NETGEAR DG824M Reference Manual
  1. Manuals
  2. Brands
  3. NETGEAR Manuals
  4. Gateway
  5. DG824M - 802.11b Wireless ADSL Modem
  6. Reference manual

NETGEAR DG824M Reference Manual

Wireless adsl modem gateway
Hide thumbs Also See for DG824M:
Table of Contents

Advertisement

Quick Links

Download this manual
Reference Manual for the
Model DG824M Wireless
ADSL Modem Gateway
NETGEAR, Inc.
4500 Great America Parkway
Santa Clara, CA 95054 USA
Phone 1-888-NETGEAR
SM-DG824MNA-1
July 2003

Advertisement

Table of Contents
loading

Related Manuals for NETGEAR DG824M

Summary of Contents for NETGEAR DG824M

  • Page 1 Reference Manual for the Model DG824M Wireless ADSL Modem Gateway NETGEAR, Inc. 4500 Great America Parkway Santa Clara, CA 95054 USA Phone 1-888-NETGEAR SM-DG824MNA-1 July 2003...
  • Page 2 In the interest of improving internal design, operational function, and/or reliability, NETGEAR reserves the right to make changes to the products described in this document without notice. NETGEAR does not assume any liability that may occur due to the use or application of the product(s) or circuit layout(s) described herein.

  • Page 3: Customer Support

    Serie auf die Erfüllung der Vorschriften hin zu überprüfen. Certificate of the Manufacturer/Importer It is hereby certified that the DG824M Wireless ADSL Modem Gateway has been suppressed in accordance with the conditions set out in the BMPT-AmtsblVfg 243/1991 and Vfg 46/1992. The operation of some equipment (for example, test transmitters) in accordance with the regulations may, however, be subject to certain restrictions.

  • Page 5: Table Of Contents

    Chapter 1 About This Guide Audience ...1-1 Scope ...1-1 Typographical Conventions ...1-2 Special Message Formats ...1-2 How to Use the HTML Version of this Manual ...1-3 How to Print this Manual ...1-4 Chapter 2 Introduction About the Gateway ...2-1 Key Features ...2-1 802.11b Standards-based Wireless Networking ...2-2 A Powerful, True Firewall ...2-2 Content Filtering ...2-3...
  • Page 6 Choosing WEP Authentication and Security Encryption Methods ...4-8 Authentication Type Selection ...4-8 Encryption Choices ...4-9 How to Configure WEP ...4-9 Chapter 5 Protecting Your Network Protecting Access to Your DG824M Wireless ADSL Modem Gateway ...5-1 How to Change the Built-In Password ...5-1 Contents...
  • Page 7 Changing the Administrator Login Timeout ...5-2 Configuring Basic Firewall Services ...5-2 Blocking Keywords, Sites, and Services ...5-3 How to Block Keywords and Sites ...5-3 Rules ...5-5 Inbound Rules (Port Forwarding) ...5-7 Inbound Rule Example: A Local Public Web Server ...5-7 Inbound Rule Example: Allowing Videoconferencing ...5-9 Considerations for Inbound Rules ...5-9 Outbound Rules (Service Blocking) ...5-10...
  • Page 8 Running Diagnostic Utilities and Rebooting the Router ...6-13 Enabling Remote Management ...6-14 Configure Remote Management ...6-14 Chapter 7 Advanced Configuration Configuring Advanced Security ...7-1 Setting Up A Default DMZ Server ...7-1 How to Configure a Default DMZ Server..7-2 Respond to Ping on Internet WAN Port ...7-2 Configuring LAN IP Settings ...7-2 DHCP ...7-5 Use Gateway as DHCP server ...7-5...
  • Page 9 Testing the Path from Your PC to a Remote Device ...8-8 Restoring the Default Configuration and Password ...8-8 Using the Default Reset button ...8-9 Problems with Date and Time ...8-9 Appendix A Technical Specifications Appendix B Network and Routing Basics Related Publications ...
  • Page 10 Selecting Windows’ Internet Access Method ... C-6 Verifying TCP/IP Properties ... C-6 Configuring Windows NT4, 2000 or XP for IP Networking ... C-7 Install or Verify Windows Networking Components ... C-7 DHCP Configuration of TCP/IP in Windows XP, 2000, or NT4 ... C-8 DHCP Configuration of TCP/IP in Windows XP ...

  • Page 11: About This Guide

    Screen text, file and server names, extensions, commands, IP addresses courier font Note: This format is used to highlight information of importance or special interest. This manual is written for the DG824M wireless gateway according to these specifications.: Table 1-1. Manual Specifications...

  • Page 12: How To Use This Manual

    The PDF button links to a PDF version of the full manual. – The E-mail button enables you to send feedback by e-mail to Netgear support. – The Print button prints the currently displayed topic. Using this button when a step-by-step procedure is displayed will send the entire procedure to your printer--you do not have to worry about specifying the correct range of pages.

  • Page 13: How To Print This Manual

    How to Print this Manual To print this manual you man choose one of the following several options, according to your needs. • Printing a “How To” Sequence of Steps in the HTML View. Use the Print button on the upper right of the toolbar to print the currently displayed topic.

  • Page 14: Introduction

    This chapter describes the features of the NETGEAR DG824M Wireless ADSL Modem Gateway. The DG824M wireless gateway is a combination of a built-in ADSL modem, router, 4-port switch, and firewall which enables your entire network to safely share an Internet connection that otherwise is used by a single PC.

  • Page 15: 802.11B Standards-Based Wireless Networking

    • Wireless access can be restricted by MAC address. A Powerful, True Firewall Unlike simple Internet sharing NAT routers, the DG824M is a true firewall, using stateful packet inspection to defend against hacker attacks. Its firewall features include: • Denial of Service (DoS) protection Automatically detects and thwarts Denial of Service (DoS) attacks such as Ping of Death, SYN Flood, LAND Attack and IP Spoofing.

  • Page 16: Content Filtering

    Auto Sensing and Auto Uplink™ LAN Ethernet Connections With its internal 4-port 10/100 switch, the DG824M can connect to either a 10 Mbps standard Ethernet network or a 100 Mbps Fast Ethernet network. The local LAN ports are autosensing and capable of full-duplex or half-duplex operation.

