Table of Contents
Advertisement
Quick Links
Advertisement
Table of Contents
Related Manuals for Intellinet 516211
Summary of Contents for Intellinet 516211
- Page 1 Broadband Router User Guide...
-
Page 2: Limitation Of Liability
Broadband Router User Guide March, 2001 Limitation of Liability Information in this document is subject to change without notice. The material contained herein is supplied without representation or warranty of any kind. Therefore assumes no responsibility and shall have no liability of any kind... -
Page 3: About This User Guide
• • About This User Guide The Broadband Router is not intended to be serviced by the user. Do not open the case. This product is intended to be supplied by a Listed Direct Plug-In Power Unit marked "Class 2" and rated 9 V ac, 1 A. -
Page 4: Table Of Contents
The LEDs on the Front Chapter 2 Installing the Broadband Router Installing the Broadband Router Setting Up a Windows PC for Configuring the Broadband Router Connecting more Devices through a Hub to the Broadband Router Chapter 3 Configuring the Broadband Router... -
Page 5: Appendix B Glossary
To Enable Bridging Learning Managing the Broadband Router How to View the Connection Log How to Upgrade the Broadband Router Features/Software How to Save or Clear Configuration Changes How to Reset the Broadband Router How to Change the ARM Password... -
Page 6: Chapter 1 Introduction
-to create Virtual Private Network (VPN). Accessing the Internet The most common use for the Broadband Router is to provide Internet access, so that everyone on your LAN can surf the web and send/receive email or files. 1 Broadband Router... -
Page 7: Accessing Servers From The Public Network
FTP server, or a web server), you can configure the Broadband Router to proxy the service from its own address. This means that the remote user can address the router as if it were the special server and the Broadband Router will re- direct this connection to the appropriate computer on the network. -
Page 8: A Configuration Example
This example also illustrates an important feature of the Broadband Router that a private device can be accessed from the Internet by mapping the application port number to a port number on the Broadband Router. In this case, an Internet user references the URL http://206.112.113.6, which was assigned to the Broadband... -
Page 9: A Security Overview
IP addresses automatically (i.e., from the built-in DHCP server in the Broadband Router). Since the Web Server on LAN #1 must have the same address all the time, this machine has a statically configured DHCP address. These IP addresses are only used in the local LAN environment, these devices naturally form a private network (with default IP network address of 192.168.168.0) and are not accessible by users... -
Page 10: The Leds On The Front
Figure 1-4 Broadband Router Connectors The LEDs on the Front There are 7 LEDs on the front of the Broadband Router that show connection and traffic status of Power, PPPoE, EWAN and LAN ports: Figure 1-5 LEDs EWAN LED1 LED2... -
Page 11: Chapter 2 Installing The Broadband Router
2Broadband Router Installing the Broadband Router Now you should be ready to connect your Broadband Router devices on your LAN . Follow these steps to install the Broadband Router: Step 1 Step 2 Step 3 Figure 2-1 Broadband Router Connectors Connect ADSL/Cable modem to the Broadband Router EWAN port using crossover UTP CAT-5 LAN Cable. -
Page 12: Setting Up A Windows Pc For Configuring The Broadband Router
These PCs need to have an Ethernet interface cards installed, and be connected to the Broadband Router either directly( to its LAN ports) or indirectly through an external hub or switch. It shoud also have TCP/IP installed, enabled, and configured to obtain an IP address automatically( i.e., through a DHCP server). - Page 13 -DNS Configuration Tab: Disable DNS should be selected -IP Address Tab: Obtain IP address automatically should be selected Step 10 When the Broadband Router connected to the LAN (and powered on), reboot the PC. After the PC is re-booted, you should be ready to configure the Broadband Router.
