority value): Kernel messages (kern, 0) User-level messages (user, 8)
Chapter 5 Expert Configuration 5.2.6 System Update Overview System configuration Upload system files The System Update page features all means for management and maintenance of your SpeedTouch™. It consists of two sections: System configuration System Upgrade The System Configuration section allows you to manage locally stored system files. Select: Upload File to upload a system file to the SpeedTouch™.
Page 121
To upload system files: Click Browse to specify the file on your local drive you wish to upload. Click Upload to upload the system file to your SpeedTouch™. Manage configuration This table allows you to view configuration files that are currently stored on your files SpeedTouch™.
Page 122
Chapter 5 Expert Configuration System Upgrade Upload system software Switch to another system software version The System Upgrade section allows you to manage your SpeedTouch™’s system software and upload or apply a new system software. For extended management reasons and roll-back scenarios your SpeedTouch™ provides storage room for two system software packages: the active system software the SpeedTouch™...
5.2.7 SpeedTouch™ Services Overview The SpeedTouch™ Services page allows you to view and configure all services that are currently configured on your SpeedTouch™. The purpose of this page is to centralise the management of all SpeedTouch™ embedded Services and Applications, or otherwise stated, all internal modules and engines of the SpeedTouch™...
Page 124
Chapter 5 Expert Configuration Edit SpeedTouch™ service properties Editing SpeedTouch™ services might be useful in cases where you want to hide/ protect the service by deviation from the typical service settings or restricting access from/to interfaces. However; Do not edit SpeedTouch™ system services unless specifically needed. To edit a SpeedTouch™...
Page 125
SpeedTouch™ service The SpeedTouch™ service can be of following type: types Type Client Server Peer Proxy Relay Group Transparent-Map Dynamic Sibling Shared E-DOC-CTC-20051017-0151 v1.0 Indicates a SpeedTouch™ service that... is the originator of an IP connection (source IP packets). is the responder of an IP connection (listening to IP packets).
Chapter 5 Expert Configuration 5.2.8 SNTP Overview SNTP Client Manual The Simple Network Time Protocol (SNTP) web page allows you to configure the SpeedTouch™ real-time clock. The page contains two sections: SNTP Client Manual Selecting Manual immediately disables consequence the SpeedTouch™ real-time clock will no longer be periodically synchronised with an Internet time server.
5.2.9 SLA Overview The Service Level Agreement (SLA) page allows you to view and configure ping and traceroute tests. The page contains two sections: Select Select Ping The Ping table provides a list of configured ping test entries. By default no ping tests are configured. To add a ping test see test.
Page 128
Chapter 5 Expert Configuration Ping tests and results Traceroute To start/stop a ping test: Select the ping test entry. Click: Activate to start the ping test. Deactivate a ping test that is currently running. To view the results of the ping test: Select the ping test entry, if needed.
Page 129
Add/delete a traceroute To add a traceroute test entry: test Click New (if an entry is currently selected, click Cancel first). Type a name for the traceroute test entry. Type the host name or IP address of the target to traceroute. Click Apply.
Chapter 5 Expert Configuration 5.2.10 Add-on Overview Some of the SpeedTouch™'s extended functionalities require a software activation key to enable the corresponding software module. To acquire a software activation key for activating a SpeedTouch™ software module, proceed as follows: Click the name of the software module you intend to activate. This link will forward you to the SpeedTouch™...
5.3 IP Router Overview The IP Router menu consists of the following topics: Click ... IP Addresses Expressions Classification IP Routing IP QoS E-DOC-CTC-20051017-0151 v1.0 To ... view/configure the IP addresses assigned to any of the SpeedTouch™ interfaces. view/configure interface, or IP, or Service related expressions.
Chapter 5 Expert Configuration 5.3.1 IP Addresses Overview Add/change an IP address The IP address table shows all IP addresses configured on any of SpeedTouch™’s interfaces. In the table following information is provided per IP address: The Interface to which the IP address applies The IP address/Netmask (in prefix notation) The IP address Type, being either: auto, in case the address has been automatically assigned by the...
5.3.2 Expressions Overview Expressions are used in rules for source and destination interface, source and destination IP address(es) (ranges) and services. The Expressions page consists of three sections: Interface Service Interface The Interface section bundles all expressions that express a relation based on Interfaces.