  • Page 17: Easy Installation And Management

    Easy Installation and Management You can install, configure, and operate the DG824M within minutes after connecting it to the network. The following features simplify installation and management tasks: •...

  • Page 18: What's In The Box

    These functions allow you to test Internet connectivity and reboot the gateway. You can use these diagnostic functions directly from the DG824M when your are connect on the LAN or when you are connected over the Internet via the remote management function.

  • Page 19: The Gateway's Front Panel

    The Gateway’s Front Panel The DG824M Wireless ADSL Modem Gateway front panel shown below contains status LEDs. Figure 2-1: DG824M Front Panel You can use the LEDs to verify various conditions. front panel of the router. These LEDs are green when lit.

  • Page 20: The Gateway's Rear Panel

    The Gateway’s Rear Panel The rear panel of the DG824M Wireless ADSL Modem Gateway connections. Figure 2-2: DG824M Rear Panel Viewed from left to right, the rear panel contains the following elements: • AC power adapter outlet • Wireless antenna •...
  • Page 21 Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Introduction...

  • Page 22: Connecting The Gateway To The Internet

    This chapter describes how to set up the gateway on your Local Area Network (LAN), connect to the Internet, how to configure your DG824M Wireless ADSL Modem Gateway for Internet access using the Setup Wizard, or how to manually configure your Internet connection.

  • Page 23: Adsl Microfilter With Built-In Splitter

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Note: Do not connect the DG824M to the ADSL line through a microfilter unless the microfilter is a combination microfilter/splitter specifically designed for this purpose. Doing so will prevent the built-in ADSL modem in the DG824M from establishing a connection to the Internet. If you have any doubts about this, connect the DG824M directly to the ADSL line.

  • Page 24: Internet Configuration Requirements

    For Macintosh computers, open the TCP/IP or Network control panel. • You may also refer to the DG824M Resource CD for the NETGEAR Router ISP Guide which provides Internet connection information for many ISPs. Once you locate your Internet configuration parameters, you may want to record them on the page below according to the instructions in 3-4.

  • Page 25: Record Your Internet Connection Information

    Print this page. Fill in the configuration parameters from your Internet Service Provider (ISP). ISP Multiplexing Method and Virtual Circuit Number: The default settings of your DG824M Wireless ADSL Modem Gateway will work fine for most ISPs. However, some ISPs use a specific Multiplexing Method or a Virtual Circuit Number for either the VPI or VCI.

  • Page 26: Connecting The Dg824M To Your Lan

    Phone Two-Line Filter With Splitter Phone Figure 3-3: ADSL microfilters Note: If you purchased the DG824M in a country where the filter is not included, you must acquire one. Connecting the Gateway to the Internet ADSL L TO THE Splitter...
  • Page 27 Note: Improperly connecting a filter to your DG824M wireless gateway will block your ADSL connection. Turn off your computer. Connect the ADSL port of the DG824M to the ADSL port (B) of the two-line filter. Wireless ADSL Modem Gateway DG824M Figure 3-5: Connecting DG824M wireless gateway to an ADSL microfilter and phone...
  • Page 28 Connect the Ethernet cable (C) from your DG824M’s LAN port to the Ethernet adapter in your computer. Line Wireless ADSL Modem Gateway DG824M Figure 3-6: Connecting a computer to the DG824M wireless gateway Note: The DG824M wireless gateway incorporates Auto Uplink LAN port will automatically sense whether the cable plugged into the port should have a 'normal' connection (e.g.
  • Page 29 Connect to the gateway by typing Explorer or Netscape Figure 3-7: Log in to the gateway A login window opens as shown below: Figure 3-8: Login window When prompted, enter admin for the user name and password for the password, both in lower case letters.

  • Page 30: Connecting The Dg824M To The Internet

    Internet. There are two ways you can configure your gateway to connect to the Internet: • Let the DG824M auto-detect the type of Internet connection you have and configure it. • Manually choose which type of Internet connection you have and configure it.
  • Page 31 Note: If, instead of the Setup Wizard menu, the main menu of the gateway’s Configuration Manager as shown in Figure 3-15 bring up this menu. When the Wizard launches, select Yes in the menu below to allow the gateway to automatically determine your connection.

  • Page 32: Wizard-Detected Pppoe Login Account Setup

    Wizard-Detected PPPoE Login Account Setup If the Setup Wizard determines that your Internet service account uses a login protocol such as PPP over Ethernet (PPPoE), you will be directed to a menu like the PPPoE menu in Figure 3-10: Setup Wizard menu for PPPoE login accounts Enter the PPPoE login user name, password, and Service Name (if required) as provided by your ISP.

  • Page 33: Wizard-Detected Pppoa Login Account Setup

    Click on the Test button to test your Internet connection. If the NETGEAR website does not appear within one minute, refer to Wizard-Detected PPPoA Login Account Setup If the Setup Wizard determines that your Internet service account uses a login protocol such as...
  • Page 34 PCs so that the settings take effect. Click on Apply to save your settings. Click on the Test button to test your Internet connection. If the NETGEAR website does not appear within one minute, refer to Connecting the Gateway to the Internet Chapter 8, “Troubleshooting”.

  • Page 35: Wizard-Detected Dynamic Ip Account Setup

    A DNS server is a host on the Internet that translates Internet names (such as www.netgear.com) to numeric IP addresses. Typically your ISP transfers the IP address of one or two DNS servers to your gateway during login. If the ISP does not transfer an address, you must obtain it from the ISP and enter it manually here.

  • Page 36: Wizard-Detected Ip Over Atm Account Setup

    PC. This feature allows your gateway to masquerade as that PC by using its MAC address. Click on Apply to save your settings. Click on the Test button to test your Internet connection. If the NETGEAR website does not appear within one minute, refer to Wizard-Detected IP Over ATM Account Setup...

  • Page 37: Wizard-Detected Fixed Ip (Static) Account Setup

    Click on the Test button to test your Internet connection. If the NETGEAR website does not appear within one minute, refer to Wizard-Detected Fixed IP (Static) Account Setup If the Setup Wizard determines that your Internet service account uses Fixed IP assignment, you...