-
Page 14: Connecting More Devices Through A Hub To The Broadband Router
Connecting more Devices through a Hub to the Broadband Router The Broadband Router provides four switch ports to allow up to four PCs or Workstations to be connected to it directly. If you want to connect more devices, you can connect an external hub or switch to LAN port , provided LAN port has been configured as an Uplink port. -
Page 15: Chapter 3 Configuring The Broadband Router
• • Internet Access in Five Minutes In this section you will be shown how to configure the Broadband Router for basic Internet access in less than five minutes using the web browser-based Acess Router Manager (ARM). Using Different Browsers for Broadband Router... - Page 16 (which is “password”). The password is always displayed as a string of asterisks (“*”). Clicking the Log On button will begin a Access Router Manager (ARM) session. The next time you log in, even if you have modified the password , the default password (“password”) will still be used as the default.
-
Page 17: Customizing The Arm For Your Specific Needs
IP address (e.g., when you intend to create your own private WAN among multiple Broadband Router ), or adding a public IP address (e.g., when you want to install servers on the LAN which are accessible from the Internet). - Page 18 This is the window where the actual configuration screens appear. Before any selection of the configuration is made, the window shows a picture of the Broadband Router with cables and peripheral devices that can be connected to it. Message Window Whenever appropriate, the Broadband Router will display system status or error messages in this window.
- Page 19 as a separate browser screen from the main ARM browser screen and appears automatically each time you start ARM. If you close this window, you can always restart it or bringing it to the foreground by clicking Monitoring - System Status from the ARM Menu.
-
Page 20: What Is A Connection Profile
ISP. You need to enter such information into a “connection profile” in the Broadband Router. Likewise, a connection profile needs to be created for each dial-in user, each remote office, or each VPN user. - Page 21 Enter the following information: Profile Name: the name that you will use to identify this Internet access profile. Obtain IP Addresses Automatically: Please specify IP address , netmask,gateway and domain name server assigned by ISP. EWAN IP Address: the IP address of your EWAN. EWAN IP Netmask: the IP Netmask of your EWAN.
- Page 22 Idle Timeout(0-3600 seconds): The default value of the idle timeout is 120 seconds. It represents the number of seconds of inactivity over the connection: when this value is reached, the Broadband Router will disconnect the call. You can change the idle timeout value to anything between 0 to 3600 seconds.
-
Page 23: Setting Up Internet Access With Advanced Features
Translation” in Chapter 5, or acquire public IP addresses., from your ISP and assign it to the router and to the public devices on your LAN. The procedure to assign a public IP address to the router is described below. - Page 24 To install publicly addressed servers on your network (e.g., Web or ftp servers), you need to apply for an IP address for each server plus one for the LAN port of the Broadband Router. All these public IP addresses have to belong to the same IP network.
- Page 25 Gateway from the Broadband Router based on the new private IP network. Your device will then again be able to communicate with your Broadband Router. For the same reason, all devices on the LAN need to be restarted before they can access the Internet again.
-
Page 26: Setting The System Time
It is also used for determining Internet access restrictions (see the section, “Setting Internet Access Time Restrictions”, below). Since the Broadband Router does not contain a backup battery for the real-time clock, the time will not be maintained across system resets or power cycles. Therefore, after a reset or power cycle, the clock will not be correct. -
Page 27: Setting Internet Access Time Restrictions
Internet access is allowed. The Broadband Router will not connect to the Internet outside of the configured times. In order for this feature to be effective, the Broadband Router must be configured for the current local time. To do this, see the section, “Setting the System Time” , above. -
Page 28: Chapter 4 Advanced Configuration
LAN which you want Internet users to be able to access. This is done by configuring the router to re- route an Internet packet that Broadband Router receives from the Internet into the TCP or UDP port that the application uses on the privately addressed LAN machine that is actually running that application. -
Page 29: Configuring Port Address Translation
23 on the router to another port. Configuring Port Address Translation Each application that is to be mapped requires an entry to be configured in the Address Translation Table. To access this table perform the following steps: Step 1... - Page 30 Private Port Number Add Address Translation: Select the type of entry being configured. There may be one and only one Default Entry configured in the router. The Default Entry is a device to which Internet requests will be sent if no other match is found in the Address Translation Table.
