NETGEAR DG824M Reference Manual
  1. Manuals
  2. Brands
  3. NETGEAR Manuals
  4. Gateway
  5. DG824M - 802.11b Wireless ADSL Modem
  6. Reference manual

NETGEAR DG824M Reference Manual

Wireless adsl modem gateway
Hide thumbs Also See for DG824M:
Table of Contents

Advertisement

Quick Links

Download this manual See also: Reference Manual
Reference Manual for the
Model DG824M Wireless
ADSL Modem Gateway
NETGEAR, Inc.
4500 Great America Parkway
Santa Clara, CA 95054 USA
Phone 1-888-NETGEAR
SM-DG824MNA-0
November 2002

Advertisement

Table of Contents
loading

Related Manuals for NETGEAR DG824M

Summary of Contents for NETGEAR DG824M

  • Page 1 Reference Manual for the Model DG824M Wireless ADSL Modem Gateway NETGEAR, Inc. 4500 Great America Parkway Santa Clara, CA 95054 USA Phone 1-888-NETGEAR SM-DG824MNA-0 November 2002...
  • Page 2 In the interest of improving internal design, operational function, and/or reliability, NETGEAR reserves the right to make changes to the products described in this document without notice. NETGEAR does not assume any liability that may occur due to the use or application of the product(s) or circuit layout(s) described herein.

  • Page 3: Customer Support

    Serie auf die Erfüllung der Vorschriften hin zu überprüfen. Certificate of the Manufacturer/Importer It is hereby certified that the DG824M Wireless ADSL Modem Gateway has been suppressed in accordance with the conditions set out in the BMPT-AmtsblVfg 243/1991 and Vfg 46/1992. The operation of some equipment (for example, test transmitters) in accordance with the regulations may, however, be subject to certain restrictions.

  • Page 5: Table Of Contents

    LAN Configuration Requirements ...2-2 Internet Configuration Requirements ...2-2 Where Do I Get the Internet Configuration Parameters? ...2-2 Connecting the DG824M Wireless ADSL Modem Gateway to Your LAN ...2-5 Connecting the DG824M to the Internet ...2-9 Testing Your Internet Connection ...2-16 Manually Configuring Your Internet Connection ...2-17...
  • Page 6 Configuring Wired Equivalent Privacy (WEP) ...3-6 Configuring WEP (Wired Equivalent Privacy) ...3-7 Chapter 4 Protecting Your Network Protecting Access to Your DG824M Wireless ADSL Modem Gateway ...4-1 Configuring Basic Firewall Services ...4-3 Blocking Keywords, Sites, and Services ...4-3 Rules ...4-5 Inbound Rules (Port Forwarding) ...4-7...
  • Page 7 Activation and Administration ...5-12 Dropped Packets ...5-12 Enabling Security Event E-mail Notification ...5-13 Running Diagnostic Utilities and Rebooting the Router ...5-15 Enabling Remote Management ...5-16 Chapter 6 Advanced Configuration Configuring Advanced Security ...6-1 Setting Up A Default DMZ Server ...6-1 Respond to Ping on Internet WAN Port ...6-2 Configuring LAN IP Settings ...6-3 LAN TCP/IP Setup ...6-3...
  • Page 8 Restoring the Default Configuration and Password ...7-9 Problems with Date and Time ...7-9 Appendix A Technical Specifications Appendix B Network and Routing Basics Related Publications ... B-1 Basic Router Concepts ... B-1 What is a Router? ... B-2 Routing Information Protocol ... B-2 IP Addresses and the Internet ...
  • Page 9 Appendix C Preparing Your Network Preparing Your Computers for TCP/IP Networking ... C-1 Configuring Windows 95, 98, and Me for TCP/IP Networking ... C-2 Install or Verify Windows Networking Components ... C-2 Enabling DHCP to Automatically Configure TCP/IP Settings in Windows 95B, 98, and Me Selecting Windows’...
  • Page 10 Contents...
  • Page 11 List of Procedures Procedure 2-1: Record Your Internet Connection Information ...2-4 Procedure 2-2: Connecting the Gateway ...2-5 Procedure 2-3: Auto-Detecting Your Internet Connection Type ...2-10 Procedure 2-4: Wizard-Detected PPPoE Login Account Setup ... 2-11 Procedure 2-5: Wizard-Detected PPPoA Login Account Setup ...2-12 Procedure 2-6: Wizard-Detected Dynamic IP Account Setup ...2-14 Procedure 2-7: Wizard-Detected Fixed IP (Static) Account Setup ...2-15 Procedure 2-8: Manual Configuration ...2-18...

  • Page 13: Technical Support

    Appendices. Technical Support For help with any technical issues, contact Customer Support at 1-888-NETGEAR, or visit us on the Web at www.NETGEAR.com. The NETGEAR Web site includes an extensive knowledge base, answers to frequently asked questions, and a means for submitting technical questions online.

  • Page 14: Typographical Conventions

    Typographical Conventions This guide uses the following typographical conventions: italics Book titles and UNIX file, command, and directory names. Screen text, user-typed command-line entries. courier font Initial Caps Menu titles and window and button names. [Enter] Named keys in text are shown enclosed in square brackets. The notation [Enter] is used for the Enter key and the Return key.

  • Page 15: Introduction

    This chapter describes the features of the NETGEAR DG824M Wireless ADSL Modem Gateway. The DG824M gateway is a combination of a built-in ADSL modem, router, 4-port switch, and firewall which enables your entire network to safely share an Internet connection that otherwise is used by a single PC.

  • Page 16: 802.11B Standards-Based Wireless Networking

    • Wireless access can be restricted by MAC address. A Powerful, True Firewall Unlike simple Internet sharing NAT routers, the DG824M is a true firewall, using stateful packet inspection to defend against hacker attacks. Its firewall features include: • Denial of Service (DoS) protection Automatically detects and thwarts Denial of Service (DoS) attacks such as Ping of Death, SYN Flood, LAND Attack and IP Spoofing.