  • Page 38: Testing Your Internet Connection

    DNS server addresses from your ISP and enter them manually here. Click on Apply to save the settings. Click on the Test button to test your Internet connection. If the NETGEAR website does not appear within one minute, refer to Testing Your Internet Connection After completing the Internet connection configuration, your can test your Internet connection.

  • Page 39: Manually Configuring Your Internet Connection

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Manually Configuring Your Internet Connection You can manually configure your gateway using the menu below, or you can allow the Setup Wizard to determine your configuration as described in the previous section.

  • Page 40: Manual Configuration

    Manual Configuration You can manually configure the gateway in the Basic Settings menu shown in these steps: If your ISP ADSL service requires setting the Multiplexing Method and VPI/VCI parameters, click on the ADSL Settings link from the main menu, fill in the settings your ISP provided, and click Apply.
  • Page 41 – For PPPoA Select “Get Dynamically from ISP” if your ISP uses DHCP to assign your IP address. Your ISP will automatically assign this address. Select “Use Static IP Address” if your ISP has assigned you a permanent, fixed (static) IP address. Enter the IP address that your ISP assigned. Enter the login name (frequently the email address your ISP provided), and password.
  • Page 42 Click Apply to save your settings. Click on the Test button to test your Internet connection. If the NETGEAR website does not appear within one minute, refer to “Troubleshooting”. Connecting the Gateway to the Internet Chapter 8,...
  • Page 43 Reference Manual for the Model DG824M Wireless ADSL Modem Gateway 3-22 Connecting the Gateway to the Internet...

  • Page 44: Wireless Configuration

    This chapter describes how to configure the wireless features of your DG824M Wireless ADSL Modem Gateway. Considerations for a Wireless Network In planning your wireless network, you should consider the level of security required. You should also select the physical placement of your gateway in order to maximize the network speed. For...

  • Page 45: Implement Appropriate Wireless Security

    For this reason, use the security features of your wireless equipment. The DG824M wireless gateway provides highly effective security features which are covered in detail in this chapter. Deploy the security features appropriate to your needs.

  • Page 46: Understanding Wireless Settings

    Understanding Wireless Settings To configure the Wireless interface of your gateway, click the Wireless link in the main menu of the browser interface. The Wireless Settings menu will appear, as shown below: Figure 4-2: Wireless Settings menu In the Wireless Network section are the following parameters: •...

  • Page 47: How To Set Up And Test Basic Wireless Connectivity

    32 alphanumeric characters. The default SSID is Wireless. Note: The SSID of any wireless access adapters must match the SSID you configure in the DG824M Wireless ADSL Modem Gateway. If they do not match, you will not get a wireless connection to the DG824M.

  • Page 48: Restricting Wireless Access To Your Network

    Once your PCs have basic wireless connectivity to the firewall, then you can configure the advanced wireless security functions of the firewall. Restricting Wireless Access to Your Network The DG824M Wireless ADSL Modem Gateway provides several ways to restrict wireless access to your network: •...

  • Page 49: Restricting Access To Your Network By Turning Off Wireless Connectivity

    Restricting Access to Your Network by Turning Off Wireless Connectivity You can completely turn off the wireless portion of the DG824M. For example, if your notebook computer is used to wirelessly connect to your router and you take a business trip, you can turn off the wireless portion of the router while you are travelling.
  • Page 50 Click Back to return to the Wireless Settings menu. Make sure the Trusted PCs only radio button is selected, then click Apply. Now, only devices on this list will be allowed to wirelessly connect to the DG824M. This prevents unauthorized access to your network.

  • Page 51: Choosing Wep Authentication And Security Encryption Methods

    Internet sites use another level of highly secure encryption called SSL. You can tell if a web site is using SSL because the web address begins with HTTPS rather than HTTP. Authentication Type Selection The DG824M lets you select the following wireless authentication schemes. • Automatic. •...

  • Page 52: Encryption Choices

    Set your wireless adapter according to the authentication scheme you choose for the DG824M wireless gateway. Please refer to each of these options, as defined by the IEEE 802.11b wireless communication standard. Encryption Choices Choose the encryption strength from the radio button list. Please refer to Parameters“...
  • Page 53 Be sure you clearly understand how the WEP key settings are configured in your wireless adapter. Wireless adapter configuration utilities such as the one included in Windows XP only allow entry of one key which must match the default key you set in the DG824M. Click Apply to save your settings.

  • Page 54: Protecting Your Network

    This chapter describes how to use the basic firewall features of the DG824M Wireless ADSL Modem Gateway to protect your network. Protecting Access to Your DG824M Wireless ADSL Modem Gateway For security reasons, the gateway has its own user name and password. Also, after a period of inactivity for a set length of time, the administrator login will automatically disconnect.

  • Page 55: Changing The Administrator Login Timeout

    From the Main Menu of the browser interface, under the Maintenance heading, select Set Password to bring up the menu shown in Figure 5-2: Set Password menu To change the password, first enter the old password, and then enter the new password twice. Click Apply to save your changes.

  • Page 56: Blocking Keywords, Sites, And Services

    The section below explains how to configure your How to Block Keywords and Sites The DG824M wireless gateway allows you to restrict access to Internet content based on functions such as Java or Cookies, Web addresses and Web address keywords.
  • Page 57 Click on the Block Sites link of the Security menu. Figure 5-3: Block Sites menu To enable keyword blocking, check “Turn keyword blocking on”, enter a keyword or domain in the Keyword box, click Add Keyword, then click Apply. Some examples of Keyword application follow: •...

  • Page 58: Rules

    You can also choose to log traffic that matches or does not match the rule you have defined. To access the Rules configuration of the DG824M, click the Rules link on the main menu, then click Add for either an Outbound or Inbound Service.

  • Page 59: Inbound Rules (Port Forwarding)

    Inbound Rules (Port Forwarding) Because the DG824M uses Network Address Translation (NAT), your network presents only one IP address to the Internet, and outside users cannot directly address any of your local computers. However, by defining an inbound rule you can make a local server (for example, a web server or game server) visible and available to the Internet.
  • Page 60 • Service From this list, select the application or service to be allowed or blocked. The list already displays many common services, but you are not limited to these choices. Use the Add Services menu to add any additional services or applications that do not already appear. •...

