1. Manuals
  2. Brands
  3. Billion Manuals
  4. Network Router
  5. BiPAC 7402NX
  6. User manual

Billion BiPAC 7402NX User Manual

802.11n 3g/adsl2+ (vpn) firewall router
Hide thumbs Also See for BiPAC 7402NX:
Table of Contents

Advertisement

Quick Links

Download this manual See also: User Manual
BiPAC 7402NX(L)
802.11n 3G/ADSL2+
(VPN) Firewall Router
User's Manual
Last Revision Date: 28-05-2008

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the BiPAC 7402NX and is the answer not in the manual?

Questions and answers

Related Manuals for Billion BiPAC 7402NX

Summary of Contents for Billion BiPAC 7402NX

  • Page 1 BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router User’s Manual Last Revision Date: 28-05-2008...

  • Page 2: Table Of Contents

    CHAPTER 1: INTRODUCTION ... 3 INTRODUCTION TO YOUR ROUTER... 3 FEATURES ... 3 CHAPTER 2: INSTALLING THE ROUTER ... 6 IMPORTANT NOTE FOR USING THIS ROUTER ... 6 PACKAGE CONTENTS... 6 THE FRONT LEDS ... 7 THE REAR PORTS... 8 CABLING ...
  • Page 3 DHCP Server ... 39 WAN - Wide Area Network... 40 WAN Interface... 40 WAN Profile ... 42 ADSL Mode... 48 System ... 49 Time Zone... 49 Remote Access... 50 Firmware Upgrade... 50 Backup / Restore... 51 Restart Router ... 52 User Management...

  • Page 4: Chapter 1: Introduction

    In particular, by doubling the upstream data rate, the Annex M standard included in the BiPAC 7402NX model supports the latest ADSL2/2+ for higher upload speeds.
  • Page 5 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router This protocol is used to enable simple and robust connectivity among stand-alone devices and PCs from many different vendors. It makes network simple and affordable for users. UPnP architecture leverages TCP/IP and the Web to enable seamless proximity networking in addition to control and data transfer among networked devices.
  • Page 6 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Static and RIP1/2 Routing It has routing capability and supports easy static routing table or RIP1/2 routing protocol. Simple Network Management Protocol (SNMP) It is an easy way to remotely manage the router via SNMP.

  • Page 7: Chapter 2: Installing The Router

    Only use the power adapter that comes with the package. Using a different voltage rating power adaptor may damage this router. Attention Package Contents BiPAC 7402NX(L) 802.11n 3G/ ADSL2+ (VPN) Firewall Router CD containing the on-line manual RJ-11 ADSL/ telephone cable Ethernet (CAT-5 LAN) cable Three 2dbi detachable antennas AC-DC power adapter (15V DC, 1.6A)

  • Page 8: The Front Leds

    Wireless Internet Chapter 2: Installing the router Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Lit when power turns ON. Lit in red means the system is failed. To restart the device or connect Billion for searching support. Lit when one of LAN ports connected to an Ethernet device.

  • Page 9: The Rear Ports

    RESET Power Power Switch Chapter 2: Installing the router Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Meaning Connect the detachable antenna to this port. Connect the supplied RJ-11 (“telephone”) cable on this port when connecting to the ADSL/telephone network.

  • Page 10: Cabling

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Cabling One of the most common causes of problems is the bad cabling or ADSL line(s). Make sure that all connected devices are turned on. On the front of the product is a bank of LEDs. Verify that the LAN Link and ADSL line LEDs are lit.

  • Page 11: Chapter 3: Basic Installation

    Any TCP/IP capable workstation can be used to communicate with or through the router. To configure other types of workstations, please consult the manufacturer’s documentation. Chapter 3: Basic Installation Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Chapter 3: Basic Installation...

  • Page 12: Connecting Your Router

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Connecting Your Router 1. Connect this router to a LAN (Local Area Network) and the ADSL/telephone (ADSL) network. 2. Power on the device. 3. Make sure the Power is lit steadily and that the LAN LED is lit.
  • Page 13 DNS server address automatically radio buttons. (See Figure 3.4) Click OK to finish the configuration. Chapter 3: Basic Installation Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Figure 3.1: LAN Area Connection Figure 3.2: LAN Connection Status Figure 3.3: TCP / IP Figure 3.4: IP Address &...