-
Page 31: Static Dhcp Assignments
Static DHCP Assignments In certain LAN environments, it is desirable for some PCs to be assigned the same address each time it queries a DHCP server. Broadband Router is capable of configuring up to 20 such PCs for static assignments. -
Page 32: Creating Vpn Connection Profiles
Name Bing Step 5 Name IP Address MAC Address Step 6 Step 7 Creating VPN Connection Profiles Before continuing on with this section, be sure you’ve reviewed the section, “Accessing Servers from the Public Network” in Chapter 1. Also, make sure you have properly configured the Internet access profile( as detailed in Chapter 3) before attempting to send traffic through VPN tunnels. -
Page 33: To Configure Vpn Remote Office Access Profiles
In order to set up access to and from a remote site, be sure to configure both ends of the VPN tunnel appropriately (the remote router and the local router). Broadband Router supports for the Layer 2 Tunneling Protocol(L2TP), which was the original open standard for Vitual Private Networking. -
Page 34: Set Up A Vpn Connection Profile
Incoming Only. If the Broadband Router will always initiate the connection to the remote site, select Outgoing Only. Select Both if either side can initiate the connection.The default setting is Both. Remote IP Address: Key in your remote side IP address when you set... -
Page 35: Interface Configuration
Call Direction: the direction of the call in the tunnel. If the remote site will be dialing in, select Incoming Only. If the Broadband Router will be dialing out to the remote site, select Outgoing Only. Select Both if either side can initiate the connection.The default setting is Both. -
Page 36: Advanced Options Setup
Account Name and Account Password. Remote Account Name: the name of the remote network that is dialing Remote Account Password: the password that your Broadband Router will expect to see from the remote system. VPN-L2TP Tunnel: the VPN Tunnel you will use for this profile. This is one of the tunnel configurations set up earlier. -
Page 37: Packet Filtering
A Packet Filtering Overview The Broadband Router already provides you with many different ways to ensure the security of your data in your local environment. Packet filtering is a security feature that allows you to selectively pass or throw away data traffic between your local LAN and the wide area network (e.g., the Internet). - Page 38 each and every IP or IPX packet to be inspected to determine if it should be allowed or disallowed to be transmitted over a WAN interface alternatively. Due to the conflicting nature of allow and disallow, only one of the above two choices can be made for each WAN interface.
- Page 39 Therefore packet filtering simply defines sets of rules of what to allow or disallow through a set of parameters highlighted below: For IP, For IPX, Examples of packet filtering requirements are: 4-12 Condition Configuration Protocol Parameter Protocol TCP/UDP/ ICMP/IGMP/ Address Single/Range/ Network/Any Port...
-
Page 40: Configuring Ip Packet Rules
using any IPX packet type. “I want to disallow people in the manufacturing department to access the Internet“. The corresponding “translated” packet rule is: All access to the Internet is allowed EXCEPT remote devices with the range of IP addresses in the manufacturing department and any port number which are disallowed to communicate with any IP address/port number over my Internet connection using any IP protocol. -
Page 41: Ip Filter Configuration
Step 4 Step 5 4-14 In case of adding a new selection rule, the following screen shows: IP Filter Configuration Add a new rule Rule No. Rule Name test Interface IP Protocol Local IP Address Local Port Remote IP Address Remote Port APPLY CANCEL... - Page 42 necessary.If you highlighted an existing entry and clicked Delete instead, the corresponding entry in the rule table will be removed. TCP/IP Service Type BootP/DHCP Finger HTTP NetBIOS NNTP SMTP SNMP Sun RPC Telnet TFTP Whois Table 4-1 TCP/IP Port Assignments Configuring IPX Packet Rules(Optioanl) To add a new IPX packet rule or to edit an existing one, select IPX Filter from the ARM menu:...
