Page 1 For Quick Start Installation BODi rS 1000 Series WAN Bandwidth on Demand Inter- net Network Appliance User Manual This is a Class A device and is not intended for use in a residential environment. Sales Office: +1 (301) 975-1000 Technical Support:...
Page 2 Under no condition shall Patton Electronics be liable for any damages incurred by the use of this product. These damages include, but are not limited to, the following: lost profits, lost savings and incidental or consequential damages arising from the use of or inability to use this product.
Page 3: Summary Table Of Contents
Configuring Firewall Settings........................100 Configuring Miscellaneous Services ......................107 Managing System Settings........................... 117 Managing Status Settings ..........................133 12 Troubleshooting............................141 Contacting Patton for assistance ......................... 144 Compliance Information ..........................147 Specifications .............................. 149 Applications ............................... 152 Terms ................................. 157...
Page 4: Table Of Contents
Table of Contents Summary Table of Contents ........................... 3 Table of Contents ............................4 List of Figures ............................... 10 List of Tables ..............................13 About this guide ............................15 Audience................................15 Structure................................15 Precautions ................................16 Safety when working with electricity .......................17 General observations ............................18...
Page 5 BODi rS BD1000 User Manual Table of Contents Configuring Drop-in Mode...........................37 Configuring the WAN Interface..........................39 Connection Methods ............................40 DHCP Settings ............................40 Static IP Settings ............................41 PPPoE Settings ............................42 Mobile Internet Settings ..........................43 Modem Specific Custom Settings .......................44 Physical Interface Settings ..........................45 WAN Health Check ............................46...
Page 6 BODi rS BD1000 User Manual Table of Contents Port Forwarding Service Settings ........................71 Inbound Access LAN Servers ..........................73 Inbound Access Services ..........................74 UPnP/NAT-PMP Settings ..........................77 DNS Records ..............................77 SOA Records .............................80 NS Records ...............................81 MX Records ..............................81 CNAME Records ............................82 A Records ..............................82 PTR Records...
Page 7 BODi rS BD1000 User Manual Table of Contents DNS Forwarding Settings ..........................115 Enabling Service Passthrough ..........................116 Managing System Settings........................... 117 Introduction ................................118 Configuring Administration Security Settings .....................118 Admin Settings .............................118 WAN Connection Access Settings ........................121 Upgrading the Firmware .............................122 Firmware Upgrade Status ..........................122 Configuring the Time Server ..........................123...
Page 8 Contacting Patton for assistance ......................... 144 Introduction ................................145 Contact information............................145 Patton support headquarters in the USA .......................145 Alternate Patton support for Europe, Middle East, and Africa (EMEA) ............145 Warranty Service and Returned Merchandise Authorizations (RMAs)..............145 Warranty coverage ............................145 Out-of-warranty service ...........................146 Returns for credit ............................146...
Page 9 BODi rS BD1000 User Manual Table of Contents Settings .................................154 Maintaining the Same IP Address throughout a Session ..................154 Scenario ................................154 Solution ................................154 Settings .................................154 Bypassing the Firewall to Access Hosts on LAN ....................155 Scenario ................................155 Solution ................................155 Inbound Access Restriction ..........................155 Scenario ................................155...
Page 10: List Of Figures
List of Figures BODi rS BD1000 ............... 20 BODi rS rear panel connectors .
Page 11 BODi rS BD1000 User Manual Network > Inbound Access > Services ............74 Network >...
Page 12 BODi rS BD1000 User Manual System > Time ............... . 123 100 System >...
Page 13: List Of Tables
List of Tables General conventions ..............18 BODi rS LEDs .
Page 14 BODi rS BD1000 User Manual System: SNMP Settings ..............127 System: SNMP Community Settings .
Page 15: About This Guide
• Chapter 12 on page 141 provides information about troubleshooting BODi rS • Chapter 13 on page 144 provides information on contacting Patton technical support for assistance • Appendix A on page 147 provides compliance information for BODi rS •...
Page 16: Precautions
BODi rS BD1000 User Manual Precautions Notes, cautions, and warnings, which have the following meanings, are used throughout this guide to help you become aware of potential problems. Warnings are intended to prevent safety hazards that could result in per- sonal injury.
Page 17: Safety When Working With Electricity
BODi rS BD1000 User Manual Safety when working with electricity • Do not open the device when the power cord is connected. For systems without a power switch and without an external power adapter, line volt- ages are present within the device when the power cord is connected. WARNING •...
Page 18: General Observations
BODi rS BD1000 User Manual Always follow ESD prevention procedures when removing and replacing cards. Wear an ESD-preventive wrist strap, ensuring that it makes good CAUTION skin contact. Connect the clip to an unpainted surface of the chassis frame to safely channel unwanted ESD voltages to ground.
Page 19: General Information
Chapter 1 General Information Chapter contents BODi rS BD1000 Overview ..........................20 Network Features ............................20 BODi rS BD1000 Panels............................23 Rear Panel ...............................23 Front Panel ..............................23 LCD Display Menu ..........................24...
Page 20: Bodi Rs Bd1000 Overview
BODi rS BD1000 User Manual 1 • General Information BODi rS BD1000 Overview Patton’s BODi rS ..Figure 1. BODi rS BD1000 Network Features The BODi rS BD1000 includes the following key features: • – Multiple public IP support (DHCP, PPPoE, Static IP Address) –...
Page 21 BODi rS BD1000 User Manual 1 • General Information • – Secure Site-to-Site VPN – VPN load balancing and failover among selected WAN connections – Site-to-Site VPN bandwidth bonding – Ability to route Internet traffic to a remote VPN peer –...
Page 22 BODi rS BD1000 User Manual 1 • General Information • Other Supported Features – User-friendly web-based administration interface – HTTP and HTTPS support for Web Admin Interface – Configurable web administration port and administrator password – Firmware upgrades, configuration backups, Ping, and Traceroute via Web Admin Interface –...
Page 23: Bodi Rs Bd1000 Panels
BODi rS BD1000 User Manual 1 • General Information BODi rS BD1000 Panels Rear Panel Power Connector Power Switch Figure 2. BODi rS rear panel connectors Front Panel LCD Menu Display Gigabit Ethe r net LAN Bypass W AN 1 Console Power Enter...
Page 24: Lcd Display Menu
BODi rS BD1000 User Manual 1 • General Information LCD Display Menu Table 3. LCD Menu Menu Category Item Description > HA State: Master/Slave > LAN IP – > VIP – > System Status > System > Firmware Ver. Shows firmware version >...