  • Page 14: Configuring Pcs In Windows 2000

    DNS server address automatically radio buttons. (See Figure 3.8) Click OK to finish the configuration. Chapter 3: Basic Installation Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Figure 3.5: LAN Area Connection Figure 3.6: LAN Connection Status Figure 3.7: TCP / IP Figure 3.8: IP Address &...

  • Page 15: Configuring Pc In Windows 95/98/Me

    Then select the DNS Configuration tab. (See Figure 3.11) Select the Disable DNS radio button and click OK to finish the configuration. Chapter 3: Basic Installation Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Figure 3.9: TCP / IP Figure 3.10: IP Address Figure 3.11: DNS Configuration...
  • Page 16 Select the Obtain an IP address from a DHCP server radio button and click OK. (See Figure 3.13) Chapter 3: Basic Installation Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Control Figure 3.12: TCP / IP Figure 3.13: IP Address...

  • Page 17: Factory Default Settings

    LAN Port IP address Subnet Mask DHCP server function addresses distribution to PCs Chapter 3: Basic Installation Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router 192.168.1.254 255.255.255.0 Enabled 100 IP addresses continuing from 192.168.1.100 through 192.168.1.199 WAN Port The PPPoE function is enabled to automatically get the WAN port configuration from the ISP.

  • Page 18: Information From Your Isp

    VPI/VCI, VC / LLC-based multiplexing, IP address, Subnet mask, Gateway IPoA(RFC1577) address, and Domain Name System (DNS) IP address (it is a fixed IP address). Pure Bridge VPI/VCI, VC / LLC-based multiplexing to use Bridged Mode. Chapter 3: Basic Installation Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...

  • Page 19: Configuring With Your Web Browser

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Configuring with your Web Browser Open your web browser, enter the IP address of your router, which by default is 192.168.1.254, and click “Go”, a user name and password window prompt will appear.

  • Page 20: Chapter 4: Configuration

    Email Status Event Log Error Log Diagnostic Quick Start Configuration System Firewall Virtual Server Time Schedule Advanced Language (provides user interface in English and French languages) Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Chapter 4: Configuration...

  • Page 21: Status

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Status ADSL Status This section displays the ADSL overall status, which shows a number of helpful information such as DSP firmware version. 3G Status This section displays the 3G Card’s overall status, which shows you a number of helpful information such as the current signal strength and statistics on current and total bytes transferred and received (Note: 3G card/modem does not come with the router).

  • Page 22: Arp Table

    “yes” for static ARP table entries added by the user. DHCP Table Leased: The DHCP assigned IP addresses information. Expired: The expired IP addresses information. Permanent: The fixed host mapping information Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...

  • Page 23: Routing Table

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Leased Table IP Address: The IP address that assigned to client. MAC Address: The MAC address of client. Client Host Name: The Host Name (Computer Name) of client. Expiry: The current lease time of client.

  • Page 24: Nat Sessions

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router NAT Sessions This section lists all current NAT sessions between interface of types external (WAN) and internal (LAN). UPnP Portmap The section lists all port-mapping established using UPnP (Universal Plug and Play. See Advanced section of this manual for more details on UPnP and the router’s UPnP configuration options.

  • Page 25: Ipsec Status

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Tunnel Connected: Whether the VPN Tunnel is currently connected. Call Connected: If the Call for this VPN entry is currently connected. Encryption: The encryption type used for this VPN connection. IPSec Status This shows details of your configured IPSec VPN Connections.

  • Page 26: Email Status

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Encryption: The encryption type used for this VPN connection. Email Status Details and status for the Email Account you have configured the router to check. Please see the Advanced section of this manual for details on this function.

  • Page 27: Diagnostic

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Diagnostic It tests the connection to computer(s) which is connected to LAN ports and also the WAN Internet connection. If PING www.google.com is shown FAIL and the rest is PASS, you ought to check your PC’s DNS settings is set correctly.
  • Page 28 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router 4. The list below has different mode applied for your choice. Choose 0/33/PPPoE(Recommended) and click Apply. 5. Please enter “Username” and “Password” as supplied by your ISP(Internet Service Provider) and click Apply to continue.
  • Page 29 Channel ID: Select the ID channel that you would like to use. Security Mode: You can disable or enable with WPA or WEP for protecting wireless network. The default mode of wireless security is Disable. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...

