Page 1 SpeedTouch™ 605/608/608 WL/620 (Wireless) Business DSL Routers User’s Guide...
Page 3 SpeedTouch™ 605/608 608 WL/620 User’s Guide...
Page 4 Copyright Copyright ©1999-2005 THOMSON. All rights reserved. Distribution and copying of this document, use and communication of its contents is not permitted without written authorization from THOMSON. The content of this document is furnished for informational use only, may be subject to change without notice, and should not be construed as a commitment by THOMSON.
Page 5: Table Of Contents
Contents About this User’s Guide ... 1 1 Getting to know your SpeedTouch™ ... 3 SpeedTouch™ LED Behaviour ... 4 Accessing your SpeedTouch™ ... 6 1.2.1 Access via the Web Interface ... 7 1.2.2 Access via CLI... 8 1.2.3 Access via FTP... 10 1.2.4 Remote Assistance ...
Page 6 Contents 4 Basic Configuration ... 35 4.1.1 4.1.2 4.1.3 4.1.4 4.1.5 4.3.1 4.3.2 4.3.3 4.3.4 4.3.5 4.3.6 4.3.7 4.3.8 4.4.1 4.4.2 4.4.3 4.4.4 Navigation... 36 Menu ... 37 Language Bar ... 38 Navigation Bar ... 39 Notification Area ... 40 Tasks ...
Page 7 Toolbox ... 57 4.5.1 Remote Assistance ... 58 4.5.2 Game & Application Sharing ... 59 4.5.3 Defined Games & Applications... 61 4.5.4 Game or Application Definition ... 62 4.5.5 New Game or Application... 64 4.5.6 Web Site Filtering ... 65 4.5.7 Web Filtering Activation...
Page 8 Contents 5.2.1 5.2.2 5.2.3 5.2.4 5.2.5 5.2.6 5.2.7 5.2.8 5.2.9 5.2.10 5.3.1 5.3.2 5.3.3 5.3.4 5.3.5 5.3.6 5.3.7 5.4.1 5.4.2 5.4.3 5.4.4 5.4.5 5.4.6 5.4.7 5.4.8 5.4.9 5.5.1 5.5.2 5.5.3 5.5.4 5.6.1 5.6.2 SpeedTouch™... 102 Easy Setup... 103 System Information ... 104 Connections...
Page 9 VPN ... 176 5.7.1 LAN to LAN... 177 5.7.2 VPN Client... 178 5.7.3 VPN Server ... 179 5.7.4 Certificates... 180 5.7.5 Advanced... 181 5.7.6 Debug... 182 SIP PBX ... 183 6 Software Keys ... 185 7 Troubleshooting... 187 General SpeedTouch™ Troubleshooting ... 188 7.1.1 Wired Ethernet Troubleshooting ...
Page 10 Contents E-DOC-CTC-20051017-0151 v1.0...
Page 11: About This User's Guide
Used symbols The following symbols are used in this User’s Guide: Terminology Generally, the SpeedTouch™605(i), SpeedTouch™608(i), SpeedTouch™608(i) WL and SpeedTouch™620(i) will be referred to as SpeedTouch™ in this User’s Guide. Documentation and THOMSON continuously develops new solutions, but is also committed to improve its existing products.
Page 12 About this User’s Guide E-DOC-CTC-20051017-0151 v1.0...
Page 13: Getting To Know Your Speedtouch
Getting to know your SpeedTouch™ 1 Getting to know your SpeedTouch™ Introduction With the SpeedTouch™605(i) and SpeedTouch™608(i) Business DSL Routers and the SpeedTouch™608 WL(i) and SpeedTouch™620(i) Wireless Business DSL Routers you can build a secure small (home-)office network, seamlessly connecting wired and wireless devices and surf the Internet at high speed, all combined in one device.
Page 14: Speedtouch™ Led Behaviour
Chapter 1 Getting to know your SpeedTouch™ 1.1 SpeedTouch™ LED Behaviour Front panel LEDs The SpeedTouch™ is equipped with a number of LEDs on its front panel, indicating the state of the device during normal operation. The following table shows the meaning of the different LEDs. Indicator Name Colour...
Page 15 Indicator Name Plug-in ISDN Internet Ethernet LEDs A LED may be provided per Ethernet port to indicate link integrity (or activity). Depending on the SpeedTouch™ product you are using, a second LED (A) may be provided to indicate the 10/100Base-T selection: Indicator Name (Optional)
Page 16: Accessing Your Speedtouch
Chapter 1 Getting to know your SpeedTouch™ 1.2 Accessing your SpeedTouch™ Access methods Your SpeedTouch™ is accessible in one of the following ways: Access Method Can be used to Web browser Configure your SpeedTouch™ via HTTP or HTTPS. For more information, see the Web Interface”...
Page 17: Access Via The Web Interface
1.2.1 Access via the Web Interface To access the Proceed as follows: SpeedTouch™ via the Open a Web browser. Web interface In the address bar, type your SpeedTouch™’s IP address or DNS host name (http://speedtouch.lan The SpeedTouch™ the configurable aspects of the SpeedTouch™. For more information on the Web pages, see E-DOC-CTC-20051017-0151 v1.0 192.168.1.254...
Page 18: Access Via Cli
Chapter 1 Getting to know your SpeedTouch™ 1.2.2 Access via CLI To access the SpeedTouch™ via the Command Line Interface (CLI) You can access the Command Line Interface (CLI) via: The embedded Expert pages. For more information, see Configuration” on page A Telnet session This requires a TCP/IP connection between the host from which the Telnet session is opened and the SpeedTouch™.
Page 19 To start a Telnet Proceed as follows: session Open a telnet application. Connect to your SpeedTouch™. Enter your SpeedTouch™ security user name and password. As soon as you have opened a session to the CLI, the SpeedTouch™ banner is displayed, followed by the CLI prompt, as shown in the example below. Username : Administrator ----------------------------------------------------------------------- * /_/______/___________________/ /________/ /___/...
Page 20: Access Via Ftp
Chapter 1 Getting to know your SpeedTouch™ 1.2.3 Access via FTP To access the SpeedTouch™ via the File Transfer Protocol (FTP) File system To open an FTP session File system structure You can access the file system of the SpeedTouch™ via the File Transfer Protocol (FTP), in order to: Restore or back up configuration files, templates or language packs.
Page 21 File system access In the different directories you have the following rights: rights Directory root active Common FTP Depending on the access rights you have in a directory, you can use one of the commands following commands: Use the command ... hash delete E-DOC-CTC-20051017-0151 v1.0...
Page 22 Chapter 1 Getting to know your SpeedTouch™ FTP file transfer Quote site command To allow correct file transfers, set the transfer mode to “binary”: at the ftp prompt, type and press ENTER. Turn on the hashing option to see the progression of the file transfer: At the hash ftp prompt, type and press ENTER.
Page 23: Remote Assistance
1.2.4 Remote Assistance To access the You can make your SpeedTouch accessible from the Internet with regard to remote SpeedTouch™ remotely support. In this way, you can allow your help desk to access your SpeedTouch™ remotely. To enable remote Proceed as follows: access Go to the SpeedTouch™...
Page 24 Chapter 1 Getting to know your SpeedTouch™ E-DOC-CTC-20051017-0151 v1.0...
Page 25: Local Network Setup
2 Local Network Setup Introduction The SpeedTouch™ offers you the following local networking solutions: Wired Ethernet Wireless Ethernet Device settings Once you have connected a device, you can personalise its settings. For more information, see E-DOC-CTC-20051017-0151 v1.0 “ Configure” on page Chapter 2 Local Network Setup...
Page 26: Wired Ethernet
Chapter 2 Local Network Setup 2.1 Wired Ethernet Local network Standard wiring procedure Ethernet link check Device settings Managed Ethernet switch The Ethernet ports on the back panel allow you to connect the SpeedTouch™ to an existing 10 or 100Base-T Ethernet network or one (or more) computer(s) with an installed Ethernet card.
Page 27: Wireless Ethernet
Chapter 2 Local Network Setup 2.2 Wireless Ethernet Introduction The SpeedTouch™ 608 WL/620Wi-Fi® certified IEEE 802.11g compliant wireless access point allows multiple computers to connect wirelessly to your local network over the SpeedTouch™ Wireless LAN environment. The SpeedTouch™ is backward compatible with IEEE 802.11b, which means 802.11b and 802.11g devices can coexist in the same wireless network.
Page 28: Wireless Basics
Chapter 2 Local Network Setup 2.2.1 Wireless Basics 802.11b/g Wireless Fidelity Access Point Network Name or SSID Radio channels 802.11b is an IEEE standard, operating at 2,4 GHz at a speed of up to 11 Mb/s. 802.11g, a newer IEEE standard also operating at 2,4 GHz, gives you up to 54 Mb/s speed, more security and better performance.
Page 29 Chapter 2 Local Network Setup Antennas Direct the external antenna to allow optimization of the wireless link. If for example the antenna is erect, wireless links in the horizontal plane are favoured. Please note that the antenna characteristics are influenced by the environment, that is by reflections of the radio signal against walls or ceilings.
Page 30: Connecting Wireless Clients For The First Time
Chapter 2 Local Network Setup 2.2.2 Connecting Wireless Clients for the First Time Wireless default settings To prepare wireless clients for the first time To configure wireless clients for the first time After every Reset-to-Defaults, the SpeedTouch™ wireless access point configuration is returned to its initial default settings.
