Planet BM-525 User Manual
  1. Manuals
  2. Brands
  3. Planet Manuals
  4. Gateway
  5. BM-525
  6. User manual

Planet BM-525 User Manual

Bandwidth management gateway
Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
BM-525 Bandwidth Management Gateway User's Manual
Bandwidth Management Gateway
BM-525
User's Manual

Advertisement

Table of Contents
loading
Need help?

Need help?

Do you have a question about the BM-525 and is the answer not in the manual?

Questions and answers

Related Manuals for Planet BM-525

Summary of Contents for Planet BM-525

  • Page 1 BM-525 Bandwidth Management Gateway User’s Manual Bandwidth Management Gateway BM-525 User’s Manual...

  • Page 2: Federal Communication Commission Interference Statement

    BM-525 Bandwidth Management Gateway User’s Manual Copyright Copyright© 2006 by PLANET Technology Corp. All rights reserved. No part of this publication may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated into any language or computer language, in any form or by any means, electronic, mechanical, magnetic, optical, chemical, manual or otherwise, without the prior written permission of PLANET.
  • Page 3 BM-525 Bandwidth Management Gateway User’s Manual FCC Caution: To assure continued compliance (example-use only shielded interface cables when connecting to computer or peripheral devices). Any changes or modifications not expressly approved by the party responsible for compliance could void the user’s authority to operate the equipment.

  • Page 4: Table Of Contents

    BM-525 Bandwidth Management Gateway User’s Manual Table of Contents CHAPTER 1: INTRODUCTION ................1 1.1 F ......................1 EATURES 1.2 P ..................... 2 ACKAGE ONTENTS 1.3 B ..........2 ANDWIDTH ANAGEMENT ATEWAY 1.4 B ..........2 ANDWIDTH ANAGEMENT ATEWAY ANEL 1.5 S...
  • Page 5 BM-525 Bandwidth Management Gateway User’s Manual 4.8 E ......................77 XAMPLE 4.9 A ....................79 UTHENTICATION 4.10 E ......................85 XAMPLE 4.11 C ..................89 ONTENT LOCKING 4.12 URL........................93 4.13 S ....................... 96 CRIPT 4.14 P2P ........................98 4.15 IM ........................100 4.16 D...

  • Page 6: Chapter 1: Introduction

    BM-525 Bandwidth Management Gateway User’s Manual Chapter 1: Introduction The BM-525 is specifically designed for SOHO networks. It has built-in one 10/100Mbps Ethernet LAN, DMZ, and WAN ports. No broadband router is required for users with only one public IP address.

  • Page 7: Package Contents

    BM-525 Bandwidth Management Gateway User’s Manual 1.2 Package Contents The following items should be included: ♦ Bandwidth Management Gateway ♦ Power Adapter ♦ Quick Installation Guide ♦ User’s Manual CD If any of the contents are missing or damaged, please contact your dealer or distributor immediately.

  • Page 8: Specification

    BM-525 Bandwidth Management Gateway User’s Manual Connect to your local PC, switch, or other local network device Connect to your local PC, switch, or other local network device 1.5 Specification Product Bandwidth Management Gateway Model BM-525 Hardware Connections 1 x 10/100Base-TX...

  • Page 9: Chapter 2: System

    “System” is the managing of settings such as the privileges of packets that pass through the BM-525 and monitoring controls. The System Administrators can manage, monitor, and configure BM-525 settings. But all configurations are “read-only” for all users other than the System Administrator; those users are not able to change any setting of the BM-525.

  • Page 10: Admin

    Define the required fields of Administrator Administrator Name: The user name of Administrators and Sub Administrator for the BM-525. The admin user name cannot be removed; and the sub-admin user can be removed or configure. The default Account: admin; Password: admin Privilege: The privileges of Administrators (Admin or Sub Admin).
  • Page 11 BM-525 Bandwidth Management Gateway User’s Manual Adding a new Sub Administrator STEP 1 In the Admin Web UI, click the New Sub Admin button to create a new Sub Administrator. STEP 2 In the Add New Sub Administrator Web UI and enter the following setting:...
  • Page 12 BM-525 Bandwidth Management Gateway User’s Manual Modify the Administrator’s Password STEP 1 In the Admin Web UI, locate the Administrator name you want to edit, and click on Modify in the ConFigure field. STEP 2 The Modify Administrator Password Web UI will appear. Enter the following...

  • Page 13: Permitted Ips

    To make Permitted IPs be effective, it must cancel the Ping and Web UI selection in the Web UI of BM-525 that Administrator enter. (LAN, WAN, or DMZ Interface) Before canceling the Web UI selection of Interface, must set up the Permitted IPs first, otherwise, it would cause the situation of cannot enter Web UI by appointed Interface.

  • Page 14: Logout

    BM-525 Bandwidth Management Gateway User’s Manual 2.4 Logout STEP 1 Click Logout in System to protect the system while Administrator is away. Confirm Logout Web UI STEP 2 Click OK and the logout message will appear in Web UI. Logout Web UI Message...

  • Page 15: Software Update

    BM-525 Bandwidth Management Gateway User’s Manual Software Update STEP 1 Select Software Update in System, and follow the steps below: To obtain the version number from Version Number and obtain the latest version from Internet. And save the latest version in the hardware of the PC, which manage the BM-525 Click Browse and choose the latest software version file.

  • Page 16: Configure

    BM-525 Bandwidth Management Gateway User’s Manual 2.6 Configure The Configure is according to the basic setting of the BM-525. In this section the definition is Setting, Date/Time, Multiple Subnet, Route Table, DHCP, Dynamic DNS, Hosts Table, and Language settings. - 11 -...

  • Page 17: Settings

    BM-525 Configuration: The Administrator can import or export the system settings. Click OK to import the file into the BM-525 or click Cancel to cancel importing. You also can revive to default value here. Email Settings: Select Enable E-mail Alert Notification under E-mail Settings. This function will enable the BM-525 to send e-mail alerts to the System Administrator when the network is being attacked by hackers or when emergency conditions occur.
  • Page 18 Define the required fields of Time Settings Synchronize Time/Date: Synchronizing the BM-525 with the System Clock. The administrator can configure the BM-525’s date and time by either syncing to an Internet Network Time Server (NTP) or by syncing to your computer’s clock. GMT:...
  • Page 19 BM-525 Bandwidth Management Gateway User’s Manual Define the required fields of Multiple Subnet Forwarding Mode: To display the mode that Multiple Subnet use. (NAT mode or Routing Mode) WAN Interface Address: The IP address that Multiple Subnet corresponds to WAN.
  • Page 20 BM-525 Bandwidth Management Gateway User’s Manual NAT Mode: It allows Internal Network to set multiple subnet address and connect with the Internet through different WAN IP Addresses. For example, the lease line of a company applies several real IP Addresses 168.85.88.0/24. The company is divided into R&D department, service, sales department, procurement department, and accounting department.
  • Page 21 BM-525 Bandwidth Management Gateway User’s Manual Define the required fields of DHCP Subnet: The domain name of LAN Netmask: The LAN Netmask Gateway: The default Gateway IP address of LAN Broadcast IP: The Broadcast IP of LAN Define the required fields of DDNS...
  • Page 22 STEP 1 In System Setting Web UI, click on button next to Export System Settings to Client. STEP 2 When the File Download pop-up window appears, choose the destination place where to save the exported file and click on Save. The setting value of BM-525 will copy to the appointed site instantly.
  • Page 23 Client. When the Choose File pop-up window appears, select the file to which contains the saved BM-525 Settings, then click OK. STEP 2 Click OK to import the file into the BM-525 Enter the File Name and Destination of the Imported File...
  • Page 24 BM-525 Bandwidth Management Gateway User’s Manual Restoring Factory Default Settings STEP 1 Select Reset Factory Settings in BM-525 Configuration Web UI STEP 2 Click OK at the bottom-right of the page to restore the factory settings. Reset Factory Settings Enabling E-mail Alert Notification STEP 1 Device Name: Enter the Device Name or use the default value.
  • Page 25 BM-525 Bandwidth Management Gateway User’s Manual STEP 4 SMTP Server IP: Enter SMTP server’s IP address. STEP 5 E-Mail Address 1: Enter the e-mail address of the first user to be notified. STEP 6 E-Mail Address 2: Enter the e-mail address of the second user to be notified. (Optional) STEP 7 Click OK on the bottom-right of the screen to enable E-mail Alert Notification.
  • Page 26 BM-525 Bandwidth Management Gateway User’s Manual Reboot BM-525 STEP 1 Reboot BM-525 Click Reboot button next to Reboot BM-525 Appliance. STEP 2 A confirmation pop-up page will appear. STEP 3 Follow the confirmation pop-up page; click OK to restart BM-525.

