Asus RX3042H User Manual
  1. Manuals
  2. Brands
  3. Asus Manuals
  4. Network Router
  5. RX3042H
  6. User manual

Asus RX3042H User Manual

Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual
RX3042H
User's Manual
Revision 0.8
May 12, 2005

Advertisement

Table of Contents
loading

Related Manuals for Asus RX3042H

Summary of Contents for Asus RX3042H

  • Page 1 RX3042H User's Manual Revision 0.8 May 12, 2005...

  • Page 3: Table Of Contents

    1.3 Using this Document ..........2 1.3.1 Notational conventions ..........2 1.3.2 Typographical conventions ......... 2 1.3.3 Special messages ............2 2 Getting to Know RX3042H ........3 2.1 Parts List ..............3 2.2 Hardware Features ............3 2.3 Software Features .............3 2.3.1 NAT Features ............. 3 2.3.2 Firewall Features ............
  • Page 4 3.1.2 Step 2. Connect computers or a Network ....12 3.1.3 Step 3. Attach the AC adapter ........12 3.1.4 Step 4. Power on RX3042H, the ADSL or cable modem and power up your computers ....12 3.2 Part 2 — Configuring Your Computers ....13 3.2.1 Before you begin ............
  • Page 5 5.2.1 WAN Connection Mode ..........29 5.2.2 PPPoE ..............30 5.2.2.1 WAN PPPoE Configuration Parameters ... 31 5.2.2.2 Configuring PPPoE for WAN ......32 5.2.3 PPPoE Unnumbered ..........33 5.2.3.1 WAN PPPoE Unnumbered Configuration Parameters ............34 5.2.3.2 Configuring PPPoE Unnumbered for WAN ..35 5.2.4 Dynamic IP ...............
  • Page 6 6.1.5.2 Add a Fixed DHCP Lease ......... 49 6.1.5.3 Delete a Fixed DHCP Lease ......49 6.1.5.4 Viewing Fixed DHCP Lease Table ....49 6.2 DNS .................50 6.2.1 About DNS .............. 50 6.2.2 Assigning DNS Addresses ........50 6.2.3 Configuring DNS Relay ..........51 7 Routing ..............53 7.1 Overview of IP Routes ..........53 7.1.1 Do I need to define static routes? ......
  • Page 7 9.1.4 Default ACL Rules ............ 64 9.2 NAT Overview ............65 9.2.1 NAPT (Network Address and Port Translation) or PAT (Port Address Translation) ......... 65 9.2.2 Reverse NAPT / Virtual Server ......... 67 9.3 Firewall Settings – (Firewall/NAT ->Settings) ..67 9.3.1 Firewall Options ............67 9.3.2 DoS Configuration ............
  • Page 8 9.8.2 Special Application Example ........87 10 System Management .........89 10.1 Configure System Services ........89 10.2 Login Password and System Settings ....90 10.2.1 Changing Password ..........90 10.2.2 Configure System Settings ........91 10.3 Viewing System Information ........91 10.4 Setup Date and Time ..........92 10.4.1 View the System Date and Time ......
  • Page 9 12 Troubleshooting ..........109 12.1 Diagnosing Problem using IP Utilities ....111 12.1.1 ping ...............111 12.1.2 nslookup ..............112 13 Index ..............115 List of Figures Figure 2.1 Front Panel LEDs ............7 Figure 2.2 Rear Panel Connectors ..........8 Figure 3.1 Overview of Hardware Connections ......12 Figure 3.2 Login Screen ...............
  • Page 10 Figure 7.1 RIP Configuration Page ..........54 Figure 7.2 Static Route Configuration Page ........ 56 Figure 7.3 Static Route Configuration ......... 57 Figure 7.4 Sample Routing Table ..........58 Figure 8.1 Network Diagram for HTTP DDNS ......59 Figure 8.2 HTTP DDNS Configuration Page ........ 60 Figure 9.1 NAPT –...
  • Page 11 RX3042H User's Manual Introduction Figure 10.8 Factory Reset Page ..........97 Figure 10.9 Factory Reset Confirmation ........97 Figure 10.10 Factory Reset Count Down Timer ......97 Figure 10.11 Backup System Configuration Page ......98 Figure 10.12 Restore System Configuration Page ....... 99 Figure 10.13 Selecting System Configuration from the File Manager...
  • Page 12 RX3042H User's Manual Introduction Table 5.1 LAN Configuration Parameters ........28 Table 5.2 WAN PPPoE Configuration Parameters ....... 31 Table 5.3 WAN PPPoE Unnumbered Configuration Parameters . 34 Table 5.4 WAN Static IP Configuration Parameters ..... 37 Table 5.5 WAN PPTP Configuration Parameters ......39 Table 5.6 WAN Load Balancing and Line Back Up Configuration...