Page 31 First-time association The example below shows how the SpeedTouch™ wireless network is presented example towards a Windows XP Service Pack 2 system. Proceed as follows to associate your wireless client to the SpeedTouch™: Click the network icon in the notification area: The Wireless Network Connection window appears: In the Choose a wireless network list, select the SpeedTouch™...
Page 32: Wireless Security
Chapter 2 Local Network Setup 2.2.3 Wireless Security Introduction Security settings Network Name (SSID) Since the SpeedTouch™ wireless environment is a radio environment, precautions must be taken to ensure that your wireless network is safe from malicious intruders. To secure your wireless network, the following wireless access point settings can be personalised: Your Network Name (SSID) ACL setting...
Page 33 Access Control List The SpeedTouch™ features a managed Access Control List (ACL) and a physical (ACL) registration mechanism in the form of the Association / Registration button on the back panel of your SpeedTouch™. On the Wireless Access Point page, you have the following options for the ACL: New stations are Allowed (automatically): All new stations can access the SpeedTouch™.
Page 34: Connecting Additional Wireless Clients
Chapter 2 Local Network Setup 2.2.4 Connecting Additional Wireless Clients Preconditions Security issues Registering wireless clients Registering clients via Web pages Make sure that: The SpeedTouch™ is turned on and ready for service. The SpeedTouch™ has been configured as DHCP server (default). The wireless client adapters have been installed on all the computers you want to connect to the WLAN.
Page 35 Registering clients via Proceed as follows to register new wireless network clients via the association the association button button: Push the Association button on the SpeedTouch™ back panel for at least two seconds. The WLAN LED toggles between green and red. The ACL will be unlocked for a time frame of one minute.
Page 36: Extending The Range Of Your Wirelstess Network
Chapter 2 Local Network Setup 2.2.5 Extending the Range of Your Wirelstess Wireless Distribution System (WDS) Preconditions Network The SpeedTouch™ features the Wireless Distribution System (WDS) functionality. This feature allows you to extend the range of your wireless network by introducing one or more WDS-enabled devices into your wireless network.
Page 37 To configure WDS Proceed as follows: Go to the SpeedTouch™ Web pages. In the menu, select Home Network. Click your WLAN. In the upper right corner, click Configure. On the Wireless Access Point page, in the Pick a task list, click Configure WDS. Select WDS Enabled.
Page 38 Chapter 2 Local Network Setup E-DOC-CTC-20051017-0151 v1.0...
Page 39: Internet Connectivity Dial-In Clients
3 Internet Connectivity Dial-In Clients Introduction If you want to set up initial Internet connectivity using the Home Install Wizard on the Setup CD or the embedded Easy Setup, refer to the provided Installation and Setup Guide. Access methods Depending on the configuration of the SpeedTouch™ you may have: Direct access: As soon as the initial configuration is finished, immediate and uninterrupted WAN access is provided.
Page 40 Chapter 3 Internet Connectivity Dial-In Clients Embedded PPP dial-in clients Broadband host PPPoE dial-in clients The SpeedTouch™’s embedded PPP dial-in client allows you to establish an Internet connection for computers residing on your local network, using only one computer of the network to control the client. If this computer runs: Any Operating System you can always use the SpeedTouch™...
Page 41: Speedtouch™ Web
3.1 SpeedTouch™ Web Pages Introduction As the SpeedTouch™ Web pages are controllable from any Operating System with an installed Web browser, the method to establish PPP sessions described later, can be used on any computer system. For more information on Internet connection setup, refer to the provided Installation and Setup Guide.
Page 42 Chapter 3 Internet Connectivity Dial-In Clients Terminating an Internet session Proceed as follows to close an active PPP connection: Go to the SpeedTouch™ Web pages. Click Disconnect at the appropriate broadband connection. The SpeedTouch™ embedded PPP dial-in client closes the Internet connection. The Internet Link status changes to Disconnected and your computer is offline.
Page 43: Internet Gateway Device Control Agent
3.2 Internet Gateway Device Control Agent Introduction Windows XP users can easily establish PPP sessions, thanks to the Windows XP Internet Gateway Device (IGD) Discovery and Control Client that allows you to control the SpeedTouch™ directly from you computer. Preconditions Make sure that: The following subcomponents of the Windows XP Networking Services are added to your Windows XP system:...
Page 44 Chapter 3 Internet Connectivity Dial-In Clients Internet connection status Terminating an Internet session As long as the SpeedTouch™ embedded PPP dial-in client is connected, you can view the connection status and some counters by double-clicking the Internet Connection icon in the Network Connections window. Proceed as follows to terminate an Internet session: In the Windows taskbar, click Start.
Page 45: Basic Configuration
4 Basic Configuration Embedded The SpeedTouch™ comes with embedded Web pages, providing an interface to the software installed on the device. It allows easy setup and management of the SpeedTouch™ via your Web browser from any PC connected to the SpeedTouch™. “1.2.1 Access via the Web Interface”...
Page 46: Navigation
Chapter 4 Basic Configuration 4.1 Navigation Navigation components The SpeedTouch™ Web interface consists of the following components: Menu Language Bar Navigation Bar Notification Area Tasks Navigation bar Notification area Menu Language bar Tasks E-DOC-CTC-20051017-0151 v1.0...
Page 47: Menu
4.1.1 Menu Menu items The menu is located on the left side of the page and consists of the following menu items: SpeedTouch: Provides basic information on the SpeedTouch™. Broadband Allows you to view/configure your broadband connections. Toolbox: Allows you to assign games or applications to a device and secure your Internet connection.
Page 48: Language Bar
Chapter 4 Basic Configuration 4.1.2 Language Bar Language bar The language bar is located under the SpeedTouch™ logo and allows you to change the language of the SpeedTouch™ Web interface. The language bar will only be shown if more than one language is available. E-DOC-CTC-20051017-0151 v1.0...
Page 49: Navigation Bar
4.1.3 Navigation Bar Navigation bar The navigation bar is located at the top of the page and allows you to: View the current user name. Click this name to change your password or switch to another user. View the current position on the SpeedTouch™ Web interface. Get context-related Help information.
Page 50: Notification Area
Chapter 4 Basic Configuration 4.1.4 Notification Area Notification area The notification area is located under the Error messages, indicated by a red traffic light. Warnings, indicated by an orange traffic light. Information, indicated by a green traffic light. If none of these events occur, the notification area will not be shown. Navigation Bar and is used to display: E-DOC-CTC-20051017-0151 v1.0...
Page 51: Tasks
Chapter 4 Basic Configuration 4.1.5 Tasks Tasks To allow a quick configuration of your SpeedTouch™, some pages may offer you a number of related tasks in the Pick a task list. These tasks will guide you to the page where you can perform the selected task. E-DOC-CTC-20051017-0151 v1.0...
Page 52: Home
Chapter 4 Basic Configuration 4.2 Home SpeedTouch™ home page The SpeedTouch™ home page gives you a short overview of all the configurable aspects of the SpeedTouch™: SpeedTouch Broadband Connection Toolbox Office Network E-DOC-CTC-20051017-0151 v1.0...
Page 53: Speedtouch
4.3 SpeedTouch The SpeedTouch menu The SpeedTouch menu consists of the following items: Information Configuration Event Logs Update The SpeedTouch page The SpeedTouch page gives you some basic information on the SpeedTouch™: Product Configuration E-DOC-CTC-20051017-0151 v1.0 Information Chapter 4 Basic Configuration...
Page 54: Information
Chapter 4 Basic Configuration 4.3.1 Information Information The Information page summarizes important information on your SpeedTouch™. You may need this information when you contact your helpdesk. E-DOC-CTC-20051017-0151 v1.0...
Page 55: Speedtouch™ Easy Setup
4.3.2 SpeedTouch™ Easy Setup Easy Setup Wizard The Easy Setup Wizard helps you to configure your SpeedTouch™ Internet connection. Proceed as follows to configure the SpeedTouch™ using the SpeedTouch™ Easy Setup wizard: In the left menu, click SpeedTouch. In the Pick a task list, click Set up. The Easy Setup wizard will now guide you through the configuration of your SpeedTouch™.
Page 56: Restart
