Page of 80

Efficient Networks SpeedStream 5100 Series User Manual

Efficient networks router user guide.
Also See for SpeedStream 5100 Series:
User manual - 129 pages
User Guide
Series: 5100, 5200, 5400, 5500
Part No. 007-0820-001

   Also See for Efficient Networks SpeedStream 5100 Series

   Related Manuals for Efficient Networks SpeedStream 5100 Series

   Summary of Contents for Efficient Networks SpeedStream 5100 Series

  • Page 1

    SpeedStream  Router User Guide Series: 5100, 5200, 5400, 5500 Part No. 007-0820-001...

  • Page 2

    Product names mentioned herein may be trademarks and/or registered trademarks of their respective companies. Efficient Networks, Inc. shall not be liable for technical or editorial errors or omissions in this document; nor for incidental or consequential damages resulting from the furnishing, performance, or use of this material.

  • Page 3

    Software License and Limited Warranty will remain in full force and effect. Any notices or other communications to be sent to EFFICIENT must be mailed by certified mail to the following address: Efficient Networks, Inc. 4849 Alpha Road Dallas, TX 75244 U.S.A.

  • Page 4: Table Of Contents

    List of Illustrations ...iv Introduction ...1 Hardware Description ...1 About the SpeedStream Router ...2 Features and Benefits...2 Firewall Security...3 Session Tracking...3 General Safety Guidelines...3 Installing the Router...4 Minimum System Requirements ...4 Ethernet Port Connectivity (5100, 5200, 5400, 5500 series) ...4 USB Port Connectivity (5200, 5500 series)...4 Hardware Installation ...4 Basic Installation Procedure ...4...

  • Page 5: Table Of Contents

    User Setup (System Login) ...22 Time Client...23 Time Client Configuration Options ...23 Static Routes...23 NAT/NAPT Server...24 Port Forwarding ...25 Port Forwarding Configuration Options...25 Firewall ...27 Firewall Security Levels ...27 Firewall Snooze Control ...28 DMZ Settings...28 DMZ Configuration Options ...28 Custom IP Filter Rules...30 Cloning a Rule Definition...30 Creating Custom IP Filter Rules...31 ADS (Attack Detection System) ...32...

  • Page 6: Table Of Contents

    Troubleshooting ...48 Basic Troubleshooting Steps ...48 Interpreting the LED Display ...48 Resolving Specific Issues...49 POST Failure (red pwr LED)...49 Contacting Technical Support ...50 Appendix A: Configuration Data Sheets ...51 Administrative User Setup ...51 Attack Detection System...51 DHCP ...51 Firewall – Custom IP Filter Configuration...52 Firewall - DMZ ...53 Firewall –...

  • Page 7: Table Of Contents

    Configuration Data Sheets ...51-57 DHCP Configuration screen... 21 Diagnostics screen... 42 DSL Status/Statistics screen... 46 Efficient Networks SpeedStream Ethernet Adapter Properties (Windows 2000) dialog box ... 12 Enter Network Password dialog box... 17 Ethernet Installation Method illustration... 7 Ethernet Status/Statistics screen ... 46 Firewall - Custom IP Filter Configuration screen...

  • Page 8: Table Of Contents

    SpeedStream Router User Guide Port Forwarding Configuration screen ... 25, 26 RFC2684 screen ... 36 RIP Configuration ... 39 Routes – Current Routing Table... 47 SpeedStream 5100, front panel illustration... 1 SpeedStream 5100, rear panel illustration... 6 SpeedStream 5200, front panel illustration... 1 SpeedStream 5200, rear panel illustration...

  • Page 9: Introduction, Hardware Description

    (LAN) to the Internet. This manual covers the SpeedStream model series 5100, 5200, 5400 and 5500. SpeedStream 5100 Series (1 Ethernet port, no USB port) SpeedStream 5400 Series...

  • Page 10: About The Speedstream Router, Features And Benefits

    About the SpeedStream Router Your SpeedStream router provides high-speed Internet and corporate network access to homes, networked home offices, and small offices. In addition, if you are working from a branch office, the router provides a fast and effective means of communicating over a remote LAN with the main office. The SpeedStream router can also be used to connect the corporate local area network (LAN) to the Internet over the wide area network (WAN).

