Linksys LRT224 User Manual
  1. Manuals
  2. Brands
  3. Linksys Manuals
  4. Network Router
  5. LRT224
  6. User manual

Linksys LRT224 User Manual

Vpn routers
Hide thumbs Also See for LRT224:
Table of Contents

Advertisement

Quick Links

User Guide
LRT214 / LRT224

Advertisement

Table of Contents
loading

Related Manuals for Linksys LRT224

Summary of Contents for Linksys LRT224

  • Page 1 User Guide LRT214 / LRT224...

  • Page 2: Table Of Contents

    Network . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .8 Dual WAN (LRT224 Only) / Network Service Detection...
  • Page 3 Linksys Table of Contents Client to Gateway Backup Configuration File VPN Passthrough Copy Configuration File PPTP Server Technical Support . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 72...

  • Page 4: Introduction

    . LRT214/LRT224 Linksys’s VPN Routers for Small Business, LRT214 Gigabit VPN Router and LRT224 Dual WAN Gigabit VPN Router, support site-to-site VPN, which allows branch offices to connect with the central office, and client-to-site VPN, which allows employees to securely connect back to their offices while they are away .

  • Page 5: Hardware Installation

    Web server or mail server. Inbound traffic can access the DMZ host without exposing your intranet. • WAN/DMZ (LRT224):LRT224 Dual WAN Gigabit VPN Router comes with a port you can configure as a second WAN port or DMZ port based on your network requirements.

  • Page 6: Led Indicators

    Off: Designated VPN tunnel down router on the wall, please ensure that the heat dissipation holes are facing Amber On: 10/100M link sideways as shown in the following picture for safety reasons . Linksys is not Amber Blinking: 10/100M activity Green/ Amber...

  • Page 7: Getting Started With The Router Configuration

    Linksys Getting Started with the Router Configuration Getting Started with the Router Configuration System Status Follow the instructions to configure your router. Be sure your computer is connected to a LAN port on the router and set After logging in to the Web GUI, you will be directed to system status page, to receive an automatic IP address from the DHCP server.

  • Page 8: Port Statistics

    Linksys Getting Started with the Router Configuration Configuration Type: 10Base-T / 100 Base-TX / 1000 Base-TX. You may click Setup Wizard button to launch wizard. Interface: LAN/WAN/DMZ. Link Status: Up or down. Port Activity: Port Enabled, Port Disabled, or Port Port Statistics Connected.

  • Page 9: Log Setting Status

    Indicates whether Email Log is activated . NOTE: It is recommended to designate the configurable port on the LRT224 as a DMZ port . Go to Device Configuration > Network and check the Enable DMZ box . IP Address: IP address of DMZ port .
  • Page 10 Linksys Getting Started with the Router Configuration Quick Start (Setup Wizard) Click the Quick Start tab to access Basic Setup Wizard . The setup wizard will help you set up your network easily and finish basic network settings . Basic Setup Click Launch Now to run the Basic Setup Wizard .

  • Page 11: Setup

    Linksys Setup Setup • Network • Setting Password • Time • DMZ Host • Forwarding • Port Address Translation • One-to-One NAT • MAC Address Clone • Dynamic DNS • Advanced Routing • IPv6 Transition...

  • Page 12: Network

    Linksys Setup Network LAN Setting (Device IP address and subnets) Go to the Configuration > Setup > Network page to set up your LAN, WAN (Internet connections), and DMZ interface. NOTE: Remember to click Save before leaving the page. You can also click Cancel to undo the changes.

  • Page 13: Wan Setting/ Dmz Setting (Internet Connection & Dmz)

    Linksys Setup WAN Setting/ DMZ Setting NOTE: A pop-up confirmation message will appear to remind you to log (Internet connection & DMZ) in to the user Web GUI with the new device IP address. Click OK to confirm the change, or click Cancel to leave without applying the To set the WAN port to link to the Internet, refer to the configuration information changes.

  • Page 14: Obtain An Ip Automatically

    Linksys Setup Obtain an IP Automatically: Static IP: This mode is often used in the connection mode to obtain an automatic DHCP If an ISP issues a static IP (such as one IP or eight IP addresses, etc.), please select IP.
  • Page 15 Linksys Setup PPPoE: PPTP: This option is for an ADSL virtual dial-up connection (suitable for ADSL PPPoE). Specify WAN The IP address to be configured could be one IP Address: issued by your ISP. (The IP address is usually provided by the ISP when the PC is installed.
  • Page 16 Linksys Setup L2TP Transparent Bridge: The feature will come in handy in when a company wants to add a firewall or Specify WAN IP Address Configure a static IP address. The IP address dual-WAN device without changing the IP addresses of the computers in its could be one issued by an L2TP server.