Chapter 4 Basic Configuration 4.3.3 Restart Restarting your SpeedTouch™ Proceed as follows: In the left menu, click SpeedTouch. In the Pick a task list, click Restart.The following message appears: Click Yes, restart my SpeedTouch. The SpeedTouch™ restarts. The SpeedTouch™ returns to the Home page.
Page 57: Configuration
4.3.4 Configuration Overview The Overview page displays the current configuration of your SpeedTouch™. Details The Details page displays more detailed information on the current configuration of your SpeedTouch™. Configure The Configure page allows you to change the current configuration. If you want to: Reconfigure your SpeedTouch™: Click Configuration Wizard under Service Configuration.
Page 58: Back Up & Restore
Chapter 4 Basic Configuration 4.3.5 Back up & Restore Introduction Accessing the Backup & Restore page Saving your current configuration Restoring a previously saved configuration The Back up & Restore page allows you to: Save your current configuration. Restore a previously saved configuration. Proceed as follows: In the SpeedTouch menu, click Configuration.
Page 59: Reset To Factory Defaults
4.3.6 Reset to Factory Defaults Introduction The Reset to Factory Defaults page allows you to reset the SpeedTouch™ to return to the initial configuration of your SpeedTouch™. All your changes will be deleted.The following message appears: Resetting the Proceed as follows: SpeedTouch™...
Page 60: Event Logs
Chapter 4 Basic Configuration 4.3.7 Event Logs Event Logging Recorded Events Category The Event Logs page summarizes the last events recorded on your SpeedTouch™. The Recorded Events table gives you an overview of the last event logs that have been recorded since the SpeedTouch™ was turned on. The first column of the table indicates the importance of the event log.
Page 61: Update
Chapter 4 Basic Configuration 4.3.8 Update Updating the The Update page allows you to: SpeedTouch™ system View System Information. software View information on the current System Firmware. Update your SpeedTouch™ from a remote server. Use this option if you want your SpeedTouch™ to check the internet for new firmware and update if it found one.
Page 62: Broadband Connection
Chapter 4 Basic Configuration 4.4 Broadband Connection The Broadband Connection menu The Broadband Connection page The Broadband Connection menu consists of following menu items: DSL Connection Internet Services The Broadband Connection page gives you a short status overview of the connections configured on the SpeedTouch™.
Page 63: Connectivity Check
4.4.1 Connectivity Check Introduction On this page, you can perform a connectivity check on an Internet service of your SpeedTouch™. The following message appears: Checking your Internet Proceed as follows: connectivity In the left menu, click Broadband Connection. In the Pick a task list, click Check connectivity to the Internet. In the Internet Service to Check list, click the Internet service that you want to check.
Page 64: Dsl Connection
Chapter 4 Basic Configuration 4.4.2 DSL Connection Overview Details Click Overview to view basic information on your DSL connection. Click Details to view more detailed information on your DSL connection. E-DOC-CTC-20051017-0151 v1.0...
Page 65: Internet Services
4.4.3 Internet Services Internet Services The Internet Services page displays information on your Internet Connection(s). information To view more detailed information on a specific connection, click the View more link of the corresponding connection. E-DOC-CTC-20051017-0151 v1.0 If you configured a dial-up connection you can establish/terminate the connection by clicking Connect/Disconnect.
Page 66: Internet Service Settings
Chapter 4 Basic Configuration 4.4.4 Internet Service Settings Accessing the Internet Service Settings page Overview Details Proceed as follows: In the Broadband Connection menu, click Internet Services. Click the View more link of the Internet service you want to view. The Overview page gives you basic information on the selected Internet Service.
Page 67: Toolbox
4.5 Toolbox The Toolbox menu The Toolbox menu consists of the following menu items: Remote Assistance Allows you to make your SpeedTouch™ accessible for remote support. Game & Application Sharing Allows you to share services and games that you run in your private network towards the Internet.
Page 68: Remote Assistance
Chapter 4 Basic Configuration 4.5.1 Remote Assistance Enabling Remote Assistance Terminating remote assistance The Remote Assistance page allows you to make your SpeedTouch™ accessible for remote support. If you want to enable remote assistance, you must be connected to the Internet.
Page 69: Game & Application Sharing
4.5.2 Game & Application Sharing Overview The Overview page summarizes the applications or games installed on a particular local host on your network, for which the SpeedTouch™ should accept inbound initiated connections coming from the Internet. Configure On the Configure page, you can: Select Use UPnP to enable UPnP on the SpeedTouch™.
Page 70 Chapter 4 Basic Configuration Assign a game or application to a specific network device. E-DOC-CTC-20051017-0151 v1.0...
Page 71: Defined Games & Applications
4.5.3 Defined Games & Applications Accessing the Defined Proceed as follows to access the Defined Games & Applications page: Games & Applications In the Toolbox menu, click Game & Application Sharing. page In the Pick a task list, click Modify a game or application. The Defined Games &...
Page 72: Game Or Application Definition
Chapter 4 Basic Configuration 4.5.4 Game or Application Definition Accessing the Game or Application Definition page Overview Configure Proceed as follows to access the Game or Application Definition page: In the Toolbox menu, click Game & Application Sharing. In the Pick a task list, click Modify a game or application. Click the name of the game or application you want to view/change.
Page 73 Adding a Port Proceed as follows: Translation rule Click the Edit link of the TCP/UDP port definition of the game or application. In the Protocol list, click the protocol the game or application uses. In the Port Range box, type the port range the game or application uses. In the Translate To box, type the port range to which the SpeedTouch™...
Page 74: New Game Or Application
Chapter 4 Basic Configuration 4.5.5 New Game or Application Creating a new game or application Proceed as follows: In the Toolbox menu, click Game & Application Sharing. In the Pick a task list, click Create a new game or application.The following window appears: Type the name of the game or application in the Name box.
Page 75: Web Site Filtering
4.5.6 Web Site Filtering Web Site Filtering The SpeedTouch™ allows you to block/allow particular Web sites: Based on the Web site’s URL. Based on the Web site’s content. By redirecting a Web site to another Web site. Overview The Overview page displays: The current Address Based Filtering rules.
Page 76 Chapter 4 Basic Configuration Deny access to a specific Web site Allow access to a specific Web site Redirect a Web site Use this feature if: Allow is selected under Action for Unknown Sites. Block is selected under Action for Unknown Sites and you want to make an exception on an allow rule.
Page 77 Redirecting all Web Proceed as follows: sites Type “*” in the Web Site box. Click Redirect in the Action list. Type the URL of the Web site you want to redirect to (for example “mycompany.com/internetpolicy.htm”) in the Redirect box. Click Add. Type the URL of the Web site you want to redirect to (for example “mycompany.com/internetpolicy.htm”) in the Web Site box.
Page 78: Web Filtering Activation
Chapter 4 Basic Configuration 4.5.7 Web Filtering Activation Accessing this page Web Filtering Activation page Standard license activation Proceed as follows: In the Toolbox menu, click Web Site Filtering. In the Pick a task list, click Activate Web Filtering License. This page you can: Activate a Web Filtering evaluation license.
Page 79: Content Level
4.5.8 Content Level Accessing the Content Proceed as follows: Level page In the Toolbox menu, click Web Site Filtering. Click Configure. Click the Edit link of the content level you want to edit. Overview The Content Level page gives you an overview of the different categories and their rules.
Page 80: New Content Level
Chapter 4 Basic Configuration 4.5.9 New Content Level Accessing the New Content Level page Procedure Content level creation Content level configuration On this page you to create a new content level. Proceed as follows to access this page: In the Toolbox menu, click Web Site Filtering. In the upper right corner, click Configure.
Page 81 Content level definition Only Web sites that match the selected content level will be allowed. Proceed as follows: If you want to: Click Apply. Content level activation To activate your new content level: In the Toolbox menu, click Web Site Filtering. In the upper right corner, click Configure.