  • Page 11: Firewall Security, Session Tracking, General Safety Guidelines

    Firewall Security The firewall in the SpeedStream router is a stateful packet inspection filter that works at the IP level. The firewall consists of an IP packet filtering mechanism, a Network Address Port Translator (NAPT), and a Network Address Translator (NAT). When the NAPT/NAT feature is enabled, the local (unreachable) IP addressing used in the LAN automatically protects it from access.

  • Page 12: Installing The Router, Minimum System Requirements, Hardware Installation, Basic Installation Procedure

    Minimum System Requirements At a minimum, your computer must be equipped with the following. Ethernet Port Connectivity • A network interface card (NIC) that supports Ethernet 10/100Base-T full-/half-duplex. • Operating system that supports TCP/IP. • Microsoft Internet Explorer or Netscape Navigator versions 5.0 or later. USB Port Connectivity If connecting to the router via USB, your computer must meet manufacturer’s minimum requirements and be equipped with the following:...

  • Page 13: Recording System Settings, Installing Line Filters, In-line Filter

    Recording System Settings Another important step is to record the current router configuration in the worksheets provided in Appendix A, “Configuration Data Sheets.” Although the router is already configured for your particular network, it is important to record this configuration in case it must be restored for any reason, or if you make changes to the default settings and need to restore them at any point.

  • Page 14: Wall-mount Filter, Two-to-one Adapter, Connecting The Cables

    Ethernet port, USB port, or both. Determine the cable to use for your physical connection, and then follow the instructions below for the appropriate installation method. SpeedStream 5100 series SpeedStream 5400 series SpeedStream Router User Guide...

  • Page 15: Ethernet Installation Method

    SpeedStream Router User Guide Ethernet Installation Method To connect the SpeedStream router via the Ethernet interface, your computer must have an Ethernet adapter (network interface card, or “NIC”) installed. If your computer does not have this adapter, you will need to install it before proceeding further. Refer to the Ethernet adapter documentation for complete installation instructions.

  • Page 16: Usb Installation Method

    SpeedStream Router User Guide USB Installation Method 1. Ensure that your computer meets the minimum requirements for USB installation. 2. Make sure the router is not plugged in to the electrical outlet. 3. Connect the USB cable to the USB port at the rear of the router. 4.

  • Page 17: Configuring Computer Network Settings, Windows 95 / 98 / Me

    Configuring Computer Network Settings To access the Internet through the SpeedStream router, the TCP/IP protocol must be installed on your computer. If TCP/IP is not already installed on your computer, refer to your system documentation or online help for instructions. The default network settings for the SpeedStream router are: IP Address:

  • Page 18

    4. In the TCP/IP Properties dialog box, click the IP Address tab. 5. On the IP Address tab, make sure that Obtain IP address automatically and Detect connection to network media are selected. 6. Click the DNS Configuration tab. 7. On the DNS Configuration tab, make sure that Disable DNS is selected.

  • Page 19: Windows Nt 4.0

    Windows NT 4.0 1. On the Windows taskbar, click Start, then point to Settings, and then click Control Panel. The Windows Control Panel displays. 2. In Control Panel, double-click Network. The Network dialog box displays. 3. On the Protocols tab, select TCP/IP Protocol, and then click Properties.

  • Page 20: Windows 2000

    5. In the Microsoft TCP/IP Properties dialog box, click the DNS tab. 6. On the DNS tab, delete any IP addresses listed in the DNS Service Search Order box. 7. Click OK twice to save your settings. 8. Reboot your computer if prompted. Windows 2000 1.

  • Page 21: Windows Xp

    Your network adapter may differ Note from this illustration. 5. In the Internet Protocol (TCP/IP) Properties dialog box, make sure that Obtain IP address automatically and Obtain DNS server address automatically are selected. 6. Click OK twice to save your settings. 7.

  • Page 22: Getting Started, Navigating The Web Interface

    By this point, you should have completed the following: • Connected the router. • Verified that the TCP/IP protocol is installed on all computers in your network. (If you need to install TCP/IP, refer to your system documentation or Windows Help.) •...