  • Page 30: Configuration

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router 7. Wait for the configuration. If connection is successful the following image will be shown Configuration When you click this item, you get following sub-items to configure the ADSL router. - LAN, WAN, System, Firewall, VPN, QoS, Virtual Server, Time Schedule and Advanced These functions are described below in the following sections.

  • Page 31: Ethernet

    Subnet Mask: The default subnet mask on this router. RIP: RIP v1, RIP v2, and RIP v2 Multicast. Check to enable RIP function. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router VLAN Port (Always starts with) P1 / P2 / P3 / P4 / Wireless...

  • Page 32: Ip Alias

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router IP Alias This function creates multiple virtual IP interfaces on this router. It helps to connect two or more local networks to the ISP or remote node. In this case, an internal router is not required.

  • Page 33: Ethernet Client Filter

    Candidates: automatically detects devices connected to the router through the Ethernet. . → Active PC in LAN Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router . Make sure your PC’s MAC is listed. . Make sure your PC’s MAC is not listed.

  • Page 34: Wireless

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Active PC in LAN displays a list of individual Ethernet device’s IP Address & MAC Address which connecting to the router. You can easily by checking the box next to the IP address to be blocked or allowed. Then, Add to insert to the Ethernet Client Filter table.
  • Page 35 3. Peer WDS MAC Address: It is the third associated AP’s MAC Address. 4. Peer WDS MAC Address: It is the fourth associated AP’s MAC Address. Note: For MAC Address, Semicolon ( : ) must be included. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router 802.11n, 802.11g...

  • Page 36: Wireless Security (Wireless Router Only)

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Wireless Security (Wireless Router only) You can disable or enable with WPA or WEP for protecting wireless network. The default mode of wireless security is disabled. WPA-PSK / WPA2-PSK Security Mode: You can disable or enable with WPA or WEP for protecting wireless network.
  • Page 37 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router WEP Authentication: To prevent unauthorized wireless stations from accessing data transmitted over the network, the router offers secure data encryption, known as WEP. If you require high security for transmissions, there are two options to select from: Open System, Share key.

  • Page 38: Wireless Client / Mac Address Filter

    Wireless Client (MAC Address) Filter table. The maximum Wireless client is 16. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router . Make sure your PC’s MAC is listed. . Make sure your PC’s MAC is not listed.

  • Page 39: Wps

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router WPS feature is follow Wi-Fi Alliance WPS standard and it easily set up security-enabled Wi-Fi networks in the home and small office environment. It reduces half the user steps to configure a network and supports two methods that are familiar to most consumers to configure a network and enable security.

  • Page 40: Dhcp Server

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router DHCP Server You can disable or enable the DHCP (Dynamic Host Configuration Protocol) server or enable the router’s DHCP relay functions. The DHCP protocol allows your router to dynamically assign IP addresses to PCs on your network if they are configured to obtain IP addresses automatically.

  • Page 41: Wan - Wide Area Network

    Ping Gateway: It will send ping packet to gateway and wait response from gateway in every “Probe Cycle”. Ping Host: It will send ping packet to specific host and wait response in every “Probe Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router WAN Interface, WAN Profile ADSL Mode.
  • Page 42 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Cycle”. The host must be an IP address. WAN Connection-3G Mode In the ADSL mode, as the ADSL is not available(failover/failback), it will turn to 3G mode for supporting WAN Connection. However, in the 3G Mode, the ADSL can not support WAN Connection when 3G Mode is unavailable (Note: 3G card/modem does not come with the router).

  • Page 43: Wan Profile

    Connect on Demand: If you want to establish a PPP session only when there is a packet requesting access to the Internet (i.e. when a program on your computer attempts to access the Internet). Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...
  • Page 44 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Idle Timeout: Auto-disconnect the broadband firewall gateway when there is no activity on the line for a predetermined period of time. Detail: You can define the destination port and packet type (TCP/UDP) without checking by timer.
  • Page 45 DNS helps to find the IP address for the specific domain name. Check the checkbox to obtain DNS automatically. Primary DNS: Enter the primary DNS. Secondary DNS: Enter the secondary DNS. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...

