1. Manuals
  2. Brands
  3. Atlantis Land Manuals
  4. Network Router
  5. I-FLY A02-WRA4-54G
  6. User reference manual

Atlantis Land I-Fly A02-WRA4-54G User Reference Manual

Atlantis land adsl wireless router 4 fast ethernet ports, firewall, vpn with 3des accelerator
Hide thumbs Also See for I-Fly A02-WRA4-54G:
Table of Contents

Advertisement

Quick Links

Download this manual

Advertisement

Table of Contents
loading

Related Manuals for Atlantis Land I-Fly A02-WRA4-54G

Summary of Contents for Atlantis Land I-Fly A02-WRA4-54G

  • Page 3 I-FLY WIRELESS ROUTER ADSL Copyright The Atlantis Land logo is a registered trademark of Atlantis Land SpA. All other names mentioned mat be trademarks or registered trademarks of their respective owners. Subject to change without notice. No liability for technical errors and/or omissions.

  • Page 4: Table Of Contents

    CHAPTER 1 1.1 A VERVIEW OF THE 1.2 P ACKAGE 1.3 I-F IRELESS 1.4 I-F IRELESS CHAPTER 2 2.1 C AUTIONS FOR USING THE ADSL ... 6 2.2 T RONT 2.3 T 2.4 C ABLING ... 7 CHAPTER 3 3.1 B EFORE ONFIGURATION 3.2 C...
  • Page 5 3.6.3.1 LAN 3.6.3.1.1 Ethernet 3.6.3.1.2 Wireless 3.8.2.1.3 Wireless Security... 22 3.6.3.1.4 Port Settings 3.6.3.1.5 DHCP 3.6.3.2 WAN 3.6.3.2.1 ISP 3.6.3.2.2 DNS 3.6.3.2.3 ADSL 3.6.3.3 System 3.6.3.3.1 Time Zone 3.6.3.3.2 Remote Access 3.6.3.3.3 Firmware Upgrade 3.6.3.3.4 Backup / Restore 3.6.3.4 Firewall 3.6.3.4.1 Configuring Packet Filter 3.6.3.4.2 INTRUSION DETECTION 3.6.3.4.3 MAC Filtering...
  • Page 6 I-FLY WIRELESS ROUTER ADSL APPENDIX B ... 68 UPPORT ... 68 A02-WRA4-54G_ME01 (May 2004)

  • Page 7: An Overview Of The Adsl Firewall Router

    I-FLY WIRELESS ROUTER ADSL Chapter 1 Introduction 1.1 An Overview of the ADSL Firewall Router Broadband Sharing and IP sharing The I-Fly Wireless Router ADSL supports 4 ports 10/100 Mbps auto-negotiating Fast Ethernet for connection to your local area network (LAN) and downstream (with built-in ADSL modem) rate up to 8Mbps.

  • Page 8: Package Contents

    1.2 Package Contents • One I-Fly Wireless Router ADSL • One CD-ROM containing the online manual • One Quick Start Guide • One RJ-11 ADSL/telephone cable • One CAT-5 LAN cable • One AC-DC power adapter (12VDC, 1A) • One PS2-RS232(DB9) cable If any of the above items are missing, please contact your reseller.
  • Page 9 • Universal Plug and Play (UPnP) and UPnP NAT Traversal: This protocol is used to enable simple and robust connectivity among stand-alone devices and PCs from many different vendors. It makes network simple and affordable for users. UPnP architecture leverages TCP/IP and the Web to enable seamless proximity networking in addition to control and data transfer among networked devices.
  • Page 10 site, the DHCP server can allocate up to 253 client IP addresses and distribute them including IP address, subnet mask as well as DNS IP address to local computers. It provides an easy way to manage the local IP network. •...

  • Page 11: I-F Ly W Ireless R Outer Adsl A Pplication

    I-FLY WIRELESS ROUTER ADSL 1.4 I-Fly Wireless Router ADSL Application...

  • Page 12: Chapter 2

    Place the ADSL Wireless Router on a stable surface. Only use the power adapter that comes with the package. Do NOT upgrade firmware on any Atlantis Land product over a wireless connection. Failure of the device may result. Use only hard-wired network connections.