  • Page 23: Screen Navigation Elements

    View current DMZ status and host IP address, disable or enable Virtual DMZ, specify DMZ host IP address. IP Filter Rules View, add or change custom filter rules. View log listing of all firewall activity including record of any denial of access, reason code and description string.

  • Page 24: Logging On To The Web Interface, Administrative User Setup Screen

    • Reset Invokes the standard “reset” functionality of HTML form, resetting the form contents back to the initialized values originally displayed. • Save Settings Initializes the settings you have entered. Logging On to the Web Interface The first time you log on to the Web interface, you will be required to enter a system password in the Administrative User Setup screen.

  • Page 25: Entering The Network Password, Logging On To A Ppp Session, Enter Network Password Dialog Box

    5. Click OK. Depending on your connection(s), one of the following screens will display: • If you have no PPP connections configured, the System Summary screen displays. • If you have only one PPP connection configured, the PPP Login screen for that connection displays.

  • Page 26

    2. In the PPP Login screen, enter the user name and password. 3. To save the settings, select Save Settings on Connect. 4. To configure additional PPP options, click Show Options. The input box expands to display the PPP Options section. 5.

  • Page 27: Customizing Router Settings, Host, Dhcp, Ip Address Restrictions, Host Configuration Screen

    This section provides you with the information and procedures to customize various settings on your SpeedStream router. Many of these procedures require a mid- to advanced-level understanding of networking principles. If unsure, contact your Service Provider for assistance. Host The Host Configuration screen allows you to change the host IP address, netmask, default router and host name.

  • Page 28: Dhcp Configuration Options

    • The range of IP addresses may extend over only one IP subnet. • ximum size of the address pool that may be managed by the DHCP server is 64. Therefore, the range of addresses must not exceed 64. • The range of IP addresses should not include any IP address maintained internally by your SpeedStream device for other purposes.

  • Page 29

    or Use WAN: Specifies that the DNS server address received from the WAN-side DHCP server is to be provided to DHCP clients on the LAN. • Domain Name: Specifies the DNS domain name for the DHCP server resident on your SpeedStream device. This value must be entered as an alpha-numeric string.

  • Page 30: User Setup (system Login), Administrative User Setup Screen

    5. Enter the domain name. This information may be provided by your ISP. 6. Enter the lease time, in minutes, to specify the amount of time that a DHCP lease should be provided the host (requires that you specify a DNS IP address). - or –...

  • Page 31: Time Client, Time Client Configuration Options, Static Routes, Static Route Screen, Time Client Configuration Screen

    Time Client An accurate log timestamp is one of the requirements of the ICSA Labs firewall criteria (ver 3.0a). In order to maintain accurate timestamps in each log message, the firewall implements a Simple Network Time Protocol (SNTP) client. This allows the system to automatically synchronize its date and time with Coordinated Universal Time (UTC), the international time standard.

  • Page 32: Nat/napt Server, Nat/napt Configuration Screen

    3. In the Netmask box, enter the IP netmask of the destination server. 4. In the Next Hop box, enter the IP address to which the data packets will be forwarded. 5. From the Interface list, select the interface that will forward the data packets. 6.

  • Page 33: Port Forwarding, Port Forwarding Configuration Options

    To enable NAPT: 1. In the Specify External (WAN) IP Address box, enter a WAN IP address. 2. To initialize your setting, click Apply. - or - Continue to define NAT and/or NAPT settings. Port Forwarding Port forwarding allows selected servers running on the LAN side of the router to be accessed from the WAN side.

  • Page 34: Port Forwarding Configuration Screen

    To edit an existing port forwarding configuration: 1. On the main menu, click Advanced Setup, and then click Port Forwarding. The Port Forwarding Configuration screen displays. 2. In the Current Port Forwarding Configuration table, click Edit in the row that you wish to reconfigure.

  • Page 35: Firewall, Firewall Security Levels

    Firewall Your SpeedStream router includes a user-configurable firewall that provides various levels of security against outside attacks. This firewall provides only WAN-side protection. The firewall does not provide any LAN-side protection. The firewall also includes an advanced Attack Detection System (ADS) containing various algorithms to detect and identify WAN attacks the moment they start and protect the LAN from such attacks.