Page 25: Installing The Bodi Rs
Chapter 2 Installing the BODi rS Chapter contents Planning the Installation............................26 Setting Up the Network ............................26 Constructing the Network ..........................26 Configuring the Network Environment ......................27 Connecting the BODi rS Interfaces........................27 Connecting the Ethernet Interfaces .........................27 Connecting the USB Interfaces ........................27 Connecting to the Web Admin Interface.......................28 Using the Setup...
Page 26: Planning The Installation
BODi rS BD1000 User Manual 2 • Installing the BODi rS Planning the Installation Before installing the BODi rS, gather the following information and materials: • At least one Internet/WAN access account. • For each network connection, one 10/100BaseT UTP cable with RJ45 connector, or one 1000BaseT Cat5E UTP cable for the Gigabit port or one USB modem for the USB WAN port.
Page 27: Configuring The Network Environment
BODi rS BD1000 User Manual 2 • Installing the BODi rS Configuring the Network Environment To ensure that the BODi rS works properly in the LAN environment and can access the Internet via the WAN connections, refer to the following setup procedures: •...
Page 28: Connecting To The Web Admin Interface
BODi rS BD1000 User Manual 2 • Installing the BODi rS Connecting to the Web Admin Interface After physically connecting the LAN, you may use the Web Admin interface to configure the BODi rS inter- faces. To login to the Web Admin Interface: 1.
Page 29: Using The Setup Wizard
BODi rS BD1000 User Manual 2 • Installing the BODi rS Using the Setup Wizard The Setup Wizard simplifies the task of configuring WAN connection(s) by guiding the configuration process step by step. 1. After logging into the Web Admin Interface, click on the Setup Wizard link at the top of the screen. Click Next to begin.
Page 30: Setup Wizard > Connection Method
BODi rS BD1000 User Manual 2 • Installing the BODi rS 5. Select the connection type for WAN connection(s) from the following screen: Figure 9. Setup Wizard > Connection Method Depending on the selection of connection type, further configuration may be needed. For example, PPPoE and Static IP require additional settings for the selected WAN port.
Page 31: Setup Wizard > Time Zone
BODi rS BD1000 User Manual 2 • Installing the BODi rS 9. Choose the time zone of your Country/Region. Check the box Show all to display all time zone options. Figure 13. Setup Wizard > Time Zone 10. Check the following screen to make sure all settings have been configured correctly, and then click Save Settings to confirm.
Page 32: Configuring Lan & Wan Interfaces
Chapter 3 Configuring LAN & WAN Interfaces Chapter contents Introduction ................................33 Configuring the LAN Interface..........................33 Basic Settings ..............................33 IP Settings ..............................34 Drop-in Mode Settings ..........................34 DHCP Server Settings ..........................35 Static Route Settings ..........................36 WINS Server Settings ..........................36 DNS Proxy Settings ..........................36 Configuring Drop-in Mode...........................37...
Page 33: Introduction
BODi rS BD1000 User Manual 3 • Configuring LAN & WAN Interfaces Introduction This chapter describes setting up Ethernet access through the physical LAN, WAN and USB interfaces. For information about setting up the LAN interface, see “Configuring the LAN Interface” on page 33.
Page 34: Ip Settings
BODi rS BD1000 User Manual 3 • Configuring LAN & WAN Interfaces IP Settings Table 4. LAN: IP Settings Field Description IP Address The IP address for the Ethernet LAN management port. Subnet Mask The subnet mask for the Ethernet LAN management port. Speed The speed of the Ethernet LAN management port.
Page 35: Dhcp Server Settings
BODi rS BD1000 User Manual 3 • Configuring LAN & WAN Interfaces DHCP Server Settings Table 6. LAN: DHCP Server Settings Field Description DHCP Server When enabled, the DHCP server automatically assigns an IP address to each computer that is connected via the LAN and configured to obtain an IP address via DHCP.
Page 36: Static Route Settings
BODi rS BD1000 User Manual 3 • Configuring LAN & WAN Interfaces Static Route Settings Table 7. LAN: Static Route Settings Field Description Static Route Defines static routing rules for the LAN segment. A static route consists of the network address, subnet mask and gateway address. The address and subnet mask values are in the format of w.x.y.z.
Page 37: Configuring Drop-In Mode
BODi rS BD1000 User Manual 3 • Configuring LAN & WAN Interfaces Configuring Drop-in Mode Drop-in Mode (or transparent bridging mode) eases the installation of the BD1000 on a live network between the firewall and router, such that changes to the settings of existing equipment are not required. The following diagram illustrates the Drop-in Mode setup: Figure 16.
Page 38 BODi rS BD1000 User Manual 3 • Configuring LAN & WAN Interfaces 1. Click on Network > Interfaces > LAN and check the Enable box in the Drop-in Mode section. (After checking the Enable box, most network settings for WAN1 will be hidden from the Web Administration Interface.) 2.
Page 39: Configuring The Wan Interface
BODi rS BD1000 User Manual 3 • Configuring LAN & WAN Interfaces Configuring the WAN Interface This section describes managing the WAN settings using the BD1000 Web Admin Interface. From the Dash- board, click on Network > Interfaces > WAN Bonding to reach the main WAN configuration page. Figure 19.
Page 40: Connection Methods
BODi rS BD1000 User Manual 3 • Configuring LAN & WAN Interfaces Connection Methods There are five possible WAN connection methods: DHCP, Static IP, PPPoE or Mobile Internet. DHCP Settings The DHCP connection method is suitable if the ISP provides an IP address automatically by DHCP (e.g. via Satellite Modem, WiMAX Modem, Cable, Metro Ethernet, etc.).
Page 41: Static Ip Settings
BODi rS BD1000 User Manual 3 • Configuring LAN & WAN Interfaces Static IP Settings The Static IP connection method is suitable if the ISP provides a static IP address to connect directly. Figure 21. Network > WAN > Ethernet WAN Settings > Static IP Connection Table 12.
Page 42: Pppoe Settings
BODi rS BD1000 User Manual 3 • Configuring LAN & WAN Interfaces PPPoE Settings The PPPoE connection method is suitable if the ISP provides the login ID /password to connect via PPPoE. Figure 22. Network > WAN > Ethernet WAN Settings > PPPoE Connection Table 13.
Page 43: Mobile Internet Settings
BODi rS BD1000 User Manual 3 • Configuring LAN & WAN Interfaces Mobile Internet Settings The Mobile Internet Connection method is suitable for USB modem mobile connection such as 3G, WiMAX, LTE, EVDO, EDGE, and GPRS, etc. Currently, it only applies to USB mobile WAN port. Figure 23.