  • Page 61: Inbound Rule Example: Allowing Videoconferencing

    Inbound Rule Example: Allowing Videoconferencing If you want to allow incoming videoconferencing to be initiated from a restricted range of outside IP addresses, such as from a branch office, you can create an inbound rule. In the example shown Figure 5-6, CU-SeeMe connections are allowed only from a specified range of external IP addresses.

  • Page 62: Outbound Rules (Service Blocking)

    Outbound Rules (Service Blocking) The DG824M allows you to block the use of certain Internet services by PCs on your network. This is called service blocking or port filtering. You can define an outbound rule to block Internet access from a local PC based on: •...
  • Page 63 The parameters are: • Service From this list, select the application or service to be allowed or blocked. The list already displays many common services, but you are not limited to these choices. Use the Add Services menu to add any additional services or applications that do not already appear. •...

  • Page 64: Order Of Precedence For Rules

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Order of Precedence for Rules As you define new rules, they are added to the tables in the Rules menu, as shown in Figure 5-8: Figure 5-8: Rules table with examples...

  • Page 65: Services

    1024 to 65535 by the authors of the application. Although the DG824M already holds a list of many service port numbers, you are not limited to these choices. Use the procedure below to create your own service definitions.

  • Page 66: Setting Times And Scheduling Firewall Services

    Click Apply to save your changes. Setting Times and Scheduling Firewall Services The DG824M wireless gateway uses the Network Time Protocol (NTP) to obtain the current time and date from one of several Network Time Servers on the Internet. In order to localize the time for your log entries, you must select your Time Zone from the list.
  • Page 67 Click on the Schedule link of the Security menu to display menu shown below. Figure 5-11: Schedule Services menu Select your Time Zone. This setting will be used for the blocking schedule according to your local time zone and for time-stamping log entries. Check the Daylight Savings Time box if your time zone is currently in daylight savings time.

  • Page 68: How To Schedule Firewall Services

    How to Schedule Firewall Services If you enabled services blocking in the Block Services menu or Port forwarding in the Ports menu, you can set up a schedule for when blocking occurs or when access isn't restricted. Log in to the gateway at its default LAN address of http://192.168.0.1 with its default User Name of admin, default password of password, or using whatever Password and LAN address you have chosen for the gateway.
  • Page 69 Reference Manual for the Model DG824M Wireless ADSL Modem Gateway 5-16 Protecting Your Network...

  • Page 70: Managing Your Network

    ADSL Modem Gateway. Backing Up, Restoring, or Erasing Your Settings The configuration settings of the DG824M wireless gateway are stored in a configuration file in the gateway. This file can be backed up to your computer, restored, or reverted to factory default settings.

  • Page 71: How To Restore A Configuration From A File

    2-7. Upgrading the Gateway’s Firmware The software of the DG824M wireless gateway is stored in FLASH memory, and can be upgraded as new software is released by NETGEAR. Upgrade files can be downloaded from NETGEAR's website. If the upgrade file is compressed (.ZIP file), you must first extract the binary (.BIN or .IMG) file before uploading it to the gateway.

  • Page 72: How To Upgrade The Gateway Firmware

    How to Upgrade the Gateway Firmware Note: NETGEAR recommends that you back up your configuration before doing a firmware upgrade. After the upgrade is complete, you may need to restore your configuration settings. Download and unzip the new software file from NETGEAR.

  • Page 73: Network Management Information

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Network Management Information The DG824M provides a variety of status and usage information which is discussed below. Viewing Gateway Status and Usage Statistics From the Main Menu, under Maintenance, select Gateway Status to view the screen in Figure 6-3.
  • Page 74 This screen shows the following parameters: Table 6-1. Menu 3.2 - Gateway Status Fields Field System Name Firmware Version WAN Port MAC Address IP Address DHCP IP Subnet Mask Domain Name Servers (DNS) LAN Port MAC Address IP Address IP Subnet Mask DHCP ADSL Modem ADSL Firmware Version...
  • Page 75 Click on the “Show Statistics” button to display gateway usage statistics, as shown in below: Figure 6-4: Gateway Statistics screen This screen shows the following statistics:. Table 6-1. Gateway Statistics Fields Field Description WAN, LAN, or The statistics for the WAN (Internet), LAN (local), and Serial ports. For each port, the Serial Port screen displays: Status...
  • Page 76 Click on the “Show WAN Status” button to display gateway WAN connection status, as shown in Figure 6-5 below: Figure 6-5: Gateway WAN Status screen Clicking the Renew button updates the status information. This screen shows the following statistics:. Table 6-1. Gateway Statistics Fields Field Description...

  • Page 77: Viewing Attached Devices

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Viewing Attached Devices The Attached Devices menu contains a table of all IP devices that the gateway has discovered on the local network. From the Main Menu of the browser interface, under the Maintenance heading,...
  • Page 78 e-mail notification, you'll receive these logs in an e-mail message. If you don't have e-mail notification enabled, you can view the logs here. An example is shown below. Figure 6-7: Security Logs menu Log entries are described in Table 6-1. Security Log entry descriptions Field Description...

  • Page 79: Selecting What Information To Log

    Table 6-1. Security Log entry descriptions Field Description Source IP The IP address of the initiating device for this log entry. Source port and The service port number of the initiating device, and whether it interface originated from the LAN or WAN Destination The name or IP address of the destination device or website.

  • Page 80: Saving Log Files On A Server

    Following are examples of log messages. In all cases, the log entry shows the timestamp as: Day, Year-Month-Date Hour:Minute:Second Activation and Administration Tue, 2002-05-21 18:48:39 - NETGEAR activated [This entry indicates a power-up or reboot with initial time entry.] Tue, 2002-05-21 18:55:00 - Administrator login successful - IP:192.168.0.2 Thu, 2002-05-21 18:56:58 - Administrator logout - IP:192.168.0.2...

  • Page 81: Enabling Security Event E-Mail Notification

    Enabling Security Event E-mail Notification In order to receive logs and alerts by e-mail, you must provide your e-mail information in the E-Mail subheading: • Turn e-mail notification on. Check this box if you wish to receive e-mail logs and alerts from the gateway.

  • Page 82: Running Diagnostic Utilities And Rebooting The Router

    In this case, the gateway overwrites the log and discards its contents. Running Diagnostic Utilities and Rebooting the Router The DG824M wireless gateway has a diagnostics feature. You can use the diagnostics menu to perform the following functions from the gateway: •...