Page 134
Chapter 5 Expert Configuration Adding an IP related expression Service Adding a service related expression The IP section bundles all expressions that express a relation based on IP addresses. The Expressions table provides following information per expression: The Name of the expression A Summary of the expression’s configuration.
5.3.3 Classification Overview The Classification page consists of three section: Labels, providing a list of existing packet classification labels and abilities to add/modify or delete packet classification label entries. Routing Rules allow you to associate a routing label (used in data flow by means of classification rules.
Page 136
Chapter 5 Expert Configuration Routing Rules IP QoS Rules The Routing Rules section provides an overview of the existing routing rules. Proceed as follows to create a new rule: Click New to create a new rule. Fill in all the fields. Index: The index of the label rule.
5.3.4 IP Routing Overview The IP Routing table presents the current content of the SpeedTouch™ Routing Information Base. It contains all routes to all possible destinations and is consulted by the SpeedTouch™ any time prior to sending or forwarding any packets. Similar to the IP address table, a number of IP Routes are pre-configured.
Chapter 5 Expert Configuration 5.3.5 RIP Overview Configuration Interfaces Neighbours The RIP web page contains three tabs: Configuration Interfaces Neighbours The Configuration section allows you to enable/disable the SpeedTouch™ RIP functionality and configure the some basic RIP settings. The RIP Interfaces table allows you to configure interface specific RIP settings such Override the master RIP status (enable/disable) Override the master RIP version, separately for receiving and sending RIP messages...
5.3.6 NAT Overview The NAT menu consists of following sections: Interfaces Mappings Templates Interfaces The Interface page allows you to enable/disable NAPT on a specific interface. Proceed as follows to enable/disable an interface: Select the interface that has to be enabled/disabled Click Save All to make the settings permanent.
Page 140
Chapter 5 Expert Configuration Creating a NAT mapping Templates Creating a NAT template Proceed as follows to create a address translation mapping: Click New to create a new map. Select or fill in all the fields (see above). Click Apply. The Template page allows you to create a NA(P)T template.
5.3.7 IP QoS Definition Quality of Service is the ability for an application to obtain the network service it requires for successful operation. Nowadays the total amount of data traffic increases, while new types of data emerge, like: voice data, video data, audio data. These new types of data pose new requirements for data transport, e.g.
Page 142
Chapter 5 Expert Configuration Configuration The Configuration page allows you to configure IPQoS for a given destination interface for the IPQoS queues instantiation. When enabling or disabling IPQoS, take the following into account: if the WAN interface (for example PPPoA, IPoA, ...) is detached at the time of enabling/disabling IPQoS, then the WAN interface has to be attached in order for the enabling/disabling of IPQoS to take effect.
Page 143
Queues The Queues page allows you to prioritize data. The following settings are available: Propagate: If the propagate function is enabled, an overflow to a lower priority queue will be created in case the initial queue is full. If the function is disabled packets in excess of the queue will be dropped.
Page 144
Chapter 5 Expert Configuration # marked: The number of packets that exceeded the mark rate and - as a consequence - are marked. # compliant: The number of packets that comply to the IPQoS meter rate limits and - as a consequence - can pass.
5.4 Connections Overview The Connections menu consists of the following topics: Click ... Routed PPPoE Routed PPPoA Routed PPPoI Bridged Ethernet Routed Ethernet Routed IPoA PPTP-to-PPP Relay Virtual LAN E-DOC-CTC-20051017-0151 v1.0 To ... view/configure SpeedTouch™’s ATM interfaces. view/configure the Routed PPP over Ethernet (PPPoE) Internet services.
Chapter 5 Expert Configuration 5.4.1 ATM Overview Phonebook Adding a phonebook entry Connection Service Name The ATM page consists of following sections: Phonebook QoS Book Interfaces The SpeedTouch™ Phonebook is a repository for ATM connectivity information. A number of pre-configured entries may already reside in the SpeedTouch™ Phonebook.
Page 147
Virtual Channel The address format is vpi*vci, e.g. 8*35; or vpi.vci, e.g. 8.35. Identifiers (VPI and VCI) VPI (Virtual Path Identifier) and VCI (Virtual Channel Identifier) are two parameters identifying ATM Virtual Channels. It is the responsibility of the network operator to provide end-to-end connectivity throughout the network on these virtual channels.