  • Page 36: Firewall Snooze Control, Dmz Settings, Dmz Configuration Options

    To select the firewall security level: 1. On the main menu, click Advanced Setup, then click Firewall, and then click Simple Setup. The Firewall – Simple Setup & Control screen displays. 2. Select the level from the Select Firewall Level list. 3.

  • Page 37: Firewall – Dmz Configuration Screen

    This feature was added to the DMZ configuration to assist with the dynamic nature of DHCP. Typically, the DMZ host is selected by entering the host’s IP address on the configuration screen. However, if the host does not have a static IP address and uses DHCP, you will not immediately know what the new IP address is after a reboot or reset.

  • Page 38: Custom Ip Filter Rules, Cloning A Rule Definition

    To disable DMZ: 1. On the Firewall – DMZ Configuration screen, click Disable DMZ. 2. To accept the settings, click Apply. Custom IP Filter Rules You can configure the SpeedStream Router firewall to perform IP filtering and stateful inspection of packets.

  • Page 39: Creating Custom Ip Filter Rules, Firewall - Custom Ip Filter Configuration Screen

    Creating Custom IP Filter Rules You can create a new filter rule based on criteria you enter. You must have selected the Note Custom firewall level from the Firewall – Simple Setup screen. The following instructions reference the step numbers on the Firewall – Custom IP Filter Configuration screen.

  • Page 40: Ads (attack Detection System)

    Step 3: Select a protocol to filter: • In the Select by Name list box, select the protocol name. - or - In the Select by Number text box, enter the protocol number. Depending on the protocol you selected in Step 3, select the applicable rule options: •...

  • Page 41: Background, Types Of Attack

    • Packets with spoofed source addresses are commonly sent to smaller hosts, not with the intent of bringing down a particular computer, but rather to take down a large host through a mechanism called Distributed Denial of Service (DDoS). In this situation, when a huge number of computers are used to request services, those services are rendered unavailable because of the traffic load.

  • Page 42: Ads Configuration Options

    viruses can turn a host into a remote-controlled “zombie,” although some attacks can simply use a host’s network stack to do the job if it is too trusting. The SpeedStream ADS monitors this behavior. ADS Configuration Options The SpeedStream Attack Detection System filters (i.e., discards) and/or logs the following attack attempts from the WAN: •...

  • Page 43: Attack Detection System Configuration Screen

    • Fragmented TCP Packet: As discussed in the Invalid IP Packet Fragment description, packets may be fragmented in transit. While it is entirely valid to fragment a TCP packet, this is rarely done because of a process called “MTU discovery” that occurs when two hosts begin communicating. The rarity of TCP packet fragmentation makes its occurrence suspicious and could indicate a flawed network stack exploit attempt.

  • Page 44: Rfc2684, Rfc2684 Configuration Options

    A confirmation screen displays. RFC2684 This option may not be available on your router configuration. Note The SpeedStream router supports two basic types of connections, Point-to-Point (PPP) and RFC2684. Typically, RFC2684 connections rely on a server located on the Wide Area Network (WAN) to supply the modem a dynamic IP address and other IP-based configuration parameters for the router’s WAN-side interface.

  • Page 45: Upnp (universal Plug And Play), Upnp Configuration Options, Bridge Mode

    Enter the IP Address. Enter the IP Netmask. Enter the Default Gateway (optional). Enter the DNS Server (optional). UPnP (Universal Plug and Play) UPnP is an industry standard networking protocol that enables devices to discover and control each other over a residential network. The SpeedStream router implements the UPnP networking forum specified Internet Gateway Device (IGD) protocol version 1.0.

  • Page 46: Rip (routing Information Protocol), Change To Bridge Mode Screen, Rip Configuration

    to as "bridge/routing" mode, the router provides typical routing functionality between the WAN side and the LAN side. However, all LAN-side interfaces are "bridged." In the second mode of operation, the router provides only "bridging" functionality. This applies to WAN- to-LAN connectivity as well as to all LAN-side interfaces.

  • Page 47: Lan Servers, System Log

    • Version 2: Allows RIP version 2 to be transmitted/received on the selected interface. This would be the most common choice. • Versions 1 and 2: Simultaneously supports RIP versions 1 and 2 on the selected interface. • Active Mode: If enabled, the router will receive routing updates on the selected interface and will broadcast regular routing updates to other routers.