  • Page 13: The Rear Ports

    2.3 The Rear Ports PORT LINE PS2(Console) (RJ-45 connector) Reset Power Switch 2.4 Cabling The most common problem is bad cabling or ADSL line. Make sure that all connected devices are turned on. On the front of the product is a bank of LEDs. As a first check, verify that the LAN Link and ADSL line LEDs are lit.

  • Page 14: Chapter 3

    The ADSL Wireless Router can be configured with your Web browser. The web browser is included as a standard application in the following operation systems, UNIX, Linux, Mac OS, Windows 95/98/NT/2000/Me, and etc. The product provides a very easy and user-friendly interface for configuration.

  • Page 15: C Onfiguring Pc In W Indows

    3.3 Configuring PC in Windows For Windows 95/98/ME 1. Go to Start / Settings / Control Panel. In the Control Panel, double-click on Network and choose the Configuration tab. 2. Select TCP / IP -> NE2000 Compatible, or the name of any Network Interface Card (NIC) in your PC.
  • Page 16 I-FLY WIRELESS ROUTER ADSL 5. Then select the DNS Configuration tab. 6. Select the Disable DNS radio button and click “OK” to finish the configuration.

  • Page 17: For Windows Nt4.0

    I-FLY WIRELESS ROUTER ADSL For Windows NT4.0 1. Go to Start / Settings / Control Panel. In the Control Panel, double-click on Network and choose the Protocols tab. 2. Select TCP/IP Protocol and click Properties. 3. Select the Obtain an IP address from a DHCP server radio button and click “OK”.

  • Page 18: For Windows 2000

    I-FLY WIRELESS ROUTER ADSL For Windows 2000 1. Go to Start / Settings / Control Panel. In the Control Panel, double-click on Network and Dial-up Connections. 2. Double-click LAN Area Connection. 3. In the LAN Area Connection Status window, click Properties.
  • Page 19 Select Internet Protocol (TCP/IP) and click Properties. Select the Obtain an IP address automatically and the Obtain DNS server address automatically radio buttons. Click “OK” to finish the configuration. I-FLY WIRELESS ROUTER ADSL...

  • Page 20: For Windows Xp

    I-FLY WIRELESS ROUTER ADSL For Windows XP 1. Go to Start / Control Panel (in Classic View). In the Control Panel, double-click on Network Connections. 2. Double-click Local Area Connection 3. In the LAN Area Connection Status window, click Properties.
  • Page 21 I-FLY WIRELESS ROUTER ADSL 4. Select Internet Protocol (TCP/IP) and click Properties. 5. Select the Obtain an IP address automatically and the Obtain DNS server address automatically radio buttons 6. Click “OK” to finish the configuration.

  • Page 22: Settings

    3.4 Factory Default Settings Before configurating this ADSL Wireless Router, you need to know the following default settings. • Username: admin • Password : atlantis • IP Address : 192.168.1.254 • Subnet Mask : 255.255.255.0 • DHCP server is enabled. •...

  • Page 23: Information From The Isp

    LAN Port IP address Subnet Mask DHCP server function 3.5 Information from the ISP Before configuring this device, you have to check with your ISP (Internet Service Provider) what kind of service is provided such as PPPoE, PPPoA, RFC1483, IPoA, or PPTP-to-PPPoA Relaying. Gather the information as illustrated in the following table and keep it for reference.

  • Page 24: Lan And Wan Port Addresses Information From The Configuring With The 3.6.1 Status

    You will get a status report web page when login successfully. At the configuration homepage, the left navigation page where bookmarks are provided links you directly to the desired setup page, including: Status (ARP Table,Routing Table, DHCP Table, PPTP Status, Email Status, Event Log & Error Log) Quick Start Configuration (LAN, WAN, System, Firewall, VPN, QoS, Virtual Server &...

  • Page 25: Error Log

    • IPSec Status • L2TP • Email Status • Event Log • Error Log • NAT Sessions • UPnP PortMap When you click the ARP Table, you will see the data of the IP address of each PC in your LAN as well as its associated MAC address.