  • Page 17: Dmz Setting

    Linksys Setup DMZ Setting Range: For some network environments, an independent configurable DMZ port If the DMZ and WAN are within same subnet: may be required to set up externally connected servers such as WEB and Mail IP Range: Input the IP range located at the DMZ port.

  • Page 18: Setting Password

    Linksys Setup Setting Password • At least 8 characters. • The password cannot be the same as Username. Use the Configuration > Setup > Password page to change the administrator • The password cannot be the same as the current password username and password.

  • Page 19: Dmz Host

    Linksys Setup Set the local time using Network Time Protocol (NTP) automatically: Time Zone Select your location from the pull-down time zone list to show correct local time. Daylight Saving If there is Daylight Saving Time in your area, click Enabled and enter start date and end day of the period.

  • Page 20: Port Forwarding And Port Triggering

    Linksys Setup NOTE: Remember to click Save before leaving the page. You can also click Cancel to undo the changes. Port Forwarding and Port Triggering You can set up a port forwarding virtual host to allow public access to servers connected to the LAN ports.

  • Page 21: Port Triggering

    Linksys Setup Adding a service • To add another new service: Enter the information, and then click Add to list. To add a new service item or to edit an existing service, click Service • To edit a service you created: Select the service in the list and then click Management.

  • Page 22: Port Address Translation

    Linksys Setup Port Address Translation Application Name: Enter the name of the application. Trigger Port Range: Input the starting and ending port numbers of Use the Setup > Port Address Translation. This feature allows Windows to the trigger port range. automatically configure the router to open and close ports for Internet applications such as gaming and videoconferencing.

  • Page 23: One-To-One Nat

    Linksys Setup One-to-One NAT Service Select the service. You can also add a new service from Service Management. If your ISP issued more than one actual IP (such as eight ADSL static IP Name or IP Address Input the Intranet virtual IP address or host name.

  • Page 24: Setting Mac Clone

    IP addresses. Users can input the network card physical address Public Range Begin: Input the Public IP address for the Internet (MAC address: 00-xx-xx-xx-xx-xx) here. The Linksys LRT series router will adopt One-to-One NAT function. this MAC address registered to your ISP. Use the Configuration > Setup > MAC...

  • Page 25: Dynamic Dns

    Linksys Setup Dynamic DNS With Dynamic Domain Name System (DDNS) service offers the function of dynamic web address transferred you can assign a domain name to a dynamic WAN IP address. This function will benefit VPN connection, website, FTP or other TCP/IP service in dynamic IP address network.

  • Page 26: Advanced Routing

    Linksys Setup Advanced Routing Dynamic Routing for IPv6 Use the Configuration > Setup > Advanced Routing page to configure the dynamic and static routing. NOTE Remember to click Save to save your settings before leaving the page. You can also click Cancel to undo the changes.

  • Page 27: Outgoing Mail Server

    Linksys Setup IPv6 Hop Count (Metric, max. is 15): This is the router layer count for the IP. If there are two routers under the device, users should input “2” for the router layer. The default is “1. ” (Max. is 15.) Interface: Select WAN port or LAN port for network connection location.

  • Page 28: Ipv6 Transition

    Linksys Setup SMTP Port: 1~65535 can be accepted. The default value is 25. Username: Username for authentication. Password: Password for authentication. IPv6 Transition When Dual-Stack IP is enabled on the Setup > Network page, a 6to4 tunnel is enabled by default for IPv6 packets via 6to4 source/destination addressing exchange.

  • Page 29: Dhcp

    Linksys DHCP DHCP NOTE: Remember to click Save before leaving the page. You can also click Cancel to undo the changes. Click the IPv4 tab or the IPv6 tab. DHCP IPv4: DHCP is a network protocol used to configure devices that are connected to a VLAN: Choose the VLAN.

  • Page 30: Dhcp Status

    Linksys DHCP IPv6: Client Table Enable DHCP Server Check the option to enable the DHCP server Client Host Name The name of the current computer. automatic IP lease function. When enabled, IP Address The IP address acquired by the current computer.