  • Page 17: Content Filtering

    Auto Sensing and Auto Uplink™ LAN Ethernet Connections With its internal 4-port 10/100 switch, the DG824M can connect to either a 10 Mbps standard Ethernet network or a 100 Mbps Fast Ethernet network. The local LAN ports are autosensing and capable of full-duplex or half-duplex operation.

  • Page 18: Easy Installation And Management

    Dynamic DNS services to register your dynamic IP address. Easy Installation and Management You can install, configure, and operate the DG824M within minutes after connecting it to the network. The following features simplify installation and management tasks: •...
  • Page 19 These functions allow you to test Internet connectivity and reboot the gateway. You can use these diagnostic functions directly from the DG824M when your are connect on the LAN or when you are connected over the Internet via the remote management function.

  • Page 20: What's In The Box

    • Warranty and Support Information Cards If any of the parts are incorrect, missing, or damaged, contact your NETGEAR dealer. Keep the carton, including the original packing materials, in case you need to return the product for repair. The Gateway’s Front Panel The DG824M Wireless ADSL Modem Gateway front panel shown below contains status LEDs.
  • Page 21 You can use the LEDs to verify various conditions. front panel of the router. These LEDs are green when lit. Table 1-1. LED Descriptions Label Activity Power Test Internet Blink -- Amber On -- Green Blink -- Green Wireless On (Green) Blink (Green) On (Amber) Blink (Amber)

  • Page 22: The Gateway's Rear Panel

    The Gateway’s Rear Panel The rear panel of the DG824M Wireless ADSL Modem Gateway connections. Figure 1-2: DG824M Rear Panel Viewed from left to right, the rear panel contains the following elements: • AC power adapter outlet • Factory Default Reset push button •...

  • Page 23: Connecting The Gateway To The Internet

    Doing so will prevent the built-in DSL modem in the DG824M from establishing a connection to the Internet. If you have any doubts about this, it is recommended that you connect the DG824 directly to the ADSL line.

  • Page 24: Computer Hardware Requirements

    Computer Hardware Requirements To use the DG824M gateway on your network, each computer must have an installed Ethernet Network Interface Card (NIC) and an Ethernet cable, or a 802.11b wireless adapter. If the computer will connect to your network at 100 Mbps, you must use a Category 5 (CAT5) cable such as the one provided with your gateway.
  • Page 25 For Macintosh computers, open the TCP/IP or Network control panel. • You may also refer to the DG824M Resource CD for the NETGEAR Router ISP Guide which provides Internet connection information for many ISPs. Once you locate your Internet configuration parameters, you may want to record them on the page below according to the instructions in 2-4.

  • Page 26: Procedure 2-1: Record Your Internet Connection Information

    Print this page. Fill in the configuration parameters from your Internet Service Provider (ISP). ISP Multiplexing Method and Virtual Circuit Number: The default settings of your DG824M Wireless ADSL Modem Gateway will work fine for most ISPs. However, some ISPs use a specific Multiplexing Method or a Virtual Circuit Number for either the VPI or VCI.

  • Page 27: Connecting The Dg824M Wireless Adsl Modem Gateway To Your Lan

    Connecting the DG824M Wireless ADSL Modem Gateway to Your LAN This section provides instructions for connecting the DG824M gateway. Note: The Resource CD included with your gateway contains an animated Installation Assistant to help you through this procedure. Procedure 2-2: Connecting the Gateway...
  • Page 28 Connect the DG824M. Turn off your computer. Connect the cable (A) from the DG824M ADSL port to your ADSL outlet, being sure to properly connect the wires as shown in the illustration below. Wireless ADSL Modem Gateway DG824M Figure 2-1: Connect the ADSL Cable Note: The illustration above depicts a microfilter splitter specifically designed to enable a phone and ADSL modem to connect to the same phone line wall jack outlet.
  • Page 29 Connect the Ethernet cable (B) from your DG824M’s LAN port to a computer. Wireless ADSL Modem Gateway DG824M Figure 2-2: Connect the gateway to a computer Note: The DG824M gateway incorporates Auto Uplink port will automatically sense whether the cable plugged into the port should have a 'normal' connection (e.g.
  • Page 30 Note: For instructions on connecting computers to the DG824M via wireless links, please see the Chapter 3, “Wireless 2. Log in to the DG824M. Note: If you usually run software to log in to your Internet connection, do not run that software.

  • Page 31: Connecting The Dg824M To The Internet

    ADSL transmissions use your phone wires and can interfere with the quality of your phone service. A microfilter eliminates such problems. Depending on the country of purchase, a microfilter may be included in your DG824M package. Locate a suitable microfilter.

  • Page 32: Procedure 2-3: Auto-Detecting Your Internet Connection Type

    • Let the DG824M auto-detect the type of Internet connection you have and configure it. • Manually choose which type of Internet connection you have and configure it. These options are described below. In either case, unless your ISP automatically assigns your...

  • Page 33: Procedure 2-4: Wizard-Detected Pppoe Login Account Setup

    • Fixed IP address assignment Next, the Setup Wizard will report which connection type it has discovered, and then display the appropriate configuration menu. If the Setup Wizard finds no connection, you will be prompted to check the physical connection between your gateway and the ADSL line. When the connection is properly made, the gateway’s Internet LED should be on.

  • Page 34: Procedure 2-5: Wizard-Detected Pppoa Login Account Setup

    Click on Apply to save your settings. Click on the Test button to test your Internet connection. If the NETGEAR website does not appear within one minute, refer to Procedure 2-5: Wizard-Detected PPPoA Login Account Setup...
  • Page 35 Click on Apply to save your settings. Click on the Test button to test your Internet connection. If the NETGEAR website does not appear within one minute, refer to Connecting the Gateway to the Internet Chapter 7, “Troubleshooting”.

  • Page 36: Procedure 2-6: Wizard-Detected Dynamic Ip Account Setup

    A DNS server is a host on the Internet that translates Internet names (such as www.netgear.com) to numeric IP addresses. Typically your ISP transfers the IP address of one or two DNS servers to your gateway during login. If the ISP does not transfer an address, you must obtain it from the ISP and enter it manually here.