- Page 43 Step 4 Step 5 4-16 in the rule table followed by clicking the Edit button. In case of adding a new selection rule, the following screen shows: IPX Filter Configuration Add a new rule Rule No. Rule Name Interface test IPX Packet Type Local IPX Network Number Local IPX Node Number...
- Page 44 Local IPX Network Number: the IPX Network Number(s) of the local devices to which this new rule applies. You can select a single IPX Network Number, a range of IPX Network Numbers, or any IPX Network Number. The screen may change to show fields you need to fill out accordingly.
-
Page 45: To Configure Advanced Ip Settings
To install public servers on your network (e.g., Web or ftp servers), you need to apply for an IP address for each server plus one for the LAN port of the Broadband Router. All these public IP addresses have to belong to the same IP network. - Page 46 The default private IP address is 192.168.168.230. If you want to create your own private network through other Broadband Router with remote offices, you need to make sure that each Broadband Router router on each LAN is assigned a unique private IP network address.
-
Page 47: The Ip Routing Table
Step 3 The IP Routing Table The IP routing table contains all the information that the Broadband Router needs to 4-20 Broadband Router router based on the new private IP address, and then your device can again communicate with your Broadband Router. For the same reason, all devices on the LAN need to be restarted before they can access the Internet again. -
Page 48: Ip Routing Table
Internet. If no match is found and a default IP route is not defined, the IP packet is discarded and will go nowhere. - Page 49 Step 2 Step 3 4-22 following screen: IP Routing Table Add IP Remote IP Address Remote IP Netmask: Gateway Hop Count: APPLY Enter the following information: Add Default Route: select if you want to specify a new default route. Note that the Remote IP Address and Remote IP netmask fields do not appear if you select this option.
-
Page 50: To Configure Ipx Settings
SAP Table to display or modify the IPX SAP Table. The IPX Routing Table The IPX routing table contains all the information that the Broadband Router needs to route an IPX data packet. You can view the IPX routing table by clicking on the IPX Routing Table button at the bottom of the System IPX Configuration screen. - Page 51 “Default IPX Route” is used. This normally is set to a path where another router can be reached that has additional information about other networks not known to the local router. If no match is found and a default IPX route is not defined, the IPX packet is discarded and will go nowhere.
- Page 52 display the following screen: IPX Routing Table Add a Static IPX Route Add IPX Destination Network Number Gateway Interface Name Gateway MAC Address Hop Count: Apply Step 2 Enter the following information: Add IPX: select the type of entry to be added. If you specify a Default Route, the Destination Network Number and Hop Count fields do not appear.
- Page 53 The router will search the SAP table for these entries and respond with the necessary information that the workstation can use to communicate with the desired service.
- Page 54 Note: To delete a static SAP entry, select it in the SAP table and click the Delete button. You cannot delete non-static entries. Adding a Static SAP Entry The procedure to add an IPX static SAP entry is as follows: Step 1 Click the ADD button at the bottom of the IPX SAP Table screen to display the following screen:...