  • Page 26: Quick Start

    I-FLY WIRELESS ROUTER ADSL 3.6.2 Quick Start If you use this device to access the Internet through the ISP, this web page is enough for you to configure this router and access the Internet without a problem. Please check Chapter 3.5 (Information from the ISP), then enter the proper values into this web page, click the Apply button and then Save Config to FLASH in the left panel.

  • Page 27: Ethernet

    3.6.3.1.1 Ethernet When you click Ethernet, you get the following picture below. It supports two Ethernet IP addresses in the LAN. With this function, the ADSL Wireless router can support two different IP. Usually, there is only one subnet in LAN and no need to configure a Secondary IP address.

  • Page 28: Wireless Security

    ESSID: Enter the unique ID given to the Access Point (AP), which is already built-in to the router’s wireless interface. To connect to this device, your wireless clients must have the same ESSID as the device. ESSID Broadcast: • Disable: Any client that using the “any” setting cannot discover the Access Point (AP) in question.

  • Page 29: Port Settings

    and Client card settings to generate the same WEP keys. Please note that you do not have to enter Key (0-3) as below when the Passphrase is enabled. Default Used WEP Key: Select the encryption key ID, please refer to Key (0-3) below. Key (0-3): Enter the key to encrypt wireless data.

  • Page 30: Dhcp

    I-FLY WIRELESS ROUTER ADSL default is Auto, which users should keep unless there are specific problems with PCs not being able to access your LAN. IPv4 TOS priority Control (Advanced users): TOS, Type of Services, is the 2nd octet of an IP packet.

  • Page 31: Wan

    I-FLY WIRELESS ROUTER ADSL Primary/Secondary DNS Server Address: Insert here remote DSN server addresses, it will be forwarded to LAN hosts by DHCP server. Use Router as Default Gateway: Specify here which address will be used by LAN hosts as Default Gateway DHCP Relay: Selecting this option the DHCP request performed by LAN host will by delivered by a remote DHCP server passing through ADSL Firewal Router.
  • Page 32 I-FLY WIRELESS ROUTER ADSL • PPPoA Description: User-definable name for the connection. VPI/VCI: Enter the information provided by your ISP. ATM Class: The Quality of Service for ATM layer. NAT: The NAT (Network Address Translation) feature allows multiple users to access the Internet through a single IP account, sharing a single IP address.
  • Page 33 I-FLY WIRELESS ROUTER ADSL RIP: RIP v1, RIP v2, and RIP v2 Multicast. Check to enable RIP function. MTU: Maximum Transmission Unit. The size of the largest datagram (excluding mediaspecific headers) that IP will attempt to send through the interface. •...
  • Page 34 Always on: If you want the router to establish a PPPoE session when starting up and to automatically re-establish the PPPoA session when disconnected by the ISP. Connect to Demand: If you want to establish a PPPoE session only when there is a packet requesting access to the Internet (i.e.
  • Page 35 I-FLY WIRELESS ROUTER ADSL • RFC 1483 Routed/RFC1 1577(IPoA) Description: Your description of this connection. VPI and VCI: Enter the information provided by your ISP. ATM Class: The Quality of Service for ATM layer. NAT: The NAT (Network Address Translation) feature allows multiple users to access the Internet through a single IP account, sharing the single IP address.

  • Page 36: Dns

    I-FLY WIRELESS ROUTER ADSL 3.6.3.2.2 DNS A Domain Name System (DNS) contains a mapping table for domain name and IP addresses. In the Internet, every host has a unique and friendly name such as www.yahoo.com and an IP address. As the IP Address is hard to remember, the DNS converts the friendly name into its equivalent IP Address.

  • Page 37: Time Zone

    I-FLY WIRELESS ROUTER ADSL 3.6.3.3.1 Time Zone When you click Time Zone, you get the following figure. The router does not have a real time clock on board; instead, it uses the simple network time protocol (SNTP) to get the current time from the SNTP server from the outside network. Please choose your local time zone, click Enable, choose either By City or By Time Difference setting and click the Apply button.

  • Page 38: Firmware Upgrade

    When you click Firmware Upgrade, it allows you to input the location of firmware stored on your PC and click the Upgrade button to upgrade to the new firmware. Do NOT upgrade firmware on any Atlantis Land product over a wireless connection.

  • Page 39: Firewall

    3.6.3.4 Firewall Your router includes a full SPI (Stateful Packet Inspection) firewall for controlling Internet access from your LAN, as well as helping to prevent attacks from hackers. In addition to this, when using NAT (Network Address Translation. Please see the WAN configuration section for more details on NAT) the router acts as a “natural”...
  • Page 40 Firewall Security: When you enable Firewall function, you can select one of the firewall security policies. All blocked/User-defined: By default, all of traffic between WAN and LAN are blocked. You have to configure the type of traffic passed between WAN and LAN, please refer to Packet Filter below. High, Medium and Low security level: By default, your system uses High, Medium and Low firewall security level between the WAN and LAN.

  • Page 41: Configuring Packet Filter

    Firewall Logging: When both of Firewall Security and Firewall Logging are enabled, the device will detect the blocked and/or intrusion packets, once the setting has configured. Then the router will log the corresponding (blocking or intrusion detection) logs into the Event Log under Status. The Firewall –...
  • Page 42 Click Delete to delete the HTTP rule. Click Add TCP Filter. 5. Input the port number and set the inbound & outbound as Allow. I-FLY WIRELESS ROUTER ADSL...

  • Page 43: Intrusion Detection

    6. The port filter rule of HTTP is shown as below. 3.6.3.4.2 INTRUSION DETECTION The router’s Intrusion Detection System (IDS) is used to detect hacker attacks and intrusion attempts from the Internet. If the IDS function of the firewall is enabled, inbound packets are filtered and blocked depending on whether they are detected as possible hacker attacks, intrusion attempts or other connections that the router determines to be suspicious.
  • Page 44 • Scan Attack Block Duration: This is the duration for blocking hosts that attempt a possible Scan attack. Scan attack types include X’mas scan, IMAP SYN/FIN scan and similar attempts. Default value is 86400 seconds. • Victim Protection Block Duration: This is the duration for blocking Smurf attacks. Default value is 600 seconds.

  • Page 45: Mac Filtering

    SrcPort: 0 or 65535 SYN/FIN/RST/ACK TCP, No Existing session Scan And Scan Hosts more than five Net Bus Scan TCP No Existing session DstPort = Net Bus 12345,12346, 3456 Back Orifice Scan UDP, (31337) SYN Flood Max TCP Open Handshaking Count(Def=100 s) ICMP Flood Max ICMP Count (Def=100 s)
  • Page 46 Keywords Filtering: Allows blocking by specific keywords within a particular URL rather than having to specify a complete URL (e.g. to block any image called “advertisement.gif”). When enabled, your specified keywords list will be checked to see if any keywords are present in URLs accessed to determine if the connection attempt should be blocked.

  • Page 47: Firewall Log

    I-FLY WIRELESS ROUTER ADSL 3.6.3.4.5 Firewall Log Firewall Log display log information of any unexpected action with your firewall settings. Check the Enable box to activate the logs. Log information can be seen in the Status – Event Log after enabling.

  • Page 48: Vpn

    3.6.3.5 VPN Your router support 2 main types of VPN (Virtual Private Network), PPTP and IPSec, and these are the two major section choices from the menu on the left. Click Create to select one of applications to continually setup. VPN - PPTP The router supports PPTP VPN to establish secure, end-to-end private network connections over a public networking infrastructure.
  • Page 49 I-FLY WIRELESS ROUTER ADSL before sending, and also allows for challenges at different periods to ensure that the client has not been replaced by an intruder. Data Encryption: Data sent over the VPN connection can be encrypted by an MPPE algorithm. Default is Auto, so that this setting is negotiated when establishing a connection, or else you can manually Enable or Disable encryption.
  • Page 50 I-FLY WIRELESS ROUTER ADSL Configuring PPTP VPN in the Office LAN Router The input IP address 192.168.1.200 will be assigned to the remote worker, please make sure this IP is not used in the Office LAN. Configuring PPTP VPN in Remote Side You can configure VPN client with commercial VPN client software package (e.g.
  • Page 51 I-FLY WIRELESS ROUTER ADSL 3. Enter the IP address of the ADSL Router located in the office Lan (or Dynamic DNS name). 4. Follow the step, the following screen appears. The setup is completed.
  • Page 52 I-FLY WIRELESS ROUTER ADSL 5. To make the connection, click the Virtual Private Connection icon in Dial-up Networking Group, and input the username & password set in ADSL Router.
  • Page 53 I-FLY WIRELESS ROUTER ADSL An Example of Configuring a Remote Access PPTP VPN Dial-out Connection Background of the Example Corporate establishes a PPTP VPN connection with the file server located in the remote side. The router is installed in the office, connected with a couple of PCs and Servers. Application Diagram Configuring PPTP VPN in the Office You can either input the IP address (80.123.23.45 in this case) or hostname to reach the Server.
  • Page 54 I-FLY WIRELESS ROUTER ADSL PPTP Status This shows details of your configured PPTP VPN Connections. Name: The name you assigned to the particular PPTP connection in your VPN configuration. Type: The type of connection (dial-in/dial-out). Enable: Whether the connection is currently enabled. Active: Whether the connection is currently active.
  • Page 55 Internet infrastructure. The routers are installed in the Office Lan and Remote Lan accordingly. Application Diagram Product Code Picture Public IP LAN IP Subnet Mask PPTP Remote LAN A02-RA3+ 80.17.56.78 192.168.1.X 255.255.255.0 Client PPTP I-FLY WIRELESS ROUTER ADSL Office LAN A02-WRA4-54G 69.121.1.32 192.168.2.X 255.255.255.0 Server PPTP...
  • Page 56 I-FLY WIRELESS ROUTER ADSL Configuring PPTP VPN in the Office Lan The input IP address 192.168.2.200 will be assigned to the router located in the Remote LAN. Please make sure this IP is not used in the head office LAN. Configuring PPTP VPN in the Remote Lan The input IP address 69.121.1.32 is the Public IP address of the router located in the Office Lan.
  • Page 57 I-FLY WIRELESS ROUTER ADSL PPTP Status in the Office LAN This shows details of your configured PPTP VPN Connections. Name: The name you assigned to the particular PPTP connection in your VPN configuration. Type: The type of connection (dial-in/dial-out). Enable: Whether the connection is currently enabled. Active: Whether the connection is currently active.
  • Page 58 VPN - IPSec The router supports IPSec VPN to establish secure, end-to-end private network connections over a public networking infrastructure. Connection Name: A user-defined name for the connection (e.g. “To Remote Lan or To Office LAN ”). Local: Local Network: Set the IP address, subnet or address range of the local network. •...
  • Page 59 • MD5: A one-way hashing algorithm that produces a 128-bit hash. • SHA-1: A one-way hashing algorithm that produces a 160-bit hash. • Encryption: Select the encryption method from the pull-down menu. There are four options, DES, 3DES, AES and NONE. NONE means it is a tunnel only with no encryption. 3DES and AES are more powerful but increase latency.
  • Page 60 I-FLY WIRELESS ROUTER ADSL SA Lifetime: Specify the number of minutes that a Security Association (SA) will stay active before new encryption and authentication key will be exchanged. There are two kinds of SAs, IKE and IPSec. IKE negotiates and establishes SA on behalf of IPSec, an IKE SA is used by IKE. Phase 1 (IKE): To issue an initial connection request for a new VPN tunnel.
  • Page 61 VPN IPSec Encryption Authentication Perfect Forward Secrety IKE Pre Shared Key Remote LAN A02-RA3+ 69.121.1.31 192.168.1.X 255.255.255.0 DES(or 3DES/AES) MD5 (or SHA1) None 123456789 I-FLY WIRELESS ROUTER ADSL Office LAN A02-WRA4-54G 69.121.1.32 192.168.2.X 255.255.255.0 DES(or 3DES/AES) MD5 (or SHA1) None 123456789...
  • Page 62 I-FLY WIRELESS ROUTER ADSL Configuring IPSec VPN in the Office LAN Configuring IPSec VPN in the Remote LAN...

  • Page 63: Qos

    3.6.3.6 QoS QoS function helps you to control your network traffic for each application from LAN (Ethernet and/or Wireless) to WAN (Internet). It facilitates you to control the different quality and speed of through put for each application when the system is running with full loading of upstream. You can find two items under the QoS section: Prioritization and IP Throttling (bandwidth management).

  • Page 64: Ip Throttling

    I-FLY WIRELESS ROUTER ADSL 3.6.3.6.2 IP Throttling IP Throttling allows you to limit the speed of IP traffic. The value entered will limit the speed of the application that you set to the specified value’s multiple of 32kbps. The trigger of check can base on IP protocol, port number and address as well. Enable: Select it to activate the function.

  • Page 65: Virtual Server

    When you click Virtual Server, you get the following figure. Being a natural Internet firewall, this network router protects your network from being accessed by outside users. When it needs to allow outside users to access internal servers, e.g. Web server, FTP server, E-mail server or News server, this modem can act as a virtual server.

  • Page 66: Advanced

    I-FLY WIRELESS ROUTER ADSL server IP address manually, but it is still in the same subnet with the router. 3.6.3.8 Advanced There are two items under the Advanced section, Static Routing, Dynamic DNS & Checking Emails. 3.6.3.8.1 Static Routing Click on the Static Routing and then choose Create IP V4Route to get the below figure to add a routing table.

  • Page 67: Dynamic Dns

    3.6.3.8.2 Dynamic DNS Click Dynamic DNS to get the below figure then check the “Enable” button to access the Dynamic DNS service. The Dynamic DNS service allows you to alias a dynamic IP address to a static hostname. This dynamic IP address is the WAN IP address. For example, to use the service, you must first apply for an account from this free Web server http://www.dyndns.org/.

  • Page 68: Device Management

    I-FLY WIRELESS ROUTER ADSL Disable: Check to disable the ADSL Firewall Router from getting the email. Enable: Check to enable the ADSL Firewall Router to get the email by providing required information. Hence, the following fields will be activated and required. Account Name: Enter the name of the account to which you have the POP access.
  • Page 69 Embedded Web Server: HTTP Port: This is the port number the router’s embedded web server (for web-based configuration) will use. The default value is the standard HTTP port, 80. Users may specify an alternative if, for example, they are running a web server on a PC within their LAN. Management IP Address: You may specify an IP address allowed to logon and access the router’s web server.
  • Page 70 Simple Network Management Protocol: SNMP Access Control (Software on a PC within the LAN is required in order to utilize this function) SNMP V1 and V2: • Read Community: Specify a name to be identified as the Read Community, and an IP address. This community string will be checked against the string entered in the configuration file.

  • Page 71: Save Configuration To Flash

    • RFC 1907 (SNMPv2): only snmpSetSerialNo OID 3.6.4 Save Configuration to Flash After configuring this network router, you have to save all of the configuration parameters to FLASH. 3.6.5 Logout To exit the website, choose Logout to exit completely. configuration settings before logout.

  • Page 72: Chapter 4

    If the ADSL Router is not functioning properly, you can refer first to this chapter for simple troubleshooting before contacting your service provider. This could save you time and effort but if the symptoms persist, then consult your service provider. Problems Starting Up the ADSL Firewall Router Problem None of the LEDs are...

  • Page 73: Appendix A

    Technical Features Protocols LAN port WAN port Console port External buttons LED Indicators Standard ADSL Compliance ANSI T1.413 Issue 2, ITU-T G.992.1(Full Rate DMT), ITU-T Standard ADSL2 Compliance Protocols ADSL Wireless Firewall Input Power Power Consumption Agency and Regulatory Dimensions Antenna Weight Operating Temperature...
  • Page 74 ADSL Router, please consult this manual. If you continue to have problems you should contact the dealer where you bought this ADSL Router. If you have any other questions you can contact the Atlantis Land company directly at the following address:...
  • Page 75 I-FLY WIRELESS ROUTER ADSL All brand and product names mentioned in this manual are trademarks and/or registered trademarks of their respective holders.

Table of Contents