  • Page 46: Mpoa Connection

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router MPoA Connection Profile Port: Select the profile port either ADSL or 3G. The ATM protocol will be used in the device. Protocol: Description: A given name for the connection. VPI/VCI: Enter the information provided by your ISP.
  • Page 47 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router IPoA Routed Connection Profile Port: Select the profile port either ADSL or 3G. The ATM protocol will be used in the device. Protocol: Description: A given name for the connection. VPI/VCI: Enter the information provided by your ISP.

  • Page 48: Pure Bridge

    DNS helps to find the IP address for the specific domain name. Check the checkbox to obtain DNS automatically. Primary DNS: Enter the primary DNS. Secondary DNS: Enter the secondary DNS. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...

  • Page 49: Adsl Mode

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router ADSL Mode Connect Mode: This mode will automatically detect your ADSL line code, ADSL2+, ADSL2, AnnexM2 and AnnexM2+, ADSL, All. Please keep the factory setting unless ADSL is detected as the symptom of synchronization problem.

  • Page 50: System

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router System Here are the items within the System section: Time Zone, Remote Access, Firmware Upgrade, Backup/Restore, Restart User Management. Time Zone The router does not have a real time clock on board; instead, it uses the Simple Network Time Protocol (SNTP) to get the current time from an SNTP server outside your network.

  • Page 51: Remote Access

    Once the correct file is selected, click Upgrade to update the firmware in your router. DO NOT power down the router or interrupt the firmware upgrading while it is still in process. Improper operation could damage the router. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...

  • Page 52: Backup / Restore

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Backup / Restore These functions allow you to save and backup your router’s current settings to a file on your PC, or to restore a previously saved backup. This is useful if you wish to experiment with different settings, knowing that you have a backup handy in the case of any mistakes.

  • Page 53: Restart Router

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Restart Router Click Restart with option Current Settings to reboot your router (and restore your last saved configuration). If you wish to restart the router using the factory default settings (for example, after a firmware upgrade or if you have saved an incorrect configuration), select Factory Default Settings to reset to factory default settings.

  • Page 54: User Management

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router User Management In order to prevent unauthorized access to your router’s configuration interface, it requires all users to login with a password. You can set up multiple user accounts, each with their own password.

  • Page 55: Firewall And Access Control

    LAN, as well as helping to prevent attacks from hackers. Besides, when using NAT, the router acts as a “natural” Internet firewall, as all PCs on your LAN will use private IP addresses that cannot be directly accessed from the Internet. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...

  • Page 56: General Settings

    All blocked/User-defined: no pre-defined port or address filter rules by default, meaning that all inbound (Internet to LAN) and outbound (LAN to Internet) packets will be blocked. Users have to Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router General Settings, Packet Filter, Intrusion Detection, Firewall Log.

  • Page 57: (Changed The Format Only.)

    (Changed the format only.) Any remote user who is attempting to perform this action may result in blocking all the accesses to configure and manage of the device from the Internet. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...

  • Page 58: Packet Filter

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Packet Filter This function is only available when the Firewall is enabled and one of these four security levels is chosen (All blocked, High, Medium and Low). The preset port filter rules in the Packet Filter must modify accordingly to the level of Firewall, which is selected.
  • Page 59 ICQ (5190) TCP(6) 5190 5190 MSN (1863) TCP(6) 1863 1863 Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Table 1: Predefined Port Filter Firewall - Low Inbound Outbound Inbound Outbound Inbound Outbound Firewall - Medium Firewall – High...
  • Page 60 Inbound / Outbound: Select Allow or Block the access to the Internet (“Outbound”) or from the Internet (“Inbound”). Click Add button to apply your changes. Packet Filter – Add Raw IP Filter Go to “Type” drop-down menu, select “Use Protocol Number”. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...
  • Page 61 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Rule Name Helper: Users-define description to identify this entry or choosing “Select” drop-down menu to select existing predefined rules. Time Schedule: It is self-defined time period. You may specify a time schedule for your prioritization policy.
  • Page 62 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Example: Configuring your firewall to allow a publicly accessible web server on your LAN The predefined port filter rule for HTTP (TCP port 80) is the same no matter whether the firewall is set to a high, medium or low security level.
  • Page 63 Choose the radio button you want to delete the existing HTTP rule. Click Edit/Delete button to delete the existing HTTP rule. Input the Rule Name, Time Schedule, Source/Destination IP, Type, Source/Destination Port, Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...
  • Page 64 Note: For how to configure the HTTP in Virtual Server, go to Add Virtual Server in Virtual Server section for more details. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router (I do not wish to active the address-filter, instead I...