Page 148
Chapter 5 Expert Configuration Upper layer protocol: Select the Upper Layer Protocol (ULP) for this interface. Choose between: ip (for a Routed IPoA interface). mac (for a Bridged Ethernet, Routed ETHoA, Bridged PPP over Ethernet (PPPoE), Routed PPPoE or a PPPoE Relay interface). ppp (for a Routed PPP over ATM (PPPoA) interface).
5.4.2 Routed PPPoE Introduction The Routed PPPoE configuration page allows you to add new Routed PPPoE, or Routed PPPoE Relay connection entries or to change settings of existing entries. Creating a Routed To add a Routed PPPoE connection entry: PPPoE connection entry Click New.
Page 150
Chapter 5 Expert Configuration Other Statistics This window holds miscellaneous information and configuration possibilities. Following fields are available: Mode: A PPP connection can be established in three ways: Manually: You have to press the Dial-In button of a particular connection. Always-On: The SpeedTouch™...
5.4.3 Routed PPPoA Introduction The Routed PPPoA configuration page allows you to add new Routed PPPoA connection entries or to change settings of existing entries. Creating a Routed To add a Routed PPPoA connection entry: PPPoA connection Click New. entry In the Interface box, type a unique interface name (different from the MER interface name).
Page 152
Chapter 5 Expert Configuration Other Statistics This window holds miscellaneous information and configuration possibilities. Following fields are available: Mode: A PPP connection can be established in three ways: Manually: You have to press the Dial-In button of a particular connection. Always-On: The SpeedTouch™...
Page 153
Chapter 5 Expert Configuration Bytes sent: Number of bytes transmitted over this PPP connection. E-DOC-CTC-20051017-0151 v1.0...
Chapter 5 Expert Configuration 5.4.4 Routed PPPoI Availability Introduction Creating a Routed PPPoI connection entry Additional configuration Routing The ISDN modem is only fully functional after activating the ISDN software module with the ISDN software module activation key. For more information, see “5.2.10 Add-on”...
Page 155
Other This window holds miscellaneous information and configuration possibilities. Following fields are available: Mode: A PPP connection can be established in three ways: Idle Time Limit: Allows you to specify after which time limit the PPP connection is released. Otherwise stated, if no traffic passes over the PPP connection for Idle Time, the connection is closed.
Page 156
Chapter 5 Expert Configuration Statistics For a running PPP session the fourth tab allows you to overview following connection statistics: IP address: Local IP address assigned by the server. Bytes received: Number of bytes received on this PPP connection. Bytes dropped: Number of bytes failed to transmit.
5.4.5 Bridged Ethernet Overview The Bridged Ethernet page consists of following sections: Bridged Ethernet VLAN Bridged Ethernet The Bridged Ethernet page allows you to configure the SpeedTouch™ for IEEE802.1D Transparent Bridging, which equally may include preparing it for Bridged PPPoE. Next to transparent bridging, the SpeedTouch™...
Page 158
Chapter 5 Expert Configuration Add a new Bridge port VLAN VLAN interface overview Proceed as follows to add a new port to the Ethernet Bridge: Click New under the Bridge Ethernet overview table In the Interface box, type a unique interface name; in the Destination list, select the interface you want to use for this connection.
Page 159
VLAN interface Proceed as follows to add or remove Bridged Ethernet interfaces for a certain VLAN: configuration Select the VLAN you wish to edit. A listing of all bridge interfaces will appear, each followed by a drop-down list. Change the value of the drop-down list to add or remove interfaces from this VLAN: Click Apply.
Chapter 5 Expert Configuration 5.4.6 Routed Ethernet Introduction The Routed Ethernet web page allows you to add and modify Routed Ethernet interfaces. Routed Ethernet interfaces can be used for creating end-to-end MAC Encapsulated Routing (MER) connections, or for creating a destination interface to create Routed PPPoE connections on, or to apply a routed PPPoE Relay scenario.
5.4.7 Routed IPoA Creating a new Routed To add a new Routed IPoA Ethernet interface, proceed as follows: IPoA Ethernet Interface Click New. Following fields become available: In the Interface box, type a unique interface name. In the Destination list, select the interface you want to use for this connection. Assuming a numbered IPoA link, configure the Local and Remote IP addresses.
Chapter 5 Expert Configuration 5.4.8 PPTP-to-PPP Relay Overview The PPTP-to-PPP Relay, referred to as "Relay" further in this section, interacts with a PPTP tunnelling application installed on the locally attached computers, for example Microsoft's Dial-Up Networking. A typical user-relay interaction scenario is as follows: A PPTP Tunnelling application is started on one of the locally attached computers.