  • Page 83: Enabling Remote Management

    Using the Remote Management page, you can allow a user or users on the Internet to configure, upgrade and check the status of your DG824M Wireless ADSL Modem Gateway. Note: Be sure to change the router's default password to a very secure password. The ideal password should contain no dictionary words from any language, and should be a mixture of letters (both upper and lower case), numbers, and symbols.

  • Page 84: Configure Remote Management

    Configure Remote Management Log in to the gateway at its default LAN address of http://192.168.0.1 with its default User Name of admin, default password of password, or using whatever User Name, Password and LAN address you have chosen for the gateway. From the Advanced section of the main menu, click on the Remote Management link.
  • Page 85 Reference Manual for the Model DG824M Wireless ADSL Modem Gateway 6-16 Managing Your Network...

  • Page 86: Advanced Configuration

    This chapter describes how to configure the advanced features of your DG824M Wireless ADSL Modem Gateway. Configuring Advanced Security The DG824M Wireless ADSL Modem Gateway provides a variety of advanced features, such as: • Setting up a Demilitarized Zone (DMZ) Server •...

  • Page 87: How To Configure A Default Dmz Server

    How to Configure a Default DMZ Server. To assign a computer or server to be a Default DMZ server, follow these steps: Log in to the gateway at its default LAN address of http://192.168.0.1 with its default User Name of admin, default password of password, or using whatever Password and LAN address you have chosen for the gateway.
  • Page 88 The gateway is shipped preconfigured to use private IP addresses on the LAN side, and to act as a DHCP server. The gateway’s default LAN IP configuration is: • LAN IP addresses—192.168.0.1 • Subnet mask—255.255.255.0 These addresses are part of the IETF-designated private address range for use in private networks, and should be suitable in most applications.
  • Page 89 • RIP Direction RIP (Router Information Protocol) allows a router to exchange routing information with other routers. The RIP Direction selection controls how the gateway sends and receives RIP packets. Both is the default. — When set to Both or Out Only, the gateway will broadcast its routing table periodically. —...

  • Page 90: Dhcp

    DHCP By default, the gateway will function as a DHCP (Dynamic Host Configuration Protocol) server, allowing it to assign IP, DNS server, and default gateway addresses to all computers connected to the router's LAN. The assigned default gateway address is the LAN address of the gateway. IP addresses will be assigned to the attached PCs from a pool of addresses specified in this menu.

  • Page 91: Reserved Ip Addresses

    Reserved IP addresses When you specify a reserved IP address for a PC on the LAN, that PC will always receive the same IP address each time it access the gateway’s DHCP server. Reserved IP addresses should be assigned to servers that require permanent IP settings. To reserve an IP address: Click the Add button.

  • Page 92: Configuring Dynamic Dns

    From the Main Menu, under Advanced, click the LAN IP Setup link to view the menu, shown Figure 7-3 Figure 7-3: LAN IP Setup Menu Enter the TCP/IP, MTU, DHCP, or Reserved IP parameters. Click Apply to save your changes. Configuring Dynamic DNS If your network has a permanently assigned IP address, you can register a domain name and have that name linked with your IP address by public Domain Name Servers (DNS).

  • Page 93: How To Configure Dynamic Dns

    The gateway contains a client that can connect to a dynamic DNS service provider. To use this feature, you must select a service provider and obtain an account with them. After you have configured your account information in the gateway, whenever your ISP-assigned IP address changes, your gateway will automatically contact your dynamic DNS service provider, log in to your account, and register your new IP address.

  • Page 94: Using Static Routes

    Using Static Routes Static Routes provide additional routing information to your gateway. Under normal circumstances, the gateway has adequate routing information after it has been configured for Internet access, and you do not need to configure additional static routes. You must configure static routes only for unusual cases such as multiple routers or multiple IP subnets located on your network.

  • Page 95: How To Configure Static Routes

    How to Configure Static Routes Log in to the gateway at its default LAN address of http://192.168.0.1 with its default User Name of admin, default password of password, or using whatever User Name, Password and LAN address you have chosen for the gateway. From the Main Menu of the browser interface, under Advanced, click on Static Routes to view the Static Routes menu, shown in Figure 7-4: Static Routes Table...
  • Page 96 Select Private if you want to limit access to the LAN only. The static route will not be reported in RIP. Type the Destination IP Address of the final destination. Type the IP Subnet Mask for this destination. If the destination is a single host, type 255.255.255.255. Type the Gateway IP Address, which must be a router on the same LAN segment as the gateway.
  • Page 97 Reference Manual for the Model DG824M Wireless ADSL Modem Gateway 7-12 Advanced Configuration...

  • Page 98: Troubleshooting

    This chapter gives information about troubleshooting your DG824M Wireless ADSL Modem Gateway. After each problem description, instructions are provided to help you diagnose and solve the problem. For the common problems listed, go to the section indicated. • Is the gateway on? •...

  • Page 99: Power Led Not On

    • Check that you are using the 12 V DC power adapter supplied by NETGEAR for this product. If the error persists, you have a hardware problem and should contact technical support.

  • Page 100: Troubleshooting The Web Configuration Interface

    Be sure you are using the correct cable: — When connecting the gateway’s WAN ADSL port, use the cable that was supplied with the DG824M. Troubleshooting the Web Configuration Interface If you are unable to access the gateway’s Web Configuration interface from a PC on your local network, check the following: •...

  • Page 101: Troubleshooting The Isp Connection

    • Click the Refresh or Reload button in the Web browser. The changes may have occurred, but the Web browser may be caching the old configuration. Troubleshooting the ISP Connection If your gateway is unable to access the Internet, you should check the ADSL connection, then the WAN TCP/IP connection.

  • Page 102: Obtaining A Wan Ip Address

    ADSL service. It may be necessary to use a swapper if you ADSL signal is on pins 1 and 4 or the RJ-11 jack. The DG824M wireless gateway uses pins 2 and 3.

  • Page 103: Troubleshooting Pppoe Or Pppoa

    Inform your ISP that you have bought a new network device, and ask them to use the gateway’s MAC address. Configure your gateway to spoof your PC’s MAC address. This can be done in the Basic Settings menu. Refer to “Manually Configuring Your Internet Connection“...