  • Page 37: Procedure 2-7: Wizard-Detected Fixed Ip (Static) Account Setup

    MAC address. Click on Apply to save your settings. Click on the Test button to test your Internet connection. If the NETGEAR website does not appear within one minute, refer to Procedure 2-7: Wizard-Detected Fixed IP (Static) Account Setup...

  • Page 38: Testing Your Internet Connection

    PCs after configuring the gateway for these settings to take effect. Click on Apply to save the settings. Click on the Test button to test your Internet connection. If the NETGEAR website does not appear within one minute, refer to Testing Your Internet Connection After completing the Internet connection configuration, your can test your Internet connection.

  • Page 39: Manually Configuring Your Internet Connection

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Manually Configuring Your Internet Connection You can manually configure your gateway using the menu below, or you can allow the Setup Wizard to determine your configuration as described in the previous section.

  • Page 40: Procedure 2-8: Manual Configuration

    Procedure 2-8: Manual Configuration You can manually configure the gateway in the Basic Settings menu shown in these steps: If your ISP ADSL service requires setting the Multiplexing Method and VPI/VCI parameters, click on the ADSL Settings link from the main menu, fill in the settings your ISP provided, and click Apply.
  • Page 41 A DNS server is a host on the Internet that translates Internet names (such as www.netgear.com) to numeric IP addresses. Typically your ISP transfers the IP address of one or two DNS servers to your gateway during login. If the ISP does not transfer an address, you must obtain it from the ISP and enter it manually here.
  • Page 42 Reference Manual for the Model DG824M Wireless ADSL Modem Gateway 2-20 Connecting the Gateway to the Internet...

  • Page 43: Wireless Configuration

    Chapter 3 Wireless Configuration This chapter describes how to configure the wireless features of your DG824M Wireless ADSL Modem Gateway. Considerations For A Wireless Network In planning your wireless network, you should consider the level of security required. You should also select the physical placement of your gateway in order to maximize the network speed.

  • Page 44: Wireless Settings

    Note: Failure to follow these guidelines can result in significant performance degradation or inability to wirelessly connect to the router. For best results, place your gateway: • Near the center of the area in which your PCs will operate. • In an elevated location such as a high shelf.

  • Page 45: Procedure 3-1: Configuring Basic Wireless Network Settings

    The default SSID is Wireless. Note: The SSID of any wireless access adapters must match the SSID you configure in the DG824M Wireless ADSL Modem Gateway. If they do not match, you will not get a wireless connection to the DG824M.

  • Page 46: Using The Wireless Access By Mac Address Feature

    PCs based on their MAC addresses. You can allow access by: The Trusted PCs window displays a list of MAC addresses that will be allowed to connect to the gateway. These PCs must also be configured with SSID and WEP settings which match those of the DG824M. Wireless Configuration...

  • Page 47: Procedure 3-2: Restricting Wireless Access By Mac Address

    Procedure 3-2: Restricting Wireless Access by MAC Address To restrict access based on MAC addresses, follow these steps: From the Wireless Settings menu, click the Trusted PCs button to display the Wireless Access menu, shown below: Figure 3-2. Wireless Access menu Click the Add button.

  • Page 48: Configuring Wired Equivalent Privacy (Wep)

    Configuring Wired Equivalent Privacy (WEP) Figure 3-3. Wireless WEP menu In the Wireless Settings menu you can configure WEP data encryption using the following parameters: • Authentication Type Normally this can be left at the default value of Automatic. If that fails, select the appropriate value - Open System or Shared Key.

  • Page 49: Configuring Wep (Wired Equivalent Privacy)

    • Automatic - Enter a word or group of printable characters in the Passphrase box and click the Generate button. The keys will be automatically populated with key values. For 64-bit encryption, all four keys are generated from a single passphrase. With 128-bit encryption, each key can be generated with a different pasphrase.
  • Page 50 • Automatic - Enter a word or group of printable characters in the Passphrase box and click the Generate button. Select which of the four keys will be active. Click Apply to save any settings from this menu. Wireless Configuration...

  • Page 51: Protecting Your Network

    This chapter describes how to use the basic firewall features of the DG824M Wireless ADSL Modem Gateway to protect your network. Protecting Access to Your DG824M Wireless ADSL Modem Gateway For security reasons, the gateway has its own user name and password. Also, after a period of inactivity for a set length of time, the administrator login will automatically disconnect.

  • Page 52: Procedure 4-1: Changing The Administrator Login Timeout

    From the Main Menu of the browser interface, under the Maintenance heading, select Set Password to bring up the menu shown in Figure 4-2: Set Password menu To change the password, first enter the old password, and then enter the new password twice. Click Apply to save your changes.

  • Page 53: Configuring Basic Firewall Services

    The section below explains how to configure your Procedure 4-2: Block Keywords and Sites The DG824M gateway allows you to restrict access to Internet content based on functions such as Java or Cookies, Web addresses and Web address keywords. Log in to the gateway at its default LAN address of http://192.168.0.1 with its default User Name of admin, default password of password, or using whatever Password and LAN address you have chosen for the gateway.
  • Page 54 Click on the Block Sites link of the Security menu. Figure 4-3: Block Sites menu To enable keyword blocking, check “Turn keyword blocking on”, enter a keyword or domain in the Keyword box, click Add Keyword, then click Apply. Some examples of Keyword application follow: •...

  • Page 55: Rules

    A firewall has two default rules, one for inbound traffic and one for outbound. The default rules of the DG824M are: • Inbound: Block all access from outside except responses to requests from the LAN side.
  • Page 56 To access the Rules configuration of the DG824M, click the Rules link on the main menu, then click Add for either an Outbound or Inbound Service. Figure 4-4: Rules menu • To edit an existing rule, select its button on the left side of the table and click Edit.