-
Page 55: To Enable Bridging Learning
Enter the following information: Learn MAC address: enables or disables Learning. If Learning is enabled, the Broadband Router maintains a MAC address table that keeps track of the relationship between MAC addresses and network interfaces - so that the system knows which device is reachable through which network interface. -
Page 56: How To View The Connection Log
• How to View the Connection Log The Broadband Router provides a connection log that you can use to track the connections in establlished both out of or into your Broadband Router. Connect and disconnect messages can be useful in determining connection costs, Trigger messages are useful in determining the particular device and application that triggered the connection. -
Page 57: How To Save Or Clear Configuration Changes
How to Upgrade the Broadband Router Features/ Software You can upgrade your firmware (the software that controls the router’s operations). Normally, this is done when you discover a problem which is resolved in a different version of firmware that contains new features that you need. Both types of system... -
Page 58: Configuration Options
System Tools - Reset System Reset System Do you really want to reset the system? Click YES to reset the Broadband Router. If you do not want to reset the system, Click No. Resetting the Broadband Router disconnects any active calls, and... -
Page 59: Password Configuration
How to Change the ARM Password After you start using the Broadband Router, you should change the factory default ARM password as follows: Step 1 The following screen displays: Step 2 Step 3 What if I Forget the Password? If you forget the ARM password, the only way to recover is to clear the entire configuration and return the unit to its original state as shipped from the factory. -
Page 60: How To Configure General System Settings
How to Customize the ARM Interface You can use the ARM Customization feature to specify applications you intend the router for. Your ARM interface will be customized accordingly to fit your specific needs. The ARM Customization screen is the first screen you will see when you are connected to the ARM for the first time. -
Page 61: System Information
Enter the following information: System Uptime: the elapsed time since the Broadband Router was powered on(display only). System Name: a unique name that you assign to this Broadband Router. System Contact: the network administrator responsible for maintaining the network. System Location: where the Broadband Router is physically located. -
Page 62: System Messages
Messages This chapter lists messages you may see in the 904S ARM message window. System Messages ****** has to be an integer [0123456789] The entered field (******) is not a valid integer. ****** has to be valid IP address The entered field (******) is an invalid IP address format or an invalid IP address value. - Page 63 The IP address obtained from the EWAN Internet connection was in conflict with an IP address subnet already defined for an interface of the router. Either change the IP address subnet for the interface, or contact your ISP for a different address assignment "Call operation in progress.
- Page 64 "The confirmed encryption key doesn't match" The encryption key entered in the "Confirm Encryption Key" field is not the same as the key in "Encryption key" field. "Invalid DHCP static IP address" An Invalid static DHCP IP address has been detected. This is not permitted. Please select another address or modify the original entry.
- Page 65 The firmware file entered is either missing or invalid. "External logon attempt rejected" Another browser elsewhere in the network has attempted to open the router’s HTTP page. This attempt was rejected. Only one HTTTP configuration session allowed at a given time.
- Page 66 A duplicate filter name has been detected. A filter name must be unique. "General read failure" An error has occurred while communicating with the router. Please use the “Reload” or “Refresh” button to load this page again. "The Internet access time has been configured successfully"...
- Page 67 Current DHCP entry can’t be accessed. "Invalid Filter IP Address" This message is displayed when an IP address with a syntax error is entered. An IP address should be a set of four three-digit numbers. Each three-digit number should be between 0 and 255, inclusive. For example, a correct IP address is 192.168.100.2. "Invalid Entry: Private Port"...
- Page 68 The IP address entered in the static DHCP configuration form is invalid. Please check all parameters entered. "Remote Tunnel Name is required" Each tunnel configuration requires a remote system name for authentication. If such a name is not provided or is invalid, this message will be displayed. "IP Address is invalid"...
- Page 69 The adminstrator is attempting to add a second profile over the EWAN port "Only 8 rules allowed" The maximum number of Filtering rules, system-wide, has been exceeded. To add an additional rule, one must be deleted. Parameter changes applied Changed parameters have been applied to the router configuration.
- Page 70 "Phone number or data service type seems to be incorrect" After an "Apply and Test" button is pressed, the router detected a problem with either the remote phone number or the data service type configured. "Phone number up to 15, limit characters to 123456789,;-[]!*#"...
- Page 71 A duplicate user name is entered. Dial-In user names must be unique. "Resetting system, please wait..." The message is displayed when the router is in the process of resetting. You can logon to the router after about 30 seconds. "Save configuration failed. Please try again"...
- Page 72 The time has been configured successfully. "The Gateway IP Address has been set as the IP Default Route" The Internet access profile has been configured in the router and the configured ISP Gateway IP Addrress is now set as the IP Default Route "This interface has been configured to support a Remote Office...
- Page 73 23 to issue a CLI command to do this. If port 23 has been re-assigned, the administrator must re-assign the HTTP port using the CLI through a new Telnet router port (if available), from a LAN-attached device, or through a non- Internet connection.