  • Page 104: Troubleshooting A Tcp/Ip Network Using The Ping Utility

    If your PC obtains its information from the gateway by DHCP, reboot the PC and verify the gateway address as described in Troubleshooting a TCP/IP Network Using the Ping Utility Most TCP/IP terminal devices and gateways contain a ping utility that sends an echo request packet to the designated device.

  • Page 105: Testing The Path From Your Pc To A Remote Device

    — Verify that the Ethernet card driver software and TCP/IP software are both installed and configured on your PC or workstation. — Verify that the IP address for your router and your workstation are correct and that the addresses are on the same subnet. Testing the Path from Your PC to a Remote Device After verifying that the LAN path works correctly, test the path from your PC to a remote device.

  • Page 106: Using The Default Reset Button

    The E-Mail menu in the Content Filtering section displays the current date and time of day. The DG824M wireless gateway uses the Network Time Protocol (NTP) to obtain the current time from one of several Network Time Servers on the Internet. Each entry in the log is stamped with the date and time of day.
  • Page 107 Reference Manual for the Model DG824M Wireless ADSL Modem Gateway 8-10 Troubleshooting...

  • Page 108: Technical Specifications

    This appendix provides technical specifications for the DG824M Wireless ADSL Modem Gateway. Network Protocol and Standards Compatibility Data and Routing Protocols: Power Adapter North America: United Kingdom, Australia: Europe: Japan: All regions (output): Physical Specifications Dimensions: Weight: Environmental Specifications Operating temperature:...
  • Page 109 Electromagnetic Emissions Meets requirements of: Interface Specifications LAN: WAN: FCC Part 15 Class B VCCI Class B EN 55 022 (CISPR 22), Class B 10BASE-T or 100BASE-Tx, RJ-45 ADSL, Dual RJ-11, pins 2 and 3 T1.413, G.DMT, G.Lite ITU Annex A or B Technical Specifications...

  • Page 110: Network And Routing Basics

    Appendix B Network and Routing Basics This chapter provides an overview of IP networks, routing, and wireless networking. Related Publications As you read this document, you may be directed to various RFC documents for further information. An RFC is a Request For Comment (RFC) published by the Internet Engineering Task Force (IETF), an open organization that defines the architecture and operation of the Internet.

  • Page 111: What Is A Router

    Routers vary in performance and scale, number of routing protocols supported, and types of physical WAN connection they support. The DG824M Wireless ADSL Modem Gateway is a small office router that routes the IP protocol over a single-user broadband connection.
  • Page 112 The latter version is easier to remember and easier to enter into your computer. In addition, the 32 bits of the address are subdivided into two parts. The first part of the address identifies the network, and the second part identifies the host node or station on the network. The dividing point may vary depending on the address range and the application.

  • Page 113: Netmask

    • Class C Class C addresses can have 254 hosts on a network. Class C addresses use 24 bits for the network address and eight bits for the node. They are in this range: 192.0.1.x to 223.255.254.x. • Class D Class D addresses are used for multicasts (messages sent to many hosts).

  • Page 114: Subnet Addressing

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway As a shorter alternative to dotted-decimal notation, the netmask may also be expressed in terms of the number of ones from the left. This number is appended to the IP address, following a backward slash (/), as “/n.”...
  • Page 115 Although the preceding example uses the entire third octet for a subnet address, note that you are not restricted to octet boundaries in subnetting. To create more network numbers, you need only shift some bits from the host address to the network address. For instance, to partition a Class C network number (192.68.135.0) into two, you shift one bit from the host address to the network address.

  • Page 116: Private Ip Addresses

    255.255.255.248 255.255.255.252 255.255.255.254 255.255.255.255 NETGEAR strongly recommends that you configure all hosts on a LAN segment to use the same netmask for the following reasons: • So that hosts recognize local IP broadcast packets When a device broadcasts to its segment neighbors, it uses a destination address of the local network address with all ones for the host address.

  • Page 117: Single Ip Address Operation Using Nat

    The DG824M wireless gateway employs an address-sharing method called Network Address Translation (NAT). This method allows several networked PCs to share an Internet account using only a single IP address, which may be statically or dynamically assigned by your ISP.

  • Page 118: Mac Addresses And Address Resolution Protocol

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway This scheme offers the additional benefit of firewall-like protection because the internal LAN addresses are not available to the Internet through the translated connection. All incoming inquiries are filtered out by the router. This filtering can prevent intruders from probing your system.

  • Page 119: Domain Name Server

    IP addresses, along with other information (such as gateway and DNS addresses) that it may assign to the other devices on the network. The DG824M wireless gateway has the capacity to act as a DHCP server.

  • Page 120: What Is A Firewall

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway What is a Firewall? A firewall is a device that protects one network from another, while allowing communication between the two. A firewall incorporates the functions of the NAT router, while adding features for dealing with a hacker intrusion or attack.

  • Page 121: Category 5 Cable Quality

    Table B-1. UTP Ethernet cable wiring, straight-through Wire color Signal Orange/White Transmit (Tx) + Orange Transmit (Tx) - Green/White Receive (Rx) + Blue Blue/White Green Receive (Rx) - Brown/White Brown Category 5 Cable Quality Category 5 distributed cable that meets ANSI/EIA/TIA-568-A building wiring standards can be a maximum of 328 feet (ft.) or 100 meters (m) in length, divided as follows: 20 ft.

  • Page 122: Inside Twisted Pair Cables

    Inside Twisted Pair Cables For two devices to communicate, the transmitter of each device must be connected to the receiver of the other device. The crossover function is usually implemented internally as part of the circuitry in the device. Computers and workstation adapter cards are usually media-dependent interface ports, called MDI or uplink ports.

  • Page 123: Uplink Switches, Crossover Cables, And Mdi/Mdix Switching

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Figure B-3: Category 5 UTP Cable with Male RJ-45 Plug at Each End Note: Flat “silver satin” telephone cable may have the same RJ-45 plug. However, using telephone cable results in excessive collisions, causing the attached port to be partitioned or disconnected from the network.
  • Page 124 Reference Manual for the Model DG824M Wireless ADSL Modem Gateway The DG824M wireless gateway incorporates Auto Uplink technology (also called MDI/MDIX). Each LOCAL Ethernet port will automatically sense whether the Ethernet cable plugged into the port should have a normal connection (e.g. connecting to a PC) or an uplink connection (e.g.
  • Page 125 Reference Manual for the Model DG824M Wireless ADSL Modem Gateway B-16 Network and Routing Basics...