Page 82: Firewall
Chapter 4 Basic Configuration 4.5.10 Firewall About the firewall Overview Configure Security Levels The firewall allows you to secure traffic from and to the SpeedTouch™. There are different security levels, depending on the degree of security you need. The Overview page summarizes the overall security policy configured on your SpeedTouch™.
Page 83 Low: All outgoing connections are allowed. All incoming connections are blocked, except for ICMP (Internet Control Management Protocol) and inbound connections assigned to a local host via Game and Application Sharing. Disabled: All in- and outgoing traffic is allowed to pass through your SpeedTouch™, including Game and Application Sharing.
Page 84 Chapter 4 Basic Configuration Select a row using the Edit link to modify the security rule. Click Add to create a new security rule. Edit or define following parameters of the rule: The Name of the security rule The Source Interface and IP Address (range) Use Any as IP address in case all traffic for the interface should be parsed.
Page 85: Intrusion Detection
Chapter 4 Basic Configuration 4.5.11 Intrusion Detection Intrusion Detection Your SpeedTouch™ protects your network against malicious intrusions. The Intrusion Detection page shows you the intrusions you are protected against. The Protected Intrusions table shows the number of times the SpeedTouch™ actively protected your network against each intrusion since last statistics reset.
Page 86: Dynamic Dns
Chapter 4 Basic Configuration 4.5.12 Dynamic DNS Dynamic DNS Overview Configure The Dynamic DNS service allows you to assign a dynamic DNS host name (for example john.dyndns.org) to a broadband connection even if it is using a dynamic IP address. As soon as the device gets a new IP address, the dynamic DNS server updates its entry to the new IP address.
Page 87: User Management
4.5.13 User Management Overview The Overview page gives you an overview of the currently configured users and their privileges. Click the name of a user to edit his user account. Configure On the Configure page, you can: Click Add to create a new user account. Click Edit to change a user account.
Page 88 Chapter 4 Basic Configuration User WAN_Admin User Guest Privileges This user can perform only WAN related configurations via any access channel from any origin. This user has access to the GUI (Overview pages, remote assistance) via HTTP or HTTPS access channel from LAN origin only.
Page 89: Edit User
4.5.14 Edit User Editing a user account Proceed as follows: In the Toolbox menu, click User Management. Under Local User Data, click the name of the user you want to edit. The Edit User page appears. On this page, you can: E-DOC-CTC-20051017-0151 v1.0 Click Reset Password to reset the password of the selected user to the user name.
Page 90: Change Default User
Chapter 4 Basic Configuration 4.5.15 Change Default User The Default User page Changing the default user On this page you can change the default user. If users browse to the SpeedTouch™ Web pages, they will be automatically logged on with this account. To allow users to automatically log on under this account, this default user account must be configured with a blank password.
Page 91: Add User
4.5.16 Add User Adding users Proceed as follows: In the Toolbox menu, click User Management. In the Pick a task list, click Add new user. The Add User page appears. Under User definition you can configure: E-DOC-CTC-20051017-0151 v1.0 The name of the new user. The password of the new user will be equal to the user name;...
Page 92: Office Network
Chapter 4 Basic Configuration 4.6 Office Network Office Network Menu The Office Network page Viewing (wireless) client information The Office Network menu consists of the following items: Devices Allows you the view/configure the devices detected on your local network. Interfaces Allows you to view/configure the interfaces that are available on the SpeedTouch™.
Page 93: Devices
4.6.1 Devices Overview The Overview page gives you an overview of the devices that are currently connected to the SpeedTouch™ network. Click on a device name to get more information on a specific device. Configure The Configure page gives you an overview of the devices that are currently connected to the SpeedTouch™...
Page 94: Device Settings
Chapter 4 Basic Configuration 4.6.2 Device Settings Accessing the device settings page Overview Proceed as follows: In the Office Network menu, click Devices. In the Detected Device(s) list, click the name of the device you want to view. The Overview page displays the following items: Information allows you to view: Status shows whether the device is currently connected to the SpeedTouch™...
Page 95 Chapter 4 Basic Configuration Configure The Configure page allows you to: Change the device information. Allow a game or service running on this device to be initiated from the Internet. E-DOC-CTC-20051017-0151 v1.0...
Page 96: Assign Public Ip
Chapter 4 Basic Configuration 4.6.3 Assign Public IP Introduction Assigning the public IP address to a device On this page you can assign the public IP address of your Internet Connection(s) to a specific device on your local network. You might want to do this if: You do not want to use the Network Address Translation engine of your SpeedTouch™.
Page 97: Wireless Device Settings
4.6.4 Wireless Device Settings Availability This page is only available on SpeedTouch™ devices equipped with a wireless access point. Accessing the wireless Proceed as follows: device settings page In the Office Network menu, click Devices. In the Detected Device(s) list, click the name of the wireless device you want to view.
Page 98: Access Point Settings
Chapter 4 Basic Configuration 4.6.5 Access Point Settings Availability Accessing the Access Point settings Overview Details This page is only available on SpeedTouch™ devices equipped with a wireless access point. Proceed as follows: In the left menu, click Office Network. Under Wireless, click the name of the Access Point you want to view or configure.
Page 99 Allow multicast from Broadband Network: Displays whether you to allow/deny multicast messages from the Internet. WMM: Displays whether WMM is enabled or disabled.For more information about WMM, see Under Security the following fields are available: Broadcast Network Name: By default the SpeedTouch™ broadcasts its network name, allowing you to easily recognise your wireless network in the list of available networks.
Page 100 Chapter 4 Basic Configuration WPA-PSK WPA Encryption 64 bit, Hexadecimal: The 40-bit Network key must consist of 10 hexadecimal digits. 128 bit, Alphanumeric: The 104-bit Network key consists of 13 alphanumeric characters. 128 bit, Hexadecimal: The 104-bit Network key consists of 26 hexadecimal digits. Click Apply to immediately apply your changes.
Page 101 In the WPA Version list, click the desired WPA version. Click Apply to immediately apply your changes. Configure your wireless client(s) with the same settings. Access control on the The following modes are available: SpeedTouch™ New stations are allowed (automatically): All New stations can access the SpeedTouch™...
Page 102 Chapter 4 Basic Configuration Allowing new wireless If you selected New stations are allowed (via registration) or in the New stations are not allowed list, wireless clients have to be added manually. Proceed as follows: In the Office Network menu, click Devices. In the Pick a task list, click Search for wireless devices.
Page 103: Configuring Wds
4.6.6 Configuring WDS Availability This page is only available on SpeedTouch™ devices equipped with a wireless access point. What is WDS The Wireless Distribution System (WDS) allows you to extend the range of your wireless network by introducing one or more WDS-enabled devices into your wireless network.
Page 104: Interfaces
Chapter 4 Basic Configuration 4.6.7 Interfaces Interfaces overview The Interfaces page gives you an overview of the interfaces used on your SpeedTouch™. If you want to know more about the network settings of a specific interface, click the name of the interface you want to view. E-DOC-CTC-20051017-0151 v1.0...
Page 105: Interface Settings
4.6.8 Interface Settings Overview The Overview page gives you an overview of the current interface settings. Configure The Configure page allows you to: Change the IP address settings of the SpeedTouch™. Change the DHCP IP address pool settings. Assigning a new IP Under IP Addresses, proceed as follows: address to the Type the IP address of your choice (for example 192.168.1.1) in the left text...
Page 106: Dhcp Pool
Chapter 4 Basic Configuration 4.6.9 DHCP Pool DHCP Pool page Accessing the DHCP Pool page On the DHCP Pool page, you can create/change a DHCP pool. Proceed as follows: In the Office Network menu, click Interfaces. Click the name of the interface which DHCP pool settings you want to change. Click Configure.