Page 44: Modem Specific Custom Settings
BODi rS BD1000 User Manual 3 • Configuring LAN & WAN Interfaces Table 14. WAN: Mobile Internet Settings Field Description DNS Servers Specifies the DNS (Domain Name System) Servers to be used when a DNS lookup is routed through this connection. Each ISP may provide a set of DNS servers for DNS lookups.
Page 45: Physical Interface Settings
BODi rS BD1000 User Manual 3 • Configuring LAN & WAN Interfaces Physical Interface Settings Figure 24. Network > WAN > Physical Interfaces Table 16. WAN: Physical Interface Settings Field Description Speed Specifies the speed and duplex configurations of the WAN Port. By default, Auto is selected and the BD1000 automatically detects the appropriate data speed.
Page 46: Wan Health Check
BODi rS BD1000 User Manual 3 • Configuring LAN & WAN Interfaces WAN Health Check To ensure that traffic is routed only to healthy WAN connections, the BD1000 provides the functionality to periodically check the health of each WAN connection. The Health Check settings for each WAN connection can be independently configured.
Page 47: Additional Health Check Settings
BODi rS BD1000 User Manual 3 • Configuring LAN & WAN Interfaces Additional Health Check Settings Figure 25. Network > WAN > Details > Other Health Check Settings Table 18. WAN: Other Health Check Settings Method Description Timeout Specifies the timeout, in seconds, for ping/DNS lookup requests. Default = 5 seconds Health Check Interval Specifies the time interval, in seconds, between ping or DNS lookup requests.
Page 48: Bandwidth Allowance Monitor
BODi rS BD1000 User Manual 3 • Configuring LAN & WAN Interfaces Bandwidth Allowance Monitor The Bandwidth Allowance Monitor feature tracks network usage for the BD1000. The Bandwidth Allowance settings for each WAN connection can be independently configured. To configure the Bandwidth Allowance Monitor, click on Network > WAN in the Web Admin Interface. Then, click on the Details button in the row of the desired WAN connection in the WAN Connection Status table.
Page 49: Dynamic Dns Settings
BODi rS BD1000 User Manual 3 • Configuring LAN & WAN Interfaces Dynamic DNS Settings The BD1000 provides the functionality to register the domain name relationships to dynamic DNS service providers. Through registration with dynamic DNS service provider(s), the default public Internet IP address of each WAN connection can be associated with a hostname.
Page 50: Configuring The Wan
Chapter 4 Configuring the WAN Chapter contents Introduction ................................51 Configuring WAN Bonding Settings........................51 Configuring a WAN Bonding Profile ......................52 VPN Settings ............................53 WAN Connection Priority Settings ......................53 Managing Link Failure Detection Settings ......................54 Configuring a NAT Router Behind the BD1000 for VPN Connections ............55 Viewing the WAN Bonding Status .........................55...
Page 51: Introduction
BODi rS BD1000 User Manual 4 • Configuring the WAN Introduction This chapter describes setting up and managing the WAN Bonding functionality for the BD1000. The WAN Bonding functionality securely connects the BD1000 in a different branch to another BD1000. The data, voice or video communications between these locations are kept confidential across the public Internet.
Page 52: Configuring A Wan Bonding Profile
BODi rS BD1000 User Manual 4 • Configuring the WAN Configuring a WAN Bonding Profile The BD1000 supports making two Site-to-Site VPN connections with a remote BD1000 unit. The BD1000 that supports multiple WAN connections can act as a central hub which connects branch offices. For example, branch office A and branch office B make VPN connections to headquarters C, both branch offices’...
Page 53: Vpn Settings
BODi rS BD1000 User Manual 4 • Configuring the WAN VPN Settings Table 21. Site-to-Site VPN: New VPN Connection Settings Field Description VPN Connection Name Specifies a name to represent this VPN connection profile. Active Check this box to enable the VPN connection. Encryption By default, VPN traffic is encrypted with 256-bit AES standard.
Page 54: Managing Link Failure Detection Settings
BODi rS BD1000 User Manual 4 • Configuring the WAN Managing Link Failure Detection Settings To configure Link Failure Detection settings for the BD1000, click on Network > WAN Bonding in the Web Admin Interface. The BD1000 Wan Bonding configuration page displays, including the Link Failure Detec- tion section: Figure 30.
Page 55: Configuring A Nat Router Behind The Bd1000 For Vpn Connections
BODi rS BD1000 User Manual 4 • Configuring the WAN Configuring a NAT Router Behind the BD1000 for VPN Connections The BD1000 supports establishing Site-to-Site VPN over WAN connections that are behind a NAT (Network Address Translation) router. In order for a WAN connection behind a NAT router to accept VPN connec- tions, you can configure the NAT router in front of the WAN connection to forward to TCP port 32015.
Page 56: Configuring Ipsec Vpn Settings
BODi rS BD1000 User Manual 4 • Configuring the WAN Configuring IPsec VPN Settings The BD1000 IPsec VPN functionality securely connects one or more branch offices to your company's main headquarters or to other branches. The data, voice or video communications between these locations are thus kept safe and confidential across the public Internet.
Page 57: Network > New Ipsec Vpn Connection
BODi rS BD1000 User Manual 4 • Configuring the WAN Figure 33. Network > New IPsec VPN Connection Table 24. IPsec VPN: New Connection Settings Field Description Name Specifies a name to represent this VPN connection profile. Active Check this box to enable the VPN connection. Remote Gateway IP Enter the remote peer’s public IP address.
Page 58: Viewing The Ipsec Status
BODi rS BD1000 User Manual 4 • Configuring the WAN Table 24. IPsec VPN: New Connection Settings Field Description Pre-Shared Key Defines the pre-shared key used for this particular VPN connection. The VPN connection's session key will be further protected by the pre-shared key.
Page 59: Managing Outbound Traffic To The Wan
Chapter 5 Managing Outbound Traffic to the Chapter contents Introduction ................................60 Selecting the Outbound Policy ..........................60 Creating Custom Rules for the Outbound Policy ....................61 New Custom Rule Settings ..........................62 Algorithm: Weighted Balance ........................63 Algorithm: Persistence ..........................63 Algorithm: Enforced ..........................65 Algorithm: Priority ............................65 Algorithm: Overflow ..........................66...
Page 60: Introduction
BODi rS BD1000 User Manual 5 • Managing Outbound Traffic to the WAN Introduction The BD1000 provides the functionality to flexibly manage and balance the load of outbound traffic among the WAN connections. To manage outbound traffic and load balancing, click on Network > Outbound Policy in the Web Admin Interface.