  • Page 27: Date/Time

    STEP 4 Set the interval time to synchronize with outside servers. System Time Setting Click on the Sync button and then the BM-525’s date and time will be synchronized to the Administrator’s PC The value of Set Offset From GMT and Server IP / Name can be looking for from Assist.

  • Page 28: Multiple Subnet

    BM-525 Bandwidth Management Gateway User’s Manual 2.9 Multiple Subnet Connect to the Internet through Multiple Subnet NAT or Routing Mode by the IP address that set by the LAN user’s network card. Preparation To connect the Internet, WAN IP (211.22.22.22) connects with ATUR.
  • Page 29 BM-525 Bandwidth Management Gateway User’s Manual Adding Multiple Subnet Add the following settings in Multiple Subnet of System function: Click on New Entry Alias IP of LAN Interface Enter 172.16.30.1 Netmask Enter 255.255.255.0 WAN Enter Interface IP211.22.22.22, and choose NAT in Forwarding Mode...
  • Page 30 BM-525 Bandwidth Management Gateway User’s Manual WAN Interface can use Assist to enter the data. After setting, there will be two subnets in LAN: 192.168.1.0/24 (default LAN subnet) and 172.16.30.0/24. So if LAN IP is: 192.168.1.xx, it must use NAT Mode to connect to the Internet.
  • Page 31 WAN Enter Interface IP: 10.10.10.1, and choose Routing in Forwarding Mode Click OK Complete Adding Multiple Subnet Multiple Subnet Web UI Setting After setting, if LAN IP of BM-525 is 162.172.50.xx, it uses Routing Mode (Internet Server can see your IP 162.172.50.xx directly) - 26 -...
  • Page 32 BM-525 Bandwidth Management Gateway User’s Manual Multiple Subnet Network The BM-525’s Interface Status: WAN IP 10.10.10.1 LAN Port IP 192.168.1.1 LAN Port Multiple Subnet 162.172.50.1 - 27 -...

  • Page 33: Route Table

    BM-525 Bandwidth Management Gateway User’s Manual 2.10 Route Table To connect two different subnet router with the BM-525 and makes them to connect to Internet through BM-525. Preparation Company A: WAN (61.11.11.11) connects with ATUR to Internet LAN subnet: 192.168.1.1/24 The Router1 which connect with LAN (10.10.10.1, support RIPv2) its LAN subnet...
  • Page 34 BM-525 Bandwidth Management Gateway User’s Manual STEP 1 Enter the following settings in Route Table in System function: Destination IP: Enter 192.168.10.1 Netmask: Enter 255.255.255.0 Gateway: Enter 192.168.1.252 Interface: Select LAN Click OK Add New Static Route1 STEP 2 Enter the following settings in Route Table in System function: Destination IP: Enter 192.168.20.1...
  • Page 35 BM-525 Bandwidth Management Gateway User’s Manual STEP 3 Enter the following setting in Route Table in System function: Destination IP: Enter 10.10.10.0 Netmask: Enter 255.255.255.0 Gateway: Enter 192.168.1.252 Interface: Select LAN Click OK Add New Static Route3 - 30 -...
  • Page 36 BM-525 Bandwidth Management Gateway User’s Manual STEP 4 Adding successful. At this time the computer of 192.168.10.1/24, 192.168.20.1/24 and 192.168.1.1/24 can connect with each other and connect to Internet by NAT. Route Table Setting - 31 -...

  • Page 37: Dhcp

    BM-525 Bandwidth Management Gateway User’s Manual 2.11 DHCP STEP 1 Select DHCP in System and enter the following settings: Domain Name Enter the Domain Name DNS Server 1: Enter the distributed IP address of DNS Server1. DNS Server 2: Enter the distributed IP address of DNS Server2.
  • Page 38 BM-525 Bandwidth Management Gateway User’s Manual DHCP Web UI When selecting Automatically Get DNS, the DNS Server will lock it as LAN Interface IP. (Using Occasion: When the system Administrator starts Authentication, the users’ first DNS Server must be the...

  • Page 39: Ddns

    BM-525 Bandwidth Management Gateway User’s Manual 2.12 DDNS STEP 1 Select Dynamic DNS in System function. Click New Entry button Service providers Select service providers. Automatically fill in the WAN IP Check to automatically fill in the WAN IP. User Name Enter the registered user name.
  • Page 40 BM-525 Bandwidth Management Gateway User’s Manual Chart Meaning Update Incorrect Connecting Unknown error successfully username or to server password If System Administrator had not registered a DDNS account, click on Sign up then can enter the website of the provider.

  • Page 41: Host Table

    Click OK to add Host Table. Add New Host Table To use Host Table, the user PC’s first DNS Server must be the same as the LAN Port or DMZ Port IP of BM-525. That is the default gateway. - 36 -...

  • Page 42: Language

    BM-525 Bandwidth Management Gateway User’s Manual 2.14 Language Select the Language version (English Version, Traditional Chinese Version, or Simplified Chinese Version) and click OK. Language Setting Web UI - 37 -...

  • Page 43: Chapter 3 Interface

    BM-525 Bandwidth Management Gateway User’s Manual Chapter 3 Interface In this section, the Administrator can set up the IP addresses for the office network. The Administrator may configure the IP addresses of the LAN network, the WAN network, and the DMZ network.

  • Page 44: Interface

    Select this function to allow the LAN users to ping the Interface IP Address. HTTP: Select to enable the user to enter the Web UI of BM-525 from Interface IP. WAN: The System Administrator can set up the WAN network of BM-525.
  • Page 45 BM-525 Bandwidth Management Gateway User’s Manual DMZ: The Administrator uses the DMZ Interface to set up the DMZ network. The DMZ includes: NAT Mode In this mode, the DMZ is an independent virtual subnet. This virtual subnet can be set by the Administrator but cannot be the same as LAN Interface.
  • Page 46 BM-525 Bandwidth Management Gateway User’s Manual We set up four Interface Address examples in this section: Suitable Example Situation Modify LAN Interface Settings Setting WAN Interface Address Setting DMZ Interface Address (NAT Mode) Setting DMZ Interface Address (Transparent Mode) - 41 -...