  • Page 65: Intrusion Detection

    Scan Attack Block Duration: This is the duration for blocking hosts that attempt a possible Scan attack. Scan attack types include X’mas scan, IMAP SYN/FIN scan and similar attempts. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...
  • Page 66 100 ICMP packets per seconds except ICMP Echo Requests (PING). For SYN Flood, ICMP Echo Storm and ICMP flood, IDS will just warn the user in the Event Log. It cannot protect against such attacks. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...
  • Page 67 (Default 100 c/sec) Max PING Count ICMP Echo (Default 15 c/sec) Src IP: Source IP Dst Port: Destination Port Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Type of Block Duration Src IP Src IP Victim Dst IP...

  • Page 68: Url Filter

    Please note that the URL filter blocks web browser (HTTP) connection attempts using port 80 only. example, if the URL is http://www.abc.com/abcde.html, it will be dropped as the keyword “abcde” occurs in the URL. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router http://www.abcde.com...
  • Page 69 Block surfing by IP address: Preventing someone who uses the IP address as URL for skipping Domains Filtering function. Activates only and if Domain Filtering enabled. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router www.abc.com will be sent to the remote web server because it www.google...

  • Page 70: Im / P2P Blocking

    Internet. Both Instant Message and Peer-to-peer applications make communication faster and easier but your network can become increasingly insecure at the same time. Billion’s IM and P2P blocking helps users to restrict LAN PCs to access to the commonly used IM, Yahoo and MSN, and P2P, BitTorrent and eDonkey, applications over the Internet.

  • Page 71: Firewall Log

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Firewall Log Firewall Log display log information of any unexpected action with your firewall settings. Check the Enable box to activate the logs. Log information can be seen in the Status – Event Log after enabling.

  • Page 72: Vpn - Virtual Private Networks

    Authentication Type: Default is Auto if you want the router to determine the authentication type to use, or else manually specify CHAP (Challenge Handshake Authentication Protocol) or PAP (Password Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router (BiPAC 7402NX only) PPTP, IPSec...
  • Page 73 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Authentication Protocol) if you know which type the server is using (when acting as a client), or else the authentication type you want clients connecting to you to use (when acting as a server). When using PAP, the password is sent unencrypted, whilst CHAP encrypts the password before sending, and also allows for challenges at different periods to ensure that an intruder has not replaced the client.
  • Page 74 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Example: Configuring a Remote Access PPTP VPN Dial-out Connection A company’s office establishes a PPTP VPN connection with a file server located at a separate location. The router is installed in the office, connected to a couple of PCs and Servers.
  • Page 75 Username Password Auth.Type Data Encryption Key Length Mode Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router VPN_PPTP Given name of PPTP connection Select Remote Access from Connection Type Remote Access drop-down menu Dial out Select Dial out from Type drop-down menu 69.121.1.33...
  • Page 76 Stateful mode. If you select Stateless mode, the key will be changed in each packet. Active as default route: As the connection type is LAN to LAN, this function will become to disable. Click Edit/Delete button to save your changes. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...
  • Page 77 The branch office establishes a PPTP VPN tunnel with head office to connect two private networks over the Internet. The routers are installed in the head office and branch offices accordingly. Both office LAN networks MUST in different subnet with LAN to LAN application. Attention Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...
  • Page 78 Username Password Auth.Type Data Encryption Key Length Mode Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router HeadOffice Given a name of PPTP connection Select LAN to LAN from Connection Type drop-down LAN to LAN menu Dial in Select Dial in from Type drop-down menu 192.168.1.200...
  • Page 79 Username Password Auth.Type Data Encryption Key Length Mode Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router BranchOffice Given a name of PPTP connection Select LAN to LAN from Connection Type drop-down LAN to LAN menu Dial out Select Dial out from Type drop-down menu 69.121.1.33...