Page 61: Creating Custom Rules For The Outbound Policy
BODi rS BD1000 User Manual 5 • Managing Outbound Traffic to the WAN Creating Custom Rules for the Outbound Policy To configure custom rules for the outbound policy, click on the Pencil icon in the Outbound Policy window. Select the Custom option in the drop-down menu, then press Save. The Custom Rules section displays. Click on the Default rule listing at the bottom of the table.
Page 62: New Custom Rule Settings
BODi rS BD1000 User Manual 5 • Managing Outbound Traffic to the WAN New Custom Rule Settings Table 26. Outbound Policy: Custom Rule Settings Field Description Service Name Specifies the name of the custom rule. Enable Specifies whether the outbound traffic rule takes effect. Click Yes to enable the outbound traffic rule.
Page 63: Algorithm: Weighted Balance
BODi rS BD1000 User Manual 5 • Managing Outbound Traffic to the WAN Algorithm: Weighted Balance The Weighted Balance Algorithm specifies the ratio of WAN connection usage to be applied on the specified IP Protocol and Port. These settings only apply when the Algorithm is set to Weighted Balance (shown in Figure 36 on page 61).
Page 64: Outbound Policy > Custom Rule > Persistence
BODi rS BD1000 User Manual 5 • Managing Outbound Traffic to the WAN Figure 37. Outbound Policy > Custom Rule > Persistence The Persistence Algorithm provides two options: By Source or By Destination. Table 27. Persistence Algorithm: Persistence Mode Options Mode Description The same WAN connection will be used for traffic matching the rule and originating from...
Page 65: Algorithm: Enforced
BODi rS BD1000 User Manual 5 • Managing Outbound Traffic to the WAN Algorithm: Enforced The Enforced Algorithm specifies the WAN connection usage to be applied on the specified IP Protocol and Port. These settings only apply when the Algorithm is set to Enforced: Figure 38.
Page 66: Algorithm: Overflow
BODi rS BD1000 User Manual 5 • Managing Outbound Traffic to the WAN Algorithm: Overflow The Overflow Algorithm manages traffic by routing through the healthy WAN connection that has the highest priority and is not fully loaded. When this connection becomes saturated, new sessions will be routed to the next healthy WAN connection that is available Figure 40.
Page 67: Algorithm: Lowest Latency
BODi rS BD1000 User Manual 5 • Managing Outbound Traffic to the WAN Algorithm: Lowest Latency Figure 42. Outbound Policy > Custom Rule > Lowest Latency The Lowest Latency Algorithm manages traffic by routing through the healthy WAN connection that is selected in the Connection field and has the lowest latency.
Page 68: Expert Mode Settings
BODi rS BD1000 User Manual 5 • Managing Outbound Traffic to the WAN Expert Mode Settings The Expert Mode is available for advanced users to configure custom rules. Click the ? Help circle at the top of the Custom Rules window, and click the link to turn on Expert Mode. Under Expert Mode, a special rule, "Site-to-Site VPN Routes,"...
Page 69: Configuring Inbound Access & Nat Mappings
Chapter 6 Configuring Inbound Access & NAT Mappings Chapter contents Introduction ................................70 Configuring Inbound Access Rules........................70 Port Forwarding Service Settings ........................71 Inbound Access LAN Servers ..........................73 Inbound Access Services ..........................74 UPnP/NAT-PMP Settings ..........................77 DNS Records ..............................77 SOA Records .............................80 NS Records ...............................81 MX Records ..............................81...
Page 70: Introduction
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings Introduction This chapter describes setting up inbound access services (also known as inbound port address translation) and NAT mappings. For information about setting up inbound access, see “Configuring Inbound Access Rules”...
Page 71: Port Forwarding Service Settings
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings Port Forwarding Service Settings The BD1000 can act as a firewall that blocks all inbound access from the Internet by default. By using the port forwarding, Internet users can access the servers behind the BD1000. To configure inbound port forwarding rules, click on Network >...
Page 72 BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings Table 28. Port Forwarding Service: New Service Settings Field Description IP Protocol Specifies the protocol of the service as TCP, UDP, ICMP or IP. Traffic that is received by the BD1000 via the specified protocol at the specified port(s) is forwarded to the LAN hosts specified by the Servers setting.
Page 73: Inbound Access Lan Servers
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings Inbound Access LAN Servers To configure settings for servers on the LAN, click on Network > Inbound Access > Servers. Inbound con- nections from the Internet will be forwarded to the specified Inbound IP Address(es) based on the protocol and port number.
Page 74: Inbound Access Services
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings Inbound Access Services To configure inbound access services, click on Network > Inbound Access > Services. At least one server must be defined before services can be added. Figure 48.
Page 75 BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings Table 29. Inbound Access Services: New Service Settings Field Description IP Protocol Specifies the protocol of the service as TCP, UDP, ICMP or IP. Traffic that is received by the BD1000 via the specified protocol at the specified port(s) is forwarded to the LAN hosts specified by the Servers setting.
Page 76 BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings Table 29. Inbound Access Services: New Service Settings Field Description Included Server(s) Specifies the LAN servers that manage the service requests and the relative weight values. The amount of traffic that is distributed to a server is proportional to the weight value assigned to the server relative to the total weight.
Page 77: Upnp/Nat-Pmp Settings
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings UPnP/NAT-PMP Settings Universal Plug and Play (UPnP) and NAT Port Mapping Protocol (NAT-PMP) are network protocols that allow a computer on the LAN to automatically configure the router to allow parties on the WAN to connect to itself.
Page 78: Inbound Access: Dns Records
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings Table 30. Inbound Access: DNS Records Field Description DNS Server Specifies the WAN IP addresses on which the DNS server of the BD1000 should listen. If no addresses are selected, the Inbound Link Load Balancing feature will be disabled;...
Page 79 BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings The settings for creating new DNS records for a domain are located at: Network > Inbound Access > DNS Settings. In the Domain Name field, enter a name for the new entry. Click on the newly created link to dis- play the following screen.
Page 80: Soa Records
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings SOA Records Click on the Pencil icon to choose whether to use the pre-defined Default SOA Record and NS Records. If the option’s Default SOA and NS Records is selected, any changes made in the Default SOA / NS Records will be applied to this domain automatically.
Page 81: Ns Records
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings NS Records The NS Record table shows the NS servers and TTL that correspond to the domain. The NS record of the name server defined in the SOA record is automatically added here. To add a new NS record, click the New NS Records button in the NS Records box.