  • Page 47: Lan

    , he/she has to restart the System to make the new IP address effective (when the computer obtain IP by DHCP). Do not cancel Web UI selection before not setting Permitted IPs yet. It will cause the Administrator cannot be allowed to enter the BM-525’s Web UI from LAN. - 42 -...

  • Page 48: Wan

    BM-525 Bandwidth Management Gateway User’s Manual 3.3 WAN STEP 1 Select WAN in Interface and click Modify STEP 2 Select the Connecting way: PPPoE (ADSL User): 1. Select PPPoE 2. Enter User Name as an account 3. Enter Password as the password 4.
  • Page 49 BM-525 Bandwidth Management Gateway User’s Manual Dynamic IP Address (Cable Modem User): 1. Select Dynamic IP Address (Cable Modem User) 2. Click Renew in the right side of IP Address and then can obtain IP automatically. 3. If the MAC Address is required for ISP then click on Clone MAC Address to obtain MAC IP automatically.
  • Page 50 Static IP Address Connection When selecting Ping and Web UI on WAN network Interface, users will be able to ping the BM-525 and enter the Web UI WAN network. It may influence network security. The suggestion is to Cancel Ping and Web UI after all the settings have finished.
  • Page 51 BM-525 Bandwidth Management Gateway User’s Manual Netmask, and Default Gateway. 5. Enter value of PPTP Gateway. (Connect ID is required by some ISP provider). 6. Enter the value of MAX. Downstream Bandwidth and MAX. Upstream Bandwidth (According to the applied bandwidth).
  • Page 52 BM-525 Bandwidth Management Gateway User’s Manual Dynamic IP Address Connection If the connection is PPPoE, you can choose Service-On-Demand for WAN Interface to connect automatically when disconnect (suggested); or to set up Auto Disconnect if idle (not recommend) - 47 -...

  • Page 53: Dmz

    BM-525 Bandwidth Management Gateway User’s Manual 3.4 DMZ Setting DMZ Interface Address (NAT Mode) STEP 1 Click DMZ Interface STEP 2 Select NAT Mode in DMZ Interface Select NAT in DMZ Interface Enter IP Address and Netmask STEP 3 Select Ping and HTTP...
  • Page 54 BM-525 Bandwidth Management Gateway User’s Manual Setting DMZ Interface Address (Transparent Mode) STEP 1 Select DMZ Interface STEP 2 Select Transparent Mode in DMZ Interface Select DMZ_Transparent in DMZ Interface STEP 1 Select Ping and HTTP STEP 2 Click OK Setting DMZ Interface Address (Transparent Mode) Web UI In WAN, the connecting way must be Static IP Address and can choose Transparent Mode in DMZ.

  • Page 55: Chapter 4 Policy Object

    Chapter 4 Policy Object 4.1 Address The BM-525 allows the Administrator to set Interface addresses of the LAN network, LAN network group, WAN network, WAN network group, DMZ and DMZ group. An IP address in the Address Table can be an address of a computer or a sub network. The Administrator can assign an easily recognized name to an IP address.
  • Page 56 BM-525 Bandwidth Management Gateway User’s Manual Define the required fields of Address Name: The System Administrator set up a name as IP Address that is easily recognized. IP Address: It can be a PC’s IP Address or several IP Address of Subnet. Different network area can be: Internal IP Address, External IP Address, and DMZ IP Address.
  • Page 57 BM-525 Bandwidth Management Gateway User’s Manual We set up two Address examples in this section: Suitable Example Situation Under DHCP circumstances, assign the specific IP to static users and restrict them to access FTP net service only through policy. Set up a policy that only allows partial users to connect...

  • Page 58: Example

    BM-525 Bandwidth Management Gateway User’s Manual 4.2 Example Under DHCP situation, assign the specific IP to static users and restrict them to access FTP net service only through policy STEP 1 Select LAN in Address and enter the following settings:...
  • Page 59 BM-525 Bandwidth Management Gateway User’s Manual STEP 2 Adding the following setting in Outgoing Policy: Add a Policy of Restricting the Specific IP to Access to Internet STEP 3 Complete assigning the specific IP to static users in Outgoing Policy and restrict them to...
  • Page 60 BM-525 to fill out the user’s MAC Address automatically. In LAN of Address function, the BM-525 will default an Inside Any address represents the whole LAN network automatically. Others like WAN, DMZ also have the Outside Any and DMZ Any default address setting to represent the whole subnet.
  • Page 61 BM-525 Bandwidth Management Gateway User’s Manual Setup a policy that only allows partial users to connect with specific IP (External Specific IP) STEP 1 Setting several LAN network Address. Setting Several LAN Network Address - 56 -...
  • Page 62 BM-525 Bandwidth Management Gateway User’s Manual STEP 2﹒ Enter the following settings in LAN Group of Address: Click New Entry Enter the Name of the group Select the users in the Available Address column and click Add Click OK Add New LAN Address Group Complete Adding LAN Address Group The setting mode of WAN Group and DMZ Group of Address are the same as LAN Group.
  • Page 63 BM-525 Bandwidth Management Gateway User’s Manual STEP 3 Enter the following settings in WAN of Address function: Click New Entry Enter the following data (Name, IP Address, Netmask) Click OK Add New WAN Address Complete the Setting of WAN Address...
  • Page 64 BM-525 Bandwidth Management Gateway User’s Manual STEP 4 To exercise STEP1~3 in Policy To Exercise Address Setting in Policy Complete the Policy Setting The Address function really take effect only if use with Policy. - 59 -...

  • Page 65: Service

    TCP and UDP protocols support varieties of services, and each service consists of a TCP Port or UDP port number, such as TELNET (23), SMTP (21), SMTP (25), POP3 (110), etc. The BM-525 includes two services: Pre-defined Service and Custom Service.
  • Page 66 BM-525 Bandwidth Management Gateway User’s Manual Define the required fields of Service Pre-defined Web UI’s Chart and Illustration: Chart Illustration Any Service TCP Service, For example FTP, FINGER, HTTP, HTTPS , IMAP, SMTP, POP3, ANY, AOL, BGP, GOPHER, Inter Locator, IRC,...
  • Page 67 BM-525 Bandwidth Management Gateway User’s Manual We set up two Service examples in this section: Suitable Example Situation Custom Allow external user to communicate with internal user by VoIP through policy. (VoIP Port: TCP 1720, TCP 15325-15333, UDP 15325-15333) Setting service group and restrict the specific users...

  • Page 68: Custom

    BM-525 Bandwidth Management Gateway User’s Manual 4.4 Custom Allow external user to communicate with internal user by VoIP through policy. (VoIP Port: TCP 1720, TCP 15328-15333, UDP 15328-15333) STEP 1 Set LAN and LAN Group in Address function as follows:...
  • Page 69 BM-525 Bandwidth Management Gateway User’s Manual STEP 2 Enter the following setting in Custom of Service function: Click New Entry Service Name: Enter the preset name VoIP Protocol#1 select TCP, need not to change the Client Port, and set the Server Port...
  • Page 70 BM-525 Bandwidth Management Gateway User’s Manual Under general circumstances, the range of port number of client is 0-65535. Change the client range in Custom of is not suggested. If the port numbers that enter in the two spaces are different port number, then enable the port number under the range between the two different port numbers (for example: 15328:15333).
  • Page 71 BM-525 Bandwidth Management Gateway User’s Manual STEP 3 Compare Service to Virtual Server. Compare Service to Virtual Server STEP 4 Compare Virtual Server to Incoming Policy. Complete the Policy for External VoIP to Connect with Internal VoIP STEP 5 In Outgoing Policy, complete the setting of internal users using VoIP to connect with...