  • Page 80: Ipsec (Ip Security Protocol)

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router IPSec (IP Security Protocol) Active: This function activates or deactivates the IPSec connection. Check Active checkbox if you want the protocol of tunnel to be activated and vice versa. Note: When the Active checkbox is checked, the function of Edit and Delete will not be available.
  • Page 81 Remote Network: Set the IP address, subnet or address range of the remote network. IKE (Internet key Exchange) Mode: Select IKE mode to Main mode or Aggressive mode. This IKE provides secured key generation and key management. Local ID: Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...
  • Page 82 SA Lifetime: Specify the number of minutes that a Security Association (SA) will stay active before new encryption and authentication key will be exchanged. There are two kinds of SAs, IKE and IPSec. IKE Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...
  • Page 83 Reconnection Time: It is the reconnecting time interval after NO TRAFFIC is initiated. 3 minutes is minimum time interval for this function. Click Edit/Delete to save your changes. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Interval (sec) 2000 2000...
  • Page 84 Both office LAN networks MUST in different subnet with LAN to LAN application. Functions of Pre-shared Key, VPN Connection Type and Security Algorithm MUST BE identically set up on both sides. Attention Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Branch Office 192.168.0.0/24 69.121.1.30 192.168.1.0/24 69.1.121.3...
  • Page 85 IP Address Netmask Authentication Encryption Prefer Forward Security Pre-shared Key Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router IPSec_HeadOffice Given a name of IPSec connection Select Subnet from Local Network Subnet drop-down menu. 192.168.1.0 Head office network 255.255.255.0...
  • Page 86 Remote Network IP Address Netmask Authentication Encryption Prefer Forward Security Pre-shared Key Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router IPSec_Branch Given a name of IPSec connection Office Select Subnet from Local Network Subnet drop-down menu. 192.168.0.0 Branch office network 255.255.255.0...
  • Page 87 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Example: Configuring a IPSec Host-to-LAN VPN Connection Chapter 4: Configuration...
  • Page 88 Remote Network IP Address Authentication Encryption Prefer Forward Security Pre-shared Key Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router IPSec Given a name of IPSec connection Select Subnet from Network drop-down Subnet menu 192.168.1.0 Head office network 255.255.255.0...

  • Page 89: L2Tp (Layer Two Tunneling Protocol)

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router L2TP (Layer Two Tunneling Protocol) Two types of L2TP VPN are supported Remote Access and LAN-to-LAN (please refer below for more information.). Fill in the blank with information you need and click Add to create a new VPN connection account.
  • Page 90 VPN negotiation. This function will provide better security, but extends the VPN negotiation time. Diffie-Hellman is a public-key cryptography protocol that Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...
  • Page 91 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router allows two parties to establish a shared secret over an unsecured communication channel (i.e. over the Internet). There are three modes, MODP 768-bit, MODP 1024-bit and MODP 1536-bit. MODP stands for Modular Exponentiation Groups.
  • Page 92 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Example: Configuring a L2TP VPN - Remote Access Dial-in Connection A remote worker establishes a L2TP VPN connection with the head office using Microsoft's VPN Adapter (included with Windows XP/2000/ME, etc.). The router is installed in the head office, connected to a couple of PCs and Servers.
  • Page 93 IPSec Authentication Encryption Perfect Forward Secrecy Pre-shared Key Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router VPN_L2TP Given a name of L2TP connection Select Remote Access from Connection Type Remote Access drop-down menu Dial in Select Dial in from Type drop-down menu 192.168.1.200...
  • Page 94 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Example: Configuring a Remote Access L2TP VPN Dial-out Connection A company’s office establishes a L2TP VPN connection with a file server located at a separate location. The router is installed in the office, connected to a couple of PCs and Servers.
  • Page 95 IPSec Authentication Encryption Perfect Forward Secrecy Pre-shared Key Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router VPN_L2TP Given name of L2TP connection Select Remote Access from Connection Type Remote Access drop-down menu Dial out Select Dial out from Type drop-down menu 69.121.1.33...
  • Page 96 Tunnel Authentication: This enables router to authenticate both the L2TP remote and L2TP host. This is only valid when L2TP remote supports this feature. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...
  • Page 97 This can be done by manually entering the pre-shared key into both sides (router or hosts). Click Edit/Delete to save your changes. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...
  • Page 98 Both office LAN networks MUST in different subnet with LAN to LAN application. Functions of Pre-shared Key, VPN Connection Type and Security Algorithm MUST BE identically set up on both sides. Attention Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...
  • Page 99 IPSec Authentication Encryption Perfect Forward Secrecy Pre-shared Key Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router HeadOffice Given a name of L2TP connection Select LAN to LAN from Connection Type drop-down LAN to LAN menu Dial in Select Dial in from Type drop-down menu 192.168.1.200...
  • Page 100 IPSec Authentication Encryption Perfect Forward Secrecy Pre-shared Key Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router BranchOffice Given a name of L2TP connection LAN to LAN Select LAN to LAN from drop-down menu Dial out Select Dial out from drop-down menu 69.121.1.33...