  • Page 31: Ip & Mac Binding (For Ipv4 Only)

    Linksys DHCP IP & MAC Binding (for IPv4 Only) RA Flags: When Managed is checked, IP information can be found on the DHCPv6 server in LAN. IP & MAC Binding assigns IP addresses to specific devices. In this way, you can...

  • Page 32: Dns Local Database

    Linksys DHCP You can configure your router to function as a DNS server for your intranet Static IP Address: Input a specified static IP address. You can also input devices. It provides much faster domain name matching service than using 0.0.0.0 in the boxes.
  • Page 33 Linksys DHCP...

  • Page 34: System Management

    If the primary WAN connection is unavailable, the backup WAN connection will take over the traffic . Load Balance: Two WAN ports will work simultaneously . The router will Dual WAN (LRT224 Only) / Network balance traffic between the two ports . Service Detection Network Service Detection Dual WAN This is a detection system for network external services .

  • Page 35: Protocol Binding (Only Dual-Wan Mode Supports This Function)

    Linksys System Management Protocol Binding (Only Dual-WAN Mode supports this Enable Network Click to enable Network Service Detection . Service Detection: function) Retry count: Input the retry times for network service Users can define specific IP addresses or specific application service ports detection .
  • Page 36 Linksys System Management Note The rules configured in Protocol Binding will be executed by the device Service: This is to select the Binding Service Port to be activated . according to their priorities too . The higher up on the list, the higher the priority The default (such as ALL-TCP&UDP 0~65535, WWW...

  • Page 37: Bandwidth Management

    Linksys System Management Bandwidth Management Interface: Select on which WAN the QoS rule should be executed . It can be a single selection or You can configure upstream and downstream bandwidth and set Quality of multiple selections . Service (QoS) rules in this page .

  • Page 38: Session Control

    Linksys System Management Adding a service To add a new service item or to edit an existing service, click Service Management. If the web browser displays a warning about the pop-up window, click to allow the blocked content. In the Service Management window, add or edit entries as needed. After setting a rule, be sure to click OK to save your settings or click Cancel to undo them.

  • Page 39: Snmp

    Linksys System Management When a single IP exceeds session, block this IP’s new session for __ NOTE: block this IP’s new session for minutes: Remember to click Save before leaving the page . You can also click Cancel to __ minutes or block this IP’s all Users exceeding session number will undo the changes .

  • Page 40: Ssl Certificate

    System Management SSL Certificate Enabled SNMP: Enable SNMP feature. Enabled is the default. System Name: Set the name of the device, e.g., Linksys. You can configure SSL certificates here. System Contact: Set the name of the person who manages the NOTE: device, e.g., Tom.

  • Page 41: Port Management

    Linksys Port Management Port Management Enter the following settings, as needed: Disable: Check this box to disable a port . By default, all ports are enabled . Priority:(for LAN ports Use this setting to ensure Quality of Service by only) prioritizing the traffic for devices on particular ports .

  • Page 42: Port Status

    Linksys Port Management Port Status For the selected port, the Statistics table displays the following: Port Receive Packet Count: The number of packets received Use the Configuration > Port Management > Port Status page to view information Port Receive Packet Byte Count: The number of packet bytes received .

  • Page 43: 802.1Q Lan Status

    Linksys Port Management 802.1Q 802.1Q LAN Status The router supports up to five sets of VLANs, which are used to divide networks into several segments . Dividing networks makes them easier to manage and VLAN ID: Indicates VLAN ID (VID) .

  • Page 44: Q Lan Configuration

    Linksys Port Management 802.1Q LAN Configuration Click Edit to change an existing VLAN configuration or click Add to set up a new set of VLAN . VLAN ID: Input VID (range:2~4092) of the VLAN . Description: Give a name to the VLAN .

  • Page 45: Firewall

    Linksys Firewall Firewall Firewall Turn on/off the firewall. SPI (Stateful Packet Inspection) Enables packet automatic authentication detection technology. The firewall operates mainly at the network layer. By running the dynamic authentication for each connection, it Firewall General Settings will also perform an alarming function for application procedure.