  • Page 72: Group

    BM-525 Bandwidth Management Gateway User’s Manual 4.5 Group Setting service group and restrict the specific users only can access to service resource that provided by this group through policy (Group: HTTP, POP3, SMTP, DNS) STEP 1 Enter the following setting in Group of Service:...
  • Page 73 BM-525 Bandwidth Management Gateway User’s Manual Complete the setting of Adding Service Group If you want to remove the service you choose from Selected Service, choose the service you want to delete and click Remove. - 68 -...
  • Page 74 BM-525 Bandwidth Management Gateway User’s Manual STEP 2 In LAN Group of Address function, setting an Address Group that can include the service of access to Internet. Setting Address Book Group STEP 3 Compare Service Group to Outgoing Policy. Setting Policy...

  • Page 75: Schedule

    BM-525 Bandwidth Management Gateway User’s Manual 4.6 Schedule In this chapter, the BM-525 provides the Administrator to configure a schedule for policy to take effect and allow the policies to be used at those designated times. And then the Administrator can set the start time and stop time or VPN connection in Policy or VPN.
  • Page 76 BM-525 Bandwidth Management Gateway User’s Manual To configure the valid time periods for LAN users to access to Internet in a day STEP 1 Enter the following in Schedule: Click New Entry Enter Schedule Name Set up the working time of Schedule for each day...
  • Page 77 BM-525 Bandwidth Management Gateway User’s Manual STEP 2 Compare Schedule with Outgoing Policy Complete the Setting of Comparing Schedule with Policy The Schedule must compare with Policy. - 72 -...

  • Page 78: Qos

    QoS Priority Configure the priority of distributing Upstream/Downstream and unused bandwidth. The BM-525 configures the bandwidth by different QoS, and selects the suitable QoS through Policy to control and efficiently distribute bandwidth. The BM-525 also makes it convenient for the administrator to make the Bandwidth to reach the best utility.
  • Page 79 BM-525 Bandwidth Management Gateway User’s Manual The Flow After Using QoS (Max. Bandwidth: 400Kbps, Guaranteed Bandwidth: 200Kbps) - 74 -...
  • Page 80 BM-525 Bandwidth Management Gateway User’s Manual Define the required fields of QoS Downstream Bandwidth: To configure the Guaranteed Bandwidth and Maximum Bandwidth according to the bandwidth range you apply from ISP Upstream Bandwidth: To configure the Guaranteed Bandwidth and Maximum Bandwidth according to the bandwidth...
  • Page 81 BM-525 Bandwidth Management Gateway User’s Manual We set up two QoS examples in this section: No Suitable Example Situation Setting a policy that can restrict the user’s downstream and upstream bandwidth. - 76 -...

  • Page 82: Example

    BM-525 Bandwidth Management Gateway User’s Manual 4.8 Example Setting a policy that can restrict the user’s downstream and upstream bandwidth STEP 1 Enter the following settings in QoS: Click New Entry Name: The name of the QoS you want to configure.
  • Page 83 BM-525 Bandwidth Management Gateway User’s Manual STEP 2 Use the QoS that set by STEP1 in Outgoing Policy. Setting the QoS in Policy Complete Policy Setting When the administrator are setting QoS, the bandwidth range can be set the value that system administrator sets in the WAN of Interface.

  • Page 84: Authentication

    By configuring the Authentication, you can control the user’s connection authority. The user has to pass the authentication to access to Internet. The BM-525 configures the authentication of LAN’s user by setting account and password to identify the privilege. - 79 -...
  • Page 85 Define the required fields of Authentication Authentication Management Provide the Administrator the port number and valid time to setup BM-525 authentication. (Have to setup the Authentication first) Authentication Port: The internal user has to pass the authentication to access to the Internet when enable BM-525.
  • Page 86 BM-525 Bandwidth Management Gateway User’s Manual When the user connects to external network by Authentication, the following page will be displayed. Authentication Login Web UI - 81 -...
  • Page 87 BM-525 Bandwidth Management Gateway User’s Manual It will connect to the appointed website after passing Authentication. Connecting to the Appointed Website After Authentication If the users ask for authentication positively, they can enter the LAN IP by the Authentication port number.
  • Page 88 BM-525 Bandwidth Management Gateway User’s Manual Auth-User Name: The user account for Authentication you want to set. Password: The password when setting up Authentication. Confirm Password: Enter the password that correspond to Password - 83 -...
  • Page 89 BM-525 Bandwidth Management Gateway User’s Manual We set up four Authentication examples in this section: Suitable Example Situation Setting specific users to connect with external Auth User network, only those pass the authentication of Auth Group policy. Adopt the built-in Auth User and Auth Group...

  • Page 90: Example

    BM-525 Bandwidth Management Gateway User’s Manual 4.10 Example Setting specific users to connect with external network, only those pass the authentication of policy. Adopt the built-in Auth User and Auth Group Function STEP 1 Setup several Auth User in Authentication.
  • Page 91 BM-525 Bandwidth Management Gateway User’s Manual STEP 2 Add Auth User Group Setting in Authentication function and enter the following settings: Click New Entry Name: Enter laboratory Select the Auth User you want and Add to Selected Auth User Click OK...
  • Page 92 BM-525 Bandwidth Management Gateway User’s Manual STEP 3 Add a policy in Outgoing Policy and input the Address and Authentication of STEP 2. Auth-User Policy Setting Complete the Policy Setting of Auth-User - 87 -...
  • Page 93 BM-525 Bandwidth Management Gateway User’s Manual STEP 4 When user is going to access to Internet through browser, the authentication UI will appear in Browser. After entering the correct user name and password, click OK to access to Internet. STEP 5﹒ If the user does not need to access to Internet anymore and is going to logout, he/she can click LOGOUT Auth-User to logout the system.

  • Page 94: Content Blocking

    BM-525 Bandwidth Management Gateway User’s Manual 4.11 Content Blocking Content Filtering includes URL , Script , P2P , IM , Download , Upload . URL Blocking The administrator can set up to “Allow” or “Restrict” entering the specific website by complete domain name, key words, and met character (~and ).
  • Page 95 BM-525 Bandwidth Management Gateway User’s Manual Define the required fields of Content Blocking URL String: The domain name that restricts to enter or only allow entering. Popup Blocking: Prevent the pop-up Web UI appearing ActiveX Blocking: Prevent ActiveX packets Java Blocking:...
  • Page 96 BM-525 Bandwidth Management Gateway User’s Manual IM Blocking: Prevent users to login MSN Messenger, Yahoo Messenger, ICQ, QQ, and Skype Audio and Video Types: Prevent users to transfer sounds and video file by http Sub-name file Blocking: Prevent users to deliver specific sub-name file by http All Type: Prevent users to send the Audio, Video types, and sub-name file…etc.
  • Page 97 BM-525 Bandwidth Management Gateway User’s Manual We set up five Content Blocking examples in this section: Suitable Situation Example Restrict the Internal Users only can access to URL Blocking some specific Website Script Blocking Restrict the Internal Users to access to Script file of Website.