  • Page 57: Inbound Rules (Port Forwarding)

    Inbound Rules (Port Forwarding) Because the DG824M uses Network Address Translation (NAT), your network presents only one IP address to the Internet, and outside users cannot directly address any of your local computers. However, by defining an inbound rule you can make a local server (for example, a web server or game server) visible and available to the Internet.
  • Page 58 The parameters are: • Service From this list, select the application or service to be allowed or blocked. The list already displays many common services, but you are not limited to these choices. Use the Add Services menu to add any additional services or applications that do not already appear. •...

  • Page 59: Inbound Rule Example: Allowing Videoconference From Restricted Addresses

    Inbound Rule Example: Allowing Videoconference from Restricted Addresses If you want to allow incoming videoconferencing to be initiated from a restricted range of outside IP addresses, such as from a branch office, you can create an inbound rule. In the example shown Figure 4-6, CU-SeeMe connections are allowed only from a specified range of external IP addresses.

  • Page 60: Outbound Rules (Service Blocking)

    Outbound Rules (Service Blocking) The DG824M allows you to block the use of certain Internet services by PCs on your network. This is called service blocking or port filtering. You can define an outbound rule to block Internet access from a local PC based on: •...
  • Page 61 The parameters are: • Service From this list, select the application or service to be allowed or blocked. The list already displays many common services, but you are not limited to these choices. Use the Add Services menu to add any additional services or applications that do not already appear. •...

  • Page 62: Order Of Precedence For Rules

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Order of Precedence for Rules As you define new rules, they are added to the tables in the Rules menu, as shown in Figure 4-8: Figure 4-8: Rules table with examples...

  • Page 63: Services

    1024 to 65535 by the authors of the application. Although the DG824M already holds a list of many service port numbers, you are not limited to these choices. Use the procedure below to create your own service definitions.

  • Page 64: Setting Times And Scheduling Firewall Services

    Setting Times and Scheduling Firewall Services The DG824M gateway uses the Network Time Protocol (NTP) to obtain the current time and date from one of several Network Time Servers on the Internet. In order to localize the time for your log entries, you must select your Time Zone from the list.
  • Page 65 Click on the Schedule link of the Security menu to display menu shown below. Figure 4-11: Schedule Services menu Select your Time Zone. This setting will be used for the blocking schedule according to your local time zone and for time-stamping log entries. Check the Daylight Savings Time box if your time zone is currently in daylight savings time.

  • Page 66: Procedure 4-5: Scheduling Firewall Services

    Procedure 4-5: Scheduling Firewall Services If you enabled services blocking in the Block Services menu or Port forwarding in the Ports menu, you can set up a schedule for when blocking occurs or when access isn't restricted. Log in to the gateway at its default LAN address of http://192.168.0.1 with its default User Name of admin, default password of password, or using whatever Password and LAN address you have chosen for the gateway.

  • Page 67: Managing Your Network

    ADSL Modem Gateway. Backing Up, Restoring, or Erasing Your Settings The configuration settings of the DG824M gateway are stored in a configuration file in the gateway. This file can be backed up to your computer, restored, or reverted to factory default settings.
  • Page 68 From the Maintenance heading of the Main Menu, select the Settings Backup menu as seen in Figure 5-1. Figure 5-1: Settings Backup menu Click Backup to save a copy of the current settings. Store the file on a computer on your network. .cfg Managing Your Network...

  • Page 69: Upgrading The Gateway's Firmware

    Rear Panel“ on page 1-8. Upgrading the Gateway’s Firmware The software of the DG824M gateway is stored in FLASH memory, and can be upgraded as new software is released by NETGEAR. Managing Your Network file, click the Restore button to upload the file to the .cfg...

  • Page 70: Procedure 5-1: Gateway Upgrade

    Upgrade files can be downloaded from NETGEAR's website. If the upgrade file is compressed (.ZIP file), you must first extract the binary (.BIN or .IMG) file before uploading it to the gateway. Procedure 5-1: Gateway Upgrade Note: NETGEAR recommends that you back up your configuration before doing a firmware upgrade.

  • Page 71: Network Management Information

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Network Management Information The DG824M provides a variety of status and usage information which is discussed below. Viewing Gateway Status and Usage Statistics From the Main Menu, under Maintenance, select Gateway Status to view the screen in Figure 5-3.
  • Page 72 This screen shows the following parameters: Table 5-1. Menu 3.2 - Gateway Status Fields Field System Name Firmware Version WAN Port MAC Address IP Address DHCP IP Subnet Mask Domain Name Servers (DNS) LAN Port MAC Address IP Address IP Subnet Mask DHCP ADSL Modem ADSL Firmware Version...
  • Page 73 Click on the “Show Statistics” button to display gateway usage statistics, as shown in below: Figure 5-4: Gateway Statistics screen This screen shows the following statistics:. Table 5-1. Gateway Statistics Fields Field Description WAN, LAN, or The statistics for the WAN (Internet), LAN (local), and Serial ports. For each port, the Serial Port screen displays: Status...
  • Page 74 Click on the “Show WAN Status” button to display gateway WAN connection status, as shown in Figure 5-5 below: Figure 5-5: Gateway WAN Status screen Clicking the Renew button updates the status information. This screen shows the following statistics:. Table 5-1. Gateway Statistics Fields Field Description...

  • Page 75: Viewing Attached Devices

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Viewing Attached Devices The Attached Devices menu contains a table of all IP devices that the gateway has discovered on the local network. From the Main Menu of the browser interface, under the Maintenance heading,...

  • Page 76: Viewing, Selecting, And Saving Logged Information

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Viewing, Selecting, and Saving Logged Information The gateway will log security-related events such as denied incoming service requests, hacker probes, and administrator logins. If you enabled content filtering in the Block Sites menu, the Logs page shows you when someone on your network tried to access a blocked site.

  • Page 77: Selecting What Information To Log

    Log entries are described in Table 5-1. Security Log entry descriptions Field Description Date and Time The date and time the log entry was recorded. Description or The type of event and what action was taken if any. Action Source IP The IP address of the initiating device for this log entry.