Page 107 Components of the The following settings are available for configuration: DHCP Pool page Interface: The SpeedTouch™ interface to which the DHCP pool applies. Start Address: The start IP address of the DHCP server’s address pool. End Address: The end IP address of the DHCP server’s address pool. Subnet Mask: The subnet mask of the DHCP server’s address pool.
Page 108 Chapter 4 Basic Configuration E-DOC-CTC-20051017-0151 v1.0...
Page 109: Expert Configuration
5 Expert Configuration Introduction The SpeedTouch™ Expert Mode pages allows for advanced configuration and maintenance of your SpeedTouch™ device. While the Basic pages are mainly constructed to allow you to overview and diagnose the running product and its configuration, the Expert Mode pages have been designed to allow in-depth configuration of every aspect of your SpeedTouch™.
Page 110 Chapter 5 Expert Configuration Expert Mode navigation The Navigation and notification area displays the current user and the site navigator, as well as notification messages, if applicable. In addition, following action buttons are always available on every page: Click ... To ...
Page 111: Home
Chapter 5 Expert Configuration 5.1 Home Overview The Expert Mode home page is in fact the same as the SpeedTouch™ home page in Basic Mode; it provides an instant overview of all aspects of your SpeedTouch™ configuration and operational status. For more information, see Home Basic Configuration...
Page 112: Speedtouch
Chapter 5 Expert Configuration 5.2 SpeedTouch™ Overview The SpeedTouch™ menu consists of the following topics: Click ... To ... Easy Setup start the embedded Easy Setup wizard. System Information view important SpeedTouch™ information. Connections start/stop PPP connection sessions. Diagnostics view detailed system and configuration information of the SpeedTouch™...
Page 113: Easy Setup
Chapter 5 Expert Configuration 5.2.1 Easy Setup Introduction Click Easy Setup to start the SpeedTouch™ Easy Setup wizard. The Easy Setup wizard provides an easy way to prepare the SpeedTouch™ for Internet connectivity. Depending on the installed wizard templates (see “...
Page 114: System Information
Chapter 5 Expert Configuration 5.2.2 System Information Overview Diagnostics DSL Line Info Configuration The System Information page is the SpeedTouch™ expert start page. It consists of four sections: Diagnostics DSL Line Info Configuration System Select Diagnostics to view the results of the System Self Test, LAN connectivity and DSL synchronisation test: If result is ...
Page 115 System Select System to view some important system information of the SpeedTouch™. The System table lists the SpeedTouch™’s: Product Name Physical Address. This worldwide unique hardware address is also called Medium Access Control (MAC) address. Software Release Board Name Serial Number Product Code E-DOC-CTC-20051017-0151 v1.0 Most of the information is also listed on the identification label on the...
Page 116: Connections
Chapter 5 Expert Configuration 5.2.3 Connections Overview Connections Start/stop PPP sessions The Connections page allows you to start and stop PPP connection sessions. All existing PPP connections are listed in the If no PPP connections have been defined, this table is empty. In the Connections table, per interface, following information is provided: Interface: the name of the PPP connection interface Destination: the name of the ATM interface of the PPP connection...
Page 117: Diagnostics
5.2.4 Diagnostics Overview The Diagnostics page provides in-depth information, counters and statistical data on the SpeedTouch™ system settings, and its LAN and WAN connections. The diagnostics are broken down into three expandible categories: System Per category an overall status is displayed: If the status is ...
Page 118: Syslog
Chapter 5 Expert Configuration 5.2.5 Syslog Overview Messages Configuration The Syslog page consists of two sections: Messages Configuration This section allows to overview system log and alert messages your SpeedTouch™ generated during operation. System log messages are used to provide a historical overview of events, errors, and messages generated during SpeedTouch™...
Page 119 To change or delete a destination: Select the applicable interface If needed, make your changes and click: Facility Following priority facilities are possible for a syslog message generated by the SpeedTouch™. The facilities are listed by descending priority, each followed by (notation, priority value): Kernel messages (kern, 0) User-level messages (user, 8)
Page 120: System Update
Chapter 5 Expert Configuration 5.2.6 System Update Overview System configuration Upload system files The System Update page features all means for management and maintenance of your SpeedTouch™. It consists of two sections: System configuration System Upgrade The System Configuration section allows you to manage locally stored system files. Select: Upload File to upload a system file to the SpeedTouch™.
Page 121 To upload system files: Click Browse to specify the file on your local drive you wish to upload. Click Upload to upload the system file to your SpeedTouch™. Manage configuration This table allows you to view configuration files that are currently stored on your files SpeedTouch™.
Page 122 Chapter 5 Expert Configuration System Upgrade Upload system software Switch to another system software version The System Upgrade section allows you to manage your SpeedTouch™’s system software and upload or apply a new system software. For extended management reasons and roll-back scenarios your SpeedTouch™ provides storage room for two system software packages: the active system software the SpeedTouch™...
Page 123: Speedtouch™ Services
5.2.7 SpeedTouch™ Services Overview The SpeedTouch™ Services page allows you to view and configure all services that are currently configured on your SpeedTouch™. The purpose of this page is to centralise the management of all SpeedTouch™ embedded Services and Applications, or otherwise stated, all internal modules and engines of the SpeedTouch™...
Page 124 Chapter 5 Expert Configuration Edit SpeedTouch™ service properties Editing SpeedTouch™ services might be useful in cases where you want to hide/ protect the service by deviation from the typical service settings or restricting access from/to interfaces. However; Do not edit SpeedTouch™ system services unless specifically needed. To edit a SpeedTouch™...
Page 125 SpeedTouch™ service The SpeedTouch™ service can be of following type: types Type Client Server Peer Proxy Relay Group Transparent-Map Dynamic Sibling Shared E-DOC-CTC-20051017-0151 v1.0 Indicates a SpeedTouch™ service that... is the originator of an IP connection (source IP packets). is the responder of an IP connection (listening to IP packets).
Page 126: Sntp
Chapter 5 Expert Configuration 5.2.8 SNTP Overview SNTP Client Manual The Simple Network Time Protocol (SNTP) web page allows you to configure the SpeedTouch™ real-time clock. The page contains two sections: SNTP Client Manual Selecting Manual immediately disables consequence the SpeedTouch™ real-time clock will no longer be periodically synchronised with an Internet time server.
Page 127: Sla
5.2.9 SLA Overview The Service Level Agreement (SLA) page allows you to view and configure ping and traceroute tests. The page contains two sections: Select Select Ping The Ping table provides a list of configured ping test entries. By default no ping tests are configured. To add a ping test see test.
Page 128 Chapter 5 Expert Configuration Ping tests and results Traceroute To start/stop a ping test: Select the ping test entry. Click: Activate to start the ping test. Deactivate a ping test that is currently running. To view the results of the ping test: Select the ping test entry, if needed.
Page 129 Add/delete a traceroute To add a traceroute test entry: test Click New (if an entry is currently selected, click Cancel first). Type a name for the traceroute test entry. Type the host name or IP address of the target to traceroute. Click Apply.
Page 130: Add-On
Chapter 5 Expert Configuration 5.2.10 Add-on Overview Some of the SpeedTouch™'s extended functionalities require a software activation key to enable the corresponding software module. To acquire a software activation key for activating a SpeedTouch™ software module, proceed as follows: Click the name of the software module you intend to activate. This link will forward you to the SpeedTouch™...
Page 131: Ip Router
5.3 IP Router Overview The IP Router menu consists of the following topics: Click ... IP Addresses Expressions Classification IP Routing IP QoS E-DOC-CTC-20051017-0151 v1.0 To ... view/configure the IP addresses assigned to any of the SpeedTouch™ interfaces. view/configure interface, or IP, or Service related expressions.