Page 82: Cname Records
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings CNAME Records The CNAME Record table shows the domain’s CNAME records. To add a new CNAME record, click the New CNAME Records button in the CNAME Records box. Then, the table will expand to look like the fol- lowing: Figure 56.
Page 83: Dns: A Records
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings An A record may be automatically added for the SOA records with a Name Server IP Address provided. Table 31. DNS: A Records Field Description Host Name Specifies the A record of this sub-domain to be served by the BD1000.
Page 84: Ptr Records
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings PTR Records PTR records are created along with A records pointing to Custom IPs (see “A Records” on page 82). For exam- ple, if you created an A record www.mydomain.com pointing to 11.22.33.44, then a PTR record 44.33.22.11.in-addr.arpa pointing to www.mydomain.com will also be created.
Page 85: Srv Records
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings The maximum size of the TXT Value is 255 bytes. After you are done editing the types of record, you can simply leave the page by going to another section of the Web Admin Interface.
Page 86: Testing The Dns Configuration
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings 2. Create SOA / NS records named ns1, ns2, etc. The IP addresses are the BD1000 DNS server addressess. Figure 63. DNS > Domain Delegation: Create SOA/NS Records 3.
Page 87: Reverse Lookup Zones
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings An example with nslookup in Windows follows: :\Documents and Settings\User Name>nslookup Default Server: ns1.myisp.com Address: 147.22.11.2 (This is the BD100 WAN IP address.) > server 202.153.122.108 Default Server: balance.mycompany.com Address: 202.153.122.108...
Page 88: Soa Records
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings 11.22.33.1, 11.22.33.2, ... 11.22.33.254 should be defined in this zone where the Host IP Numbers are 1, 2, ... 254 respectively. Figure 66. DNS > Reverse Lookup Zone Configuration SOA Records Click the link Click here to define SOA record to create or click on the Name Server field to edit the SOA record:...
Page 89: Ns Records
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings NS Records The NS record of the name server defined in the SOA record is automatically added here. To create a new NS record, click the New NS Records button. Figure 68.
Page 90: Cname Records
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings CNAME Records To add a new CNAME record, click the New CNAME Records button. Figure 69. DNS > Reverse Lookup Zone > CNAME Record CNAME records are typically used for defining classless reverse lookup zones. Subnetted reverse lookup zones are further described in RFC 2317, "Classless IN-ADDR.ARPA delegation."...
Page 91: Dns Record Import Wizard
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings DNS Record Import Wizard At the bottom of the page of DNS Settings, there is a link to Import records via zone transfer… that is used to access the DNS Record Import Wizard. Figure 71.
Page 92: Configuring Nat Mappings
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings 3. In the blank space, enter the Domain Names (Zones) that you would like to assign with the IP address entered in the previous step. Enter one domain name per line. Click Next >> to continue. Figure 74.
Page 93: Configuring Nat Mappings
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings Configuring NAT Mappings This section describes how to set up NAP Mappings on the BD1000. A NAT Mapping configuration allows the BD1000 to map IP addresses of all inbound and outbound NAT traffic to and from an internal client IP address.
Page 94: Nat Mappings: New Rule Settings
BODi rS BD1000 User Manual 6 • Configuring Inbound Access & NAT Mappings Table 32. NAT Mappings: New Rule Settings Field Description LAN Client(s) Specifies where the new rule applies: a single LAN IP Address, an IP Range or an IP Network. Address Refers to the LAN host’s private IP address.
Page 95: Configuring Quality Of Service
Chapter 7 Configuring Quality of Service Chapter contents Introduction ................................96 Managing User Groups ............................96 Setting Up Bandwidth Control ..........................97 Configuring Applications ............................98 Application Prioritization ..........................98 Prioritization for Custom Applications ......................98 DSL/Cable Optimization ..........................99...
Page 96: Introduction
BODi rS BD1000 User Manual 7 • Configuring Quality of Service Introduction This chapter describes managing Quality of Service (QoS) settings for the BD1000. To configure QoS set- tings, click on Network > QoS in the Web Admin Interface. There are three services that you can manage under QoS: User Groups (page 96), Bandwidth Control (page 97), and Applications (page 98).
Page 97: Setting Up Bandwidth Control
BODi rS BD1000 User Manual 7 • Configuring Quality of Service Setting Up Bandwidth Control This section defines how much minimum bandwidth will be reserved to each user group when a WAN con- nection is in full load. When this feature is enabled, a slider with two indicators will be shown. You can move the indicators to adjust each group's weight.
Page 98: Configuring Applications
BODi rS BD1000 User Manual 7 • Configuring Quality of Service Configuring Applications You may use the Application section of the QoS page for prioritizing and optimizing Application services. Application Prioritization You can choose whether to apply the same Prioritization settings to all user groups or customize the settings for each group.
Page 99: Dsl/Cable Optimization
BODi rS BD1000 User Manual 7 • Configuring Quality of Service DSL/Cable Optimization A DSL/Cable-based WAN connection sets the upload bandwidth lower than the download bandwidth. With DSL/Cable Optimization option enabled, the download bandwidth of the WAN can be fully utilized in any situation.
Page 100: Configuring Firewall Settings
Chapter 8 Configuring Firewall Settings Chapter contents Introduction ................................101 Configuring Outbound and Inbound Firewall Rules ...................101 Access Rules ..............................101 Intrusion Detection and DoS Prevention ......................105 Setting Up Web Blocking............................106...
Page 101: Introduction
BODi rS BD1000 User Manual 8 • Configuring Firewall Settings Introduction This chapter describes managing Firewall settings for the BD1000. A firewall is a mechanism that selectively filters data traffic between the WAN side (the Internet) and the LAN side of the network. It can protect the local network from potential hacker attacks, offensive Web sites and/or other inappropriate uses.
Page 102: Network > Firewall > Add Firewall Rule
BODi rS BD1000 User Manual 8 • Configuring Firewall Settings After clicking Add Rule, the following configuration window displays: Figure 83. Network > Firewall > Add Firewall Rule Table 34 describes the settings for configuring a new firewall rule. Table 34. Firewall: Inbound/Outbound Firewall Settings Field Description Rule Name...
Page 103 BODi rS BD1000 User Manual 8 • Configuring Firewall Settings Table 34. Firewall: Inbound/Outbound Firewall Settings Field Description Protocol Specifies the protocol for the rule. Select one of the following protocols from the drop-down menu: • • ICMP • • Alternatively, you may use the Protocol Selection Tool drop-down menu to automatically fill in the Protocol and Port number of common Internet services (e.g.