  • Page 78: Saving Log Files On A Server

    Following are examples of log messages. In all cases, the log entry shows the timestamp as: Day, Year-Month-Date Hour:Minute:Second Activation and Administration Tue, 2002-05-21 18:48:39 - NETGEAR activated [This entry indicates a power-up or reboot with initial time entry.] Tue, 2002-05-21 18:55:00 - Administrator login successful - IP:192.168.0.2 Thu, 2002-05-21 18:56:58 - Administrator logout - IP:192.168.0.2...

  • Page 79: Enabling Security Event E-Mail Notification

    Enabling Security Event E-mail Notification In order to receive logs and alerts by e-mail, you must provide your e-mail information in the E-Mail subheading: • Turn e-mail notification on Check this box if you wish to receive e-mail logs and alerts from the gateway. •...
  • Page 80 • Send alert immediately Check this box if you would like immediate notification of a significant security event, such as a known attack, port scan, or attempted access to a blocked site. • Send logs according to this schedule Specifies how often to send the logs: Hourly, Daily, Weekly, or When Full. –...

  • Page 81: Running Diagnostic Utilities And Rebooting The Router

    Running Diagnostic Utilities and Rebooting the Router The DG824M gateway has a diagnostics feature. You can use the diagnostics menu to perform the following functions from the gateway: • Ping an IP Address to test connectivity to see if you can reach a remote host.

  • Page 82: Enabling Remote Management

    Select the Allow Remote Management check box. Specify what external addresses will be allowed to access the gateway’s remote management. For security, NETGEAR recommends that you restrict access to as few external IP addresses as practical. To allow access from any IP address on the Internet, select Everyone.
  • Page 83 Click Apply to have your changes take effect. When accessing your gateway from the Internet, you will type your gateway's WAN IP address in your browser's Address (in IE) or Location (in Netscape) box, followed by a colon (:) and the custom port number. For example, if your external address is 134.177.0.123 and you use port number 8080, enter in your browser: http://134.177.0.123:8080 Note: In this case, the http:// must be included in the address.
  • Page 84 Reference Manual for the Model DG824M Wireless ADSL Modem Gateway 5-18 Managing Your Network...

  • Page 85: Advanced Configuration

    This chapter describes how to configure the advanced features of your DG824M Wireless ADSL Modem Gateway. Configuring Advanced Security The DG824M Wireless ADSL Modem Gateway provides a variety of advanced features, such as: • Setting up a Demilitarized Zone (DMZ) Server •...

  • Page 86: Respond To Ping On Internet Wan Port

    Incoming traffic from the Internet is normally discarded by the gateway unless the traffic is a response to one of your local computers or a service that you have configured in the Ports menu. Instead of discarding this traffic, you can have it forwarded to one computer on your network. This computer is called the Default DMZ Server.

  • Page 87: Configuring Lan Ip Settings

    Configuring LAN IP Settings The LAN IP Setup menu allows configuration of LAN IP services such as DHCP and RIP. These features can be found under the Advanced heading in the Main Menu of the browser interface. LAN TCP/IP Setup The gateway is shipped preconfigured to use private IP addresses on the LAN side, and to act as a DHCP server.

  • Page 88: Mtu Size

    The LAN TCP/IP Setup parameters are: • IP Address This is the LAN IP address of the gateway. • IP Subnet Mask This is the LAN Subnet Mask of the gateway. Combined with the IP address, the IP Subnet Mask allows a device to know which other addresses are local to it, and which must be reached through a gateway or router.

  • Page 89: Dhcp

    Any packets sent through the gateway that are larger than the configured MTU size will be repackaged into smaller packets to meet the MTU requirement. To change the MTU size: Under MTU Size, select Custom. Enter a new size between 64 and 1500. For PPPoE, use 1492. Click Apply to save the new configuration.

  • Page 90: Reserved Ip Addresses

    hort for Windows Internet Naming Service Server, determines the IP • WINS Server, s address associated with a particular Windows computer. A WINS server records and reports a list of names and IP address of Windows PCs on its local network. If you connect to a remote network that contains a WINS server, enter the server’s IP address here.

  • Page 91: Configuring Dynamic Dns

    From the Main Menu, under Advanced, click the LAN IP Setup link to view the menu, shown Figure 6-3 Figure 6-3: LAN IP Setup Menu Enter the TCP/IP, MTU, DHCP, or Reserved IP parameters. Click Apply to save your changes. Configuring Dynamic DNS If your network has a permanently assigned IP address, you can register a domain name and have that name linked with your IP address by public Domain Name Servers (DNS).

  • Page 92: Procedure 6-2: Configure Dynamic Dns

    The gateway contains a client that can connect to a dynamic DNS service provider. To use this feature, you must select a service provider and obtain an account with them. After you have configured your account information in the gateway, whenever your ISP-assigned IP address changes, your gateway will automatically contact your dynamic DNS service provider, log in to your account, and register your new IP address.

  • Page 93: Using Static Routes

    Using Static Routes Static Routes provide additional routing information to your gateway. Under normal circumstances, the gateway has adequate routing information after it has been configured for Internet access, and you do not need to configure additional static routes. You must configure static routes only for unusual cases such as multiple routers or multiple IP subnets located on your network.

  • Page 94: Procedure 6-3: Configuring Static Routes

    Procedure 6-3: Configuring Static Routes Log in to the gateway at its default LAN address of http://192.168.0.1 with its default User Name of admin, default password of password, or using whatever User Name, Password and LAN address you have chosen for the gateway. From the Main Menu of the browser interface, under Advanced, click on Static Routes to view the Static Routes menu, shown in Figure 6-4: Static Routes Table...
  • Page 95 Select Active to make this route effective. Select Private if you want to limit access to the LAN only. The static route will not be reported in RIP. Type the Destination IP Address of the final destination. Type the IP Subnet Mask for this destination. If the destination is a single host, type 255.255.255.255.
  • Page 96 Reference Manual for the Model DG824M Wireless ADSL Modem Gateway 6-12 Advanced Configuration...

  • Page 97: Troubleshooting

    This chapter gives information about troubleshooting your DG824M Wireless ADSL Modem Gateway. After each problem description, instructions are provided to help you diagnose and solve the problem. For the common problems listed, go to the section indicated. • Is the gateway on? •...