Page 132: Ip Addresses
Chapter 5 Expert Configuration 5.3.1 IP Addresses Overview Add/change an IP address The IP address table shows all IP addresses configured on any of SpeedTouch™’s interfaces. In the table following information is provided per IP address: The Interface to which the IP address applies The IP address/Netmask (in prefix notation) The IP address Type, being either: auto, in case the address has been automatically assigned by the...
Page 133: Expressions
5.3.2 Expressions Overview Expressions are used in rules for source and destination interface, source and destination IP address(es) (ranges) and services. The Expressions page consists of three sections: Interface Service Interface The Interface section bundles all expressions that express a relation based on Interfaces.
Page 134 Chapter 5 Expert Configuration Adding an IP related expression Service Adding a service related expression The IP section bundles all expressions that express a relation based on IP addresses. The Expressions table provides following information per expression: The Name of the expression A Summary of the expression’s configuration.
Page 135: Classification
5.3.3 Classification Overview The Classification page consists of three section: Labels, providing a list of existing packet classification labels and abilities to add/modify or delete packet classification label entries. Routing Rules allow you to associate a routing label (used in data flow by means of classification rules.
Page 136 Chapter 5 Expert Configuration Routing Rules IP QoS Rules The Routing Rules section provides an overview of the existing routing rules. Proceed as follows to create a new rule: Click New to create a new rule. Fill in all the fields. Index: The index of the label rule.
Page 137: Ip Routing
5.3.4 IP Routing Overview The IP Routing table presents the current content of the SpeedTouch™ Routing Information Base. It contains all routes to all possible destinations and is consulted by the SpeedTouch™ any time prior to sending or forwarding any packets. Similar to the IP address table, a number of IP Routes are pre-configured.
Page 138: Rip
Chapter 5 Expert Configuration 5.3.5 RIP Overview Configuration Interfaces Neighbours The RIP web page contains three tabs: Configuration Interfaces Neighbours The Configuration section allows you to enable/disable the SpeedTouch™ RIP functionality and configure the some basic RIP settings. The RIP Interfaces table allows you to configure interface specific RIP settings such Override the master RIP status (enable/disable) Override the master RIP version, separately for receiving and sending RIP messages...
Page 139: Nat
5.3.6 NAT Overview The NAT menu consists of following sections: Interfaces Mappings Templates Interfaces The Interface page allows you to enable/disable NAPT on a specific interface. Proceed as follows to enable/disable an interface: Select the interface that has to be enabled/disabled Click Save All to make the settings permanent.
Page 140 Chapter 5 Expert Configuration Creating a NAT mapping Templates Creating a NAT template Proceed as follows to create a address translation mapping: Click New to create a new map. Select or fill in all the fields (see above). Click Apply. The Template page allows you to create a NA(P)T template.
Page 141: Ip Qos
5.3.7 IP QoS Definition Quality of Service is the ability for an application to obtain the network service it requires for successful operation. Nowadays the total amount of data traffic increases, while new types of data emerge, like: voice data, video data, audio data. These new types of data pose new requirements for data transport, e.g.
Page 142 Chapter 5 Expert Configuration Configuration The Configuration page allows you to configure IPQoS for a given destination interface for the IPQoS queues instantiation. When enabling or disabling IPQoS, take the following into account: if the WAN interface (for example PPPoA, IPoA, ...) is detached at the time of enabling/disabling IPQoS, then the WAN interface has to be attached in order for the enabling/disabling of IPQoS to take effect.
Page 143 Queues The Queues page allows you to prioritize data. The following settings are available: Propagate: If the propagate function is enabled, an overflow to a lower priority queue will be created in case the initial queue is full. If the function is disabled packets in excess of the queue will be dropped.
Page 144 Chapter 5 Expert Configuration # marked: The number of packets that exceeded the mark rate and - as a consequence - are marked. # compliant: The number of packets that comply to the IPQoS meter rate limits and - as a consequence - can pass.
Page 145: Connections
5.4 Connections Overview The Connections menu consists of the following topics: Click ... Routed PPPoE Routed PPPoA Routed PPPoI Bridged Ethernet Routed Ethernet Routed IPoA PPTP-to-PPP Relay Virtual LAN E-DOC-CTC-20051017-0151 v1.0 To ... view/configure SpeedTouch™’s ATM interfaces. view/configure the Routed PPP over Ethernet (PPPoE) Internet services.
Page 146: Atm
Chapter 5 Expert Configuration 5.4.1 ATM Overview Phonebook Adding a phonebook entry Connection Service Name The ATM page consists of following sections: Phonebook QoS Book Interfaces The SpeedTouch™ Phonebook is a repository for ATM connectivity information. A number of pre-configured entries may already reside in the SpeedTouch™ Phonebook.
Page 147 Virtual Channel The address format is vpi*vci, e.g. 8*35; or vpi.vci, e.g. 8.35. Identifiers (VPI and VCI) VPI (Virtual Path Identifier) and VCI (Virtual Channel Identifier) are two parameters identifying ATM Virtual Channels. It is the responsibility of the network operator to provide end-to-end connectivity throughout the network on these virtual channels.
Page 148 Chapter 5 Expert Configuration Upper layer protocol: Select the Upper Layer Protocol (ULP) for this interface. Choose between: ip (for a Routed IPoA interface). mac (for a Bridged Ethernet, Routed ETHoA, Bridged PPP over Ethernet (PPPoE), Routed PPPoE or a PPPoE Relay interface). ppp (for a Routed PPP over ATM (PPPoA) interface).
Page 149: Routed Pppoe
5.4.2 Routed PPPoE Introduction The Routed PPPoE configuration page allows you to add new Routed PPPoE, or Routed PPPoE Relay connection entries or to change settings of existing entries. Creating a Routed To add a Routed PPPoE connection entry: PPPoE connection entry Click New.
Page 150 Chapter 5 Expert Configuration Other Statistics This window holds miscellaneous information and configuration possibilities. Following fields are available: Mode: A PPP connection can be established in three ways: Manually: You have to press the Dial-In button of a particular connection. Always-On: The SpeedTouch™...
Page 151: Routed Pppoa
5.4.3 Routed PPPoA Introduction The Routed PPPoA configuration page allows you to add new Routed PPPoA connection entries or to change settings of existing entries. Creating a Routed To add a Routed PPPoA connection entry: PPPoA connection Click New. entry In the Interface box, type a unique interface name (different from the MER interface name).
Page 152 Chapter 5 Expert Configuration Other Statistics This window holds miscellaneous information and configuration possibilities. Following fields are available: Mode: A PPP connection can be established in three ways: Manually: You have to press the Dial-In button of a particular connection. Always-On: The SpeedTouch™...
Page 153 Chapter 5 Expert Configuration Bytes sent: Number of bytes transmitted over this PPP connection. E-DOC-CTC-20051017-0151 v1.0...
Page 154: Routed Pppoi
Chapter 5 Expert Configuration 5.4.4 Routed PPPoI Availability Introduction Creating a Routed PPPoI connection entry Additional configuration Routing The ISDN modem is only fully functional after activating the ISDN software module with the ISDN software module activation key. For more information, see “5.2.10 Add-on”...
Page 155 Other This window holds miscellaneous information and configuration possibilities. Following fields are available: Mode: A PPP connection can be established in three ways: Idle Time Limit: Allows you to specify after which time limit the PPP connection is released. Otherwise stated, if no traffic passes over the PPP connection for Idle Time, the connection is closed.
Page 156 Chapter 5 Expert Configuration Statistics For a running PPP session the fourth tab allows you to overview following connection statistics: IP address: Local IP address assigned by the server. Bytes received: Number of bytes received on this PPP connection. Bytes dropped: Number of bytes failed to transmit.
Page 157: Bridged Ethernet