  • Page 101: Qos - Quality Of Service

    Marking allows users to assign specific application traffic to be executed in priority by the next Router based on the DSCP value. See Table 4. The DSCP Mapping Table: Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Prioritization Outbound / Inbound IP Throttling...
  • Page 102 Silver service (M) Silver service (H) Bronze service (L) Bronze service (M) Bronze service (H) Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Table 4: DSCP Mapping Table DSCP Mapping Table Standard DSCP None Best Effort (000000)

  • Page 103: Outbound Ip Throttling (Lan To Wan)

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Outbound IP Throttling (LAN to WAN) IP Throttling allows you to limit the speed of IP traffic. The value entered will limit the speed of the application that you set to the specified value’s multiple of 32kbps.

  • Page 104: Inbound Ip Throttling (Wan To Lan)

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Inbound IP Throttling (WAN to LAN) IP Throttling allows you to limit the speed of IP traffic. The value entered will limit the speed of the application that you set to the specified value’s multiple of 32kbps.
  • Page 105 Example: QoS for your Network Connection Diagram VoIP Normal PCs Restricted PC Information and Settings Upstream: 928 kbps Downstream: 8 Mbps VoIP User : 192.168.1.1 Normal Users : 192.168.1.2~192.168.1.5 Restricted User: 192.168.1.100 Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...
  • Page 106 VoIP/VPN HIGH Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Throughput Others Restricted NORMAL VoIP/VPN HIGH Others NORMAL Restricted...
  • Page 107 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Mission-critical application Mostly the VPN connection is mission-critical application for doing data exchange between head and branch office. The mission-critical application must be sent out smoothly without any dropping. Set priority as high level for preventing any other applications to saturate the bandwidth.
  • Page 108 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router With above settings that help to limit utilization of upstream of FTP. Time schedule also help you to only limit utilization at daytime. Advanced setting by using IP throttling With IP throttling you can specify more detail for allocating bandwidth; even the applications are located in the same level.
  • Page 109 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router downstream bandwidth. The settings below help you to limit bandwidth for the restricted application. Chapter 4: Configuration...

  • Page 110: Virtual Server (Known As Port Forwarding)

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Virtual Server (known as Port Forwarding) In TCP/IP and UDP networks a port is a 16-bit number used to identify which application program (usually a server) incoming connections should be delivered to. Some ports have numbers that are pre-assigned to them by the IANA (the Internet Assigned Numbers Authority), and these are referred to as “well-known...

  • Page 111: Add Virtual Server

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Add Virtual Server Because NAT can act as a “natural” Internet firewall, your router protects your network from being accessed by outside users when using NAT, as all incoming connection attempts will point to your router unless you specifically create Virtual Server entries to forward those ports to a PC on your network.

  • Page 112: Edit Dmz Host

    DHCP server. You can configure the virtual server IP address manually, but it must still be in the same subnet as the router. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...

  • Page 113: Edit Dmz Host

    List all existing PCs connecting to the network. You may assign a PC with IP address and MAC from this list. Select the Apply button to apply your changes. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...