  • Page 98: Power Led Not On

    • Check that you are using the 12 V DC power adapter supplied by NETGEAR for this product. If the error persists, you have a hardware problem and should contact technical support.

  • Page 99: Troubleshooting The Web Configuration Interface

    Be sure you are using the correct cable: — When connecting the gateway’s WAN ADSL port, use the cable that was supplied with the DG824M. Troubleshooting the Web Configuration Interface If you are unable to access the gateway’s Web Configuration interface from a PC on your local network, check the following: •...

  • Page 100: Troubleshooting The Isp Connection

    • When entering configuration settings, be sure to click the APPLY button before moving to another menu or tab, or your changes are lost. • Click the Refresh or Reload button in the Web browser. The changes may have occurred, but the Web browser may be caching the old configuration.

  • Page 101: Wan Led Off

    ADSL service. It may be necessary to use a swapper if you ADSL signal is on pins 1 and 4 or the RJ-11 jack. The DG824M gateway uses pins 2 and 3.

  • Page 102: Troubleshooting Pppoe Or Pppoa

    • Your ISP may check for your PC's host name. Assign the PC Host Name of your ISP account to the gateway in the browser-based Setup Wizard. • Your ISP only allows one Ethernet MAC address to connect to Internet, and may check for your PC’s MAC address.

  • Page 103: Troubleshooting A Tcp/Ip Network Using The Ping Utility

    A DNS server is a host on the Internet that translates Internet names (such as www addresses) to numeric IP addresses. Typically your ISP will provide the addresses of one or two DNS servers for your use. If you entered a DNS address during the gateway’s configuration, reboot your PC and verify the DNS address as described in C-6.

  • Page 104: Testing The Path From Your Pc To A Remote Device

    — Make sure the LAN port LED is on. If the LED is off, follow the instructions in or WAN Port LEDs Not — Check that the corresponding Link LEDs are on for your network interface card and for the hub ports (if any) that are connected to your workstation and router. •...

  • Page 105: Restoring The Default Configuration And Password

    The E-Mail menu in the Content Filtering section displays the current date and time of day. The DG824M gateway uses the Network Time Protocol (NTP) to obtain the current time from one of several Network Time Servers on the Internet. Each entry in the log is stamped with the date and time of day.
  • Page 106 Reference Manual for the Model DG824M Wireless ADSL Modem Gateway 7-10 Troubleshooting...

  • Page 107: Technical Specifications

    This appendix provides technical specifications for the DG824M Wireless ADSL Modem Gateway. Network Protocol and Standards Compatibility Data and Routing Protocols: Power Adapter North America: United Kingdom, Australia: Europe: Japan: All regions (output): Physical Specifications Dimensions: Weight: Environmental Specifications Operating temperature:...
  • Page 108 Operating humidity: Electromagnetic Emissions Meets requirements of: Interface Specifications LAN: WAN: 90% maximum relative humidity, noncondensing FCC Part 15 Class B VCCI Class B EN 55 022 (CISPR 22), Class B 10BASE-T or 100BASE-Tx, RJ-45 ADSL, Dual RJ-11, pins 2 and 3 T1.413, G.DMT, G.Lite ITU Annex B Technical Specifications...

  • Page 109: Network And Routing Basics

    Appendix B Network and Routing Basics This chapter provides an overview of IP networks, routing, and wireless networking. Related Publications As you read this document, you may be directed to various RFC documents for further information. An RFC is a Request For Comment (RFC) published by the Internet Engineering Task Force (IETF), an open organization that defines the architecture and operation of the Internet.

  • Page 110: What Is A Router

    Information Protocol (RIP). Using RIP, routers periodically update one another and check for changes to add to the routing table. The DG824M gateway supports both the older RIP-1 and the newer RIP-2 protocols. Among other improvements, RIP-2 supports subnet and multicast protocols. RIP is not required for most home applications.
  • Page 111 The latter version is easier to remember and easier to enter into your computer. In addition, the 32 bits of the address are subdivided into two parts. The first part of the address identifies the network, and the second part identifies the host node or station on the network. The dividing point may vary depending on the address range and the application.

  • Page 112: Netmask

    • Class C Class C addresses can have 254 hosts on a network. Class C addresses use 24 bits for the network address and eight bits for the node. They are in this range: 192.0.1.x to 223.255.254.x. • Class D Class D addresses are used for multicasts (messages sent to many hosts).

  • Page 113: Subnet Addressing

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway As a shorter alternative to dotted-decimal notation, the netmask may also be expressed in terms of the number of ones from the left. This number is appended to the IP address, following a backward slash ( / ), as “/n.”...
  • Page 114 Although the preceding example uses the entire third octet for a subnet address, note that you are not restricted to octet boundaries in subnetting. To create more network numbers, you need only shift some bits from the host address to the network address. For instance, to partition a Class C network number (192.68.135.0) into two, you shift one bit from the host address to the network address.

  • Page 115: Private Ip Addresses

    255.255.255.248 255.255.255.252 255.255.255.254 255.255.255.255 NETGEAR strongly recommends that you configure all hosts on a LAN segment to use the same netmask for the following reasons: • So that hosts recognize local IP broadcast packets When a device broadcasts to its segment neighbors, it uses a destination address of the local network address with all ones for the host address.

  • Page 116: Single Ip Address Operation Using Nat

    The DG824M gateway employs an address-sharing method called Network Address Translation (NAT). This method allows several networked PCs to share an Internet account using only a single IP address, which may be statically or dynamically assigned by your ISP.

  • Page 117: Mac Addresses And Address Resolution Protocol

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway This scheme offers the additional benefit of firewall-like protection because the internal LAN addresses are not available to the Internet through the translated connection. All incoming inquiries are filtered out by the router. This filtering can prevent intruders from probing your system.

  • Page 118: Domain Name Server

    IP addresses, along with other information (such as gateway and DNS addresses) that it may assign to the other devices on the network. The DG824M gateway has the capacity to act as a DHCP server.