  • Page 46: Access Rules

    Linksys Firewall Restrict Web Features Managing the access rules Except for the default rules, you can set the priority for each rule. It supports the block that is connected through: Java, Cookies, Active X, and Click the IPv4 tab to set rules for traffic with IPv4 addressing.
  • Page 47 Linksys Firewall Adding or Editing access rules You can use the Rows per page list at the top right corner of the table to decide the number of rules to display on each page, and use the Page list to choose a Click Add or Edit to enter Access Rules configuring page.

  • Page 48: Adding A Service

    Linksys Firewall Scheduling (IPv4 Only) Action: Allow: Permits the pass of packets compliant with this control rule. Deny: Prevents the pass of packets not compliant with this control rule. Service: Choose the service for this rule. You can also click Service Management to add new services.

  • Page 49: Content Filter

    Linksys Firewall Content Filter The device supports two Web page restriction modes: one blocks certain forbidden domains; the other gives access to certain Web pages. Only one of these two modes can be selected. NOTE: Remember to click Save before leaving the page. You can also click Cancel to undo the changes.
  • Page 50 Linksys Firewall Fill in the complete website such as to have it blocked. Scheduling Add: Enter the websites to be controlled, such as www.gamble.com. Add to list: Click ”Add to list” to create a new website to be controlled. Delete: Click to select one or more controlled websites and delete.

  • Page 51: Vpn

    Linksys Tunnel Status VPN (Virtual Private Network) is a technology that enables two private networks to establish a secure and encrypted connection across public network, such as the Internet. VPN allows remote user, say a branch office or employee at home,...

  • Page 52: Gateway To Gateway

    Linksys VPN Client Status Add: Add a new tunnel and choose Gateway to Gateway or Client to Gateway.. This section identifies the VPN clients currently connected to the router. No.: The ID number of the VPN client. Group VPN Status User Name: The name of the VPN client.
  • Page 53 Linksys Tunnel No.: Indicates the tunnel number. IP Only: Entering the IP address is the only way to access this tunnel. Tunnel Name: Displays the current VPN tunnel connection name, such as The WAN IP address will be XXX Office. Users are well-advised to give them different automatically filled into this names to avoid confusion.

  • Page 54: Ipsec Setup

    Linksys • Local/Remote Security Group Type: Incoming SPI: Input a number between 100~ffffffff as SPI (Security Parameter Index). SPI is an identification tag for an IP Address: Allows only the IP address that is entered to build the VPN IPSec association. The incoming SPI of this router tunnel.
  • Page 55 Linksys Phase 1 / Phase 2 SA Life Time: The lifetime for this exchange code is set to 28,800 seconds (8 hours) by default. This allows the automatic generation of other exchange passwords within the valid time of the VPN connection to guarantee security.
  • Page 56 Linksys Aggressive Mode: Adopted by remote devices to enhance the security control if dynamic IP is used for connection. Compress (Support Reduces the size of IP datagrams. The Payload Compression router will compress IP datagram size Protocol (IP Comp)): when initiating a tunnel. When the router works as a responder, it will always accept compression.

  • Page 57: Client To Gateway

    Linksys Client to Gateway Local Interface: Choose the WAN port to connect the backup Go to Configuration > VPN > Client to Gateway to add a new IPSec tunnel. tunnel. NOTE: VPN Tunnel Backup Idle Time: Remember to click Save to save your settings before leaving the page. You If the primary tunnel doesn’t work within...
  • Page 58 Linksys Local Group Setup IP Address: Designates the IP address to build the VPN tunnel. Subnet: Allows local computers in this subnet to connect to the VPN tunnel. IP Range: Allows a range of IP addresses to use this tunnel. Input IPs for the beginning and the end of the range.
  • Page 59 Linksys Remote Client Setup for Group VPN Specify the method for identifying the clients to establish the VPN tunnel. The following options are available for a Group VPN. Domain Enter a domain name to use for authenticating remote users. The domain name must be unique for each...
  • Page 60 Linksys • IKE with Preshared Key Phase 1 / Phase 2 The lifetime for this exchange code is set to 28,800 SA Life Time: seconds (8 hours) by default. This allows the automatic generation of other exchange passwords within the valid time of the VPN connection to guarantee security.
  • Page 61 Linksys NetBIOS Broadcast: Ensures the passage of NetBIOS broadcast packets. This facilitates the easy connection with other Microsoft network, but it also increases the amount of traffic using this VPN tunnel. NAT Traversal: Allows IPSec traffic to pass through devices that don’t support IPSec packets.