  • Page 13: Introduction

    • User configuration dual-WAN or WAN plus DMZ support • USB storage support (to be supported with firmware upgrade) 1.2 System Requirements In order to use the RX3042H for Internet access, you must have the following: • ADSL or cable modem and the corresponding service up and...

  • Page 14: Using This Document

    1.3.1 Notational conventions • Acronyms are defined the first time they appear in the text. • For brevity, RX3042H is sometimes referred to as the “router” or the ”gateway”. • The terms LAN and network are used interchangeably to refer to a group of Ethernet-connected computers at one site.

  • Page 15: Getting To Know Rx3042H

    RX3042H User's Manual Getting to Know RX3042H Chapter 2 Getting to Know RX3042H 2.1 Parts List In addition to this document, RX3042H should come with the following: • The system unit • AC adapter • Ethernet cable (“straight-through” type) 2.2 Hardware Features •...

  • Page 16: Firewall Features

    2.3.2 Firewall Features The firewall as implemented in RX3042H provides the following features to protect your network from being attacked and to prevent your network from being used as the springboard for attacks.

  • Page 17: Defense Against Dos Attacks

    Firewall also provides protection from a variety of common Internet attacks such as IP Spoofing, Ping of Death, Land Attack, and Reassembly attacks. The type of attack protections provided by the RX3042H is listed in Table 2.1. Table 2.1. DoS Attacks...

  • Page 18: Application Level Gateway (Alg)

    RX3042H, packets pertaining to an application, require a corresponding allow rule. In the absence of such rules, the packets will be dropped by the RX3042H Firewall. As it is not feasible to create policies for numerous applications dynamically (at the same...

  • Page 19: Finding Your Way Around

    RX3042H User's Manual Getting to Know RX3042H Finding Your Way Around 2.4.1 Front Panel The front panel contains LED indicators that show the status of the unit. 1 2 3 Figure 2.1 Front Panel Label and LEDs Table 2.2 Front Panel Label and LEDs...

  • Page 20: Rear Panel

    RX3042H User's Manual Getting to Know RX3042H 2.4.2 Rear Panel The rear panel contains the ports for the unitʼs data and power connections. 9 10 11 Figure 2.2 Rear Panel Labels and Connectors Table 2.3 Rear Panel Labels and LEDs...

  • Page 21: Bottom View

    RX3042H User's Manual Getting to Know RX3042H 2.4.3 Bottom View 12.Wall Mount Slots: You may use these slots to hang RX3042H on the wall to save space. Depending on your particular requirement by taking into account the location of the power outlet, power cord length, Ethernet cable length and etc., you...
  • Page 22 Getting to Know RX3042H 2. Line up the wall mount slots with the screws and maneuver RX3042H so that both screws are inserted into the wall mount slots as indicated in the following figures. The wall mount design supports 4 different orientations: rear side up, rear side down, rear side to the left and rear side to the right.

  • Page 23: Quick Start Guide

    3 Quick Start Guide This Quick Start Guide provides basic instructions for connecting the RX3042H to a computer or a network and to the Internet. • Part 1 provides instructions to set up the hardware. • Part 2 describes how to configure Internet properties on your computer(s).

  • Page 24: Step 2. Connect Computers Or A Network

    3.1.4 Step 4. Power on RX3042H, the ADSL or cable modem and power up your computers Plug the AC adapter to the power input jack of RX3042H. Turn on your ADSL or cable modem. Turn on and boot up your computer(s) and/or any LAN devices such as wireless AP, hubs or switches.

  • Page 25: Part 2 - Configuring Your Computers

    RX3042H to do so. See “Assigning static IP addresses to your PCs” in page 13 for instructions. • If you have connected your PC via Ethernet to the RX3042H, follow the instructions that correspond to the operating system installed on your PC.

  • Page 26: Windows® 2000 Pcs

    RX3042H User's Manual Quick Start Guide 1. In the Windows task bar, click the <Start> button, and then click Control Panel. 2. Double-click the Network Connections icon. 3. In the LAN or High-Speed Internet window, right-click on icon corresponding to your network interface card (NIC) and select Properties.

  • Page 27: Windows® 95, 98, And Me Pcs

    RX3042H User's Manual Quick Start Guide and then click <OK> button. You may be prompted to install files from your Windows 2000 installation CD or other media. Follow the instructions to install the files. 7. If prompted, click <OK> button to restart your computer with the new settings.

  • Page 28: Windows® Nt 4.0 Workstations

    10.In the TCP/IP Properties dialog box, click the “Default Gateway” tab. Enter 192.168.1.1 (the default LAN port IP address of the RX3042H) in the “New gateway” address field and click <Add> button to add the default gateway entry. 11. Click <OK> button twice to confirm and save your changes, and then close the Control Panel.