  • Page 119: Ethernet Cabling

    Ethernet Cabling Although Ethernet networks originally used thick or thin coaxial cable, most installations currently use unshielded twisted pair (UTP) cabling. The UTP cable contains eight conductors, arranged in four twisted pairs, and terminated with an RJ45 type connector. A normal "straight-through" UTP Ethernet cable follows the EIA568B standard wiring as described in Table 7-1.

  • Page 120: Cable Quality

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Cable Quality A twisted pair Ethernet network operating at 10 Mbits/second (10BASE-T) will often tolerate low quality cables, but at 100 Mbits/second (10BASE-Tx) the cable must be rated as Category 5, or "Cat 5", by the Electronic Industry Association (EIA).

  • Page 121: Stateful Packet Inspection

    Wireless Networking The DG824M gateway conforms to the Institute of Electrical and Electronics Engineers (IEEE) 802.11b standard for wireless LANs (WLANs). On an 802.11b wireless link, data is encoded using direct-sequence spread-spectrum (DSSS) technology and is transmitted in the unlicensed radio spectrum at 2.5GHz.

  • Page 122: Ad Hoc Mode (Peer-To-Peer Workgroup

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Ad Hoc Mode (Peer-to-Peer Workgroup) In an ad hoc network, computers are brought together as needed; thus, there is no structure or fixed points to the network - each node can generally communicate with any other node. There is no Access Point involved in this configuration.

  • Page 123: Authentication And Wep Encryption

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Authentication and WEP Encryption The absence of a physical connection between nodes makes the wireless links vulnerable to eavesdropping and information theft. To provide a certain level of security, the IEEE 802.11 standard has defined two types of authentication methods, Open System and Shared Key.
  • Page 124 The radio frequency channels used are listed in Table 7-2. 802.11 Radio Frequency Channels Channel Center Frequency 2412Mhz 2417Mhz 2422Mhz 2427Mhz 2432Mhz 2437Mhz 2442Mhz 2447Mhz 2452Mhz 2457Mhz 2462Mhz 2467Mhz 2472Mhz Note: The available channels supported by the wireless products in various countries are different. The preferred channel separation between the channels in neighboring wireless networks is 25 MHz (5 channels).

  • Page 125: Appendix C Preparing Your Network

    This appendix describes how to prepare your network to connect to the Internet through the Model RP614 Web Safe Router and how to verify the readiness of broadband Internet service from an Internet service provider (ISP). Note: If an ISP technician configured your computer during the installation of a broadband modem, or if you configured it using instructions provided by your ISP, you may need to copy the current configuration information for use in the configuration of your firewall.

  • Page 126: Configuring Windows 95, 98, And Me For Tcp/Ip Networking

    • All versions of UNIX or Linux include TCP/IP components. Follow the instructions provided with your operating system or networking software to install TCP/IP on your computer. In your IP network, each PC and the firewall must be assigned a unique IP addresses. Each PC must also have certain other IP configuration information such as a subnet mask (netmask), a domain name server (DNS) address, and a default gateway address.
  • Page 127 You must have an Ethernet adapter, the TCP/IP protocol, and Client for Microsoft Networks. Note: It is not necessary to remove any other network components shown in the Network window in order to install the adapter, TCP/IP, or Client for Microsoft Networks.

  • Page 128: Enabling Dhcp To Automatically Configure Tcp/Ip Settings In Windows 95B, 98, And Me

    If you need Client for Microsoft Networks: Click the Add button. Select Client, and then click Add. Select Microsoft. Select Client for Microsoft Networks, and then click OK. Restart your PC for the changes to take effect. Enabling DHCP to Automatically Configure TCP/IP Settings in Windows 95B, 98, and Me After the TCP/IP protocol components are installed, each PC must be assigned specific information about itself and resources that are available on its network.
  • Page 129 Verify the following settings as shown: • Client for Microsoft Network exists • Ethernet adapter is present • TCP/IP is present • Primary Network Logon is set to Windows logon Click on the Properties button. The following TCP/IP Properties window will display.

  • Page 130: Selecting Windows' Internet Access Method

    • By default, the IP Address tab is open on this window. • Verify the following: Obtain an IP address automatically is selected. If not selected, click in the radio button to the left of it to select it. This setting is required to enable the DHCP server to automatically assign an IP address.

  • Page 131: Configuring Windows Nt4, 2000 Or Xp For Ip Networking

    From the drop-down box, select your Ethernet adapter. The window is updated to show your settings, which should match the values below if you are using the default TCP/IP settings that NETGEAR recommends for connecting through a router or gateway: •...

  • Page 132: Dhcp Configuration Of Tcp/Ip In Windows Xp, 2000, Or Nt4

    DHCP Configuration of TCP/IP in Windows XP, 2000, or NT4 You will find there are many similarities in the procedures for different Windows systems when using DHCP to configure TCP/IP. The following steps will walk you through the configuration process for each of these versions of Windows.
  • Page 133 • Now you should be at the Local Area Network Connection Status window. This box displays the connection status, duration, speed, and activity statistics. • Administrator logon access rights are needed to use this window. • Click the Properties button to view details about the connection.

  • Page 134: Dhcp Configuration Of Tcp/Ip In Windows 2000

    Windows on your network. DHCP Configuration of TCP/IP in Windows 2000 Once again, after you have installed the network card, TCP/IP for Windows 2000 is configured. TCP/IP should be added by default and set to DHCP without your having to configure it.
  • Page 135 • Click on the My Network Places icon on the Windows desktop. This will bring up a window called Network and Dial-up Connections. • Right click on Local Area Connection and select Properties. • The Local Area Connection Properties dialog box appears. •...
  • Page 136 • With Internet Protocol (TCP/IP) selected, click on Properties to open the Internet Protocol (TCP/IP) Properties dialogue box. • Verify that • Obtain an IP address automatically is selected. • Obtain DNS server address automatically is selected. • Click OK to return to Local Area Connection Properties.