  • Page 48: System Log Configuration Options, Reboot

    System Log Configuration Options • All Events Logs all events. • Informative Events Logs general information about non-critical changes in system status. • Minor Events Logs events that might indicate a condition requiring user intervention, and generates a warning about this change in the system status.

  • Page 49: Reset, Firmware Update, System Update – Local Screen

    Firmware Update This option may not be available on your router configuration. Note Efficient Networks will occasionally provide firmware updates to your ISP, which will notify you when updates are available. To update the router firmware: 1. Download the update file (*.img) to your hard drive. Note where you save the file.

  • Page 50: Diagnostics, Diagnostics Screen

    6. Click OK to proceed. The file is sent to the router. If a valid update file, the router writes the update to its internal flash memory. The System Reboot screen displays a countdown during the Flash Write process. When the update is completed, the Login screen displays.

  • Page 51: Viewing Status Screens, System Summary, System Summary Screen, Upnp Configuration Screen

    The SpeedStream router’s Web management interface provides several screens from which you can monitor various system status and statistics: • The System Summary screen displays router and PPP connection(s) information. • The Interface Map displays a graphical depiction of system connections. •...

  • Page 52: Interface Map, Firewall Log, System Log, Firewall Log Screen, Interface Map Screen

    Interface Map This option may not be available on your router configuration. Note The Interface Map screen provides a graphical representation of the current LAN and WAN configurations of your SpeedStream router. It is particularly useful for Technical Support in verifying that correct protocol encapsulations are assigned and Virtual Circuits (VCs) are mapped to the correct network interfaces.

  • Page 53: Status And Statistics Screens, Atm/aal Status/statistics, Atm/aal Status/statistics Screen

    To display the System Log screen: • From the main menu, click Status and Statistics, and then click System Log. The System Log screen displays. To update the display : • Click Refresh. Status and Statistics Screens These screens display data pertaining to ATM/AAL, DSL, Ethernet and USB traffic, including whether the connection is Up (green) or Down (red).

  • Page 54: Dsl Status/statistics, Ethernet Status/statistics, Dsl Status/statistics Screen, Ethernet Status/statistics Screen

    DSL Status/Statistics • From the main menu, click Status and Statistics, and then click DSL. The DSL Status/Statistics screen displays. Ethernet Status/Statistics • From the main menu, click Status and Statistics, and then click Ethernet. The Ethernet Status/Statistics screen displays. SpeedStream Router User Guide...

  • Page 55: Usb Status/statistics, Routes, Usb Status/statistics Screen

    USB Status/Statistics • From the main menu, click Status and Statistics, and then click USB. The USB Status/Statistics screen displays. Routes The Routes screen displays the current routing table which contains the data pertaining to all currently known static and dynamic IP routes. Please refer to the Online Help for description of the fields in the Current Routing Table.

  • Page 56: Troubleshooting, Basic Troubleshooting Steps, Interpreting The Led Display

    Connection problems usually occur when the router’s software configuration contains incomplete or incorrect information. The router’s diagnostic tools can help you identify and solve many of these problems. Basic Troubleshooting Steps Before contacting Technical Support, you should attempt to resolve the issue by following these steps: 1.

  • Page 57: Resolving Specific Issues, Post Failure (red Pwr Led)

    The 5100 and 5400 series SpeedStream routers have one Ethernet LED; the 5200 and 5500 series Note have four Ethernet LEDs, one for each Ethernet port. Resolving Specific Issues pwr LED Not Lit If the pwr (power) LED is not lit, it is not connecting to the power source. Verify that the power cord is firmly plugged into the back panel of the router and that the other end is plugged into an active AC wall or power-strip outlet.

  • Page 58: Contacting Technical Support

    • If the initial POST diagnostic tests fail, the pwr LED will remain red, indicating a POST failure, and will lock the router. You will need to contact Efficient Networks Technical Support to resolve this issue. Contacting Technical Support If you still cannot resolve the issue after following the recommended troubleshooting procedures, contact Efficient Networks Technical Support.

  • Page 59: Administrative User Setup, Attack Detection System, Dhcp

    Your router is preconfigured with settings specific to your network. We strongly suggest that you record these settings in case you need to reestablish your original configuration. Administrative User Setup Parameter User Name Password Attack Detection System Parameter Enable ADS Same Source/Destination Address Broadcast Source Address LAN Source Address On WAN...