  • Page 98: Url

    BM-525 Bandwidth Management Gateway User’s Manual 4.12 URL Restrict the Internal Users only can access to some specific Web site URL Blocking: Symbol: ~ means open up; means meta character Restrict not to enter specific website: Enter the complete domain name key word of the website you want to restrict in URL String.
  • Page 99 BM-525 Bandwidth Management Gateway User’s Manual STEP 1 Enter the following in URL of Content Filtering function: Click New Entry URL String: Enter ~yahoo, and click OK Click New Entry URL String: Enter ~google, and click OK Click New Entry...
  • Page 100 BM-525 Bandwidth Management Gateway User’s Manual STEP 2 Add an Outgoing Policy and use in Content Blocking function. URL Blocking Policy Setting STEP 3 Complete the policy of permitting the internal users only can access to some specific web site in Outgoing Policy function.

  • Page 101: Script

    BM-525 Bandwidth Management Gateway User’s Manual 4.13 Script Restrict the Internal Users to access to Script file of Website STEP 1 Select the following data in Script of Content Blocking function: Select Popup Blocking Select ActiveX Blocking Select Java Blocking...
  • Page 102 BM-525 Bandwidth Management Gateway User’s Manual STEP 2 Add a new Outgoing Policy and use in Content Blocking function. New Policy of Script Blocking Setting STEP 3 Complete the policy of restricting the internal users to access to Script file of Website in Outgoing Policy.

  • Page 103: P2P

    BM-525 Bandwidth Management Gateway User’s Manual 4.14 P2P Restrict the Internal Users to access to the file on Internet by P2P STEP 1 Select the following data in P2P of Content Blocking function: Select eDonkey Blocking Select BitTorrent Blocking Select WinMX Blocking...
  • Page 104 BM-525 Bandwidth Management Gateway User’s Manual STEP 2 Add a new Outgoing Policy and use in Content Blocking function. Add New Policy of P2P Blocking STEP 3 Complete the policy of restricting the internal users to access to the file on Internet by P2P in Outgoing Policy.
  • Page 105 BM-525 Bandwidth Management Gateway User’s Manual 4.15 IM Restrict the Internal Users to send message, files, video and audio by Instant Messaging STEP 1 Enter as following in IM Blocking of Content Blocking function: Select MSN Messenger, Yahoo Messenger, ICQ Messenger, QQ Messenger, and Skype.
  • Page 106 BM-525 Bandwidth Management Gateway User’s Manual STEP 2 Add a new Outgoing Policy and use in Content Blocking function. Add New Policy of IM Blocking STEP 3 Complete the policy of restricting the internal users to send message, files, audio, and video by instant messaging in Outgoing Policy.

  • Page 107: Download

    BM-525 Bandwidth Management Gateway User’s Manual 4.16 Download Restrict the Internal Users to access to video, audio, and some specific sub-name file from http or ftp protocol directly STEP 1 Enter the following settings in Download of Content Blocking function:...
  • Page 108 BM-525 Bandwidth Management Gateway User’s Manual STEP 2 Add a new Outgoing Policy and use in Content Blocking function. Add New Download Blocking Policy Setting STEP 3 Complete the Outgoing Policy of restricting the internal users to access to video, audio, and some specific sub-name file by http protocol directly.

  • Page 109: Virtual Server

    IP address. The BM-525’s Virtual Server function can solve this problem. A Virtual Server has set the real IP address of the BM-525’s WAN network interface to be the Virtual Server IP. Through the Virtual Server function, the BM-525 translates the Virtual Server’s IP address into the private IP address in...
  • Page 110 IP Address directly. The user must connect to the BM-525’s WAN subnet’s Real IP and then map Real IP to Private IP of LAN by the BM-525. It is a one-to-one mapping. That is, to map all the service of one WAN Real IP Address to one LAN Private IP Address.
  • Page 111 BM-525 Bandwidth Management Gateway User’s Manual Define the required fields of Virtual Server WAN IP WAN IP Address (Real IP Address) Map to Virtual IP Map the WAN Real IP Address into the LAN Private IP Address Virtual Server Real IP The WAN IP address which mapped by the Virtual Server.
  • Page 112 BM-525 Bandwidth Management Gateway User’s Manual We set up four Virtual Server examples in this section: Suitable Example Situation Make a single server that provides several services Mapped IP such as FTP, Web, and Mail, to provide service by policy.

  • Page 113: Example

    BM-525 Bandwidth Management Gateway User’s Manual 4.18 Example Make a single server that provides several services such as FTP, Web, and Mail, to provide service by policy STEP 1 Setting a server that provide several services in LAN, and set up the network card’s IP as 192.168.1.100.
  • Page 114 BM-525 Bandwidth Management Gateway User’s Manual STEP 4 Group the services (DNS, FTP, HTTP, POP3, SMTP…) that provided and used by server in Service function. And add a new service group for server to send mails at the same time.
  • Page 115 BM-525 Bandwidth Management Gateway User’s Manual STEP 7 Complete the setting of providing several services by mapped IP. A Single Server that Provides Several Services by Mapped IP Strong suggests not to choose ANY when setting Mapped IP and choosing service. Otherwise the Mapped IP will be exposed to Internet easily and may be attacked by Hacker.
  • Page 116 BM-525 Bandwidth Management Gateway User’s Manual Make several servers that provide a single service, to provide service through policy by Virtual Server (Take Web service for example) STEP 1 Setting several servers that provide Web service in LAN network, which IP Address is 192.168.1.101, 192.168.1.102, 192.168.1.103, and 192.168.1.104...
  • Page 117 BM-525 Bandwidth Management Gateway User’s Manual STEP 2 Enter the following data in Server 1 of Virtual Server function: Click the button next to Virtual Server Real IP (“click here to configure ”) in Server 1 Virtual Server Real IP: Enter 61.11.11.12 (click Assist for assistance)
  • Page 118 BM-525 Bandwidth Management Gateway User’s Manual STEP 3﹒ Add a new policy in Incoming Policy, which includes the virtual server, set by STEP2. Complete Virtual Server Policy Setting In this example, the external users must change its port number to 8080 before entering the Website that set by the Web server.
  • Page 119 BM-525 Bandwidth Management Gateway User’s Manual The external user use VoIP to connect with VoIP of LAN (VoIP Port: TCP 1720, TCP 153210-15333, UDP 153210-15333) STEP 1 Set up VoIP in LAN network, and its IP is 192.168.1.100 STEP 2 Enter the following setting in LAN of Address function.
  • Page 120 BM-525 Bandwidth Management Gateway User’s Manual STEP 4 Enter the following setting in Server1 of Virtual Server function: Click the button next to Virtual Server Real IP (“click here to configure ”) in Server1 Virtual Server Real IP: Enter 61.11.11.12 (click Assist for assistance) (Use WAN)
  • Page 121 BM-525 Bandwidth Management Gateway User’s Manual STEP 5 Add a new Incoming Policy, which includes the virtual server that set by STEP4. Complete the Policy includes Virtual Server Setting STEP 6 Enter the following setting of the internal users using VoIP to connect with external network VoIP in Outgoing Policy.
  • Page 122 BM-525 Bandwidth Management Gateway User’s Manual STEP 7 Complete the setting of the external/internal user using specific service to communicate with each other by Virtual Server. Complete the Setting of the External/Internal User using specific service to communicate with each other by Virtual Server...
  • Page 123 BM-525 Bandwidth Management Gateway User’s Manual Make several servers that provide several same services, to provide service through policy by Virtual Server. (Take HTTP, POP3, SMTP, and DNS Group for example) STEP 1 Setting several servers that provide several services in LAN network. Its network card’s IP is 192.168.1.101, 192.168.1.102, 192.168.1.103, 192.168.1.104 and the DNS setting...
  • Page 124 BM-525 Bandwidth Management Gateway User’s Manual STEP 4 Enter the following data in Server1 of Virtual Server: Click the button next to Virtual Server Real IP (“click here to configure ”) in Server1 Virtual Server Real IP: Enter 61.11.11.12 (click Assist for assistance)
  • Page 125 BM-525 Bandwidth Management Gateway User’s Manual STEP 5 Add a new Incoming Policy, which includes the virtual server that set by STEP 3. Complete Incoming Policy Setting STEP 6 Add a new policy that includes the settings of STEP2, 3 in Outgoing Policy. It makes server can send e-mail to external mail server by mail service.
  • Page 126 BM-525 Bandwidth Management Gateway User’s Manual STEP 7 Complete the setting of providing several services by Virtual Server. Complete the Setting of Providing Several Services by Several Virtual Servers - 121 -...