  • Page 29: Assigning Static Ip Addresses To Your Pcs

    In some cases, you may want to assign IP addresses to some or all of your PCs directly (often called “statically”), rather than allowing the RX3042H to assign them. This option may be desirable (but not required) if: • You have obtained one or more public IP addresses that you want to always associate with specific computers (for...

  • Page 30: Part 3 - Quick Configuration Of The Rx3042H

    IP address in the 192.168.1.0 network for your PC, say 192.168.1.2, in order to establish connection between the RX3042H and your PC as the default LAN IP on RX3042H is pre- configured as 192.168.1.1. Enter 255.255.255.0 for the subnet mask and 192.168.1.1 for the default gateway.

  • Page 31: Figure 3.2 Login Screen

    RX3042H, open your Web browser, and type the following URL in the address/location box, and press <Enter>: http://192.168.1.1 This is the predefined IP address for the LAN port on the RX3042H. A login screen displays, as shown in Figure 3.2. Figure 3.2 Login Screen If you have problem connecting to the RX3042H, you may want to check if your PC is configured to accept IP address assignment...

  • Page 32: Testing Your Setup

    After completing the basic configuration for RX3042H, read the following section to determine if you can access the Internet. 3.3.2 Testing Your Setup At this point, the RX3042H should enable any computers on your LAN to use the RX3042Hʼs ADSL or cable modem connection to access the Internet.

  • Page 33: Default Router Settings

    3.3.3 Default Router Settings In addition to handling the DSL connection to your ISP, the RX3042H can provide a variety of services to your network. The device is pre-configured with default settings for use with a typical home or small office network.

  • Page 35: Using The Configuration Manager

    The Configuration Manager program is preinstalled on the RX3042H. To access the program, you need the following: • A computer connected to the LAN or WAN port on the RX3042H as described in the Quick Start Guide chapter. • A web browser installed on the computer. The program is designed to work best with Microsoft Internet Explorer®...

  • Page 36: Functional Layout

    You can click on any menu item to expand/contract any menu groups or to access a specific configuration page. The configuration pane is where you interact with the Configuration Manager to configure the settings for RX3042H. Menu navigation tips show how the current configuration can be accessed via the menus.

  • Page 37: Menu Navigation

    RX3042H User's Manual Using the Confi guration Manager Figure 4.2 Typical Confi guration Manager Page 4.2.1 Menu Navigation • To expand a group of related menus, double click the menu or the icon: • To contract a group of related menus, double click the menu or the icon: •...

  • Page 38: Overview Of System Configuration

    RX3042H User's Manual Using the Configuration Manager Overview of System Configuration To view the overall system configuration, log into the Configuration Manager, or click the Status menu if you have already logged on. Figure 4.3 shows sample information available in the System Status page.

  • Page 39: Router Setup

    Ethernet switch. You must assign a unique IP address to each device residing on your LAN. The LAN IP address that identifies the RX3042H as a node on your network must be in the same subnet as the PCs on your LAN. The default LAN IP address for the RX3042H is 192.168.1.1.

  • Page 40: Configuring The Lan Ip Address

    3. Enter the LAN IP address and subnet mask for the RX3042H in the space provided. 4. Proceed to the WAN Configuration section for instructions on...

  • Page 41: Wan/Dmz Configuration

    Note: Only static IP connection mode is supported for DMZ. 5.2.1 WAN Connection Mode Five modes of WAN connection are supported by the RX3042H – static IP, dynamic IP, PPPoE (multi-session), PPPoE unnumbered, and PPTP. You may select one of the WAN connection modes required by your ISP from the Connection Mode drop-down list in Network Setup Configuration page as shown in Figure 5.2.

  • Page 42: Pppoe

    RX3042H User's Manual Router Setup Figure 5.2 Network Setup Configuration Page-WAN Configuration 5.2.2 PPPoE PPPoE connection is most often used by ADSL service providers. Figure 5.3. WAN – PPPoE Configuration...

  • Page 43: Wan Pppoe Configuration Parameters

    RX3042H User's Manual Router Setup 5.2.2.1 WAN PPPoE Configuration Parameters Table 5.2 describes the configuration parameters available for PPPoE connection mode. Table 5.2. WAN PPPoE Configuration Parameters Setting Description Link Select a port to configure. Available options are WAN1, WAN2 or DMZ.

  • Page 44: Configuring Pppoe For Wan

    Demand or disable this option. Status On: PPPoE connection is active. Off: No PPPoE connection is active. Connecting: RX3042H is trying to connect to your ISP using PPPoE connection mode. Manual Click the Disconnect or Connect button to disconnect Disconnect/ or connect using the PPPoE connection mode.

  • Page 45: Pppoe Unnumbered

    RX3042H User's Manual Router Setup connection mode, the range of MTU is from 546 to 1492. The default value is 1492. 10.Enter appropriate connection settings for “Disconnect after Idle (min)” and “Connect on Demand”. 11.Click "Apply" to save the settings.