  • Page 137: Dhcp Configuration Of Tcp/Ip In Windows Nt4

    DHCP Configuration of TCP/IP in Windows NT4 Once you have installed the network card, you need to configure the TCP/IP environment for Windows NT 4.0. Follow this procedure to configure TCP/IP with DHCP in Windows NT 4.0. • Choose Settings from the Start Menu, and then select Control Panel.
  • Page 138 Reference Manual for the Model RP614 Web Safe Router • Highlight the TCP/IP Protocol in the Network Protocols box, and click on the Properties button. C-14 Preparing Your Network...

  • Page 139: Verifying Tcp/Ip Properties For Windows Xp, 2000, And Nt4

    Type ipconfig /all Your IP Configuration information will be listed, and should match the values below if you are using the default TCP/IP settings that NETGEAR recommends for connecting through a router or gateway: • The IP address is between 192.168.0.2 and 192.168.0.254 •...

  • Page 140: Configuring The Macintosh For Tcp/Ip Networking

    • The default gateway is 192.168.0.1 Type exit Configuring the Macintosh for TCP/IP Networking Beginning with Macintosh Operating System 7, TCP/IP is already installed on the Macintosh. On each networked Macintosh, you will need to configure TCP/IP to use DHCP. MacOS 8.6 or 9.x From the Apple menu, select Control Panels, then TCP/IP.

  • Page 141: Verifying Tcp/Ip Properties For Macintosh Computers

    TCP/IP Control Panel. From the Apple menu, select Control Panels, then TCP/IP. The panel is updated to show your settings, which should match the values below if you are using the default TCP/IP settings that NETGEAR recommends: •...

  • Page 142: Verifying The Readiness Of Your Internet Account

    Reference Manual for the Model RP614 Web Safe Router Verifying the Readiness of Your Internet Account For broadband access to the Internet, you need to contract with an Internet service provider (ISP) for a single-user Internet access account using a cable modem or DSL modem. This modem must be a separate physical box (not a card) and must provide an Ethernet port intended for connection to a Network Interface Card (NIC) in a computer.

  • Page 143: Obtaining Isp Configuration Information For Windows Computers

    • An IP address and subnet mask • A gateway IP address, which is the address of the ISP’s router • One or more domain name server (DNS) IP addresses • Host name and domain suffix For example, your account’s full server names may look like this: mail.xxx.yyy.com In this example, the domain suffix is If any of these items are dynamically supplied by the ISP, your firewall automatically acquires...

  • Page 144: Obtaining Isp Configuration Information For Macintosh Computers

    If an IP address appears under Installed Gateways, write down the address. This is the ISP’s gateway address. Select the address and then click Remove to remove the gateway address. Select the DNS Configuration tab. If any DNS server addresses are shown, write down the addresses. If any information appears in the Host or Domain information box, write it down.

  • Page 145: Restarting The Network

    Reference Manual for the Model RP614 Web Safe Router Restarting the Network Once you’ve set up your computers to work with the firewall, you must reset the network for the devices to be able to communicate correctly. Restart any computer that is connected to the firewall. After configuring all of your computers for TCP/IP networking and restarting them, and connecting them to the local network of your RP614 router, you are ready to access and configure the firewall.
  • Page 146 Reference Manual for the Model RP614 Web Safe Router C-22 Preparing Your Network...

  • Page 147: Glossary

    Domain names are of the form of a registered entity name plus one of a number of predefined top level suffixes such as .com, .edu, .uk, etc. For example, in the address mail.NETGEAR.com, mail is a server name and NETGEAR.com is the domain.
  • Page 148 Dynamic Host DHCP. An Ethernet protocol specifying how a centralized DHCP server can Configuration assign network configuration information to multiple DHCP clients. The Protocol assigned information includes IP addresses, DNS addresses, and gateway (router) addresses. Gateway A local device, usually a router, that connects hosts on a local network to other networks.
  • Page 149 See Network Address Translation. Netmask A number that explains which part of an IP address comprises the network address and which part is the host address on that network. It can be expressed in dotted-decimal notation or as a number appended to the IP address.
  • Page 150 subnet mask See netmask. Unshielded twisted pair. The cable used by 10BASE-T and 100BASE-Tx Ethernet networks. Virtual Channel Identifier. Together with the VPI, defines a Virtual Channel through an ATM network. Used by ATM switching equipment to route data through the network. Virtual Path Identifier.

  • Page 151: Index

    Numerics 802.11b B-13 Account Name 2-14, 2-18 Address Resolution Protocol B-9 ad-hoc mode B-14 Auto Uplink 1-3 backup configuration 5-1 BSSID B-14 Cabling B-11 Cat5 cable 2-2, B-12 Channel 3-3, B-15 configuration automatic by DHCP 1-3 backup 5-1 erasing 5-3 router, initial 2-1 content filtering 1-3 conventions...
  • Page 152 Obtaining ISP Configuration Information C-20 masquerading C-18 metric 6-11 MTU 6-4 multicasting 6-4 NAT C-18 NAT. See Network Address Translation NETGEAR contacting 1-3 netmask translation table B-6 Network Address Translation 1-3, B-8, C-18 Network Time Protocol 4-14, 7-9 NTP 4-14, 7-9...
  • Page 153 placement 3-1 port filtering 4-10 port forwarding 4-7 port forwarding behind NAT B-9 port numbers 4-13 PPP over Ethernet 1-4, C-18 PPPoE 1-4, 2-11, 2-12, C-18 Primary DNS Server 2-12, 2-13, 2-14, 2-16, 2-18, 2-19 protocols Address Resolution B-9 DHCP 1-3, B-10 Routing Information 1-3, B-2 support 1-3 TCP/IP 1-3...
  • Page 154 WEP encryption 1-2 WEP, Keys 3-6 Wi-Fi B-13 Windows, configuring for IP routing C-2, C-7 winipcfg utility C-6 WinPOET C-18 WINS 6-6 Wired Equivalent Privacy. See WEP Wireless Ethernet B-13 World Wide Web 1-iii Index...

Table of Contents