  • Page 127: Chapter 5 Policy

    BM-525 Bandwidth Management Gateway User’s Manual Chapter 5 Policy Every packet has to be detected if it corresponds with Policy or not when it passes the BM-525. When the conditions correspond with certain policy, it will pass the BM-525 by the setting of Policy without being detected by other policy.
  • Page 128 DMZ to WAN packets in this function All the packets that go through BM-525 must pass the policy permission (except VPN). Therefore, the LAN, WAN, and DMZ network have to set the applicable policy when establish network connection.

  • Page 129: Policy

    5.1 Policy Define the required fields of Policy Source and Destination: Source IP and Destination IP is according to the BM-525’s point of view. The active side is the source; passive side is destination. Service: It is the service item that controlled by Policy. The user can choose default value or the custom services that the system manager set in Service function.
  • Page 130 BM-525 Bandwidth Management Gateway User’s Manual Option: To display if every function of Policy is enabled or not. If the function is enabled and then the chart of the function will appear (See the chart and illustration below) Chart Name...
  • Page 131 Policy) Move: Every packet that passes the BM-525 is detected from the front policy to the last one. So it can modify the priority of the policy from the selection. - 126 -...
  • Page 132 BM-525 Bandwidth Management Gateway User’s Manual We set up six Policy examples in this section: No. Suitable Example Situation Set up the policy that can monitor the internal users. Outgoing (Take Logging, Statistics, Alarm Threshold for example) Outgoing Forbid the users to access to specific network. (Take...

  • Page 133: Example

    BM-525 Bandwidth Management Gateway User’s Manual 5.2 Example Set up the policy that can monitor the internal users. (Take Logging, Statistics, and Alarm Threshold for example) STEP 1 Enter the following setting in Outgoing Policy: Click New Entry Select Logging...
  • Page 134 BM-525 Bandwidth Management Gateway User’s Manual STEP 2 Complete the setting of Logging, Statistics, and Alarm Threshold in Outgoing Policy. Complete Policy Setting STEP 3 Obtain the information in Traffic of Log function if you want to monitor all the packets of the BM-525.
  • Page 135 BM-525 Bandwidth Management Gateway User’s Manual STEP 4 To display the traffic record that through Policy to access to Internet in Policy Statistics of Statistics function. Statistics Web UI - 130 -...
  • Page 136 BM-525 Bandwidth Management Gateway User’s Manual Forbid the users to access to specific network. (Take specific WAN IP and Content Blocking for example) STEP 1 Enter the following setting in URL Blocking, Script Blocking, P2P Blocking, IM Blocking, and Download Blocking in Content Blocking function.
  • Page 137 BM-525 Bandwidth Management Gateway User’s Manual Download Blocking Setting 1. URL Blocking can restrict the Internal Users only can access to some specific Website. 2. Script Blocking can restrict the Internal Users to access to Script file of Website. (Java, Cookies…etc.)
  • Page 138 BM-525 Bandwidth Management Gateway User’s Manual STEP 2 Enter as following in WAN and WAN Group of Address function. Setting the WAN IP that going to block WAN Address Group The Administrator can group the custom address in Address. It is more convenient when setting policy rule.
  • Page 139 BM-525 Bandwidth Management Gateway User’s Manual STEP 3 Enter the following setting in Outgoing Policy: Click New Entry Destination Address: Select WAN_Group that set by STEP 2. (Blocking by IP) Action, WAN Port: Select DENY ALL Click OK Setting Blocking Policy...
  • Page 140 BM-525 Bandwidth Management Gateway User’s Manual STEP 4 Enter the following setting in Outgoing Policy: Click New Entry Select Content Blocking Click OK Setting Content Blocking Policy STEP 5 Complete the setting of forbidding the users to access to specific network.
  • Page 141 BM-525 Bandwidth Management Gateway User’s Manual Only allow the users who pass Authentication to access to Internet in particular time STEP 1 Enter the following in Schedule function. Add New Schedule STEP 2 Enter the following in Auth User and Auth User Group in Authentication function.
  • Page 142 BM-525 Bandwidth Management Gateway User’s Manual STEP 3 Enter the following setting in Outgoing Policy: Click New Entry Authentication User: Select laboratory Schedule: Select Working Time Click OK Setting a Policy of Authentication and Schedule STEP 4 Complete the policy rule of only allows the users who pass authentication to access to Internet in particular time.
  • Page 143 BM-525 Bandwidth Management Gateway User’s Manual The external user control the internal PC through remote control software (Take PC-Anywhere for example) STEP 1 Set up a Internal PC controlled by external user, and Internal PC’s IP Address is 192.168.1.2 STEP 2 Enter the following setting in Virtual Server1 of Virtual Server function.
  • Page 144 BM-525 Bandwidth Management Gateway User’s Manual STEP 3 Enter the following in Incoming Policy: Click New Entry Destination Address: Select Virtual Server1 (61.11.11.12) Service: Select PC-Anywhere (5631-5632) Click OK Setting the External User Control the Internal PC Policy STEP 4 Complete the policy for the external user to control the internal PC through remote control software.
  • Page 145 BM-525 Bandwidth Management Gateway User’s Manual Set a FTP Server under DMZ NAT Mode and restrict the download bandwidth from external and MAX. Concurrent Sessions. STEP 1 Set a FTP Server under DMZ, which IP is 192.168.3.2 (The DMZ Interface Address is192.168.3.1/24)
  • Page 146 BM-525 Bandwidth Management Gateway User’s Manual STEP 4 Enter the following in WAN to DMZ Policy: Click New Entry Destination Address: Select Virtual Server1 (61.11.11.12) Service: Select FTP (21) QoS: Select FTP_QoS MAX. Concurrent Sessions: Enter 100 Click OK Add New Policy...
  • Page 147 BM-525 Bandwidth Management Gateway User’s Manual Set a Mail Server to allow the internal and external users to receive and send e-mail under DMZ Transparent Mode STEP 1 Set a Mail Server in DMZ and set its network card’s IP Address as 61.11.11.12. The DNS setting is external DNS Server.
  • Page 148 BM-525 Bandwidth Management Gateway User’s Manual STEP 4 Enter the following setting in WAN to DMZ Policy: Click New Entry Destination Address: Select Mail_Server Service: Select E-mail Click OK Setting a Policy to access Mail Service by WAN to DMZ STEP 5 Complete the policy to access mail service by WAN to DMZ.
  • Page 149 BM-525 Bandwidth Management Gateway User’s Manual STEP 6 Add the following setting in LAN to DMZ Policy: Click New Entry Destination Address: Select Mail_Server Service: Select E-mail Click OK Setting a Policy to access Mail Service by LAN to DMZ STEP 7 Complete the policy to access mail service by LAN to DMZ.
  • Page 150 BM-525 Bandwidth Management Gateway User’s Manual STEP 8 Add the following setting in DMZ to WAN Policy: Click New Entry Source Address: Select Mail_Server Service: Select E-mail Click OK Setting the Policy of Mail Service by DMZ to WAN STEP 9 Complete the policy access to mail service by DMZ to WAN.