5.4.9 Virtual LAN Concept The concept of VLAN was introduced as a way to solve many of the issues of a large Layer 2 environment. It controls the traffic on a physical LAN. The physical LAN is partitioned into multiple virtual LANs. Each VLAN is assigned a number, called the VID, which identifies it uniquely within the network.
Chapter 5 Expert Configuration 5.5 Local Networking Overview The Connections menu consists of the following topics: Click ... To ... DHCP View/configure the SpeedTouch™ DHCP settings. View/configure the SpeedTouch™ DNS settings. Managed Switch View/configure the SpeedTouch™ Managed Switch. Wireless View/configure the SpeedTouch™ wireless access point settings.
5.5.1 DHCP Overview The DHCP web page offers three tabs to configure the SpeedTouch™ 's DHCP functionality: DHCP To configure the general behaviour of the SpeedTouch™ 's DHCP server. DHCP To configure the SpeedTouch™ DHCP relay. DHCP To configure the SpeedTouch™ DHCP client. DHCP Server The DHCP server configuration is split up in three sections: Server...
Page 166
Chapter 5 Expert Configuration Server Leases In case the SpeedTouch™ DHCP server is running this table holds all leases which are assigned by the DHCP server to (accepted) DHCP clients. Following lease parameters are shown: Client ID: The MAC address of the DHCP client. Address: The IP address leased by the DHCP client.
Page 167
Address Pools One or more disjunctive DHCP server address pools can be created per existing SpeedTouch™ interface using the Address Pool table. The first address pool displayed in the table has the highest priority for a certain interface. If you select one of the address pools, following fields become available: Name: The name of the DHCP server's address pool.
Page 168
Chapter 5 Expert Configuration DHCP Relay Relay Config Relay Interfaces The DHCP relay tab allows you to add/delete and overview SpeedTouch™ 's DHCP relay interfaces. The DHCP relay configuration is split up in two sections: Relay Config To add/delete and configure a DHCP relay server on a certain interface Relay Interfaces To enable/disable and define the behaviour of the DHCP relay agent per configured interface.
Page 169
DHCP Client Dynamic interfaces are created and managed by means of the DHCP Client table. Following fields are listed in the DHCP Client table: Interface: The name of the SpeedTouch™ logical interface for which this DHCP client applies The Address column shows the IP address assigned to the interface given in the first column.
Chapter 5 Expert Configuration 5.5.2 DNS Overview Configuration Hostname Table DNS is short for Domain Name System. It is a network functionality that allows network members to use host names rather than IP addresses for referencing networked computers. The DNS web page consists of two sections: Configuration Hostname Table In addition to the host name, a local computer needs the DNS domain name to...
5.5.3 Managed Switch Overview Your SpeedTouch™ is equipped with a four-port 10/100Base-T auto-sensing MDI/ MDI-X Ethernet switch. Each physical Ethernet port of the switch can be managed individually for extended networking control and monitoring purposes. The Managed Switch page consists of two sections: Managed Ethernet Switch Mirror Configuration capturing.
Page 172
Chapter 5 Expert Configuration Mirror Configuration Port mirroring allows monitoring from one port (called mirrored port) to another port (called mirror capture port). This functionality allows any port's Ingress and/or Egress traffic to be monitored to a pre-defined "mirror capture port". Depending on your configuration you can mirror (from mirror port to mirror capture port): The outgoing traffic...
5.5.4 Wireless Availability This page is only available on SpeedTouch™ devices equipped with a wireless access point. Overview The SpeedTouch™ IEEE802.11g compliant Wireless LAN (WLAN) interface allows you to share its high-speed Internet connection with multiple networking clients in a local network, without needing to (re-)wire your home.
Page 174
Chapter 5 Expert Configuration Access point settings This section provides an overview and allows you to configure the basic wireless networking parameters for your SpeedTouch™ wireless access point. Following wireless access point settings can be viewed or configured: Network Name (SSID): The network name, also known as Service Set ID (SSID).
Page 175
Network Name (SSID) The WLAN's 'radio' link is a shared medium. As no physical connection exists between the SpeedTouch™ and wireless clients, a name must be given to allow unique identification of your WLAN radio link. This is done by the Network Name, also known as Service Set ID (SSID).