  • Page 126: Appendix C Preparing Your Network

    This appendix describes how to prepare your network to connect to the Internet through the DG824M Wireless ADSL Modem Gateway and how to verify the readiness of broadband Internet service from an Internet service provider (ISP). Note: If an ISP technician configured your computer during the installation of a...

  • Page 127: Configuring Windows 95, 98, And Me For Tcp/Ip Networking

    DHCP server during bootup. For a detailed explanation of the meaning and purpose of these configuration items, refer to The DG824M wireless gateway is shipped preconfigured as a DHCP server. The firewall assigns the following TCP/IP configuration information automatically when the PCs are rebooted: •...
  • Page 128 You must have an Ethernet adapter, the TCP/IP protocol, and Client for Microsoft Networks. Note: It is not necessary to remove any other network components shown in the Network window in order to install the adapter, TCP/IP, or Client for Microsoft Networks.

  • Page 129: Enabling Dhcp To Automatically Configure Tcp/Ip Settings In Windows 95B, 98, And Me

    If you need Client for Microsoft Networks: Click the Add button. Select Client, and then click Add. Select Microsoft. Select Client for Microsoft Networks, and then click OK. Restart your PC for the changes to take effect. Enabling DHCP to Automatically Configure TCP/IP Settings in Windows 95B, 98, and Me After the TCP/IP protocol components are installed, each PC must be assigned specific information about itself and resources that are available on its network.
  • Page 130 Verify the following settings as shown: • Client for Microsoft Network exists • Ethernet adapter is present • TCP/IP is present • Primary Network Logon is set to Windows logon Click on the Properties button. The following TCP/IP Properties window will display.

  • Page 131: Selecting Windows' Internet Access Method

    • By default, the IP Address tab is open on this window. • Verify the following: Obtain an IP address automatically is selected. If not selected, click in the radio button to the left of it to select it. This setting is required to enable the DHCP server to automatically assign an IP address.

  • Page 132: Configuring Windows Nt4, 2000 Or Xp For Ip Networking

    From the drop-down box, select your Ethernet adapter. The window is updated to show your settings, which should match the values below if you are using the default TCP/IP settings that NETGEAR recommends for connecting through a router or gateway: •...

  • Page 133: Dhcp Configuration Of Tcp/Ip In Windows Xp, 2000, Or Nt4

    DHCP Configuration of TCP/IP in Windows XP, 2000, or NT4 You will find there are many similarities in the procedures for different Windows systems when using DHCP to configure TCP/IP. The following steps will walk you through the configuration process for each of these versions of Windows.
  • Page 134 • Now you should be at the Local Area Network Connection Status window. This box displays the connection status, duration, speed, and activity statistics. • Administrator logon access rights are needed to use this window. • Click the Properties button to view details about the connection.

  • Page 135: Dhcp Configuration Of Tcp/Ip In Windows 2000

    • Verify that the Obtain an IP address automatically radio button is selected. • Verify that Obtain DNS server address automatically radio button is selected. • Click the OK button. This completes the DHCP configuration of TCP/ IP in Windows XP. Repeat these steps for each PC with this version of Windows on your network.
  • Page 136 • Click on the My Network Places icon on the Windows desktop. This will bring up a window called Network and Dial-up Connections. • Right click on Local Area Connection and select Properties. • The Local Area Connection Properties dialog box appears. •...
  • Page 137 • With Internet Protocol (TCP/IP) selected, click on Properties to open the Internet Protocol (TCP/IP) Properties dialogue box. • Verify that • Obtain an IP address automatically is selected. • Obtain DNS server address automatically is selected. • Click OK to return to Local Area Connection Properties.

  • Page 138: Dhcp Configuration Of Tcp/Ip In Windows Nt4

    DHCP Configuration of TCP/IP in Windows NT4 Once you have installed the network card, you need to configure the TCP/IP environment for Windows NT 4.0. Follow this procedure to configure TCP/IP with DHCP in Windows NT 4.0. • Choose Settings from the Start Menu, and then select Control Panel. This will display Control Panel window.
  • Page 139 Reference Manual for the Model DG824M Wireless ADSL Modem Gateway • Highlight the TCP/IP Protocol in the Network Protocols box, and click on the Properties button. C-14 Preparing Your Network...

  • Page 140: Verifying Tcp/Ip Properties For Windows Xp, 2000, And Nt4

    Type ipconfig /all Your IP Configuration information will be listed, and should match the values below if you are using the default TCP/IP settings that NETGEAR recommends for connecting through a router or gateway: • The IP address is between 192.168.0.2 and 192.168.0.254 •...

  • Page 141: Configuring The Macintosh For Tcp/Ip Networking

    • The default gateway is 192.168.0.1 Type exit Configuring the Macintosh for TCP/IP Networking Beginning with Macintosh Operating System 7, TCP/IP is already installed on the Macintosh. On each networked Macintosh, you will need to configure TCP/IP to use DHCP. MacOS 8.6 or 9.x From the Apple menu, select Control Panels, then TCP/IP.

  • Page 142: Verifying Tcp/Ip Properties For Macintosh Computers

    TCP/IP Control Panel. From the Apple menu, select Control Panels, then TCP/IP. The panel is updated to show your settings, which should match the values below if you are using the default TCP/IP settings that NETGEAR recommends: •...

  • Page 143: Verifying The Readiness Of Your Internet Account

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway Verifying the Readiness of Your Internet Account For broadband access to the Internet, you need to contract with an Internet service provider (ISP) for a single-user Internet access account using a cable modem or DSL modem. This modem must be a separate physical box (not a card) and must provide an Ethernet port intended for connection to a Network Interface Card (NIC) in a computer.

  • Page 144: Obtaining Isp Configuration Information For Windows Computers

    As mentioned above, you may need to collect configuration information from your PC so that you can use this information when you configure the DG824M wireless gateway. Following this procedure is only necessary when your ISP does not dynamically supply the account information.