  • Page 60: Firewall – Custom Ip Filter Configuration

    SpeedStream Router User Guide Firewall – Custom IP Filter Configuration Parameter Default Value Your Value Rule # Status Access Direction Protocol Source Interface Source Address Source Mask Destination Port Operator Enable/Disable Rule # Status Access Direction Protocol Source Interface Source Address Source Mask Destination Port Operator Enable/Disable...

  • Page 61: Firewall - Dmz

    Parameter Source Interface Source Address Source Mask Destination Port Operator Enable/Disable Rule # Status Access Direction Protocol Source Interface Source Address Source Mask Destination Port Operator Enable/Disable Rule # Status Access Direction Protocol Source Interface Source Address Source Mask Destination Port Operator Enable/Disable Rule # Status...

  • Page 62: Firewall – Level, Firewall – Snooze Control, Host, Nat/napt

    Firewall – Level Parameter Level Firewall – Snooze Control Parameter Snooze Control Disable Enable, Set Time Interval To: Reset Time Interval To Host Parameter IP Address IP Netmask Default Router Host Name LAN IP Parameter IP Address Subnet Mask NAT/NAPT Parameter Interface 1 NAT/NAPT Disabled...

  • Page 63: Ppp Login, Port Forwarding

    Parameter NAPT Enabled Interface 4 NAT/NAPT Disabled NAT Enabled Internal (LAN) IP Address NAPT Enabled Interface 5 NAT/NAPT Disabled NAT Enabled Internal (LAN) IP Address NAPT Enabled Interface 6 NAT/NAPT Disabled NAT Enabled Internal (LAN) IP Address NAPT Enabled Interface 7 NAT/NAPT Disabled NAT Enabled Internal (LAN) IP Address...

  • Page 64: Static Route

    Parameter Service Name Auto-Connect On Disconnect Use Idle Time-Out Connection 2 User Name Password Access Connection Service Name Auto-Connect On Disconnect Use Idle Time-Out Connection 3 User Name Password Access Connection Service Name Auto-Connect On Disconnect Use Idle Time-Out Connection 4 User Name Password Access Connection...

  • Page 65: System Log, Time Client, Upnp

    System Log Parameter Log Capture Level Time Client Parameter Disabled Primary Server IP Address Secondary Server IP Address UPnP Parameter Disabled Discovery and Advertisement Only Full IGD-Supported Enable Access Logging Read-Only Mode Default Value Default Value Default Value SpeedStream Router User Guide Your Value Your Value Your Value...

  • Page 66

    AAL and ATM Support: VCI 0-65535 address range VPI 0-255 address range AAL5 support IEEE 802.1.d Transparent Learning Bridge Bridging: Spanning Tree support Certifications: FCC Part 15, Class B CE certification Connectors: DSL interface: RJ-11 or RJ-45 (Europe) Ethernet interface: RJ-45 USB Type B interface (5200, 5500 series) Diagnostic LEDs: Power, DSL, Activity, Ethernet status;...

  • Page 67

    The following table shows the security of each mode of the firewall for specific applications and protocols. All applications and protocols are conditionally allowed IN if the outbound session was initiated Note locally and allowed OUT. Application/ Protocol Abuse.Net Age of Empires AOL IM Asherons Call Baldur’s Gate II...

  • Page 68

    Application/ High Protocol ICU II IGMP IPSec multi-session IPSec single-session Kali L2TP MechWarrior 4 Mplayer MS Netmeeting MSN Gaming Zone MSN Messenger Myth Napster Need for Speed Net2telephone Netshow Client NNTP PCAnywhere Ping POP3 PPPoE PPTP multi-session PPTP single-session Quake Arena Quake II Quicktime 4 Rainbow Six...

  • Page 69

    Application/ High Protocol Tiberian Sun Traceroute Ultima Online Unreal Tournament Warcraft Windows Media Player Yahoo Messenger Security Medium √ √ √ √ √ √ √ √ √ √ √ √ √ √ √ √ √ SpeedStream Router User Guide ICSA- NAPT Off Compliant √...