Page 104: Network > Firewall > Reorder Rules List
BODi rS BD1000 User Manual 8 • Configuring Firewall Settings Click Save to add the new rule to the Firewall Rules table. To reorder the rules in the table, hold the left mouse button on the desired rule, drag it to the new position, and release the mouse button: Figure 84.
Page 105: Intrusion Detection And Dos Prevention
BODi rS BD1000 User Manual 8 • Configuring Firewall Settings Intrusion Detection and DoS Prevention The BD1000 supports detecting and preventing intrusions and Denial-of-Service (DoS) attacks from the Internet. To turn on this feature, click and check Enable for Intrusion Detection and DoS Prevention. Click Save to apply the setting.
Page 106: Setting Up Web Blocking
BODi rS BD1000 User Manual 8 • Configuring Firewall Settings Setting Up Web Blocking Enter an appropriate website address and the BD1000 will block and disallow LAN/PPTP/Site-to-Site VPN peer clients to access these websites. You may enter the wild card ".*" at the end of a domain name to block any web site with a host name having the domain name in the middle.
Page 107: Configuring Miscellaneous Services
Chapter 9 Configuring Miscellaneous Services Chapter contents Introduction ................................108 Setting Up High Availability Configurations .......................108 Enabling the PPTP Server ...........................111 Enabling Service Forwarding ..........................112 SMTP Forwarding ............................114 Web Proxy Forwarding Settings ........................115 DNS Forwarding Settings ..........................115 Enabling Service Passthrough ..........................116...
Page 108: Introduction
BODi rS BD1000 User Manual 9 • Configuring Miscellaneous Services Introduction To configure High Availability, the PPTP Server, Service Forwarding and Service Passthrough, click on Net- work > Miscellaneous Settings in the Web Admin Interface. Setting Up High Availability Configurations The BD1000 supports High Availability (HA) configurations via an open standard Virtual Router Redun- dancy Protocol (VRRP, RFC 3768).
Page 109: Network > Miscellaneous Settings > High Availability
BODi rS BD1000 User Manual 9 • Configuring Miscellaneous Services Figure 88. Network > Miscellaneous Settings > High Availability Table 35. Misc. Settings: HA Configurations Field Description High Availability (HA) Check this box to specify that the BD1000 is part of an HA configuration. Group Number Specifies a number that identifies a pair of BD1000 units that operate in a High Availability configuration.
Page 110: High Availability Application: Vip Default Gateway
BODi rS BD1000 User Manual 9 • Configuring Miscellaneous Services Note For the BD1000 in NAT mode, the VIP should be set as the default gateway for all hosts sitting on the LAN segment. For example, a fire- wall sitting behind the BD1000 should set its default gateway as the VIP instead of the IP of the Master BD1000.
Page 111: Enabling The Pptp Server
BODi rS BD1000 User Manual 9 • Configuring Miscellaneous Services Enabling the PPTP Server Figure 91. PPTP Server Application The BD1000 has a built-in PPTP Server that enables remote computers to conveniently and securely access the local network. To configure the PPTP server settings, click Network > Misc. Settings > PPTP Server. Check the Enable box to turn on the PPTP server function.
Page 112: Enabling Service Forwarding
BODi rS BD1000 User Manual 9 • Configuring Miscellaneous Services Enabling Service Forwarding To configure Service Forwarding settings, click on Network > Misc. Settings > Service Forwarding in the Web Admin Interface. The following section displays: Figure 92. Network > Miscellaneous Settings > Service Forwarding Table 37.
Page 113 BODi rS BD1000 User Manual 9 • Configuring Miscellaneous Services Table 37. Misc. Settings: Service Forwarding Field Description DNS Forwarding Click Enable to intercept all outgoing DNS lookups to the built-in DNS name server. If any LAN device is using DNS name servers of a WAN connection, you may want to enable this option to enhance the DNS availability without modifying the DNS server setting of the clients.
Page 114: Smtp Forwarding
BODi rS BD1000 User Manual 9 • Configuring Miscellaneous Services SMTP Forwarding Some ISPs require their users to send e-mails via the ISP’s SMTP server. All outgoing SMTP connections are blocked except for those connecting to the ISPs. The BD1000 supports intercepting and redirecting all outgo- ing SMTP connections (destined for TCP port 25) via a WAN connection to the WAN’s corresponding SMTP server: Figure 93.
Page 115: Web Proxy Forwarding Settings
BODi rS BD1000 User Manual 9 • Configuring Miscellaneous Services Web Proxy Forwarding Settings Figure 94. Miscellaneous Settings > Service Forwarding > Web Proxy Forwarding To turn on Web Proxy Forwarding, select the Enable check box under Web Proxy Forwarding Setup. When enabled, the BD1000 will: 1) intercept all outgoing connections destined for the proxy server specified in the Web Proxy Interception Settings, 2) choose a WAN connection with reference to the Outbound Policy and 3) forward them to the specified web proxy server and port number.
Page 116: Enabling Service Passthrough
BODi rS BD1000 User Manual 9 • Configuring Miscellaneous Services Enabling Service Passthrough To configure Service Passthrough settings, click on Network > Misc. Settings > Service Passthrough in the Web Admin Interface. The following section displays: Figure 96. Network > Miscellaneous Settings > Service Passthrough Some Internet services require special handling in a multi-WAN environment.
Page 117: Managing System Settings
Chapter 10 Managing System Settings Chapter contents Introduction ................................118 Configuring Administration Security Settings .....................118 Admin Settings .............................118 WAN Connection Access Settings ........................121 Upgrading the Firmware .............................122 Firmware Upgrade Status ..........................122 Configuring the Time Server ..........................123 Configuring Email Notifications .........................124 Setting Up the Remote System Log ........................126 Configuring Simple Network Management Protocol (SNMP) ................127...
Page 118: Introduction
BODi rS BD1000 User Manual 10 • Managing System Settings Introduction This chapter describes setting up and managing general system administration utilities, including security, upgrades, time, notifications, logs, SNMP and connection tests. Configuring Administration Security Settings This section describes the following settings for managing account and connection access via the BD1000 Web Admin Interface: user account settings (see “Admin Settings”...
Page 119: System > Admin Security
BODi rS BD1000 User Manual 10 • Managing System Settings Figure 97. System > Admin Security Table 39. System: Admin Security Settings Field Description Router Name Defines a name for this specific BD1000 unit. Admin User Name *Non-configurable; set as admin by default. Admin Password Specifies a new password for the admin account.