- Page 74 port (if available), from a LAN-attached device, or through a non-Internet connection. Note: Address Translation only applies to Internet connections 6-13...
-
Page 75: Specifications
Specifications Application • • • • Features Internet Access, Multimedia Applications and Virtual Server • • • • • • Protocol Support • • • • • • • Internet Access via Cable or xDSL Accessing Servers from the Public Network Supporting Multimedia Applications Creating Virtual Private Network Multiple users to share Internet Access... - Page 76 Management • • • • • • • • • Monitoring • • Security • • • • • • Physical Specification • • • • Hardware Configuration • • • • Cisco-like Command Line Interface(CLI) Embedded Telnet server for remote Console management Customized Web-based GUI Firmware upgrade via Web-based GUI/Console port Configuration date upload and download via TFTP...
- Page 77 • 1 power jack for AC Adapter 9V/1A • 1 Power Switch...
- Page 78 Glossary This section provides some common networking terms you may find in this user guide. ARP, ARP Table To send an IP packet to another device on the same LAN, the source device needs to know the MAC address of the destination device first. If such information is already maintained in the ARP (Address Resolution Protocol) table, the corresponding MAC address will be used to transmit the data packet.
-
Page 79: Connection Profile
The default route is a special IP route in the IP routing table. When a packet is received by the router, if destination network cannot be found in its routing table, the packet will be forwarded over the default route to the next-hop IP router. Such a router often has a more complete routing table, and therefore is “more... - Page 80 DNS IP address, the secondary DNS IP address, the default gateway IP address, WINS Server addresses, NetBIOS Node Type, etc. Edge Router A router that resides at the edge of a network. It is like a gateway that is used to communicate with the outside network. Encryption A method for scrambling data which inhibits unauthorized snooping.
- Page 81 Internet Access and ISP Accounts To access the Internet, first you need to have a device (such as a router or a modem) that you can use to connect to the Internet using a dial-up services such as modem or ISDN or a fixed connection service such as a leased line or a frame relay network.
- Page 82 When two physically disjoint offices of the same company need to communicate and share data resources with each other, they can use one router on each side and perform LAN to LAN communication - to allow users on one LAN to access resources on the other.
- Page 83 ISDN or modem connection will be set up automatically to take over the communication. For a modem router, such a feature would not apply; (2) load-sharing over 2 modem connections: to allow data to be communicated over two modem connections simultaneously in order to achieve higher combined data throughput;...
- Page 84 (such as the Internet network), while RIP/RIP II are more popular in corporate or private networks. Router An intelligent, internetworking device that will forward or filter packets between different networks based on data link layer (MAC) address information.
- Page 85 (The next-hop router is in theory one hop closer to the destination.) Routing Table A router relies on a routing table to determine where to forward a received packet. The routing table normally contains, for each destination network, the network address of the next hop router, the hop count to the destination network, an aging count, among other information.
- Page 86 (Internet Protocol), a network layer protocol. Un-numbered/numbered Link When the connection of a router to the WAN (Wide Area Network) is assigned an IP address, it is called a numbered link. Otherwise, it is called an un-numbered link. VPN, L2TP, PPP/ECP, DES, IPSec VPN stands for Virtual Private Network.
- Page 87 Warranty, Copyrights, FCC Notice Warranty 901 series Broadband Router is provided with a limited oneone year Warranty. Details of the warranty and return process are explained in the Warranty Policy below. Warranty service is subject to the terms and conditions of company Warranty Policy.
-
Page 88: Fcc Part 15 Notice
extent company deems necessary to restore the Product to proper operating condition without charge to the customer. If, in the company opinion, it is impractical for any reason to repair or replace the Product, company may at its option refund or pay an amount equal to the lesser of (1) the purchase price paid for the product or (2) the then effective company estimated purchase price for the Product.
Need help?
Do you have a question about the 516211 and is the answer not in the manual?
Questions and answers