5.4.5 Bridged Ethernet Overview The Bridged Ethernet page consists of following sections: Bridged Ethernet VLAN Bridged Ethernet The Bridged Ethernet page allows you to configure the SpeedTouch™ for IEEE802.1D Transparent Bridging, which equally may include preparing it for Bridged PPPoE. Next to transparent bridging, the SpeedTouch™...
Page 158 Chapter 5 Expert Configuration Add a new Bridge port VLAN VLAN interface overview Proceed as follows to add a new port to the Ethernet Bridge: Click New under the Bridge Ethernet overview table In the Interface box, type a unique interface name; in the Destination list, select the interface you want to use for this connection.
Page 159 VLAN interface Proceed as follows to add or remove Bridged Ethernet interfaces for a certain VLAN: configuration Select the VLAN you wish to edit. A listing of all bridge interfaces will appear, each followed by a drop-down list. Change the value of the drop-down list to add or remove interfaces from this VLAN: Click Apply.
Page 160: Routed Ethernet
Chapter 5 Expert Configuration 5.4.6 Routed Ethernet Introduction The Routed Ethernet web page allows you to add and modify Routed Ethernet interfaces. Routed Ethernet interfaces can be used for creating end-to-end MAC Encapsulated Routing (MER) connections, or for creating a destination interface to create Routed PPPoE connections on, or to apply a routed PPPoE Relay scenario.
Page 161: Routed Ipoa
5.4.7 Routed IPoA Creating a new Routed To add a new Routed IPoA Ethernet interface, proceed as follows: IPoA Ethernet Interface Click New. Following fields become available: In the Interface box, type a unique interface name. In the Destination list, select the interface you want to use for this connection. Assuming a numbered IPoA link, configure the Local and Remote IP addresses.
Page 162: Pptp-To-Ppp Relay
Chapter 5 Expert Configuration 5.4.8 PPTP-to-PPP Relay Overview The PPTP-to-PPP Relay, referred to as "Relay" further in this section, interacts with a PPTP tunnelling application installed on the locally attached computers, for example Microsoft's Dial-Up Networking. A typical user-relay interaction scenario is as follows: A PPTP Tunnelling application is started on one of the locally attached computers.
Page 163: Virtual Lan
5.4.9 Virtual LAN Concept The concept of VLAN was introduced as a way to solve many of the issues of a large Layer 2 environment. It controls the traffic on a physical LAN. The physical LAN is partitioned into multiple virtual LANs. Each VLAN is assigned a number, called the VID, which identifies it uniquely within the network.
Page 164: Local Networking
Chapter 5 Expert Configuration 5.5 Local Networking Overview The Connections menu consists of the following topics: Click ... To ... DHCP View/configure the SpeedTouch™ DHCP settings. View/configure the SpeedTouch™ DNS settings. Managed Switch View/configure the SpeedTouch™ Managed Switch. Wireless View/configure the SpeedTouch™ wireless access point settings.
Page 165: Dhcp
5.5.1 DHCP Overview The DHCP web page offers three tabs to configure the SpeedTouch™ 's DHCP functionality: DHCP To configure the general behaviour of the SpeedTouch™ 's DHCP server. DHCP To configure the SpeedTouch™ DHCP relay. DHCP To configure the SpeedTouch™ DHCP client. DHCP Server The DHCP server configuration is split up in three sections: Server...
Page 166 Chapter 5 Expert Configuration Server Leases In case the SpeedTouch™ DHCP server is running this table holds all leases which are assigned by the DHCP server to (accepted) DHCP clients. Following lease parameters are shown: Client ID: The MAC address of the DHCP client. Address: The IP address leased by the DHCP client.
Page 167 Address Pools One or more disjunctive DHCP server address pools can be created per existing SpeedTouch™ interface using the Address Pool table. The first address pool displayed in the table has the highest priority for a certain interface. If you select one of the address pools, following fields become available: Name: The name of the DHCP server's address pool.
Page 168 Chapter 5 Expert Configuration DHCP Relay Relay Config Relay Interfaces The DHCP relay tab allows you to add/delete and overview SpeedTouch™ 's DHCP relay interfaces. The DHCP relay configuration is split up in two sections: Relay Config To add/delete and configure a DHCP relay server on a certain interface Relay Interfaces To enable/disable and define the behaviour of the DHCP relay agent per configured interface.
Page 169 DHCP Client Dynamic interfaces are created and managed by means of the DHCP Client table. Following fields are listed in the DHCP Client table: Interface: The name of the SpeedTouch™ logical interface for which this DHCP client applies The Address column shows the IP address assigned to the interface given in the first column.
Page 170: Dns
Chapter 5 Expert Configuration 5.5.2 DNS Overview Configuration Hostname Table DNS is short for Domain Name System. It is a network functionality that allows network members to use host names rather than IP addresses for referencing networked computers. The DNS web page consists of two sections: Configuration Hostname Table In addition to the host name, a local computer needs the DNS domain name to...
Page 171: Managed Switch
5.5.3 Managed Switch Overview Your SpeedTouch™ is equipped with a four-port 10/100Base-T auto-sensing MDI/ MDI-X Ethernet switch. Each physical Ethernet port of the switch can be managed individually for extended networking control and monitoring purposes. The Managed Switch page consists of two sections: Managed Ethernet Switch Mirror Configuration capturing.
Page 172 Chapter 5 Expert Configuration Mirror Configuration Port mirroring allows monitoring from one port (called mirrored port) to another port (called mirror capture port). This functionality allows any port's Ingress and/or Egress traffic to be monitored to a pre-defined "mirror capture port". Depending on your configuration you can mirror (from mirror port to mirror capture port): The outgoing traffic...
Page 173: Wireless
5.5.4 Wireless Availability This page is only available on SpeedTouch™ devices equipped with a wireless access point. Overview The SpeedTouch™ IEEE802.11g compliant Wireless LAN (WLAN) interface allows you to share its high-speed Internet connection with multiple networking clients in a local network, without needing to (re-)wire your home.
Page 174 Chapter 5 Expert Configuration Access point settings This section provides an overview and allows you to configure the basic wireless networking parameters for your SpeedTouch™ wireless access point. Following wireless access point settings can be viewed or configured: Network Name (SSID): The network name, also known as Service Set ID (SSID).
Page 175 Network Name (SSID) The WLAN's 'radio' link is a shared medium. As no physical connection exists between the SpeedTouch™ and wireless clients, a name must be given to allow unique identification of your WLAN radio link. This is done by the Network Name, also known as Service Set ID (SSID).
Page 176 Chapter 5 Expert Configuration Enable/disable the wireless interface Security Security Mode To disable your wireless interface: Clear wireless interface enabled. Click Apply to immediately apply your changes. All your wireless clients will be disconnected! You can also disable your wireless interface by pressing the front panel button for 10 seconds.
Page 177 The Wired Equivalent Privacy (WEP) algorithm is used to protect wireless communication from eavesdropping. WEP relies on a secret key that is shared between the wireless client (e.g. a laptop with a wireless ethernet card and the SpeedTouch™. The fixed secret key is used to encrypt packets before they are transmitted.
Page 178 Chapter 5 Expert Configuration Access Control Associated stations WPA is the highest form of security available but make sure that your wireless client and client manager are compatible with it. If you want to use this level of encryption you must have a RADIUS (Remote Authentication Dial-in User Service) server installed on your network.
Page 179 Click Apply to immediately apply your changes. Networks The Networks tab allows you to: Scan for Enable Other Networks The Other Networks tab allows you to overview the wireless networks in your neighbourhood. To scan for other wireless networks: Click Scan. The SpeedTouch™...
Page 180: Firewall
Chapter 5 Expert Configuration 5.6 Firewall Overview The Firewall menu consists of the following topics: Click ... To ... Expressions view/configure interface, or IP, or Service related expressions. For more information, see “5.3.2 Expressions” on page Policy view/configure the SpeedTouch™ Stateful Inspection Firewall security level and its policies.
Page 181: Policy