  • Page 151: Chapter 6 Anomaly Flow Ip

    BM-525 Bandwidth Management Gateway User’s Manual Chapter 6 Anomaly Flow IP When the BM-525 received the intrusion packets from hackers, the internal PC will block this abnormal packets in it, to prevent the Company‘s network be paralyzed. In this chapter, we will make the introduction and settings of Anomaly Flow IP.

  • Page 152: Settings

    SYN Flood Threshold Blocking Time (Per Source IP ) The BM-525 will block the packets from the attack source IP according to the time setting. After the blocking time, the BM-525 will re calculate the total SYN flow from every source IP, if over the setting value, then BM-525 will keep blocking.
  • Page 153 ICMP Flood Threshold Blocking Time ( Per Source IP ) The BM-525 will block the packets from the attack source IP according to the time setting. After the blocking time, the BM-525 will re calculate the total ICMP flow from every source IP, if over the setting value, then BM-525 will keep blocking.
  • Page 154 Detect IP Spoofing Attack Can detect the hacker which pretends the legal user to pass through the BM-525. Detect Port Scan Attack Can detect the Port ID which the hacker use it to detect the port and attack them.
  • Page 155 BM-525 Bandwidth Management Gateway User’s Manual When the MIS engineer enable the Anomaly Flow function, the BM-525 will instantly show the message in Virus-infected IP and Attack Events. If the MIS engineers enable the function in System E-mail alert notification, then the BM-525 will automatically send the notification to the MIS engineer.
  • Page 156 BM-525 Bandwidth Management Gateway User’s Manual To alert and block the external or internal anomalous data packets Step1. In Anomaly IP Setting : The threshold sessions of virus-infected is ( default is 30 sessions/sec) Select Enable Virus-infected IP Blocking ( Blocking Time 600 seconds) Select Enable E-Mail alert notification.
  • Page 157 BM-525 Bandwidth Management Gateway User’s Manual The setting of anomaly flow IP and Dos / Anti-Attack Can add Non-detected IP, and these IP will not controlled by this function. - 152 -...
  • Page 158 BM-525 Bandwidth Management Gateway User’s Manual Step2. When the system detects the DDoS attack packets, it will show the message in Anomaly Flow IP Virus-infected IP. Or send the Net BIOS Notification to the MIS and virus-infected PC. Anomaly flow IP and Virus-infected IP...
  • Page 159 BM-525 Bandwidth Management Gateway User’s Manual Send the NetBIOS Alert Notification to the MIS engineer - 154 -...
  • Page 160 BM-525 Bandwidth Management Gateway User’s Manual Step3. Enable the System E-Mail alert notification, and then the BM-525 will send the mail notice to the MIS engineer. Send the e-mail alert notification - 155 -...
  • Page 161 BM-525 Bandwidth Management Gateway User’s Manual Step4. Enable the Anomaly Flow Attack Event , then the BM-525 shows the attack information in detail. Anomaly Flow IP attack event - 156 -...

  • Page 162: Chapter 7 Monitor

    Chapter 7 Monitor 7.1 LOG Log records all connections that pass through the BM-525’s control policies. The information is classified as Traffic Log, Event Log, and Connection Log. Traffic Log’s parameters are setup when setting up policies. Traffic logs record the details of packets such as the start and stop time of connection, the duration of connection, the source address, the destination address and services requested, for each control policy.
  • Page 163 Situation Ex 1 To detect the information and Protocol port that users Traffic Log use to access to Internet or Intranet by BM-525. Ex 2 Event Log To record the detailed management events (such as Interface and event description of BM-525) of the...

  • Page 164: Traffic Log

    BM-525 Bandwidth Management Gateway User’s Manual 7.2 Traffic Log To detect the information and Protocol port that users use to access to Internet or Intranet by BM-525 STEP 1 Add new policy in DMZ to WAN of Policy and select Enable Logging.
  • Page 165 BM-525 Bandwidth Management Gateway User’s Manual STEP 3 Click Traffic Log. It will show up the packets records that pass this policy. Traffic Log Web UI - 160 -...
  • Page 166 BM-525 Bandwidth Management Gateway User’s Manual STEP 4 Click on a specific IP of Source IP or Destination IP, it will prompt out a Web UI about Protocol and Port of the IP. The Web UI of detecting the Traffic Log by IP Address...
  • Page 167 BM-525 Bandwidth Management Gateway User’s Manual STEP 5﹒ Click on Download Logs and select Save in File Download Web UI. And then choose the place to save in PC and click OK; the records will be saved instantly. Download Traffic Log Records Web UI...
  • Page 168 BM-525 Bandwidth Management Gateway User’s Manual STEP 6﹒ Click Clear Logs and click OK on the confirm Web UI. The records will be deleted from the BM-525 instantly. Clearing Traffic Log Records Web UI - 163 -...

  • Page 169: Event Log

    BM-525 Bandwidth Management Gateway User’s Manual 7.3 Event Log To record the detailed management events (such as Interface and event description of BM-525) of the Administrator STEP 1 Click Event log of LOG. The management event records of the administrator will show...
  • Page 170 BM-525 Bandwidth Management Gateway User’s Manual STEP 2 Click on Download Logs and select Save in File Download Web UI. Then choose the place to save in PC and click OK. The records will be saved instantly. Download Event Log Records Web UI...
  • Page 171 BM-525 Bandwidth Management Gateway User’s Manual STEP 3﹒ Click Clear Logs and click OK on the confirm Web UI; the records will be deleted from the BM-525. Clearing Event Log Records Web UI - 166 -...

  • Page 172: Connection Log

    BM-525 Bandwidth Management Gateway User’s Manual 7.4 Connection Log To Detect Event Description of WAN Connection STEP 1 Click Connection in LOG. It can show up WAN Connection records of the BM-525. Connection records Web UI - 167 -...
  • Page 173 BM-525 Bandwidth Management Gateway User’s Manual STEP 2 Click on Download Logs and select Save in File Download Web UI. And then choose the place to save in PC and click OK; the records will be saved instantly. Download Connection Log Records Web UI...
  • Page 174 BM-525 Bandwidth Management Gateway User’s Manual STEP 3﹒ Click Clear Logs and click OK on the confirm Web UI, the records will be deleted from the BM-525 instantly. Clearing Connection Log Records Web UI - 169 -...