  • Page 46: Wan Pppoe Unnumbered Configuration Parameters

    RX3042H User's Manual Router Setup 5.2.3.1 WAN PPPoE Unnumbered Configuration Parameters Table 5.3 describes the configuration parameters available for PPPoE Unnumbered connection mode. Table 5.3. WAN PPPoE Unnumbered Configuration Parameters Setting Description Link Select a port to configure. Available options are WAN1, WAN2 or DMZ.

  • Page 47: Configuring Pppoe Unnumbered For Wan

    Status On: PPPoE unnumbered connection is active. Off: No PPPoE unnumbered connection is active. Connecting: RX3042H is trying to connect to your ISP using PPPoE unnumbered connection mode. Manual Click the Disconnect or Connect button to...

  • Page 48: Dynamic Ip

    RX3042H User's Manual Router Setup secondary DNS servers if you want to use your preferred DNS servers; otherwise, skip this step. 9. (Optional) Change the MTU value if necessary. If you do not know what value to enter, leave it as is. For dynamic IP connection mode, the range of MTU is from 546 to 1492.

  • Page 49: Static Ip

    RX3042H User's Manual Router Setup by the DHCP server of your ISP. 4. (Optional) Change the MTU value if necessary. If you do not know what value to enter, leave it as is. For dynamic IP connection mode, the range of MTU is from 546 to 1500. The default value is 1500.

  • Page 50: Configuring Static Ip For Wan Or Dmz

    RX3042H User's Manual Router Setup Setting Description WAN subnet mask provided by your ISP. Subnet Mask Typically, it is set as 255.255.255.0. Gateway IP address provided by your ISP. It Gateway must be in the same subnet as the WAN on the Address RX3042H.

  • Page 51: Pptp

    RX3042H User's Manual Router Setup 9. Click Apply to save the settings 5.2.6 PPTP Some of the service providers require user to login using PPTP connection. 5.2.6.1 WAN PPTP Configuration Parameters Table 5.5 describes the configuration parameters available for PPTP connection mode.

  • Page 52: Figure 5.7 Wan - Pptp Configuration

    Status On: PPTP connection is active. Off: No PPTP connection is active. Connecting: RX3042H is trying to connect to your ISP using PPTP connection mode. Manual Click the Disconnect or Connect button to disconnect or Disconnect/ connect using the PPTP connection mode.

  • Page 53: Configuring Pptp For Wan

    11.Click Apply to save the settings. WAN Load Balancing and Line Back Up RX3042H supports load balancing and line back up on the WAN connection. This function is available only when “Dual-WAN” is selected in the Router Connection configuration page (accessible by clicking the Router Setup ->Connection menu).

  • Page 54: Wan Load Balancing And Line Back Up Configuration Parameters

    DHCP Server Configuration requirement on the WANs. Another feature supported is fail-over for the WAN ports. If one of the WAN links is down, RX3042H will direct the traffic destined for the downed WAN port to the still active WAN port.

  • Page 55: Setting Up Wan Load Balancing

    WAN link status and thus affect the behavior of the load balancing or line back up. Connectivity The interval that RX3042H will check for the WAN link Check Interval status. The allowable value is 1 to 60 seconds. Connectivity...

  • Page 56: Setting Up Wan Line Back Up

    RX3042H User's Manual DHCP Server Configuration Follow the instructions below to set up WAN load balancing: 1. Open the Load Balancing configuration page by clicking the Router Setup ->Load Balance menu. 2. Select Auto Mode in the Load Balance field.

  • Page 57: Dhcp Server Configuration

    When you enable DHCP on a network, you allow a device — such as the RX3042H — to assign temporary IP addresses to your computers whenever they connect to your network. The assigning device is called a DHCP server, and the receiving device is a DHCP client.

  • Page 58: Configuring Dhcp Server

    RX3042H User's Manual DHCP Server Configuration 6.1.3 Configuring DHCP Server Note: By default, the RX3042H is configured as a DHCP server on the LAN side, with a predefined IP address pool of 192.168.1.100 through 192.168.1.149 (subnet mask 255.255.255.0). To change this range of addresses, follow the procedures described in this section.

  • Page 59: Table 6.1 Dhcp Configuration Parameters

    IP addresses. Typically, the server(s) are located with your ISP. However, you may enter LAN IP address of the RX3042H as it will serve as DNS proxy for the LAN computers and forward the DNS request from the LAN to DNS servers and relay the results back to the LAN computers.

  • Page 60: Viewing Current Dhcp Address Assignments

    6.1.4 Viewing Current DHCP Address Assignments When the RX3042H functions as a DHCP server for your LAN, it keeps a record of any addresses it has leased to your computers. To view a table of all current IP address assignments, just open the DHCP Server Configuration page and click on the link “Current...