Page 176
Chapter 5 Expert Configuration Enable/disable the wireless interface Security Security Mode To disable your wireless interface: Clear wireless interface enabled. Click Apply to immediately apply your changes. All your wireless clients will be disconnected! You can also disable your wireless interface by pressing the front panel button for 10 seconds.
Page 177
The Wired Equivalent Privacy (WEP) algorithm is used to protect wireless communication from eavesdropping. WEP relies on a secret key that is shared between the wireless client (e.g. a laptop with a wireless ethernet card and the SpeedTouch™. The fixed secret key is used to encrypt packets before they are transmitted.
Page 178
Chapter 5 Expert Configuration Access Control Associated stations WPA is the highest form of security available but make sure that your wireless client and client manager are compatible with it. If you want to use this level of encryption you must have a RADIUS (Remote Authentication Dial-in User Service) server installed on your network.
Page 179
Click Apply to immediately apply your changes. Networks The Networks tab allows you to: Scan for Enable Other Networks The Other Networks tab allows you to overview the wireless networks in your neighbourhood. To scan for other wireless networks: Click Scan. The SpeedTouch™...
Chapter 5 Expert Configuration 5.6 Firewall Overview The Firewall menu consists of the following topics: Click ... To ... Expressions view/configure interface, or IP, or Service related expressions. For more information, see “5.3.2 Expressions” on page Policy view/configure the SpeedTouch™ Stateful Inspection Firewall security level and its policies.
Chapter 5 Expert Configuration 5.6.1 Policy Firewall levels The Level list allows you to choose between the following level: Disabled: All traffic is allowed to pass through your SpeedTouch™. Game and Application sharing is allowed by the firewall. BlockAll: Use this Security Level to block all traffic from and to the Internet. Game and Application sharing is not allowed by the firewall.
Page 182
Chapter 5 Expert Configuration Buttons Loose UDP tracking Game & Application Sharing Allowed Proxying allowed Read only Click: Customize... to create a new firewall level starting from the selected firewall level. For more information, see Set Active to activate the selected firewall rule. To save the new configuration, click Save All.
Page 183
Creating a firewall rule Proceed as follows to create a new security level and to add rules: Select one of the six security levels. Click Customize. Type name and description for the new security level and click Apply. Click New to add a rule. Fill in all the fields.
Page 184
Chapter 5 Expert Configuration Click Set Active to activate the new settings. E-DOC-CTC-20051017-0151 v1.0...
Chapter 5 Expert Configuration 5.6.2 Log Introduction The Log page allows you to view log messages when: a firewall rule is hit. the firewall is enabled or disabled. the firewall level is changed. a firewall rule is created. a firewall rule is modified. a firewall rule is deleted.
Chapter 5 Expert Configuration 5.7 VPN Availability Overview The VPN feature is only available if you activated the VPN software module. For more information, see “5.2.10 Add-on” on page The VPN menu consists of following items Click ... To ... LAN to LAN connect your LAN with a remote LAN through an IPSec VPN tunnel.
5.7.1 LAN to LAN Tabs The LAN to LAN page consists of two tabs. Select: Remote Gateway Address Known as the starting page when the SpeedTouch™ must be able to initiate a VPN connection. Remote Gateway Address Unknown as the starting page when the SpeedTouch™...
Chapter 5 Expert Configuration 5.7.2 VPN Client The VPN Client page Configuration procedure The VPN client in the SpeedTouch™ can replace a software VPN client installed on a computer. You can use it for example to connect from your home to your employer’s corporate network for tele-working.
5.7.3 VPN Server The SpeedTouch™ as In a VPN client-server scenario, the VPN server is always the responder in the IKE VPN Server negotiations. Various VPN clients can dial in to a VPN server, since it supports multiple simultaneous VPN connections. A VPN server does not know a priori which remote Security Gateway will attempt to set up a VPN connection.
Chapter 5 Expert Configuration 5.7.4 Certificates Certificates pages Secure Storage page Request Import page CRL page CEP page The Certificates pages allow you to manage your certificates. This page shows the list of certificates stored in the SpeedTouch™. This page allows importing new certificates from a Certificate Authority into the SpeedTouch™.
5.7.5 Advanced When to use The Advanced VPN menu gives access to two main pages where the complete IPSec configuration can be done. These pages are component-oriented, as opposed to the application-oriented pages described in “5.7.2 VPN Client” on page 178 oriented means that a number of components are constructed and subsequently combined.