  • Page 175: Log Backup

    BM-525 Bandwidth Management Gateway User’s Manual 7.5 Log Backup To save or receive the records that sent by the BM-525 STEP 1 Enter Setting in System, select Enable E-mail Alert Notification function and set up the settings. E-mail Setting Web UI STEP 2﹒...
  • Page 176 BM-525 Bandwidth Management Gateway User’s Manual STEP 3 Enter Log Backup in Log, enter the following settings in Syslog Settings: Select Enable Syslog Messages Enter the IP in Syslog Host IP Address that can receive Syslog Enter the receive port in Syslog Host Port...

  • Page 177: Accounting Report

    Administrator can use this Accounting Report to inquire the LAN IP users and WAN IP users, and to gather the statistics of Downstream/Upstream, First packet/Last packet/Duration and the Service of the entire user’s IP that passes the BM-525. - 172 -...
  • Page 178 The IP address used by LAN users who use BM-525 Destination IP The IP address used by WAN service server which uses BM-525. Service The communication service which listed in the menu when LAN users use BM-525 to connect to WAN service server. - 173 -...
  • Page 179 Inbound Accounting Report It is the statistics of downstream / upstream for all kinds of communication services. The Inbound Accounting report will be shown when WAN users use BM-525 to connect with LAN Server. Source IP The IP address used by WAN users who use BM-525...

  • Page 180: Outbound

    STEP 1 Enter Outbound in Accounting Report and select Top Users to inquire the statistics of Send / Receive packets, Downstream / Upstream, First packet/Last packet/Duration and the service from the LAN or DMZ user’s IP that pass the BM-525. TOP: Select the data you want to view; it presents 10 results in one page.
  • Page 181 BM-525 Bandwidth Management Gateway User’s Manual Outbound Source IP Statistics Report - 176 -...
  • Page 182 Duration The period of time which starts from the first packet to the last packet to be recorded. Total Traffic The BM-525 will record the sum of time and show the percentage of each WAN service server’s upstream/downstream to LAN user.
  • Page 183 BM-525 Bandwidth Management Gateway User’s Manual Outbound Destination IP Statistics Report - 178 -...
  • Page 184 Duration The period of time starts from the first packet to the last packet to be recorded. Total Traffic The BM-525 will record the sum of time and show the percentage of each Communication Service’s upstream/downstream to WAN service server.
  • Page 185 BM-525 Bandwidth Management Gateway User’s Manual Outbound Services Statistics Report According to the downstream / upstream report of the selected TOP numbering to draw the Protocol Distribution chart Press to return to Accounting Report window. - 180 -...

  • Page 186: Inbound

    Duration The period of time starts from the first packet to the last packet to be recorded. Total Traffic The BM-525 will record the sum of time and show the percentage of each WAN user’s upstream / downstream to LAN service server.
  • Page 187 BM-525 Bandwidth Management Gateway User’s Manual Inbound Top Users Statistics Report - 182 -...
  • Page 188 Duration The period of time starts from the first packet to the last packet to be recorded. Total Traffic The BM-525 will record the sum of time and show the percentage of each WAN user’s upstream / downstream to LAN service server.
  • Page 189 BM-525 Bandwidth Management Gateway User’s Manual Inbound Destination IP Statistics Report - 184 -...
  • Page 190 Duration The period of time starts from the first packet to the last packet to be recorded. Total Traffic The BM-525 will record the sum of time and show the percentage of each Communication Service’s upstream / downstream to LAN service server.
  • Page 191 BM-525 Bandwidth Management Gateway User’s Manual According to the downstream / upstream report of the selected TOP numbering to draw the Protocol Distribution chart - 186 -...

  • Page 192: Statistics

    Policy Statistics: The statistics of Downstream / Upstream packets and Downstream/Upstream traffic record that pass Policy In this chapter, the Administrator can inquire the BM-525 for statistics of packets and data that passes across the BM-525. The statistics provides the Administrator with information about network traffics and network loads.
  • Page 193 BM-525 Bandwidth Management Gateway User’s Manual Define the required fields of Statistics: Statistics Chart: Y-Coordinate Network Traffic Kbytes/Sec X-Coordinate Time Hour/Minute Source IP, Destination IP, Service, and Action: These fields record the original data of Policy. From the information above, the Administrator can know which Policy is the Policy Statistics belonged to.

  • Page 194: Wan

    BM-525 Bandwidth Management Gateway User’s Manual 7.10 WAN STEP 1 Enter WAN in Statistics function, it will display all the statistics of Downstream/Upstream packets and Downstream/Upstream record that pass WAN Interface. Time: To detect the statistics by minutes, hours, days, months, or years.
  • Page 195 BM-525 Bandwidth Management Gateway User’s Manual STEP 2 Statistics Chart Y-Coordinate Network Traffic Kbytes/Sec X-Coordinate Time Hour/Minute WAN Statistics - 190 -...

  • Page 196: Policy

    BM-525 Bandwidth Management Gateway User’s Manual 7.11 Policy STEP 1 If you had select Statistics in Policy, it will start to record the chart of that policy in Policy Statistics. Policy Statistics Function If you are going to use Policy Statistics function, the System Manager has to enable the Statistics in Policy first.
  • Page 197 BM-525 Bandwidth Management Gateway User’s Manual STEP 3 Statistics Chart Y-Coordinate Network Traffic Kbytes/Sec X-Coordinate Time Hour/Minute/Day Policy Statistics - 192 -...

  • Page 198: Wake On Lan

    BM-525 Bandwidth Management Gateway User’s Manual 7.12 Wake on LAN The MIS engineers can use the BM-525 appliance to start up the internal PCs (by sending packets) which included the network bootable network adapter and can additionally use the remote monitor software such as VNC, Terminal Service and PC Anywhere.
  • Page 199 BM-525 Bandwidth Management Gateway User’s Manual Remote monitor the internal PC Step1. The internal PC to be remote monitored, and its MAC is 00:0C:76:B7:96:3B. Step2. In Wake on LAN Setting, add the following settings : Click New Entry. Name, enter Rayearth.

  • Page 200: Status

    Interface: Display all of the current Interface status of the BM-525 Authentication: The Authentication information of BM-525 ARP Table: Record all the ARP that connect to the BM-525 DHCP Clients: Display the table of DHCP clients that are connected to the BM-525. - 195 -...

  • Page 201: Interface

    Tx Pkts, Err. Pkts: To display the sending packets and error packets of the Interface Ping, Web UI: To display whether the users can Ping to the BM-525 from the Interface or not; or enter its Web UI Forwarding Mode: The connection mode of the Interface...
  • Page 202 BM-525 Bandwidth Management Gateway User’s Manual Interface Status - 197 -...

  • Page 203: Authentication

    BM-525 Bandwidth Management Gateway User’s Manual 7.15 Authentication STEP 1﹒ Enter Authentication in Status function. It will display the record of login status. IP Address: The authentication user IP Auth-User Name: The account of the auth-user to login Login Time: The login time of the user (Year/Month/Day Hour/Minute/Second)

  • Page 204: Arp Table

    7.16 ARP Table STEP 1 Enter ARP Table in Status function; it will display a table about IP Address, MAC Address, and the Interface information which is connecting to the BM-525. NetBIOS Name: The identified name of the network IP Address: The IP Address of the network...

  • Page 205: Dhcp Clients

    BM-525 Bandwidth Management Gateway User’s Manual 7.17 DHCP Clients STEP 1﹒ In DHCP Clients of Status function, it will display the table of DHCP Clients that are connected to the BM-525. IP Address: The dynamic IP that provided by DHCP Server...

Table of Contents