  • Page 70: Acronyms

    Acronyms and Technical Concepts Acronyms AAL5 ATM Adaption Layer 5 Attack Detection System Asynchronous Transfer Mode ADSL Termination Unit ATU-C ADSL Termination Unit - Central Office; refers to location at the CO aggregation point. ATU-R ADSL Termination Unit - Remote; refers to location at the customer premises CHAP Challenge-Handshake Authentication Protocol Cycle Redundancy Checking...

  • Page 71

    Loss of Signal MAC address Media Access Control address; a network device’s unique identifier Maximum Transmission Unit Network Access Provider NAPT Network Address Port Translation Network Address Translation Network-layer Control Protocol Network Service Provider Out-of-cell Delineation (ATM error condition) octet 8 bytes Password Authentication Protocol POST...

  • Page 72: Technical Concepts

    Cloning IP Filter Rules Defining a complete set of firewall IP filter rules can be a tedious process. To aide our SpeedStream router users, Efficient Networks includes the capability to “clone” an existing set of rules as a starting point in the process.

  • Page 73

    SpeedStream Router User Guide When you clone a set of rules, any existing Custom rules are deleted and a new set of Custom rules (a replica of the cloned level) is created. When you click Clone Rule Set on the Firewall – Custom IP Filter Configuration screen, the Current IP Filter Rules table refreshes with the new rules set.

  • Page 74

    You have the option to change the router’s Ethernet IP address without rebooting the router. If Note you have configured a specific set of IP addresses for the DHCP server, then you change the Ethernet IP address to something that is on a different subnet than your DHCP server’s addresses, and you do not reboot, the router will not recognize the change.

  • Page 75

    PPP (Point-to-Point Protocol) PPP is a single or multi-link interface between two packet switching devices, such as a bridge or router. PPP has built-in negotiation for addresses and connection parameters and can route multiple protocols over a single link. One benefit of using PPP is it offers interoperability of multi-vendor equipment as well as support for dynamic configuration between the connecting devices.

  • Page 76: Index

    5100 / 5200 / 5400 / 5500 back panels...6 5100 / 5200 / 5400 / 5500 front panels ...1 AAL and ATM support...58 AAL5...64 Access concentrator (PPP login)...18 Acronyms ...62-64 Adding a port forwarding entry ...26 Adding a static route ...23 Administrative User Setup...

  • Page 77

    Custom IP filter rules...30 Customizing firewall filtering rules database...30-32 Customizing router settings ...19 Data Sheets See Configuration Data Sheets DDoS (ADS)...33 Defaults Gateway (RFC2684) ...36 Routing ...38 Defaults (continued) Router (DHCP) ...20 Defining the source and destination...31 Deleting All entries in the table ...26 Existing entries ...26 Denial of Service (DoS)...33 Destination address...33...

  • Page 78

    Security Levels ... 27-28, 54, 59-61 Snooze Control configuration ... 28, 43, 54 Status screens...43, 43-44 Firmware update ...41-42 Flags ...34 Flash memory..41 Fraggle Attack (ADS)...34 Fragmented ICMP header (ADS) ...35 TCP header (ADS)...35 TCP packet (ADS) ...35 UDP header (ADS) ...35 Globally enable ADS ...35 Glossary ...62-66 GRE (Port Forwarding) ...26...

  • Page 79

    Media interface specifications ...58 Medium firewall security level ...27 Minimum system requirements...4 Minor events (System Log) ...40 MTU discovery...35 NAPT... 24-25, 34, 54-55 NAT...24 NAT/NAPT Server ... 24-25, 54-55 Navigating the Web Interface ...14 Navigation elements ...15 Network Address Port Translation See NAPT Network Address Translation See NAT Network Interface Card (NIC) ...4...

  • Page 80

    Simple Network Time Protocol See SNTP Smurf attack...34 Snooze control ... 28, 43, 54 SNTP (Simple Network Time Protocol) ...23 Software...43 Source address (ADS)...32-34 Spanning Tree support ...58 Specify host configuration settings ...19 Speedstream 5100 / 5200 / 5400 / 5500 back panels...6 5100 / 5200 / 5400 / 5500 front panels ...1 Spoofed source addresses ...32-34 SSDP (UPnP)...37...

Comments to this Manuals

Symbols: 0
Latest comments: