1. Manuals
  2. Brands
  3. QNO Manuals
  4. Network Router
  5. QVF8034
  6. User manual

QNO QVF8034 User Manual

2wan 4lan smb multi-wan vpn qos router
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
2WAN 4LAN
SMB Multi-WAN VPN QoS Router
English User's Manual

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the QVF8034 and is the answer not in the manual?

Questions and answers

Subscribe to Our Youtube Channel

Related Manuals for QNO QVF8034

Summary of Contents for QNO QVF8034

  • Page 1 2WAN 4LAN SMB Multi-WAN VPN QoS Router English User’s Manual...
  • Page 2 Manual, and the relevant rights and obligations between the users and Qno Technology Inc (hereafter "Qno"), and is the exclusion to remit or limit the liability of Qno. The users who obtain the file of this manual directly or indirectly, and users who use the relevant services, must obey this Agreement.
  • Page 3 If it is not solved by consultation, user agrees that the dissension or dispute is brought to trial in the jurisdiction of the court in the location of Qno. In Mainland China, the "China International Economic and Trade Arbitration Commission" is the arbitration organization.

  • Page 4: Table Of Contents

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Content I. Introduction ............................... 1 II. Dual- WAN Router Installation ........................ 4 2.1 Systematic Setting Process ........................4 2.2 Setting Flow Chart ............................. 4 III. Hardware Installation ..........................7 3.1 Router LED Signal ............................7 3.2 Router Network Connection ........................
  • Page 5 2WAN 4LAN SMB Multi-WAN VPN QoS Router 7.6 IP Grouping..............................63 VIII. QoS (Quality of Service) ........................65 8.1 Bandwidth Management ........................65 8.1.1 The Maximum Bandwidth provided by ISP ................66 8.1.2 QoS ..............................67 8.2 Session control ............................72 8.3 Smart QoS ..............................
  • Page 6 Appendix II: : : : Troubleshooting........................188 (1)Block BT Download ..........................189 (2)Shock Wave and Worm Virus Prevention ................... 190 (3)Block QQLive Video Broadcast Setting ..................192 (4)ARP Virus Attack Prevention ......................194 Appendix III: : : : Qno Technical Support Information ................203...

  • Page 7: Introduction

    VPN functionality. Moreover, its firewall proformance is able to reach over 100Mbps. This is why the device is so popular with modern enterprises. Router exclusively developed QVM (Qno VPN Management). It can be used with QVM Server/ Client function products, which can get the easiest VPN setting. Users only need to put User Name and Password, and server WAN IP and then can easily and quickly build VPN tunnels.
  • Page 8 2WAN 4LAN SMB Multi-WAN VPN QoS Router manner. It supports Gateway to Gateway, Client to Gateway. The advanced built-in firewall function enables Router to resist most attacks from the Internet. It utilizes active detection technology SPI (Stateful Packet Inspection). The SPI firewall functions mainly within the network by dynamically inspecting each link.
  • Page 9 VPN functionality. Qno is a supporter of the IPSec Protocol. IPSec VPN provides DES, 3DES, AES-128 encryption, MD5, SH1 certification, IKE Pre-Share Key, or manual password interchange. Router also supports aggressive mode. When a connection is lost, Router will automatically re-connect.

  • Page 10: Dual- Wan Router Installation

    2WAN 4LAN SMB Multi-WAN VPN QoS Router II. Dual- WAN Router Installation In this chapter we are going to introduce hardware installation. Through the understanding of dual- WAN setting process, users can easily setup and manage the network,making Router functioning and having best performance. 2.1 Systematic Setting Process Users can set up and enable the network by utilizing bandwidth efficiently.
  • Page 11 2WAN 4LAN SMB Multi-WAN VPN QoS Router Setting Content Purpose Configure the Install Router hardware based on user Hardware network to meet physical requirements. installation user’s demand. Login Login the device Login Router web- based UI. with Web Browser. Verify device Verify Firmware Verify Router specification, Firmware specification...
  • Page 12 2WAN 4LAN SMB Multi-WAN VPN QoS Router Block attack, Set Administrators can block BT to avoid Set Firewall: prevent Access rule and bandwidth occupation, and enable access attack and improper restrict Web rules to restrict employee accessing access to network access.

  • Page 13: Hardware Installation

    2WAN 4LAN SMB Multi-WAN VPN QoS Router III. Hardware Installation In this chapter we are going to introduce hardware interface as well as physical installation. 3.1 Router LED Signal LED Signal Description Color Description Green Green LED on: Power ON Power Amber Amber LED on: System self-test is running.

  • Page 14: Router Network Connection

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Installing Router on a Standard 19” Rack We suggest to either place Router on a desk or install it in a rack with attached brackets. Do not place other heavy objects together with Router on a rack. Overloading may cause the rack to fail, thus causing damage or danger.
  • Page 15 2WAN 4LAN SMB Multi-WAN VPN QoS Router WAN connection :A WAN port can be connected with xDSL Modem, Fiber Modem, Switching Hub, or through an external router to connect to the Internet. LAN Connection: The LAN port can be connected to a Switching Hub or directly to a PC. Users can use servers for monitoring or filtering through the port after “Physical Port Mangement”...

  • Page 16: Login Router

    2WAN 4LAN SMB Multi-WAN VPN QoS Router IV. Login Router This chapter is mainly introducing Web- based UI after connecting Router. First, check up Router IP address by connecting to DOS through the LAN PC under Router. Go to Start → Run, enter cmd to commend DOS, and enter ipconfig for getting Default Gateway address, as the graphic below, 192.168.1.1.
  • Page 17 2WAN 4LAN SMB Multi-WAN VPN QoS Router Then, open webpage browser, IE for example, and key in 192.168.1.1 in the website column. The login window will appear as below: Router default username and password are both “admin”. Users can change the login password in the setting later.

  • Page 18: Device Spec Verification, Status Display And Login Password And Time Setting

    2WAN 4LAN SMB Multi-WAN VPN QoS Router V. Device Spec Verification, Status Display and Login Password and Time Setting This chapter introduces the device specification and status after login as well as change password and system time settings for security. 5.1 Home Page In the Home page, all Router parameters and status are listed for users’...

  • Page 19: Physical Port Status

    2WAN 4LAN SMB Multi-WAN VPN QoS Router configuration is “Off”. Quality of Indicates how many QoS rules are set. Service: : : : Manual When “Obtain an IP automatically” is selected, two buttons (Release Connect: : : : and Renew) will appear. If a WAN connection, such as PPPoE or PPTP, is selected, “Disconnect”...

  • Page 20: System Information

    2WAN 4LAN SMB Multi-WAN VPN QoS Router The current port setting status information will be shown in the Port Information Table. Examples: type (10Base-T/100Base-TX), iniferface (WAN/ LAN/ DMZ), link status (Up/ Down), physical port status (Port Enabled/ Port Disabled), priority (high or normal), speed status (10Mbps or 100Mbps), duplex status (Half/ Full), auto negotiation (Enabled or Disabled).

  • Page 21: Firewall Status

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Device IP Address/ Subnet Mask:Identifies the current device IP address and subnet mask. The default is 192.168.1.1 and 255.255.255.0 Working Mode:Indicates the current working mode. The default is “Gateway” mode. System active time: Indicates how long the device has been running. Serial Number: This number is the device serial number.

  • Page 22: Vpn Status

    2WAN 4LAN SMB Multi-WAN VPN QoS Router hyperlink to enter and manage the configuration. The default configuration is “Off”. Access Rule:Indicates the number of access rule applied in Router. 5.1.5 VPN Status VPN Setting Status: Indicates VPN setting information in Router. Tunnel(s) Used:Indicates number of tunnels that have been configured in VPN (Virtual Private Network).

  • Page 23: Time

    Input the original password.(The default is “admin”.) Old Password: : : : New User Name: : : : Input the new user name. i.e.Qno New Password: : : : Input the new password. Input the new password again for verification.
  • Page 24 2WAN 4LAN SMB Multi-WAN VPN QoS Router can either select the embedded NTP Server synchronization function or set up a time reference. Synchronize with external NTP server:Router has embedded NTP server, which will update the time spontaneously. Time Zone: : : : Select your location from the pull-down time zone list to show correct local time.
  • Page 25 2WAN 4LAN SMB Multi-WAN VPN QoS Router After the changes are completed, click “Apply” to save the configuration. Click “Cancel" to leave without making any change. This action will be effective before ”Apply” to save the configuration.

  • Page 26: Network

    2WAN 4LAN SMB Multi-WAN VPN QoS Router VI. Network This Network page contains the basic settings. For most users, completing this general setting is enough for connecting with the Internet. However, some users need advanced information from their ISP. Please refer to the following descriptions for specific configurations. 6.1 Network Connection...

  • Page 27: Host Name And Domain Name

    2WAN 4LAN SMB Multi-WAN VPN QoS Router 6.1.1 Host Name and Domain Name...

  • Page 28: Lan Setting

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Device name and domain name can be input in the two boxes. Though this configuration is not necessary in most environments, some ISPs in some countries may require it. 6.1.2 LAN Setting This is configuration information for the device current LAN IP address. The default configuration is 192.168.1.1 and the default Subnet Mask is 255.255.255.0.

  • Page 29: Wan & Dmz Settings

    2WAN 4LAN SMB Multi-WAN VPN QoS Router This function enables users to input IP segments that differ from the router network segment to the multi-net segment configuration; the Internet will then be directly accessible. In other words, if there are already different IP segment groups in the Intranet, the Internet is still accessible without making any changes to internal PCs.
  • Page 30 2WAN 4LAN SMB Multi-WAN VPN QoS Router configuration page. Obtain an Automatic IP automatically: This mode is often used in the connection mode to obtain an automatic DHCP IP. This is the device system default connection mode. It is a connection mode in which DHCP clients obtain an IP address automatically.
  • Page 31 2WAN 4LAN SMB Multi-WAN VPN QoS Router The WAN disconnection schedule will be activated by checking Enable Line-Dropped this option. In some areas, there is a time limitation for WAN Scheduling: connection service. For example: the optical fiber service will be disconnected from 0:00 am to 6:00 am.
  • Page 32 2WAN 4LAN SMB Multi-WAN VPN QoS Router Input the available static IP address issued by ISP. WAN IP address: Input the subnet mask of the static IP address issued by ISP, such as: Subnet Mask: Issued eight static IP addresses: 255.255.255.248 Issued 16 static IP addresses: 255.255.255.240 Input the default gateway issued by ISP.
  • Page 33 2WAN 4LAN SMB Multi-WAN VPN QoS Router The WAN disconnection schedule will be activated by checking this Enable option. In some areas, there is a time limitation for WAN connection Line-Dropped service. For example: the optical fiber service will be disconnected Scheduling: from 0:00 am to 6:00 am.
  • Page 34 2WAN 4LAN SMB Multi-WAN VPN QoS Router Input the user name issued by ISP. User Name: Input the password issued by ISP. Password This function enables the auto-dialing function to be used in a Connect on PPPoE dial connection. When the client port attempts to connect Demand: with the Internet, the device will automatically make a dial connection.
  • Page 35 2WAN 4LAN SMB Multi-WAN VPN QoS Router The WAN disconnection schedule will be activated by checking Enable this option. In some areas, there is a time limitation for WAN Line-Dropped connection service. For example: the optical fiber service will be Scheduling disconnected from 0:00 am to 6:00 am.
  • Page 36 2WAN 4LAN SMB Multi-WAN VPN QoS Router password issued by ISP, and use the built-in PPTP software to connect with the Internet. This option is to configure a static IP address. The IP address to WAN IP Address: be configured could be one issued by ISP. (The IP address is usually provided by the ISP when the PC is installed.
  • Page 37 2WAN 4LAN SMB Multi-WAN VPN QoS Router This function enables the auto-dialing function to be used for a Connect on PPTP dial connection. When the client port attempts to connect Demand: with the Internet, the device will automatically connect with the default ISP auto dial connection;...
  • Page 38 2WAN 4LAN SMB Multi-WAN VPN QoS Router If your WAN connects to a Switch, select “Enabled” to filter Shared- Circuit broadcast packets. The default is “Disabled”. environment MTU: : : : MTU is abbreviation of Maximum Transmission Unit. “Auto” and “Manual”...
  • Page 39 2WAN 4LAN SMB Multi-WAN VPN QoS Router Input one of the static IP addresses issued by ISP. WAN IP Address: Subnet Mask: : : : Input the subnet mask of the static IP address issued by ISP, such as: Issued eight static IP addresses: 255.255.255.248 Issued 16 static IP addresses: 255.255.255.240 Input the default gateway of the static IP address issued Default Gateway...
  • Page 40 2WAN 4LAN SMB Multi-WAN VPN QoS Router The WAN disconnection schedule will be activated by Enable Line-Dropped Scheduling: : : : checking this option. In some areas, there is a time limitation for WAN connection service. For example: the optical fiber service will be disconnected from 0:00 am to 6:00 am.
  • Page 41 2WAN 4LAN SMB Multi-WAN VPN QoS Router externally connected servers such as WEB and Mail servers. Therefore, the device supports a set of independent DMZ ports for users to set up connections for servers with real IP addresses. The DMZ ports act as bridges between the Internet and LANs. IP address: Indicates the current default static IP address.

  • Page 42: Dual- Wan Setting

    2WAN 4LAN SMB Multi-WAN VPN QoS Router IP Range: Input the IP range located at the DMZ port. After the changes are completed, click “Apply” to save the configuration, or click “Cancel" to leave without making any changes. 6.2 Dual- WAN Setting 6.2.1 Load Balance Mode Auto Load Balance Mode When Auto Load Balance mode is selected, the device will use sessions or IP and the WAN...
  • Page 43 2WAN 4LAN SMB Multi-WAN VPN QoS Router IP Session Balance: If “By IP” is selected, the WAN bandwidth will automatically allocate connections based on IP amount to achieve network load balance. Note! For either session balancing or IP connection balancing, collocation with Protocol Binding will provide a more flexible application for bandwidth.
  • Page 44 2WAN 4LAN SMB Multi-WAN VPN QoS Router To add a WAN group to the grouping list. Add To List: To remove selected WANs from the WAN grouping. Delete selected Item: Click “Apply” to save the modification. Apply: Click “Cancel” to cancel the modification. This only works Close: before “Apply”...

  • Page 45: Network Detection Service

    2WAN 4LAN SMB Multi-WAN VPN QoS Router range of self-defined strategy. Note! China Netcom strategy and self-defined strategy can coexist. However, if a destination IP is assigned by both China Netcom strategy and self-defined strategy, China Netcom strategy will take priority. In other words, traffic to that destination IP will be transmitted through the WAN (or WAN group) under China Netcom strategy.
  • Page 46 2WAN 4LAN SMB Multi-WAN VPN QoS Router Select the WAN Port that enables Network Service Detection. Interface: This selects the retry times for network service detection. The Retry: default is five times. If there is no feedback from the Internet in the configured “Retry Times", it will be judged as “External Connection Disconnected”.
  • Page 47 2WAN 4LAN SMB Multi-WAN VPN QoS Router for 10.0.0.1~10.254.254.254 cannot be transmitted through WAN 2, and there is no need to remove the connection when WAN 1 is disconnected. (2) Keep System Log and Remove the Connection: If an ISP connection failure is detected, no error message will be recorded in the System Log.

  • Page 48: Protocol Binding

    2WAN 4LAN SMB Multi-WAN VPN QoS Router In addition, do not input the same web address in this box for two different WANs. Note! In the load balance mode for Assigned Routing, the first WAN port (WAN1) will be saved for the traffic of the IP addresses or the application service ports that are not assigned to other WANs (WAN2).
  • Page 49 2WAN 4LAN SMB Multi-WAN VPN QoS Router Note! In the load balance mode of Assigned Routing, the first WAN (WAN1) cannot be assigned. It is to be saved for the IP addresses and the application Service Ports that are not assigned to other WANs (WAN2) for external connections.
  • Page 50 2WAN 4LAN SMB Multi-WAN VPN QoS Router Service is All 0~65535. Option List for Service Management: Click the button to enter the Service Port configuration page to add or remove default Service Ports on the option list. Users can assign packets of specific Intranet virtual IP to go Source IP: through a specific WAN port for external connection.
  • Page 51 2WAN 4LAN SMB Multi-WAN VPN QoS Router their priorities too. The higher up on the list, the higher the priority of execution. Show Table: Click the “Show Table” button. A dialogue box as shown in the following figure will be displayed.
  • Page 52 2WAN 4LAN SMB Multi-WAN VPN QoS Router In this box, input the name of the Service Port which Service Name: users want to activate, such as BT, etc. This option list is for selecting a packet format, such as Protocol: TCP or UDP for the Service Ports users want to activate.
  • Page 53 2WAN 4LAN SMB Multi-WAN VPN QoS Router Click the “Cancel” button to cancel the modification. Cancel: This only works before “Apply” is clicked. To quit this configuration window. Close: Auto Load Balancing mode when enabled: The collocation of the Auto Load Balance Mode and the Auto Load Mode will enable more flexible use of bandwidth.
  • Page 54 2WAN 4LAN SMB Multi-WAN VPN QoS Router Example 2:How do I set up Auto Load Balance Mode to keep Intranet IP 192.168.1.150 ~ 200 from going through WAN2 when the destination port is Port 80? As in the figure below, select “HTTP [TCP/80~80]” from the pull-down option list “Service”, and then in the boxes for “Source IP”...
  • Page 55 2WAN 4LAN SMB Multi-WAN VPN QoS Router Example 3:How do I set up Auto Load Balance Mode to keep all Intranet IP addresses from going through WAN2 when the destination port is Port 80 and keep all other services from going through WAN1? As in the figure below, there are two rules to be configured.
  • Page 56 2WAN 4LAN SMB Multi-WAN VPN QoS Router Internet IP addresses). Select WAN1 from the pull-down option list “Interface”, and then click “Enable”. Finally, click “Add New” and the rule will be added to the mode. The device will transmit packets that are not going to Port 80 to the Internet through WAN1. Configuring “Assigned Routing Mode”...
  • Page 57 2WAN 4LAN SMB Multi-WAN VPN QoS Router through WAN1? As in the figure below, select “HTTP[TCP/80~80]” from the pull-down option list “Service”, and then in the boxes of “Source IP” input “192.168.1.0 ~ 0” (which means to include all Intranet IP addresses). Retain the original numbers “0.0.0.0” in the boxes of “Destination IP”...
  • Page 58 2WAN 4LAN SMB Multi-WAN VPN QoS Router Port [TCP&UDP/1~65535]” from the pull-down option list “Service”, and then in the boxes of “Source IP” input “192.168.1.0 ~ 0” (which means to include all Intranet IP addresses). In the boxes for “Destination IP” input “211.1.1.1 ~ 211.254.254.254”. Select WAN2 from the pull-down option list “Interface”, and then click “Enable”.

  • Page 59: Port Management

    2WAN 4LAN SMB Multi-WAN VPN QoS Router VII. Port Management This chapter introduces how to configure ports and understand how to configure intranet IP addresses. 7.1 Setup Through the device, users can easily manage the setup for WAN ports, LAN ports and the DMZ port by choosing the number of ports, speed, priority, and duplex and enable/disable the auto-negotiation feature for connection setting of each port.
  • Page 60 2WAN 4LAN SMB Multi-WAN VPN QoS Router Disabled: : : : This feature allows users turn on/off the Ethernet port. If selected, the Ethernet port will be shut down immediately and no connection can be made. The default value is "on". Priority:...

  • Page 61: Port Status

    2WAN 4LAN SMB Multi-WAN VPN QoS Router VLAN All: : : : Set VLAN All port to be the public area of VLAN so that it can be connected to other VLAN networks. A server should be constructed for the intranet so that all VLAN group can visit this server. Set one of the network ports as VLAN All.

  • Page 62: Ip/ Dhcp

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Summary: There are Network Connection Type, Interface, Link Status (Up/Down), Port Activity (Port Enabled), Priority Setting (High or Normal), Speed Status (10Mbps or 100Mbps), Duplex Status (half duplex or full duplex), Auto Neg. (Enabled/Disabled), and VLAN. Statistics:...
  • Page 63 2WAN 4LAN SMB Multi-WAN VPN QoS Router computers. (This function is similar to the DHCP service in NT servers.) It benefits users by freeing them from the inconvenience of recording and configuring IP addresses for each PC respectively. When a computer is turned on, it will acquire an IP address from the device automatically.

  • Page 64: Dhcp Status

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Dynamic IP: Check the option to activate the DHCP server automatic IP lease Client lease Time: : : : function. If the function is activated, all PCs will be able to acquire IP automatically. Otherwise, users should configure static virtual IP for each PC individually.
  • Page 65 2WAN 4LAN SMB Multi-WAN VPN QoS Router DHCP Server: : : : This is the current DHCP IP. Dynamic IP Used: : : : The amount of dynamic IP leased by DHCP. Static IP Used: : : : The amount of static IP assigned by DHCP. IP Available:...

  • Page 66: Ip & Mac Binding

    2WAN 4LAN SMB Multi-WAN VPN QoS Router 7.5 IP & MAC Binding Administrators can apply IP & MAC Binding function to make sure that users can not add extra PCs for Internet access or change private IP addresses. There are two methods for setting up this function: Block MAC address not on the list This method only allows MAC addresses on the list to receive IP addresses from DHCP and have...
  • Page 67 2WAN 4LAN SMB Multi-WAN VPN QoS Router Internet access. When this method is applied, please fill out Static IP with 0.0.0.0, as the figure below: IP & MAC Binding...
  • Page 68 2WAN 4LAN SMB Multi-WAN VPN QoS Router Static IP: : : : There are two ways to input static IP: 1. If users want to set up a MAC address to acquire IP from DHCP, but the IP need not be a specific assigned IP, input 0.0.0.0 in the boxes.

  • Page 69: Ip Grouping

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Name: : : : For distinguishing clients, input the name or address of the client that is to be bound. The maximum acceptable characters are 12. Enabled: : : : Activate this configuration. Add to list:...
  • Page 70 2WAN 4LAN SMB Multi-WAN VPN QoS Router The function enables users to make the same configuration for a range of continuous IP addresses in the network. For example, if an IP range (192.168.1.100~192.168.1.110) has been assigned to a department of a company, we can bind all the IP addresses together and make an accessing rule configuration for them all at the same time, instead of configuring each IP respectively, which takes more time and is more prone to error.

  • Page 71: Qos (Quality Of Service)

    2WAN 4LAN SMB Multi-WAN VPN QoS Router VIII. QoS (Quality of Service) QoS is an abbreviation for Quality of Service. The main function is to restrict bandwidth usage for some services and IP addresses to save bandwidth or provide priority to specific applications or services, and also to enable other users to share bandwidth, as well as to ensure stable and reliable network transmission.

  • Page 72: The Maximum Bandwidth Provided By Isp

    2WAN 4LAN SMB Multi-WAN VPN QoS Router 8.1.1 The Maximum Bandwidth provided by ISP...

  • Page 73: Qos

    2WAN 4LAN SMB Multi-WAN VPN QoS Router In the boxes for WAN1 and WAN2 bandwidth, input the upstream and downstream bandwidth which users applied for from bandwidth supplier. The bandwidth QoS will make calculations according to the data users input. In other words, it will guarantee a minimum rate of upstream and downstream for each IP and Service Port based on the total actual bandwidth of WAN1 and WAN2.
  • Page 74 2WAN 4LAN SMB Multi-WAN VPN QoS Router Interface: : : : Select on which WAN the QoS rule should be executed. It can be a single selection or multiple selections. Service Port: : : : Select what bandwidth control is to be configured in the QoS rule. If the bandwidth for all services of each IP is to be controlled, select “All (TCP&UDP) 1~65535”.
  • Page 75 2WAN 4LAN SMB Multi-WAN VPN QoS Router IP Address: : : : This is to select which user is to be controlled. If only a single IP is to be restricted, input this IP address, such as “192.168.1.100 to 100”. The rule will control only the IP 192.168.1.100.
  • Page 76 2WAN 4LAN SMB Multi-WAN VPN QoS Router Sharing total bandwidth with all IP addresses: If this option is Bandwidth Assign Type: : : : selected, all IP addresses or Service Ports will share the bandwidth range (from minimum to maximum bandwidth). Assign bandwidth for each IP address: If this option is selected, every IP or Service Port in this range can have this bandwidth (minimum to maximum.).
  • Page 77 2WAN 4LAN SMB Multi-WAN VPN QoS Router Priority Control: The Router will distribute the bandwidth as 60% (the highest) and 10% (the lowest). If you set the service port 80 as “High” priority, the router will give 60% bandwidth to the port 80.

  • Page 78: Session Control

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Interface: : : : Select on which WAN the QoS rule should be executed. It can be a single selection or multiple selections. Service Port: : : : Select what bandwidth control is to be configured in the QoS rule. If FTP uploads or downloads need to be controlled, select “FTP Port 21~21”.
  • Page 79 2WAN 4LAN SMB Multi-WAN VPN QoS Router In addition, if any Intranet PC is attacked by a virus like Worm.Blaster and sends a huge number of session requests, session control will restrict that as well. Session Control and Scheduling: Disabled: : : : Disable Session Control function.
  • Page 80 2WAN 4LAN SMB Multi-WAN VPN QoS Router When single IP exceed __: : : : If this function is selected, when the user’s port session reach the limit, this user will not be able to make a new session for five minutes.

  • Page 81: Smart Qos

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Service Port: : : : Choose the service port. IP Address: : : : Input the IP address range or IP group. Enabled: : : : Activate the rule. Add to list: : : : Add this rule to the list.
  • Page 82 2WAN 4LAN SMB Multi-WAN VPN QoS Router To activate the Smart QoS function. Enabled Smart Qos When the usage of any WAN's bandwidth is over When the usage of any WAN's than __ %, Smart QoS will be enabled. You can bandwidth is over than __ %, enter the needed value, the default is 60%.
  • Page 83 2WAN 4LAN SMB Multi-WAN VPN QoS Router If “Always” is selected, the rule will be executed Applied Time around the clock. If “From…” is selected, the rule will be executed according to the configured time range.

  • Page 84: Firewall

    2WAN 4LAN SMB Multi-WAN VPN QoS Router IX. Firewall This chapter introduces firewall general policy, access rule, and content filter settings to ensure network security. 9.1 General Policy The firewall is enabled by default. If the firewall is set as disabled, features such as SPI, DoS, and outbound packet responses will be turned off automatically.
  • Page 85 2WAN 4LAN SMB Multi-WAN VPN QoS Router This feature allows users to turn on/off the firewall. Firewall: : : :...
  • Page 86 2WAN 4LAN SMB Multi-WAN VPN QoS Router This enables the packet automatic authentication detection SPI (Stateful Packet Inspection): : : : technology. The Firewall operates mainly at the network layer. By executing the dynamic authentication for each connection, it will also perform an alarming function for application procedure.
  • Page 87 2WAN 4LAN SMB Multi-WAN VPN QoS Router Advanced Setting Packet Type: This device provides three types of data packet transmission: TCP-SYN-Flood, UDP-Flood and ICMP-Flood. WAN Threshold: When all packet values from external attack or from single external IP attack reach the maximum amount (the default is 15000 packets/Sec and 2000 packets/Sec respectively), if these conditions above occurs, the IP will be blocked for 5 minutes ( the default is 5 minutes OBJ 176 ).

  • Page 88: Restrict Application

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Show Blocked IP: : : : Show the blocked IP list and the remained blocked time. It supports the block that is connected through: Java, Cookies, Restricted WEB Features: : : : Active X, and HTTP Proxy access. If this option is activated, users can add trusted network or IP Don’t Block Java / address into the trust domain, and it will not block items such as...
  • Page 89 2WAN 4LAN SMB Multi-WAN VPN QoS Router In addition, if Blocked QQ is activated, users can set the exempted QQ number list. Press “Exempted QQ Number” button, and enter the QQ number into the exempted QQ number list.

  • Page 90: Access Rule

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Input the information of the QQ number, etc. User Name: : : : Input the number. Exempted QQ Number: : : : Add the number to the list. Add to list: : : : Delete the selected rule in the list.
  • Page 91 2WAN 4LAN SMB Multi-WAN VPN QoS Router Network access rule follows IP address, destination IP address, and IP communications protocol status to manage the network packet traffic and make sure whether their access is allowed by the firewall. 9.3.2 Default rule The device has a user-friendly network access regulatory tool.
  • Page 92 2WAN 4LAN SMB Multi-WAN VPN QoS Router In addition to the default rules, all the network access rules will be displayed as illustrated above. Users may follow or self- define the priority of each network access rule. The device will follow the rule priorities one by one, so please make sure the priority for all the rules can suit the setting rules.
  • Page 93 2WAN 4LAN SMB Multi-WAN VPN QoS Router 9.3.2 Add New Access Rule Action: : : : Allow: Permits the pass of packets compliant with this control rule Deny: Prevents the pass of packets not compliant with this control rule Service Port: : : : From the drop-down menu, select the service that users grant or do not give permission.

  • Page 94: Content Filter

    2WAN 4LAN SMB Multi-WAN VPN QoS Router menu. Source IP: : : : Select the source IP range (for example: Any, Single, Range, or preset IP group name). If Single or Range is selected, please enter a single IP address or an IP address within a session. Dest.
  • Page 95 2WAN 4LAN SMB Multi-WAN VPN QoS Router Block Forbidden Domain Fill in the complete website such as www.sex.com to have it blocked. Domain Name: : : : Enter the websites to be controlled such as www.playboy.com Add to list: : : : Click ”Add to list”...
  • Page 96 2WAN 4LAN SMB Multi-WAN VPN QoS Router Website Blocking by Keywords: Enabled: : : : Click to activate this feature. The default setting is disabled. For example: If users enter the string ”sex”, any websites containing ”sex” will be blocked. Enter keywords.
  • Page 97 2WAN 4LAN SMB Multi-WAN VPN QoS Router Activate the function. The default setting is “Disabled.” Enabled: : : : Input the allowed domain name, etc. www.google.com Domain Name: : : : Add the rule to list. Add to list: : : : Users can select one or more rules and click to delete.
  • Page 98 2WAN 4LAN SMB Multi-WAN VPN QoS Router Always: : : : Select “Always” to apply the rule on a round-the-clock basis. Select “from”, and the operation will run according to the defined time. …to…: : : : Select "Always" to apply the rule on a round-the-clock basis. If “From”...

  • Page 99: Vpn (Virtual Private Network)

    2WAN 4LAN SMB Multi-WAN VPN QoS Router X. VPN (Virtual Private Network) 10.1 VPN 10.1.1 Display All VPN Summary This VPN Summary displays the real-time data with regard to VPN status. These data include: all tunnel numbers (PPTP, IPSec + QnoKey and IPSec VPN), setting parameters and...
  • Page 100 2WAN 4LAN SMB Multi-WAN VPN QoS Router Group VPN and so forth. Advanced Setting: Through Advanced setting, users may adjust the tunnel number of IPSec and QnoKey. This shows how many VPN tunnels are in use or available. Detail: Push this button to display the following information with regard to all current VPN configurations to facilitate VPN connection management.
  • Page 101 2WAN 4LAN SMB Multi-WAN VPN QoS Router VPN Tunnel Status: The following describes VPN Tunnel Status, the current status of VPN tunnel in detail: Click Previous page or Next page to view the desired VPN Previous tunnel page. Or users can select the page number directly to Page/Next Page, view all VPN tunnel statuses, such as 3, 5, 10, 20 or All.
  • Page 102 2WAN 4LAN SMB Multi-WAN VPN QoS Router Waiting to be connected is indicated as - (Waiting for Connection). If users select Manual setting for IPSec setup, the status message will display as “Manual” and there is no Tunnel test function available for this manual setting. Displays the current VPN tunnel connection name, such as XXX Account ID:...

  • Page 103: Add A New Vpn Tunnel

    2WAN 4LAN SMB Multi-WAN VPN QoS Router VPN Group Tunnel Status: If there is no setting for Group VPN, there will be no display of VPN Group status. Displays the tunnel name of the Group VPN that is connected. Group Name: : : : Connected Tunnels:...
  • Page 104 2WAN 4LAN SMB Multi-WAN VPN QoS Router Gateway to Gateway: Click “Add” to enter the setting page of Gateway to Gateway. Client to Gateway: Click “Add” to enter the setting page of Client to Gateway. Gateway to Gateway Setting...
  • Page 105 2WAN 4LAN SMB Multi-WAN VPN QoS Router The following instructions will guide users to set a VPN tunnel between two devices. Tunnel No.: : : : Set the embedded VPN feature, please select the Tunnel number. Tunnel Name: : : : Displays the current VPN tunnel connection name, such as XXX Office. Users are well-advised to give them different names to avoid confusion.
  • Page 106 2WAN 4LAN SMB Multi-WAN VPN QoS Router If users decide to use IP only, entering the IP address is the only way to gain access to this tunnel. The WAN IP address will be automatically filled into this space. Users don't need to do further settings.
  • Page 107 2WAN 4LAN SMB Multi-WAN VPN QoS Router gateway requires connection device connection, this device will start authentication and respond to this VPN tunnel connection; if users select this option to link to VPN, please enter the domain name. Dynamic E-mail Addr.
  • Page 108 2WAN 4LAN SMB Multi-WAN VPN QoS Router connected to the VPN tunnel. Reference: When this VPN tunnel is connected, only computers with the session of 192.168.1.0 and with subnet mask as 255.255.255.0 can connect with remote VPN. 3. IP Range This option allows connection only when IP address range which is entered after the VPN tunnel is connected.
  • Page 109 2WAN 4LAN SMB Multi-WAN VPN QoS Router Dynamic IP + Domain Name (FQDN) Authentication, -Dynamic IP address + Domain name Dynamic IP + E-mail Addr. (USER FQDN) Authentication. Dynamic IP address + Email address name (1) IP only: If users select the IP Only type, entering this IP allows users to gain access to this tunnel.
  • Page 110 2WAN 4LAN SMB Multi-WAN VPN QoS Router If the remote IP address is unknown, choose IP by DNS Resolved, allowing DNS to translate the IP address. This domain name must be available on the Internet. When users finish the setting, the corresponding IP address will be displayed under the remote gateway of Summary.
  • Page 111 2WAN 4LAN SMB Multi-WAN VPN QoS Router Resolved, allowing DNS to translate the IP address. This domain name must be available on the Internet. When users finish the setting, the corresponding IP address will be displayed under the remote gateway of Summary. Or users can choose IP by Multiple DNS Resolved, and IP address can be translated through DNS.
  • Page 112 2WAN 4LAN SMB Multi-WAN VPN QoS Router to the VPN tunnel connection; Please enter the E-Mail to the empty space. This option allows users to set the remote VPN connection Remote Security access type. The following offers a few items for remote Group Type:...
  • Page 113 2WAN 4LAN SMB Multi-WAN VPN QoS Router IPSec Setup If there is any encryption mechanism, the encryption mechanism of these two VPN tunnels must be identical in order to create connection. And the transmission data must be encrypted with IPSec key, which is known as the encryption "key". The device provides the following two encrypted Key Managements.
  • Page 114 2WAN 4LAN SMB Multi-WAN VPN QoS Router Use IKE Protocol: Click the shared key generated by IKE to encrypt and authenticate the remote user. If PFS (Perfect Forward Secrecy) is enabled, the Phase 2 shared key generated during the IKE coordination will conduct further encryption and authentication.
  • Page 115 2WAN 4LAN SMB Multi-WAN VPN QoS Router identical to that of the remote authentication mode: “MD5” or “SHA1”. Phase 1 SA Life Time: The life time for this exchange code is set to 28800 seconds (or 8hours) by default. This allows the automatic generation of other exchange password within the valid time of the VPN connection so as to guarantee security.
  • Page 116 2WAN 4LAN SMB Multi-WAN VPN QoS Router users must set it the same with the Outgoing SPI string of the remote VPN device. And the Outgoing SPI string must be the same with the incoming SPI string of the remote VPN device. Advanced Setting- for IKE Protocol Only The advanced settings include Main Mode and Aggressive mode.
  • Page 117 2WAN 4LAN SMB Multi-WAN VPN QoS Router Dead Peer Detection (DPD): If this option is selected, the connected VPN tunnel will regularly transmit HELLO/ACK message packet to detect whether there is connection between the two ends of the VPN tunnel. If one end is disconnected, the device will disconnect the tunnel automatically and then create new connection.
  • Page 118 2WAN 4LAN SMB Multi-WAN VPN QoS Router Local Group Setup This local gateway authentication type (Local Security Gateway Type) must be identical with that of the remote type (Remote Security Gateway Type). This local gateway authentication type comes with five Local Security operation modes, which are: Gateway Type:...
  • Page 119 2WAN 4LAN SMB Multi-WAN VPN QoS Router (3) IP + E-mail Addr. (USER FQDN) Authentication. If users select IP address and E-mail, enter the IP address and E-mail address to gain access to this tunnel and the WAN IP address will be automatically filled into this space. Users don't need to do further settings.
  • Page 120 2WAN 4LAN SMB Multi-WAN VPN QoS Router This option allows users to set the local VPN connection Local Security Group access type. The following offers a few items for local Type: : : : settings. Please select and set appropriate parameters: 4.
  • Page 121 2WAN 4LAN SMB Multi-WAN VPN QoS Router Remote Group Setup: This remote gateway authentication type (Remote Security Gateway Type) must be identical to the remotely-connected local security gateway authentication type (Local Security Gateway Type). This local gateway authentication type comes with five Remote Security operation modes, which are: Gateway Type:...
  • Page 122 2WAN 4LAN SMB Multi-WAN VPN QoS Router If users select IP + domain name type, please enter the domain name and IP address. The WAN IP address will be automatically filled into this space. Users don't need to do further settings. FQDN refers to the combination of host name and domain name and can be retrieved from the Internet, i.e.
  • Page 123 2WAN 4LAN SMB Multi-WAN VPN QoS Router users may select this option to connect to VPN without entering IP address. When VPN Gateway requires for VPN connection, the device will start authentication and respond to VPN tunnel connection; if users select this option to link to VPN, enter E-Mail address to the empty field for E-Mail authentication.
  • Page 124 2WAN 4LAN SMB Multi-WAN VPN QoS Router When users set this VPN tunnel to use any encryption and authentication mode, users must set the parameter of this exchange password with that of the remote. Setting methods include Auto (IKE) or Manual. To do the settings, select any one from the two options. IKE Protocol:...
  • Page 125 2WAN 4LAN SMB Multi-WAN VPN QoS Router Phase 1/Phase 2 Authentication: This authentication option allows users to set this VPN tunnel to use any authentication mode. Note that this parameter must be identical to that of the remote authentication mode: “MD5” or “SHA1”. Phase 1 SA Life Time: The life time for this exchange code is set to 28800 seconds (or 8hours) by default.
  • Page 126 2WAN 4LAN SMB Multi-WAN VPN QoS Router Moreover, the exchange strings for “Incoming SPI” and “Outgoing SPI” must be ● identical to those of the connected VPN device. For the Incoming SPI parameters, users must set it the same with the Outgoing SPI string of the remote VPN device. And the Outgoing SPI string must be the same with the incoming SPI string of the remote VPN device.
  • Page 127 2WAN 4LAN SMB Multi-WAN VPN QoS Router passage of NetBIOS broadcast packet. This facilitates the easy connection with other Microsoft network; however, the traffic using this VPN tunnel will increase. Dead Peer Detection (DPD): If this option is selected, the connected VPN tunnel will ●...
  • Page 128 2WAN 4LAN SMB Multi-WAN VPN QoS Router Local Group Setup: This option allows users to set the local VPN connection Local Security access type. The following offers a few items for local Group Type: : : : settings. Please select and set appropriate parameters: 7.
  • Page 129 2WAN 4LAN SMB Multi-WAN VPN QoS Router Remote Group Setup This setting offers three operation modes, which are: Remote Security client Type: : : : Domain Name (FQDN) E-mail Address (USER FQDN) Microsoft XP/2000 VPN Client (1) Domain Name(FQDN) If users select Domain Name type, please enter the domain name to be authenticated.
  • Page 130 2WAN 4LAN SMB Multi-WAN VPN QoS Router IPSec Setup If there is any encryption mechanism, the encryption mechanism of these two VPN channel settings must be identical in order to establish connection. And the transmission data must be encrypted with IPSec key, which is also known as the encryption "key". The device provides the following two types of encryption management modes: Manual and IKE automatic encryption mode- IKE with Preshared Key (automatic).
  • Page 131 2WAN 4LAN SMB Multi-WAN VPN QoS Router groups: Group 1/ Group 2/ Group 5. Phase1/Phase2 Encryption: This option allows users to set this VPN channel to use any encryption mode. Note that this parameter must be identical to that of the remote encryption parameter: DES (64 - bit encryption mode), 3DES (128-bit encryption mode), AES (the standard of using security code to encrypt information).

  • Page 132: Pptp Setting

    2WAN 4LAN SMB Multi-WAN VPN QoS Router The advanced settings include Main Mode and Aggressive mode. In Main mode, the default setting is VPN operation mode. The connection is the same as most of the VPN device. Aggressive Mode: This mode is mostly adopted by remote devices. The IP connection ●...
  • Page 133 2WAN 4LAN SMB Multi-WAN VPN QoS Router Enabled PPTP Server: : : : When this option is selected, the point-to-point tunnel protocol PPTP server can be enabled.

  • Page 134: Vpn Pass Through

    2WAN 4LAN SMB Multi-WAN VPN QoS Router PPTP Client IP Range: : : : Please enter PPTP IP address range so as to provide the remote users with an entrance IP into the local network. Enter Range Start: Enter the value into the last field. Enter Range End: Enter the value into the last field.
  • Page 135 2WAN 4LAN SMB Multi-WAN VPN QoS Router If this option is enabled, the PC is allowed to use VPN- IPSec Pass Through: : : : IPSec packet to pass in order to connect to external VPN device. This option is only required when having VPN connection Fixed Source Port with Cisco VPN Server and Client.

  • Page 136: Qnokey

    2WAN 4LAN SMB Multi-WAN VPN QoS Router 10.2 QnoKey Introduces how Qno VPN devices conducts preliminary configuration of the data from the user end and how to set the QnoKey user to successfully create QnoKey by using QnoKey management software.

  • Page 137: Qnokey Group Setup

    2WAN 4LAN SMB Multi-WAN VPN QoS Router If the number of days of using QnoKey is set, the remaining Available Time: : : : time is displayed here. The upper limited number of QnoKey users. Account Number Limitation: : : : The number of QnoKey in use.
  • Page 138 2WAN 4LAN SMB Multi-WAN VPN QoS Router WAN ports, valid time, and number of users, and protection actions for potential QnoKey losses. These setting options facilitate classified management for QnoKey users and enhance security. Select this option to activate this setting rule. Enable this rule:...
  • Page 139 2WAN 4LAN SMB Multi-WAN VPN QoS Router the user is more complicated or if it is meant for mobile users who travel on business, the VPN security can be guaranteed by setting the valid time of QnoKey as "1~99" days according to the desired number of days to be set.

  • Page 140: Qnokey Account List

    2WAN 4LAN SMB Multi-WAN VPN QoS Router When a new rule is created, "Show List" and "Edit" button will be displayed behind the rule. Click on "Show List" to show the list of users applying this group rule. Click "Edit" to change settings.

  • Page 141: Qvm Vpn Function Setup

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Action: : : : If there is hardware binding, QnoKey can only execute on Bind MAC: : : : the bound PC. If hardware binding function is enabled, it will show the MAC Address: : : : MAC address which Qnokey is bound with, not the PC MAC address.
  • Page 142 2WAN 4LAN SMB Multi-WAN VPN QoS Router Account ID: : : : Must be identical to that of the remote client end. Please enter the remote client user name in either English or Chinese. Password: : : : Must be identical to that of the remote client end. Confirm Please enter the password and confirm again.

  • Page 143: Qvm Status

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Function: : : : each other easily without having other tunnels. Enable this account. Enabled: : : : Add a new account and password. Add to list: : : : Delete the selected user. Delete selected item:...

  • Page 144: Qvm Client Settings

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Shows the total time used from the Start to the End of this QVM. Duration: : : : Shows the status of this QVM: waiting for connection (Waiting), stop Control: : : : the connection (Disconnect), and Disable this feature/ Enable this QVM to enter the status of waiting for connection.
  • Page 145 2WAN 4LAN SMB Multi-WAN VPN QoS Router QVM VPN( ( ( ( IP Address or Input QVM VPN Server IP address or domain name. Dynamic Domain Name) : ) : ) : ) : Status: : : : Displays QVN connection status. This function is to set re- connect duration if QVM Keep Alive: Redial contention drops.

  • Page 146: Virtual Router

    2WAN 4LAN SMB Multi-WAN VPN QoS Router XI. Virtual router Virtual Router enables the branch only having single ISP service to enjoy two different broadband networks. The branch can access another ISP network with connecting to headquarter server with dual-broadband connection. As the result, the linking problem between different ISP networks will be solved.

  • Page 147: Virtual Route Server (Pptp Server)

    2WAN 4LAN SMB Multi-WAN VPN QoS Router As the figure showed above, Café A can enable virtual route function and link to Café B’s device. They can access another ISP service through Café B’s network. It seems that Café A employs dual ISP service, too. If users in Café A want to access to another ISP network, the link speed won’t be restricted.
  • Page 148 2WAN 4LAN SMB Multi-WAN VPN QoS Router Enabled PPTP Server: : : : When this option is selected, the point-to-point tunnel protocol PPTP server can be enabled. PPTP Client IP Range: : : : Please enter PPTP IP address range so as to provide the remote users with an entrance IP into the local network.

  • Page 149: Virtual Route Client

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Add a new account and password. Add to list: : : : Delete selected item: : : : Delete Selected Item. All PPTP Status:Displays all successfully connected users, including username, remote IP address, and PPTP address. 11.2 Virtual Route Client Enabled To activate the function.
  • Page 150 2WAN 4LAN SMB Multi-WAN VPN QoS Router Input the retry period when connection failed. The default value When connection failed, is 30 minutes. Retry every minutes Input the IP of virtual route server. Remote Host IP Address Input the user name. User Name Input the password.
  • Page 151 2WAN 4LAN SMB Multi-WAN VPN QoS Router Self-Defined Port To build a self-defined Port users can use a text-based editor, such as Notepad, which is included with Windows system. For example, if the destination port users want to designate is TCP/3724~3724, key in TCP/3724~3724 in Notepad. The next destination port should be keyed in the next line.
  • Page 152 2WAN 4LAN SMB Multi-WAN VPN QoS Router...

  • Page 153: Advanced Function

    2WAN 4LAN SMB Multi-WAN VPN QoS Router XII. Advanced Function 12.1 DMZ Host/ Port Range Forwarding 12.1.1 DMZ Host When the NAT mode is activated, sometimes users may need to use applications that do not support virtual IP addresses such as network games. We recommend that users map the device actual WAN IP addresses directly to the Intranet virtual IP addresses, as follows: If the “DMZ Host”...
  • Page 154 2WAN 4LAN SMB Multi-WAN VPN QoS Router server for an external service such as WWW, FTP, Mail, etc) is contained in the network, we recommend that users use the firewall function to set up the host as a virtual host, and then convert the actual IP addresses (the Internet IP addresses) with Port 80 (the service port of WWW is Port 80) to access the internal server directly.
  • Page 155 2WAN 4LAN SMB Multi-WAN VPN QoS Router Enabled: : : : Activate this function. Add or remove service ports from the list of service ports. Service Port Management: : : : Add to list: : : : Add to the active service content. Service Port Management The services in the list mentioned above are frequently used services.

  • Page 156: Port Triggering

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Port Range: : : : To activate this function, input the range of the service port locations users want to activate such as 500~500 or 2300~2310, etc. Add to list: : : : Add the service to the service list.

  • Page 157: Upnp

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Application Name: : : : Users can define names for special application software. This is to make management simple. Trigger Port Range: : : : Input the port numbers for data going from the device to the Internet.

  • Page 158: Routing

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Service Port: : : : Select the UPnP service number default list here; for example, WWW is 80~80, FTP is 21~21. Please refer to the default service number list. Input the Intranet virtual IP address or name that maps with Host Name or IP Address:...

  • Page 159: Dynamic Routing

    2WAN 4LAN SMB Multi-WAN VPN QoS Router In this chapter we introduce the Dynamic Routing Information Protocol and Static Routing Information Protocol. 12.3.1 Dynamic Routing The abbreviation of Routing Information Protocol is RIP. There are two kinds of RIP in the IP environment –...

  • Page 160: Static Routing

    2WAN 4LAN SMB Multi-WAN VPN QoS Router RIP is a very simple routing protocol, in which Distance Vector is used. Distance Vector determines transmission distance in accordance with the number of routers, rather than based on actual session speed. Therefore, sometimes it will select a path through the least number of routers, rather than through the fastest routers.

  • Page 161: One To One Nat

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Dest. IP: : : : Input the remote network IP locations and subnet that is to Subnet Mask: : : : be routed. For example, the IP/subnet is 192.168.2.0/255.255.255.0. Gateway: : : : The default gateway location of the network node which is to be routed.
  • Page 162 2WAN 4LAN SMB Multi-WAN VPN QoS Router As both the device and ATU-R need only one actual IP, if ISP issued more than one actual IP (such as eight ADSL static IP addresses or more), users can map the remaining real IP addresses to the intranet PC virtual IP addresses.
  • Page 163 2WAN 4LAN SMB Multi-WAN VPN QoS Router To activate or close the One-to-One NAT function. (Check to Enabled One to One activate the function). NAT: Input the Private IP address for the Intranet One-to-One NAT Private IP Range Begin: function. Input the Public IP address for the Internet One-to-One NAT Public IP Range function.

  • Page 164: Ddns- Dynamic Domain Name Service

    To overcome this problem for users who want to build services such as a website, it offers the function of dynamic web address transfer. This service can be applied from www.qno.cn/ddns, www.3322.org, www.dyndns.org, or www.dtdns.com, and these are free.
  • Page 165 2WAN 4LAN SMB Multi-WAN VPN QoS Router Interface: : : : This is an indication of the WAN port the user has selected. DDNS: : : : Check either of the boxes before DynDNS.org, 3322.org, DtDNS.com and QnoDDNS.org.cn to select one of the four DDNS website address transfer functions.
  • Page 166 2WAN 4LAN SMB Multi-WAN VPN QoS Router Register for Qno DDNS 1. Please go to Qno website and register the product at http://www.qno.cn/en/register/...
  • Page 167 2WAN 4LAN SMB Multi-WAN VPN QoS Router 2. Input the e-mail address which users used to register this product and the serial number of the product to log in to the QnoDDNS Service System. Be sure to input an available e-mail address so that the password sent from the system to activate QnoDDNS service can be received after the domain name registration.
  • Page 168 2WAN 4LAN SMB Multi-WAN VPN QoS Router...

  • Page 169: Mac Clone

    2WAN 4LAN SMB Multi-WAN VPN QoS Router 12.6 MAC Clone Some ISP will request for a fixed MAC address (network card physical address) for distributing IP address, which is mostly suitable for cable mode users. Users can input the network card physical address (MAC address: 00-xx-xx-xx-xx-xx) here. The device will adopt this MAC address when requesting IP address from ISP.

  • Page 170: System Tool

    2WAN 4LAN SMB Multi-WAN VPN QoS Router XIII. System Tool This chapter introduces the management tool for controlling the device and testing network connection. For security consideration, we strongly suggest to change the password. Password and Time setting is in Chapter 5.2. 13.1 Diagnostic The device provides a simple online network diagnostic tool to help users troubleshoot network-related problems.

  • Page 171: Firmware Upgrade

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Ping This item informs users of the status quo of the outbound session and allows the user to know the existence of computers online. On this test screen, please enter the host IP that users want to test such as 192.168.5.20.

  • Page 172: Setting Backup

    2WAN 4LAN SMB Multi-WAN VPN QoS Router 13.3 Setting Backup...

  • Page 173: Snmp

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Import Configuration File: This feature allows users to integrate all backup content of parameter settings into the device. Before upgrade, confirm all information about the software version. Select and browse the backup parameter file: "config.exp." Select the file and click "Import" to import the file. Export Configuration File:...
  • Page 174 2WAN 4LAN SMB Multi-WAN VPN QoS Router Enabled: : : : Activate SNMP feature. The default is activated. Set the name of the device such as QVM1000. System Name: : : : Set the name of the person who manages the device (i.e. John). System Contact:...

  • Page 175: System Recover

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Set one IP address or Domain Name for the Trap-receiving host Send SNMP Trap to: : : : computer. Apply: : : : Press “Apply” to save the settings. Cancel: : : : Press “Cancel”...
  • Page 176 2WAN 4LAN SMB Multi-WAN VPN QoS Router Return to Factory Default Setting If clicking “Return to Factory Default Setting, the dialog block will pop out, if the device will return to factory default.

  • Page 177: Log

    2WAN 4LAN SMB Multi-WAN VPN QoS Router XIV. Log From the log management and look up, we can see the relevant operation status, which is convenient for us to facilitate the setup and operation. 14.1 System Log Its system log offers three options: system log, E-mail alert, and log setting.
  • Page 178 2WAN 4LAN SMB Multi-WAN VPN QoS Router System Log Enabled: : : : If this option is selected, the System Log feature will be enabled.
  • Page 179 2WAN 4LAN SMB Multi-WAN VPN QoS Router Host Name: : : : The device provides external system log servers with log collection feature. System log is an industrial standard communications protocol. It is designed to dynamically capture related system message from the network. The system log provides the source and the destination IP addresses during the connection, service number, and type.
  • Page 180 2WAN 4LAN SMB Multi-WAN VPN QoS Router Log Time Threshold: : : : Set the interval of sending the log, and the default is set to 10 minutes. Reaching this defined number, it will automatically send out the Mail log. The device will detect which parameter (either entries or intervals) reaches the threshold first and send the log message of that parameter to the user.
  • Page 181 2WAN 4LAN SMB Multi-WAN VPN QoS Router Ping of Death: : : : The system fails because the sent data exceeds the maximum packet that can be handled by the IP protocol. If intruders into the device are identified, the message will be sent Unauthorized Login:...
  • Page 182 2WAN 4LAN SMB Multi-WAN VPN QoS Router Outgoing Packet Log: View system packet log which is sent out from the internal PC to the Internet. This log includes LAN IP, destination IP, and service port that is applied. It is illustrated as below. Incoming Packet Log:...

  • Page 183: System Statistic

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Clear Log Now: This feature clears all the current information on the log. 14.2 System Statistic The device has the real-time surveillance management feature that provides system current operation information such as port location, device name, current WAN link status, IP address, MAC address, subnet mask, default gateway, DNS, number of received/ sent/ total packets , number of received/ sent/ total Bytes, Received and Sent Bytes/Sec., total number of error packets received, total number of the packets dropped, number of session,...

  • Page 184: Traffic Statistic

    2WAN 4LAN SMB Multi-WAN VPN QoS Router 14.3 Traffic Statistic Six messages will be displayed on the Traffic Statistic page to provide better traffic management and control.
  • Page 185 2WAN 4LAN SMB Multi-WAN VPN QoS Router By Inbound IP Address: The figure displays the source IP address, bytes per second, and percentage. By outbound IP Address: The figure displays the source IP address, bytes per second, and percentage.
  • Page 186 2WAN 4LAN SMB Multi-WAN VPN QoS Router By Outbound Port: The figure displays the network protocol type, destination IP address, bytes per second, and percentage. By Inbound Port: The figure displays the network protocol type, destination IP address, bytes per second, and percentage.

  • Page 187: Ip/ Port Statistic

    2WAN 4LAN SMB Multi-WAN VPN QoS Router By Outbound Session: The figure displays the source IP address, network protocol type, source port, destination IP address, destination port, bytes per second and percentage. By Inbound Session: The figure displays the source IP address, network protocol type, source port, destination IP address, destination port, bytes per second and percentage.
  • Page 188 2WAN 4LAN SMB Multi-WAN VPN QoS Router Specific IP Status: Enter the IP address that users want to inquire, and then the entire destination IP connected to remote devices as well as the number of ports will be displayed. Specific Port Status: Enter the service port number in the field and IP that are currently used by this port will be displayed.
  • Page 189 2WAN 4LAN SMB Multi-WAN VPN QoS Router...

  • Page 190: Log Out

    2WAN 4LAN SMB Multi-WAN VPN QoS Router XV. Log out On the top right corner of the web- based UI, there is a Logout button. Click on it to log out of the web- based UI. To enter next time, open the Web browser and enter the IP address, user name and password to log in.

  • Page 191: Appendix I: User Interface And User Manual Chapter Cross Reference

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Appendix I: User Interface and User Manual Chapter Cross Reference This appendix is to show the corresponding index for each chapter and user interface. Users can find how to setup quickly and understand the Router capability at the same time. Router overall interface is as below.
  • Page 192 2WAN 4LAN SMB Multi-WAN VPN QoS Router Bandwidth 8.1 (QoS) Management 8.3 Bandwidth Management Session Control 8.2 Session Limit IP/DHCP VII. Port Management Setup 7.3 DHCP/ IP Status 7.4 DHCP Status IP & MAC Binding 7.5 IP & MAC Binding IP Grouping 7.6 IP Grouping Firewall...
  • Page 193 2WAN 4LAN SMB Multi-WAN VPN QoS Router Setup 7.1 Setup Status 7.2 Status X. VPN Summary 10.1.1 Summary Gateway to 10.1.2.1 Gateway to Gateway Gateway Client to Gateway 10.1.2.2 Client to Gateway PPTP Setup 10.1.3 PPTP Setup PPTP Status 10.1.3 PPTP Status VPN Pass Through 10.1.4 VPN Pass Through QnoKey...

  • Page 194: Appendix Ii:troubleshooting

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Appendix II:Troubleshooting...

  • Page 195: 1)Block Bt Download

    2WAN 4LAN SMB Multi-WAN VPN QoS Router (1)Block BT Download To block BT and prevent downloading by users, go to the “Firewall -> Content Filter" and select "Enable Website Block by Keywords," followed by the input of "torrent." This will prevent the users from downloading.

  • Page 196: 2)Shock Wave And Worm Virus Prevention

    2WAN 4LAN SMB Multi-WAN VPN QoS Router (2)Shock Wave and Worm Virus Prevention Since many users have been attacked by Shock Wave and Worm viruses recently, the internet transmission speed was brought down and the Session bulky increase result in the massive processing load of the device.
  • Page 197 2WAN 4LAN SMB Multi-WAN VPN QoS Router Use the same method to add UDP [UDP135~139] and TCP [445~445] Ports. c. Enhance the priority level of these three to the highest.

  • Page 198: 3)Block Qqlive Video Broadcast Setting

    If the login onto the QQLive Server is blocked, the issue can be resolved. The following relates to Qno products and provides users with solutions by introducing users how to set up the device.
  • Page 199 2WAN 4LAN SMB Multi-WAN VPN QoS Router QQLive server. Repeated addition may be needed). Lastly, select "Always" under the Scheduling setting so that the QQLive Login Time can be set. (If necessary, specific time setting may be undertaken). Click "Apply" to move to the next step. c).

  • Page 200: 4)Arp Virus Attack Prevention

    2WAN 4LAN SMB Multi-WAN VPN QoS Router (4)ARP Virus Attack Prevention ARP Issue and Information Recently, many cyber cafes in China experienced disconnection (partially or totally) for a short period of time, but connection is resumed quickly. This is caused by the clash with MAC address.
  • Page 201 The device selection is advised to take into consideration the one with anti-ARP virus attack. Qno products come squarely with such a feature, which is very user-friendly compared to other products.
  • Page 202 Now we understand ARP, ARP cheat and attack, as well as how to identify this type of attack. What comes next is to find out effective prevention measures to stop the network from being attacked. The general solution provided by Qno can be divided into the following three options: a) Enable “Prevent ARP Virus Attack”:...
  • Page 203 2WAN 4LAN SMB Multi-WAN VPN QoS Router Enter ”Firewall-> General” and find the option "Prevent ARP Virus Attack" to the right of the page. Click on the option to activate it and click "Apply" at the bottom of the page (see illustrated). b) Bind the Gateway IP and MAC address for each PC This prevents the ARP from cheating IP and its MAC address.
  • Page 204 2WAN 4LAN SMB Multi-WAN VPN QoS Router arp -d arp -s Router LAN IP Router LAN MAC For those internal network attacked by Arp, the source must be identified. Method: If the PC fails to go online or there is packet loss of ping, in the DOS screen, input arp –a command to check if the MAC address of the gateway is the same with the device MAC address.
  • Page 205 2WAN 4LAN SMB Multi-WAN VPN QoS Router After an item is added to the list, the corresponding message will be displayed in the white block on the bottom. However, such method is not recommended because the inquiry of IP/MAC addresses of all hosts creates heavy workload. Another method to bind IP and MAC is more recommended because of easy operation, reducing workload and time efficiency.
  • Page 206 2WAN 4LAN SMB Multi-WAN VPN QoS Router Click to display IP and MAC binding list dialog box. In this box, the unbinding IP and MAC address corresponding to the PC are displayed. Enter the "Name" of the computer and click on "Enabled"...
  • Page 207 2WAN 4LAN SMB Multi-WAN VPN QoS Router Though these basic operations can help solve the problem but Qno's technical engineers suggest that further measures should be taken to prevent the ARP attack. 1. Deal with virus source as well as the source device affected by virus through virus killing and the system re-installation.
  • Page 208 2WAN 4LAN SMB Multi-WAN VPN QoS Router 5. Frequently update anti-virus software (virus data base), and set the daily upgrade that allows regular and automatic update. Install and use the network firewall software. Network firewall is important for the process of anti-virus. It can effectively avert the attack from the network and invasion of the virus.

  • Page 209: Appendix Iii:qno Technical Support Information

    2WAN 4LAN SMB Multi-WAN VPN QoS Router Appendix III:Qno Technical Support Information For more information about the Qno's product and technology, please log onto the Qno's bandwidth forum, refer to the examples of the FTP server, or contact the technical department of Qno's dealers as well as the Qno's Mainland technical center.

Table of Contents