Chapter 5 Expert Configuration 5.6.1 Policy Firewall levels The Level list allows you to choose between the following level: Disabled: All traffic is allowed to pass through your SpeedTouch™. Game and Application sharing is allowed by the firewall. BlockAll: Use this Security Level to block all traffic from and to the Internet. Game and Application sharing is not allowed by the firewall.
Page 182 Chapter 5 Expert Configuration Buttons Loose UDP tracking Game & Application Sharing Allowed Proxying allowed Read only Click: Customize... to create a new firewall level starting from the selected firewall level. For more information, see Set Active to activate the selected firewall rule. To save the new configuration, click Save All.
Page 183 Creating a firewall rule Proceed as follows to create a new security level and to add rules: Select one of the six security levels. Click Customize. Type name and description for the new security level and click Apply. Click New to add a rule. Fill in all the fields.
Page 184 Chapter 5 Expert Configuration Click Set Active to activate the new settings. E-DOC-CTC-20051017-0151 v1.0...
Page 185: Log
Chapter 5 Expert Configuration 5.6.2 Log Introduction The Log page allows you to view log messages when: a firewall rule is hit. the firewall is enabled or disabled. the firewall level is changed. a firewall rule is created. a firewall rule is modified. a firewall rule is deleted.
Page 186: Vpn
Chapter 5 Expert Configuration 5.7 VPN Availability Overview The VPN feature is only available if you activated the VPN software module. For more information, see “5.2.10 Add-on” on page The VPN menu consists of following items Click ... To ... LAN to LAN connect your LAN with a remote LAN through an IPSec VPN tunnel.
Page 187: Lan To Lan
5.7.1 LAN to LAN Tabs The LAN to LAN page consists of two tabs. Select: Remote Gateway Address Known as the starting page when the SpeedTouch™ must be able to initiate a VPN connection. Remote Gateway Address Unknown as the starting page when the SpeedTouch™...
Page 188: Vpn Client
Chapter 5 Expert Configuration 5.7.2 VPN Client The VPN Client page Configuration procedure The VPN client in the SpeedTouch™ can replace a software VPN client installed on a computer. You can use it for example to connect from your home to your employer’s corporate network for tele-working.
Page 189: Vpn Server
5.7.3 VPN Server The SpeedTouch™ as In a VPN client-server scenario, the VPN server is always the responder in the IKE VPN Server negotiations. Various VPN clients can dial in to a VPN server, since it supports multiple simultaneous VPN connections. A VPN server does not know a priori which remote Security Gateway will attempt to set up a VPN connection.
Page 190: Certificates
Chapter 5 Expert Configuration 5.7.4 Certificates Certificates pages Secure Storage page Request Import page CRL page CEP page The Certificates pages allow you to manage your certificates. This page shows the list of certificates stored in the SpeedTouch™. This page allows importing new certificates from a Certificate Authority into the SpeedTouch™.
Page 191: Advanced
5.7.5 Advanced When to use The Advanced VPN menu gives access to two main pages where the complete IPSec configuration can be done. These pages are component-oriented, as opposed to the application-oriented pages described in “5.7.2 VPN Client” on page 178 oriented means that a number of components are constructed and subsequently combined.
Page 192: Debug
Chapter 5 Expert Configuration 5.7.6 Debug Status page Statistics page Logging page Tear Down All Tunnels This page shows the status of the IKE Security Association (Phase 1) and the IPSec Security Association(s) (Phase 2). For an operational VPN connection, both an IKE Security Association and an IPSec Security Association should be active.
Page 193: Sip Pbx
5.8 SIP PBX Availability The SIP PBX feature is only available if you activated the SIP PBX software module. For more information, see SpeedTouch™ SIP PBX The SpeedTouch™ has a key role in the enhancement of Voice over IP services for corporations, universities or enterprises.
Page 194 Chapter 5 Expert Configuration Location Service Call Logging Call Screening Enable/disable call screening. The Location Service page allows you to: View the registered users. Add new SIP users. All inbound and outbound SIP sessions that cross the multi-media SIP PBX can be monitored from the SpeedTouch™web interface.
Page 195: Software Keys
6 Software Keys Introduction A Software Key is a tool to disclose or activate services or software modules. The following Software modules can be activated: VPN256-32, VPN16-4, VPN16-1: Integrated VPN IPSec capability (SpeedTouch™620 only) VPN16-4: Integrated VPN IPSec extesnsion (SpeedTouch™608/608 WL only) ISDN: Integrated ISDN Modem full capacity (SpeedTouch™608 WL/620 only) SIP256:...
Page 196 Chapter 6 Software Keys Select the desired software module to open the registration web site on the Internet. Complete the form to request a new software Key. Select the Request Software Key button to proceed. As a result you will get a text box with the key in it. Copy the key and past it into the Software Activation Code Input Display and click the Add button.
Page 197: Troubleshooting
7 Troubleshooting Introduction This chapter suggest solutions for problems you may encounter while installing or configuring y our SpeedTouch™. If the suggestions do not resolve the problem, look at the support pages on www.speedtouch.com/support For Internet connection troubleshooting, refer to the provided Installation and Setup Guide.
Page 198: General Speedtouch™ Troubleshooting
Chapter 7 Troubleshooting 7.1 General SpeedTouch™ Troubleshooting SpeedTouch™ does not work SpeedTouch™ unreachable Poor SpeedTouch™ performance If none of the LEDs light up, make sure that: The SpeedTouch™ is plugged into a power socket outlet. You are using the correct power supply for your SpeedTouch™ device. The power requirements for your SpeedTouch™...
Page 199: Wired Ethernet Troubleshooting
7.1.1 Wired Ethernet Troubleshooting LAN LED does not light up Make sure that: The LAN cable is securely connected to the 10/100Base-T port. You are using the correct cable type for your Ethernet equipment, that is UTP CAT5 with RJ-45 connectors. E-DOC-CTC-20051017-0151 v1.0 Chapter 7 Troubleshooting...
Page 200: Wireless Ethernet Troubleshooting
Chapter 7 Troubleshooting 7.1.2 Wireless Ethernet Troubleshooting Not able to connect wireless clients No wireless connectivity Poor wireless connectivity or reach Check the following: If registration is enabled, you must press the 'Association' button to register the wireless client or search for wireless devices via the embedded Web pages.
Page 201: Upgrade Troubleshooting
7.1.3 Upgrade Troubleshooting Error messages While upgrading your SpeedTouch™ via the Web pages, one of the following messages may appear: Message Failed to retrieve new software version from the support site. Try again later. Could not install the new software version.
Page 202: Upnp™ On Windows Xp Systems
Chapter 7 Troubleshooting 7.2 UPnP™ on Windows XP Systems SpeedTouch™ not detected by UPnP™ or IGD Control Client Adding UPnP™ Check the following: Make sure the UPnP™ and Internet Gateway Device Control Client Networking components are added to your Windows XP system. Your computer doesn’t support UPnP™...
Page 203 Adding IGD Discovery Your Windows XP system is able to discover and control Internet Gateway Devices and Control (IGD), like the SpeedTouch™ on your local network. Therefore it is recommended to add the IGD Discovery and Control client to your system. Proceed as follows: On the Windows taskbar, click Start.
Page 204: Reset To Factory Defaults
Chapter 7 Troubleshooting 7.3 Reset to Factory Defaults Resetting your SpeedTouch™ Software reset Hardware reset You might consider a reset to factory defaults as described below. Be aware that a reset to factory defaults will revoke all configurational changes you made to the SpeedTouch™. You can choose between: Software reset Hardware reset...
Page 205 Chapter 7 Troubleshooting The SpeedTouch™ restarts. Your system administrator may have disabled the physical reset button of the SpeedTouch™. In this case, a hardware reset to defaults is not possible. E-DOC-CTC-20051017-0151 v1.0...
Page 206 Chapter 7 Troubleshooting E-DOC-CTC-20051017-0151 v1.0...
Page 208 Need more help? Additional help is available online at www.speedtouch.com...

This manual is also suitable for:

Speedtouch 608 wl Speedtouch 608 Speedtouch 620

THOMSON SpeedTouch 605 User Manual

1 Getting to Know Your Speedtouch

2 Local Network Setup

3 Internet Connectivity Dial-In Clients

4 Basic Configuration

5 Expert Configuration

6 Software Keys

7 Troubleshooting

Quick Links

Troubleshooting

Related Manuals for THOMSON SpeedTouch 605

Summary of Contents for THOMSON SpeedTouch 605

This manual is also suitable for:

Table of Contents