  • Page 61: Add A Fixed Dhcp Lease

    RX3042H User's Manual DHCP Server Confi guration Figure 6.3. Fixed DHCP Lease Confi guration Page 6.1.5.2 Add a Fixed DHCP Lease To add a fi xed DHCP lease, follow the instructions below: 1. Open the Fixed DHCP Lease confi guration page, as shown in Figure 6.3, by clicking Advanced ->DHCP Server menu.

  • Page 62: Dns

    In either case, you can specify the actual addresses of the ISPʼs DNS servers (on the PC or in the DHCP Server configuration page), or you can specify the address of the LAN port on the RX3042H (e.g., 192.168.1.1). When you specify the LAN port IP address, the...

  • Page 63: Configuring Dns Relay

    DNS addresses can be learned via the PPPoE protocol. Using this option provides the advantage that you will not need to reconfigure the PCs or the RX3042H if the ISP changes their DNS addresses. • Configured on the RX3042H: You can also specify the ISPʼs DNS addresses in the WAN configuration page as shown in Figure 5.3, Figure 5.4 or Figure 5.5 or Figure 5.6.
  • Page 64 RX3042H User's Manual Routing DNS address (other than the LAN IP address) in a DHCP pool or statically on a PC, then that address will be used instead of the DNS relay address.

  • Page 65: Routing

    Quick Start Guide instructions, Part 2.) • On the RX3042H itself, a default gateway is defined to direct all outbound Internet traffic to a router at your ISP. This default gateway is assigned automatically by your ISP whenever the device negotiates an Internet connection.

  • Page 66: Dynamic Routing Using Rip (Routing Information Protocol)

    RX3042H User's Manual Routing Dynamic Routing using RIP (Routing Information Protocol) RIP enables routing information exchange between routers; thus, routes are updated automatically without human intervention. It is recommended that you enable RIP in the System Services Configuration Page as shown in Figure 10.1.

  • Page 67: Configuring Rip

    RX3042H User's Manual Routing Field Description Passive Mode Enable this mode if RIP configured for this interface will only receive routing information from other routers and not send routing information to other routers. Disable this mode if you want this interface to send and receive routing information to/from other routers.

  • Page 68: Static Route

    RX3042H User's Manual Routing information. Available options are Version 1, Version 2 and Both. 6. Choose whether authentication is required by clicking the Enable or Disable radio button. 7. (Optional) If authentication is enable, you must also select authentication mode and the desired authentication key.

  • Page 69: Adding Static Routes

    RX3042H User's Manual Routing Field Description Subnet Indicates which parts of the destination address refer to the Mask network and which parts refer to a computer on the network. Refer to Appendix 11, for an explanation of network masks. The default route uses a 0.0.0.0 for subnet mask.

  • Page 70: Deleting Static Routes

    fi rst hop the data should take. This table is known as the deviceʼs routing table. To view the RX3042Hʼs routing table, click the Advanced ->Static Route menu. The Routing Table displays at the upper half of the Static Route Confi guration page, as shown in Figure 7.2:...

  • Page 71: Configuring Ddns

    IP address changes from time to time (during reboot or when the ISPʼs DHCP server resets IP leases). RX3042H connects to a DDNS service provider whenever the WAN IP address changes. It supports setting up the web services such as Web server, FTP server using a domain name instead of the IP address.

  • Page 72: Ddns Configuration Parameters

    Domain Enter the registered domain name into this field. For example, Name If the host name of your RX3042H is “host1” and the domain name is “yourdomain.com”, The fully qualify domain name (FQDN) is “host1.yourdomain.com”. Username Enter the username provided by your DDNS service provider in this field.
  • Page 73 RX3042H User's Manual Configuring DDNS Follow these instructions to configure the HTTP DDNS: 1. First, you should have already registered a domain name to the DDNS service provider, dyndns. If you have not done so, please visit www.dyndns.org for more details.

  • Page 75: Configuring Firewall And Nat

    • Configure firewall global and DoS settings • Create, modify, delete and view ACL rules. Note : When you define an ACL rule, you instruct the RX3042H to examine each data packet it receives to determine whether it meets criteria set forth in the rule. The criteria can include the network or...

  • Page 76: Dos (Denial Of Service) Protection

    192.168.1.1 to 192.168.2.1. When 192.168.1.1 send an ICMP echo request (i.e. a ping packet) to 192.168.2.1, 192.168.2.1 will send an ICMP echo reply to 192.168.1.1. In the RX3042H, you donʼt need to create another inbound ACL rule because stateful packet inspection engine will remember the connection state and allows the ICMP echo reply to pass through the firewall...

  • Page 77: Nat Overview

    NAT Overview Network Address Translation allows use of a single device, such as the RX3042H, to act as an agent between the Internet (public network) and a local (private) network. This means that a NAT IP address can represent an entire group of computers to any entity outside a network.

  • Page 78: Figure 9.1 Napt - Map Any Internal Pcs To A Single Global Ip

    RX3042H User's Manual Configuring Firewall Figure 9.1 NAPT – Map Any Internal PCs to a Single Global IP Address Figure 9.2 Reverse NAPT – Relayed Incoming Packets to the Internal Host Base on the Protocol, Port Number or IP Address...

  • Page 79: Reverse Napt / Virtual Server

    9.2.2 Reverse NAPT / Virtual Server Reverse NAPT is also called inbound mapping, port mapping, or virtual server. Any packet coming to the RX3042H can be relayed to the internal host based on the protocol, port number and/or IP address specified in the ACL rule. This is useful when multiple services are hosted on different internal hosts.

  • Page 80: Dos Protection Configuration Parameters

    RX3042H User's Manual Configuring Firewall The RX3042H has an Attack Defense Engine that protects internal networks from Denial of Service (DoS) attacks such as SYN flooding, IP smurfing, LAND, Ping of Death and all re-assembly attacks. It can drop ICMP redirects and IP loose/strict source routing packets.
  • Page 81 Check or un-check this option to enable or disable the Flooding logging for SYN/ICMP/UDP flooding attacks. These attacks involve sending lots of TCP SYN/ICMP/UDP to a host in a very short period. RX3042H will not drop the flooding packets to avoid affecting the normal traffic. TCP XMAS/...

  • Page 82: Configuring Dos Settings

    RX3042H User's Manual Configuring Firewall 9.3.2.2 Configuring DoS Settings To configure DoS settings, follow the instructions below: 1. Open the Firewall General configuration page as shown in Figure 9.3 by clicking on Firewall ->Security menu. 2. Check or uncheck individual check box for each type DoS protection.

  • Page 83: Table 9.3 Acl Rule Configuration Parameters

    Move to This option allows you to set a priority for this rule. The RX3042H Firewall acts on packets based on the priority of the rules. Set a priority by specifying a number for its position in the list of rules: 1 (First) This number marks the highest priority.
  • Page 84 IP address. Note this option is called. Auto RX3042H automatically uses the IP address of the interface that the traffic is to be forwarded as the source IP address. It is recommended that you select this option if NAT is to be used for out going traffic...

  • Page 85: Table 9.4 Service Configuration Parameters

    RX3042H User's Manual Configuring Firewall IP Address, Select any of these options and enter details as Subnet described in the Source IP section above. Service Select a service, from the drop-down list, to which this rule should apply. If the desired service is not listed, click on the Edit button to create a new service.

  • Page 86: Configuring Acl Rules - (Firewall ->Acl)

    RX3042H User's Manual Configuring Firewall Field Description This option allows you to select the ICMP message type for the service. The supported ICMP message types are: • Any (default) • 0: Echo reply • 1: Type 1 • 2: Type 2 •...

  • Page 87: Add An Acl Rule

    5. Select from the Route To drop-down list if you intend to direct the traffic to a specific interface. Choose AUTO if you want to have RX3042H route the traffic automatically. 6. Choose NAT type and enter the required information for the selected NAT type.

  • Page 88: Modify An Acl Rule

    RX3042H User's Manual Configuring Firewall explanation of these fields. 8. Assign a priority for this rule by selecting a number from the Move to drop-down list. Note that the number indicates the priority of the rule with 1 being the highest. Higher priority rules will be examined prior to the lower priority rules by the firewall.

  • Page 89: Delete An Acl Rule

    Traffi c Direction drop-down list. Confi guring Self-Access ACL Rules –(Firewall/NAT ->Self-Access ACL) Self-Access rules control access to/from the RX3042H itself. You may use Self-Access Rule Configuration page, as illustrated in Figure 9.7, to: • Add a Self-Access rule •...

  • Page 90: Add A Self-Access Rule

    RX3042H User's Manual Configuring Firewall Figure 9.7. Self-Access ACL Configuration Page 9.6.1 Add a Self-Access Rule To add a Self-Access rule, follow the instructions below: 1. Open the Self-Access Rule Configuration page by clicking Firewall/NAT ->Self-Access ACL menu. 2. Select “Add New” from the “ID” drop-down list.

  • Page 91: Modify A Self-Access Rule

    Configuring Firewall Example Figure 9.8 shows a sample self-access ACL configuration to allow HTTP traffic from any one to RX3042H. Figure 9.8. Self-Access ACL Configuration Example 9.6.2 Modify a Self-Access Rule To modify a Self-Access rule, follow the instructions below: 1.

  • Page 92: View Configured Self-Access Rules

    Note: RX3042H supports only one server of any particular type at a time. Figure 9.9. Virtual Server Configuration Page 9.7.1 Virtual Server Configuration Parameters...

  • Page 93: Table 9.5 Virtual Server Configuration Parameters

    RX3042H User's Manual Configuring Firewall virtual server configuration. Table 9.5. Virtual Server Configuration Parameters Setting Description Add New Click on this option to add a new virtual server. Number Select the ID of a virtual server from the drop-down list to modify its settings.

  • Page 94: Table 9.6 Port Numbers For Popular Applications

    RX3042H User's Manual Configuring Firewall Setting Description Redirect Select a service, from the drop-down list, to which this rule Service should apply. If the desired service is not listed, click on the "Edit" button to create a new service. Bypass ACL Check this option if you do not want firewall to perform access control on this virtual server.

  • Page 95: Virtual Server Example 1 - Web Server

    RX3042H User's Manual Configuring Firewall Application Service Port Numbers Netmeeting or VoIP 1503-1503, 1720(ALG) NEWS TCP 119-119 PC Anywhere TCP 5631 PC Anywhere TCP 5631, UDP 5632 POP3 TCP 110-110 Powwow Chat 13233-13233 Red Alert II 1234-1237 SMTP TCP 25-25...

  • Page 96: Figure 9.11 Virtual Server Example 1 - Web Server

    RX3042H User's Manual Configuring Firewall Figure 9.11. Virtual Server Example 1 – Web Server 3. Enter the IP address of the web server, which is 192.168.1.28, in Redirect IP field. 4. Since the web server is not using the standard TCP port, which is 80, for providing the http service, a new service type must be created for http service using TCP port 80.

  • Page 97: Virtual Server Example 2 - Ftp Server

    RX3042H User's Manual Configuring Firewall 5. Select the service, HTTP_8080, from the Redirect Service drop- down list. 6. Click Add to save the virtual server settings. 9.7.3 Virtual Server Example 2 – FTP Server Figure 9.10 illustrates the network topology for the FTP server deployment.

  • Page 98: Special Application Configuration Parameters

    RX3042H User's Manual Configuring Firewall Note: Only one PC can use one particular special application at a time.. 9.8.1 Special Application Configuration Parameters Table 9.7 describes the configuration parameters available for virtual server configuration. Table 9.7. Special Application Configuration Parameters...

  • Page 99: Special Application Example

    RX3042H User's Manual Configuring Firewall Application Outgoing Port Incoming Port Range Number ICU II 2019 2000-2038, 2050-2051, 2069, 2085, 3010-3030 MSN Gaming Zone 47624 2300-2400, 28800-29000 PC to Phone 12053 12120, 12122, 150-24220 Quick Time 4 6970-6999 wowcall 8000 4000-4020...
  • Page 100 RX3042H User's Manual Configuring Firewall 5. Select TCP/UDP from the incoming protocol drop-down list. If you are not sure whether the application uses TCP or UDP protocol, you may select TCP/UDP in this field. 6. Enter incoming port range, in this case: 2300-2400 and 28800-29000 7.

  • Page 101: System Management

    As shown in Figure 10.1, you can use the System Services configuration page to enable or disable services supported by the RX3042H. All services, except DDNS, SNTP, UPnP and RIP, are all enabled at the factory. To disable or enable individual service, follow the steps below: 1.

  • Page 102: Login Password And System Settings

    RX3042H User's Manual System Management 10.2 Login Password and System Settings 10.2.1 Changing Password The first time you log into the Configuration Manager, the default username and password (admin and admin) are used. For security reasons, it is advised that you change this password to avoid router configuration from unauthorized changes.

  • Page 103: Configure System Settings

    5. Click on Apply button to save the settings. 10.3 Viewing System Information System Information page displays whenever you log into RX3042H. You may also click on the Status menu to see the system information. This page shows information of the overall system...

  • Page 104: Setup Date And Time

    10.4 Setup Date and Time RX3042H keeps a record of the current date and time, which it uses to calculate and report various data. Although there is a real time clock inside RX3042H; you may also rely on external time servers to maintain correct time.

  • Page 105: View The System Date And Time

    RX3042H User's Manual System Management Figure 10.4. Time Zone Configuration Page To manually change the time for the router: 1. Open the Time Zone configuration page by clicking the Management ->Time Zone menu. 2. Enter the current date and time in the proper fields.

  • Page 106: Snmp Setup

    RX3042H User's Manual System Management Manager, click the Management ->Time Zone menu. 10.5 SNMP Setup SNMP (Simple Network Management Protocol) as its name suggests is used for network management. You may use the SNMP configuration page to enable or disable the SNMP support.

  • Page 107: Log Setup

    Log messages are stored in dynamic memory and will disappear after system is rebooted. To keep a copy of the log messages, you can setup a syslog server and have RX3042H send out the log messages to the server. 10.6.1 Setting Up Remote Logging Using a Syslog Server...

  • Page 108: View The System Log

    RX3042H User's Manual System Management 1. Open the Log configuration page, as shown in Figure 10.6, by clicking the Management ->Log menu 2. Click Enable Remote Log check box to enable remote logging. 3. Enter the syslog server IP address in the Syslog Server IP Address field.