  • Page 145: Obtaining Isp Configuration Information For Macintosh Computers

    As mentioned above, you may need to collect configuration information from your Macintosh so that you can use this information when you configure the DG824M wireless gateway. Following this procedure is only necessary when your ISP does not dynamically supply the account information.

  • Page 146: Restarting The Network

    Restart any computer that is connected to the firewall. After configuring all of your computers for TCP/IP networking and restarting them, and connecting them to the local network of your DG824M wireless gateway, you are ready to access and configure the firewall.
  • Page 147 Reference Manual for the Model DG824M Wireless ADSL Modem Gateway C-22 Preparing Your Network...

  • Page 148: Wireless Networking Basics

    This chapter provides an overview of Wireless networking. Wireless Networking Overview The DG824M wireless gateway conforms to the Institute of Electrical and Electronics Engineers (IEEE) 802.11b standard for wireless LANs (WLANs). On an 802.11b wireless link, data is encoded using direct-sequence spread-spectrum (DSSS) technology and is transmitted in the unlicensed radio spectrum at 2.5GHz.

  • Page 149: Ad Hoc Mode (Peer-To-Peer Workgroup

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway In the infrastructure mode, the wireless access point converts airwave data into wired Ethernet data, acting as a bridge between the wired LAN and wireless clients. Connecting multiple Access Points via a wired Ethernet backbone can further extend the wireless network coverage. As a mobile computing device moves out of the range of one access point, it moves into the range of another.

  • Page 150: Authentication And Wep

    The 802.11b standard defines several services that govern how two 802.11b devices communicate. The following events must occur before an 802.11b Station can communicate with an Ethernet network through an access point such as the one built in to the DG824M: Turn on the wireless station.

  • Page 151: Open System Authentication

    • Shared Key Authentication requires that the station and the access point have the same WEP Key to authenticate. These two authentication procedures are described below. Open System Authentication The following steps occur when two devices use Open System Authentication: The station sends an authentication request to the access point.

  • Page 152: Overview Of Wep Parameters

    The station connects to the network. If the decrypted text does not match the original challenge text (i.e., the access point and station do not share the same WEP Key), then the access point will refuse to authenticate the station and the station will be unable to communicate with either the 802.11b network or Ethernet network.

  • Page 153: Key Size

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway 3. Use WEP for Authentication and Encryption: A transmitting 802.11b device encrypts the data portion of every packet it sends using a configured WEP Key. The receiving 802.11b device decrypts the data using the same WEP Key. For authentication purposes, the 802.11b network uses Shared Key Authentication.

  • Page 154: Wep Configuration Options

    Reference Manual for the Model DG824M Wireless ADSL Modem Gateway WEP Configuration Options The WEP settings must match on all 802.11b devices that are within the same wireless network as identified by the SSID. In general, if your mobile clients will roam between access points, then all of the 802.11b access points and all of the 802.11b client adapters on the network must have the...
  • Page 155 The radio frequency channels used are listed in Table 8-1. 802.11 Radio Frequency Channels Channel Center Frequency 2412 MHz 2417 MHz 2422 MHz 2427 MHz 2432 MHz 2437 MHz 2442 MHz 2447 MHz 2452 MHz 2457 MHz 2462 MHz 2467 MHz 2472 MHz Note: The available channels supported by the wireless products in various countries are different.

  • Page 156: Glossary

    Domain names are of the form of a registered entity name plus one of a number of predefined top level suffixes such as .com, .edu, .uk, etc. For example, in the address mail.NETGEAR.com, mail is a server name and NETGEAR.com is the domain.
  • Page 157 IP Address A four-byte number uniquely defining each host on the Internet. Ranges of addresses are assigned by Internic, an organization formed for this purpose. Usually written in dotted-decimal notation with periods separating the bytes (for example, 134.177.244.57). IPSec Internet Protocol Security. IPSec is a series of guidelines for securing private information transmitted over public networks.
  • Page 158 Network Address A technique by which several hosts share a single IP address for access to the Translation Internet. packet A block of information sent over a network. A packet typically contains a source and destination network address, some protocol and length information, a block of data, and a checksum.
  • Page 159 Virtual Channel Identifier. Together with the VPI, defines a Virtual Channel through an ATM network. Used by ATM switching equipment to route data through the network. Virtual Path Identifier. Together with the VCI, defines a Virtual Channel through an ATM network. Used by ATM switching equipment to route data through the network.
  • Page 160 Numerics 64 or 128 bit WEP 4-9 802.11b D-1 Account Name 3-14, 3-20 Address Resolution Protocol B-9 ad-hoc mode D-2 Auto MDI/MDI-X B-15 Auto Uplink 2-3, B-15 backup configuration 6-1 Basic Wireless Connectivity 4-4 BSSID D-2 Cabling B-11 Cat5 cable 3-2, B-12 Channel 4-4 Classical IP 2-4 configuration...
  • Page 161 features 2-1 firewall features 2-2 FLASH memory 6-2 front panel 2-6 gateway address C-20 host name 3-14, 3-20 IANA contacting B-2 IETF B-1 Web site address B-8 inbound rules 5-7 infrastructure mode D-2 installation 2-4 Internet account address information C-18 establishing C-18 Internet Service Provider 3-1, 3-5 IP addresses C-19, C-20...
  • Page 162 password restoring 8-8 PC, using to configure C-21 ping 7-2 placement 4-1 port filtering 5-10 port forwarding 5-7 port forwarding behind NAT B-9 port numbers 5-13 PPP over Ethernet 2-4, C-18 PPPoE 2-4, 3-10, 3-12, C-18 Primary DNS Server 3-11, 3-13, 3-14, 3-15, 3-17, 3-21 protocols Address Resolution B-9...
  • Page 163 URL 5-4 USB C-18 WEP D-3 WEP encryption 2-2 Wi-Fi D-1 Windows, configuring for IP routing C-2, C-7 winipcfg utility C-6 WinPOET C-18 WINS 7-5 Wired Equivalent Privacy. See WEP Wireless Access 3-4 Wireless Authentication 4-8 wireless authentication scheme 4-8 Wireless Card Access List 4-5 Wireless Encryption 4-8 Wireless Ethernet D-1...

Table of Contents