Page 120 BODi rS BD1000 User Manual 10 • Managing System Settings Table 39. System: Admin Security Settings Field Description Web Session Timeout Specifies the number of hours and minutes that a web session can remain idle before the BD1000 terminates the session. Default = 4 hours Authentication by Select the Authentication by RADIUS option to authenticate access...
Page 121: Wan Connection Access Settings
BODi rS BD1000 User Manual 10 • Managing System Settings WAN Connection Access Settings To configure WAN Connection Access settings, select LAN/WAN as the Web Admin Access option in the Admin Settings section. Table 40. System: WAN Connection Access Settings Field Description Allowed Source IP Subnets Specifies authorized IP subnets that may access the Web Admin Interface.
Page 122: Upgrading The Firmware
BD1000 will automatically download the new firmware file. The BD1000 will automatically initiate the upgrade process after downloading the new firmware file. To use the manual upgrade option, go to www.patton.com/support/upgrades and select the BODi BD1000 from the Model Number drop-down menu. Then, click the Download hyperlink for the desired software release.
Page 123: Configuring The Time Server
BODi rS BD1000 User Manual 10 • Managing System Settings Configuring the Time Server The Time Server functionality enables the system clock of the BD1000 to synchronize with a specified Time Server. To configure the time server settings, click on System > Time in the Web Admin Interface. Figure 99.
Page 124: Configuring Email Notifications
BODi rS BD1000 User Manual 10 • Managing System Settings Configuring Email Notifications The Email Notification functionality of the BD1000 sends the System Administrator up-to-date information on the network status. To configure notification settings, click on System > Email Notification in the Web Admin Interface.
Page 125 BODi rS BD1000 User Manual 10 • Managing System Settings After you have completed the settings, click the Test Email Notification button to test the settings before sav- ing. The following screen displays to confirm the settings: Figure 101. Test Email Notification Click Yes to confirm.
Page 126: Setting Up The Remote System Log
BODi rS BD1000 User Manual 10 • Managing System Settings Setting Up the Remote System Log The Remote Syslog functionality of the BD1000 enables event logging at a specified remote Syslog server. To configure the remote system log settings, click on System > Remote Syslog in the Web Admin Interface. Figure 103.
Page 127: Configuring Simple Network Management Protocol (Snmp)
BODi rS BD1000 User Manual 10 • Managing System Settings Configuring Simple Network Management Protocol (SNMP) Simple Network Management Protocol (SNMP) is an open standard that can be used to collect information from the BD1000. To configure SNMP settings, click on System > SNMP in the Web Admin Interface. Figure 104.
Page 128: Snmp Community Settings
BODi rS BD1000 User Manual 10 • Managing System Settings SNMP Community Settings To add a community for either SNMPv1 or SNMPv2, click the Add SNMP Community button in the Com- munity Name table. The following screen displays: Figure 105. System > SNMP Community Table 45.
Page 129: Managing The Reporting Server
BODi rS BD1000 User Manual 10 • Managing System Settings Managing the Reporting Server The Reporting functionality enables the BD1000 to post traffic data and other information periodically to a Reporting Server for generating detailed historical usage reports of the device. To configure Reporting Server settings, click on System >...
Page 130: Importing And Exporting System Configuration Files
BODi rS BD1000 User Manual 10 • Managing System Settings Importing and Exporting System Configuration Files Backing up the BD1000 settings immediately after successful completion of the initial setup is strongly recom- mended. To configure the settings for uploading and downloading system files, click on System > Configura- tion in the Web Admin Interface.
Page 131: Rebooting The System
BODi rS BD1000 User Manual 10 • Managing System Settings Rebooting the System For the highest reliability, the BD1000 provides two copies of the firmware in different versions. The firmware marked (Running) is the current system firmware file used for booting up. Note A firmware upgrade always replaces the inactive firmware partition.
Page 132: Traceroute Test
BODi rS BD1000 User Manual 10 • Managing System Settings Traceroute Test The BD1000 provides a Traceroute Test tool that follows and reports the routing path to the destination through a particular Ethernet interface or a Site-to-Site VPN connection. A System Administrator can use the Traceroute utility to analyze the connection path of a LAN/WAN connection.
Page 133: Managing Status Settings
Chapter 11 Managing Status Settings Chapter contents Introduction ................................134 Viewing General Device Information ........................134 Viewing Details of Active Sessions........................135 Viewing the Client List............................135 Viewing Access Points ............................136 Viewing the WINS Client List ..........................136 Viewing Site-to-Site VPN Connection Details ....................136 Viewing IPsec VPN Connection Details......................136 Viewing UPnP and NAT-PMP Connection Details....................136...
Page 134: Introduction
BODi rS BD1000 User Manual 11 • Managing Status Settings Introduction This chapter describes viewing system information for the BD1000, including active sessions, the client list, the WINS client list, Site-to-Site VPN connections, UPnP/NAT-PMP information, events and bandwidth sta- tistics. Viewing General Device Information To view system status information, click on Status >...
Page 135: Viewing Details Of Active Sessions
BODi rS BD1000 User Manual 11 • Managing Status Settings Viewing Details of Active Sessions The Active Sessions section displays the active inbound / outbound and UDP / TCP sessions of each WAN connection on the BD1000. To view information about current sessions that are currently active on the BD1000, click on Status >...
Page 136: Viewing Access Points
BODi rS BD1000 User Manual 11 • Managing Status Settings Viewing Access Points The Access Point section shows connected AP devices associated with the BD1000 since it has powered up. To view information about access points, click on Status > Access Point in the Web Admin Interface. The table lists all connected or detected BODi rS access point devices and their IP address, firmware version, assigned AP profile, number of connected clients and broadcasting channel.
Page 137: Viewing Event Log Details
BODi rS BD1000 User Manual 11 • Managing Status Settings Viewing Event Log Details The Event Log section displays a list of events that have taken place on the BD1000. To view log details, click on Status > Event Log in the Web Admin Interface. Device Event Log Click the Refresh button to update the list of log entries.
Page 138: Real-Time Bandwidth Usage
BODi rS BD1000 User Manual 11 • Managing Status Settings Figure 115. Real-Time Bandwidth Usage Viewing Bandwidth Usage Statistics...
Page 139: Daily Bandwidth Usage
BODi rS BD1000 User Manual 11 • Managing Status Settings Daily Bandwidth Usage The Daily Bandwidth status page shows the daily bandwidth usage for all WAN connections and for each specific WAN connection. From the drop-down menu, select theWAN connection to display its bandwidth information. If you have enabled the Bandwidth Monitoring feature (see “Bandwidth Allowance Monitor”...