  • Page 62: Ip Address Range

    Linksys VPN Passthrough IP Address Range Enable VPN passthrough to allow VPN clients to pass through the router. You can also disable the VPN passthrough to block VPN connection. Use the Device Configuration > VPN > VPN Passthrough page to enable or disable VPN passthrough.

  • Page 63: Connection List

    Linksys Connection List To add a user to the list: Enter the information identified in NOTE (below), and click Add to list. The following read-only information appears. You can click Refresh to update To add another new user: Enter the information identified in NOTE the data.

  • Page 64: Easylink Vpn

    Linksys EasyLink VPN EasyLink VPN Status The status of the tunnel: Connected or Waiting for Connection . Local Group The setting for VPN connection secure group of the local end . Remote Gateway The IP address of the Remote Gateway .

  • Page 65: Inbound Easylink Vpn

    Linksys EasyLink VPN Outbound EasyLink VPN Tunnel Test Click Connect to verify the tunnel status . The test result will be updated . To disconnect, click Disconnect to stop This page will introduce how to configure outbound EasyLink VPN . The role of the VPN connection .

  • Page 66: Openvpn

    Linksys OpenVPN OpenVPN OpenVPN Client Status You can use the Rows per page list at the top right corner of the table to decide the number of rules to display on each page and use the Page list to choose a particular page.

  • Page 67: Global Configure Settings

    Linksys OpenVPN NOTE: Remember to click Save before leaving the page. You can also click Advanced Configure Setting Cancel to undo the changes. Global Configure Settings Tunnel Mode Split Tunnel and Full Tunnel. Security Configure allowable subnet for OpenVPN clients.
  • Page 68 State or Province Input state or province name. Name (ST) Locality Name (L) Input locality name (city, town or other municipal jurisdiction). O r g a n i z a t i o n Input organization name. Example: Linksys LLC. Name (O)

  • Page 69: Openvpn Client

    Linksys OpenVPN OpenVPN Client Certificate Setting If you select Certificate or Password+Certificate as authentication type, you Go to OpenVPN > OpenVPN Client to add a new client configuration. have to configure the certificate here. (* indicates required field) You can also click the edit icon or Add button in summary page to get into setting page.
  • Page 70 State or Province Name Input state or province name. (ST) Locality Name (L) Input locality name (city, town or other municipal jurisdiction). Organization Name (O) Input organization name. Example: Linksys LLC. Organizational Unit Input organization unit. Example: Accounting. Name (OU) Common Name (CN) Input a common name for the certificate.

  • Page 71: Log

    Linksys Email Alert Enable email alerts to send logs to a specified email address. Enable Email Alert: Check to enable. Mail Server : Click “Configure Mail Server” to configure outgoing The router has the real-time surveillance management feature that provides mail server.

  • Page 72: System Statistics

    Linksys System Statistics Syn Flooding Heavy syn packet transmission in a short time overloads the system. Go to Configuration > Log > System Statistics page to view statistics of all router IP Spoofing Hackers use packet sniffing to intercept data transmitted on interfaces.
  • Page 73 Linksys Total Bytes Number of bytes sent and received. Error Packets Number of received error packets. Received Dropped Packets Number of received dropped packets. Received...

  • Page 74: Maintenance

    Enter a host name – example: www.linksys.com (Do not include a prefix such as http://) - and click Go. You will see the IP address of the host. Click Factory Default if you want to restore the router to its factory default NOTE: settings except OpenVPN configuration.

  • Page 75: Client To Gateway 53 Backup Configuration File

    Users may directly upgrade the device firmware on the Firmware Upgrade the startup configuration will be copied to mirror configuration automatically. page. First download the firmware file from Linksys.com. Go to Maintenance > Firmware Upgrade. Please confirm all information about the software version in advance.

  • Page 76: Pptp Server 58 Technical Support

    Click Support tab to search for more information about the router or technical support from Linksys support team. Product Website Click Launch Now to visit product website to get more information about the router. Linksys Support Website Click Launch Now to visit Linksys support website to get more support for the router.
  • Page 77 © 2014 Belkin International, Inc. and/or its affiliates. All rights reserved. BELKIN, LINKSYS and many product names and logos are trademarks of the Belkin group of companies. Third-party trademarks mentioned are the property of their respective owners.

This manual is also suitable for:

Lrt214

Table of Contents