  • Page 114: Edit One-To-One Nat (Network Address Translation)

    The protocol used is determined by the particular Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router to create a new One-to-One NAT rule: drop-down menu to select...
  • Page 115 Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router application. Most applications will use TCP or UDP; Time Schedule: User-defined time period to enable your virtual server. You may specify a time schedule or Always on for the usage of this Virtual Server Entry. For setup and detail, refer to Time Schedule section Global IP: Define a public/ WAN IP address for this Application to use.
  • Page 116 TCP & UDP TCP & UDP TCP & UDP 1503 1720 4000 7070 Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router http://www.iana.org/assignments/port-numbers http://www.billion.com Description FTP Data FTP Control SSH Remote Login Protocol Telnet SMTP (Simple Mail Transfer Protocol)

  • Page 117: Time Schedule

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Time Schedule The Time Schedule supports up to 16 time slots which helps you to manage your Internet connection. In each time profile, you may schedule specific day(s) i.e. Monday through Sunday to restrict or allowing the usage of the Internet by users or applications.

  • Page 118: Configuration Of Time Schedule

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Configuration of Time Schedule Edit a Time Slot 1. Choose any Time Slot (ID 1 to ID 16) to edit, click Edit radio button. Note: Watch it carefully, the days you have selected will present in capital letter. Lower case letter shows the day(s) is not selected, and no rule will apply on this day(s).

  • Page 119: Advanced

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Advanced Configuration options within the Advanced section are for users who wish to take advantage of the more advanced features of the router. Users who do not understand the features should not attempt to reconfigure their router, unless advised to do so by support staff.

  • Page 120: Dynamic Dns

    Period: Set the time period between updates, for the Router to exchange information with the DDNS server. In addition to updating periodically as per your settings, the router will perform an update when your dynamic IP address changes. Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...

  • Page 121: Check Email

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Check Email This function allows you to have the router check your POP3 mailbox for new Email messages. The Mail LED on your router will light when it detects new messages waiting for download. You may also view the status of this function using the Status –...

  • Page 122: Device Management

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Device Management The Device Management advanced configuration settings allow you to control your router’s security options and device monitoring features. Device Host Name Host Name: Give a name for it. (The Host Name cannot be used with one word only. There are two words should be connected with a '.' at least.
  • Page 123 SNMPv3 is a strong authentication mechanism, authorization with fine granularity for remote monitoring. Traps supported: Cold Start, Authentication Failure. The following MIBs are supported: From RFC 1213 (MIB-II): System group Interfaces group Address Translation group IP group ICMP group Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...
  • Page 124 From RFC 1473 (PPP/IP MIB): PPP IP Group From RFC 1474 (PPP/Bridge MIB): PPP Bridge Group From RFC1573 (IfMIB): ifMIBObjects Group From RFC1695 (atmMIB): atmMIBObjects From RFC 1907 (SNMPv2): only snmpSetSerialNo OID Chapter 4: Configuration Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router...

  • Page 125: Igmp

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router IGMP IGMP, known as Internet Group Management Protocol, is used to management hosts from multicast group. IGMP Forwarding: Accepting multicast packet. Default is set to Enable. IGMP Snooping: Allowing switched Ethernet to check and make correct forwarding decisions. Default is set to Disable.

  • Page 126: Logout

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Logout To exit the router’s web interface, choose Logout. Please ensure that you have saved the configuration settings before you logout. Be aware that the router is restricted to only one PC accessing the configuration web pages at a time.

  • Page 127: Chapter 5: Troubleshooting

    PC. Make sure you have uninstalled any software firewall for troubleshooting. Verify that the IP address and the subnet mask are consistent between the router and the workstations. Appendix A: Product Support and Contact Information Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router Chapter 5: Troubleshooting...

  • Page 128: Appendix A: Product Support And Contact Information

    Billion BiPAC 7402NX(L) 802.11n 3G/ADSL2+ (VPN) Firewall Router APPENDIX A: Product Support and Contact Information Most problems can be solved by referring to the Troubleshooting section in the User’s Manual. If you cannot resolve the problem with the Troubleshooting chapter, please contact the dealer where you purchased this product.

This manual is also suitable for:

Bipac 7402nxl

Table of Contents