Chapter 5 Expert Configuration 5.7.6 Debug Status page Statistics page Logging page Tear Down All Tunnels This page shows the status of the IKE Security Association (Phase 1) and the IPSec Security Association(s) (Phase 2). For an operational VPN connection, both an IKE Security Association and an IPSec Security Association should be active.
5.8 SIP PBX Availability The SIP PBX feature is only available if you activated the SIP PBX software module. For more information, see SpeedTouch™ SIP PBX The SpeedTouch™ has a key role in the enhancement of Voice over IP services for corporations, universities or enterprises.
Page 194
Chapter 5 Expert Configuration Location Service Call Logging Call Screening Enable/disable call screening. The Location Service page allows you to: View the registered users. Add new SIP users. All inbound and outbound SIP sessions that cross the multi-media SIP PBX can be monitored from the SpeedTouch™web interface.
6 Software Keys Introduction A Software Key is a tool to disclose or activate services or software modules. The following Software modules can be activated: VPN256-32, VPN16-4, VPN16-1: Integrated VPN IPSec capability (SpeedTouch™620 only) VPN16-4: Integrated VPN IPSec extesnsion (SpeedTouch™608/608 WL only) ISDN: Integrated ISDN Modem full capacity (SpeedTouch™608 WL/620 only) SIP256:...
Page 196
Chapter 6 Software Keys Select the desired software module to open the registration web site on the Internet. Complete the form to request a new software Key. Select the Request Software Key button to proceed. As a result you will get a text box with the key in it. Copy the key and past it into the Software Activation Code Input Display and click the Add button.
7 Troubleshooting Introduction This chapter suggest solutions for problems you may encounter while installing or configuring y our SpeedTouch™. If the suggestions do not resolve the problem, look at the support pages on www.speedtouch.com/support For Internet connection troubleshooting, refer to the provided Installation and Setup Guide.
Chapter 7 Troubleshooting 7.1 General SpeedTouch™ Troubleshooting SpeedTouch™ does not work SpeedTouch™ unreachable Poor SpeedTouch™ performance If none of the LEDs light up, make sure that: The SpeedTouch™ is plugged into a power socket outlet. You are using the correct power supply for your SpeedTouch™ device. The power requirements for your SpeedTouch™...
7.1.1 Wired Ethernet Troubleshooting LAN LED does not light up Make sure that: The LAN cable is securely connected to the 10/100Base-T port. You are using the correct cable type for your Ethernet equipment, that is UTP CAT5 with RJ-45 connectors. E-DOC-CTC-20051017-0151 v1.0 Chapter 7 Troubleshooting...
Chapter 7 Troubleshooting 7.1.2 Wireless Ethernet Troubleshooting Not able to connect wireless clients No wireless connectivity Poor wireless connectivity or reach Check the following: If registration is enabled, you must press the 'Association' button to register the wireless client or search for wireless devices via the embedded Web pages.
7.1.3 Upgrade Troubleshooting Error messages While upgrading your SpeedTouch™ via the Web pages, one of the following messages may appear: Message Failed to retrieve new software version from the support site. Try again later. Could not install the new software version.
Chapter 7 Troubleshooting 7.2 UPnP™ on Windows XP Systems SpeedTouch™ not detected by UPnP™ or IGD Control Client Adding UPnP™ Check the following: Make sure the UPnP™ and Internet Gateway Device Control Client Networking components are added to your Windows XP system. Your computer doesn’t support UPnP™...
Page 203
Adding IGD Discovery Your Windows XP system is able to discover and control Internet Gateway Devices and Control (IGD), like the SpeedTouch™ on your local network. Therefore it is recommended to add the IGD Discovery and Control client to your system. Proceed as follows: On the Windows taskbar, click Start.
Chapter 7 Troubleshooting 7.3 Reset to Factory Defaults Resetting your SpeedTouch™ Software reset Hardware reset You might consider a reset to factory defaults as described below. Be aware that a reset to factory defaults will revoke all configurational changes you made to the SpeedTouch™. You can choose between: Software reset Hardware reset...
Page 205
Chapter 7 Troubleshooting The SpeedTouch™ restarts. Your system administrator may have disabled the physical reset button of the SpeedTouch™. In this case, a hardware reset to defaults is not possible. E-DOC-CTC-20051017-0151 v1.0...