Page 140: Monthly Bandwidth Usage
BODi rS BD1000 User Manual 11 • Managing Status Settings Monthly Bandwidth Usage The Monthly Bandwidth status page shows the bandwidth usage for each month for each specific WAN con- nection. From the drop-down menu, select a specific WAN connection to display its monthly bandwidth usage infor- mation.
Page 141: Troubleshooting
Chapter 12 Troubleshooting Chapter contents Outbound Load ..............................142 Download Speed ..............................142 Public IP Address ..............................142 Connection..............................142 WAN Connection ...............................143 File Upload/Transfer ............................143...
Page 142: Outbound Load
Try to test with a website that does not enable Keep Alive. For example, try http://private.dnsstuff.com/tools/aboutyou.ch (This third-party website is provided only for reference. Patton has no association with the site and does not guarantee the site's validity or availabil- ity.) LAN Connection •...
Page 143: Wan Connection
BODi rS BD1000 User Manual 12 • Troubleshooting WAN Connection • Problem: What can I do if I suspect a problem on my Internet/WAN connection? • Solution: You can test the WAN connection using Ping. As we want to isolate the problems from the LAN, Ping will be performed from the BD1000. By using the Ping/Traceroute tests in the Status tab on the Web Admin Interface, you may be able to find out the source of problem.
Page 144: Contacting Patton For Assistance
Contacting Patton for assistance Chapter contents Introduction ................................145 Contact information............................145 Patton support headquarters in the USA .......................145 Alternate Patton support for Europe, Middle East, and Africa (EMEA) ............145 Warranty Service and Returned Merchandise Authorizations (RMAs)..............145 Warranty coverage ............................145 Out-of-warranty service ...........................146 Returns for credit ............................146...
Page 145: Introduction
(RMA). Contact information Patton Electronics offers a wide array of free technical services. If you have questions about any of our other products we recommend you begin your search for answers by using our technical knowledge base. Here, we have gathered together many of the more commonly asked questions and compiled them into a searchable database to help you quickly solve your problems.
Page 146: Out-Of-Warranty Service
RMA#: xxxx 7622 Rickenbacker Dr. Gaithersburg, MD 20879-4773 USA Patton will ship the equipment back to you in the same manner you ship it to us. Patton will pay the return shipping costs. Warranty Service and Returned Merchandise Authorizations (RMAs)
Page 147: A Compliance Information
Appendix A Compliance Information Chapter contents Compliance .................................148 ................................148 Low-Voltage Directive (Safety) ........................148 CE Declaration of Conformity ..........................148 Authorized European Representative ........................148...
Page 148: Compliance
IEC/EN60950-1, 2nd edition CE Declaration of Conformity Patton Electronics, Inc declares that this device is in compliance with the essential requirements and other rel- evant provisions of Directive 2004/108/EC relating to electromagnetic compatibility and Directive 2006/95/EC relating to electrical equipment designed for use within certain voltage limits. The Declaration of Conformity may be obtained from Patton Electronics, Inc at www.patton.com/certifications.
Page 149 Appendix B Specifications Chapter contents Interface..............................150 LAN Interface ..............................150 VPN..................................150 Load Balancing..............................150 Networking .................................151 Advanced QoS..............................151 Device Management............................151 Physical ................................151...
Page 150: B Specifications
BODi rS BD1000 User Manual B • Specifications WAN Interface 5 x Fast Ethernet Ports 2x USB interfaces Dual 802.11b/g/n Wi-Fi Modem Support for PPPoE, Static IP, DHCP WAN Link Health Check Bandwidth Allowance Monitor LAN Interface 1-Port Gigabit Ethernet Switch Extended DHCP Options DHCP Reservation Support for Dynamic DNS services...
Page 151: Networking
BODi rS BD1000 User Manual B • Specifications Networking NAT and IP Forwarding Static Routes Port Forwarding Many to One, One to One NAT NAT Pool SIP ALG, H.323 ALG UPnP, NAT-PMP WINS Server Advanced QoS User Groups Bandwidth Reservation Individual Bandwidth Limit Custom Application QoS Application Prioritization...
Page 152 Appendix C Applications Chapter contents Routing under DHCP, Static IP, and PPPoE ......................153 Routing via Network Address Translation (NAT) ..................153 Routing via IP Forwarding ..........................153 Performance Optimization ..........................154 Scenario ................................154 Solution ................................154 Settings .................................154 Maintaining the Same IP Address throughout a Session ..................154 Scenario ................................154...
Page 153: C Applications
BODi rS BD1000 User Manual C • Applications Routing under DHCP, Static IP, and PPPoE The information in this section only applies to situations where the BD1000 operates with to a WAN connec- tion under DHCP, Static IP and PPPoE. Routing via Network Address Translation (NAT) When the BD1000 is operating under NAT mode, the source IP addresses of outgoing IP packets are trans- lated to the WAN IP address of the BD1000.
Page 154: Performance Optimization
BODi rS BD1000 User Manual C • Applications Performance Optimization Scenario In this scenario, email and web browsing are the two main Internet services used by the LAN users. The mail server is external to the network. The connections are ADSL (with slow uplink and fast downlink) and Metro Ethernet (symmetric).
Page 155: Bypassing The Firewall To Access Hosts On Lan
BODi rS BD1000 User Manual C • Applications Bypassing the Firewall to Access Hosts on LAN Scenario There are times when remote access to computers on the LAN is desirable; for example, when hosting websites, online businesses and FTP download and upload areas, etc. In such cases, it may be appropriate to create an inbound NAT mapping for the network to allow some hosts on the LAN to be accessible from outside of the firewall.
Page 156: Outbound Access Restriction
BODi rS BD1000 User Manual C • Applications Outbound Access Restriction Scenario For security reasons, it may be appropriate to disallow LAN users to use ftp to transfer files to and from the Internet, or otherwise restrict outbound access. This can easily be achieved by setting up an outbound firewall rule with the BD1000.
Page 157: Terms
Appendix D Terms Chapter contents Abbreviations ..............................158...
Page 158: Abbreviations
BODi rS BD1000 User Manual D • Terms Abbreviations Abbreviation Meaning 3rd Generation standards for wireless communications (e.g. HSDPA) 4th Generation standards for wireless communications (e.g. WiMAX, LTE) DHCP Dynamic Host Configuration Protocol Domain Name System EVDO Evolution-Data Optimized HSDPA High-Speed Downlink Packet Access Generic Routing Encapsulation HTTP...

Patton BODi rS 1000 Series User Manual

Quick Links

Related Manuals for Patton BODi rS 1000 Series

Summary of Contents for Patton BODi rS 1000 Series

Table of Contents