  • Page 109: Figure 10.8 Factory Reset Page

    Cancel button to cancel the action. Figure 10.9 Factory Reset Confirmation 4. RX3042H will then reboot thereafter to make the factory default configuration in effect. Note a count down timer such as the one shown in Figure 10.8 will display to indicate when the reboot process will be completed.

  • Page 110: Backup System Configuration

    Sometimes, you may find that you have no way to access the RX3042H, e.g. you forget your password or the IP address of RX3042H. The only way out in this scenario is to reset the system configuration to the factory default by pressing the reset button for at least 5 seconds.

  • Page 111: Restore System Configuration

    RX3042H User's Manual System Management 4. Click on button to backup the system configuration. 10.7.3 Restore System Configuration Follow the steps below to backup system configuration: 1. Open the System Configuration Restore page by clicking the Management ->Configuration ->Restore menu.

  • Page 112: Figure 10.13 Selecting System Configuration From The File Manager

    Click the OK button to proceed; otherwise, click the Cancel button to cancel the action. Note that the RX3042H will reboot to make the new system configuration in effect. Figure 10.14 System Configuration Restoration Confirmation 4.

  • Page 113: Firmware Upgrade

    Firmware Upgrade ASUSTeK may from time to time provide you with an update to the firmware running on the RX3042H. All system software is contained in a single file, called an image. Configuration Manager provides an easy way to upload the new firmware image. To upgrade the image, follow this procedure: 1.

  • Page 114: Figure 10.17 Selecting Firmware From The File Manager

    RX3042H User's Manual System Management Figure 10.17 Selecting Firmware from the File Manager 3. Click on Apply button to update the firmware. A dialog window, such as the one below, will pop up to ask for confirmation of the firmware upgrade. Click the OK button to proceed; otherwise, click the Cancel button to cancel the action.

  • Page 115: Restart System

    Youʼll be reconnected back to RX3042H when the counter returns to zero. You may need to manually connect back to the RX3042H if you are not connected back to RX3042H automatically. Figure 10.20 System Reboot Count Down Timer for Firmware Upgrade 6.

  • Page 116: Logout Configuration Manager

    RX3042H User's Manual System Management Figure 10.21 Restart System Page 10.9 Logout Configuration Manager To logout of Configuration Manager, open the Logout page by clicking the Logout menu and click on the Apply button. If you are using IE as your browser, a window similar to the one shown in Figure 10.22 will prompt for confirmation before closing your...

  • Page 117: Ip Addresses, Network Masks, And Subnets

    RX3042H User's Manual IP Address, Network Masks, and Subnets IP Addresses, Network Masks, and Subnets 11.1 IP Addresses Note: This section pertains only to IP addresses for IPv4 (version 4 of the Internet Protocol). IPv6 addresses are not covered. This section assumes basic knowledge of binary numbers, bits, and bytes.

  • Page 118: Network Classes

    RX3042H User's Manual IP Address, Network Masks, and Subnets Table 11.1. IP Address Structure Field 1 Field 2 Field 3 Field 4 Network ID Host ID Class A Class B Network ID Host ID Class C Network ID Host ID Here are some examples of valid IP addresses: Class A: 10.30.6.125 (network = 10, host = 30.6.125)

  • Page 119: Subnet Masks

    RX3042H User's Manual IP Address, Network Masks, and Subnets • A host ID can have any value except all fields set to 0 or all fields set to 255, as those values are reserved for special uses. 11.3 Subnet masks...
  • Page 120 RX3042H User's Manual IP Address, Network Masks, and Subnets Class A: 255.0.0.0 Class B: 255.255.0.0 Class C: 255.255.255.0 These are called default because they are used when a network is initially configured, at which time it has no subnets.

  • Page 121: Troubleshooting

    LINK LAN LED Verify that the Ethernet cable is securely connected to does not illuminate your LAN hub or PC and to the RX3042H. Make sure after Ethernet the PC and/or hub is turned on. cable is attached.
  • Page 122 PC to receive this information automatically. • Verify that a Network Address Translation rule has been defined on the RX3042H to translate the private address to your public IP address. The assigned IP address must be within the range specified in the NAT rules.

  • Page 123: Diagnosing Problem Using Ip Utilities

    RX3042H User's Manual Troubleshooting 12.1 Diagnosing Problem using IP Utilities 12.1.1 ping Ping is a command you can use to check whether your PC can recognize other computers on your network and the Internet. A ping command sends a message to the computer you specify. If the computer receives the message, it sends messages in reply.

  • Page 124: Nslookup

    Troubleshooting Using the ping command, you can test whether the path to the RX3042H is working (using the preconfigured default LAN IP address 192.168.1.1) or another address you assigned. You can also test whether access to the Internet is working by typing an external address, such as that for www.yahoo.com...

  • Page 125: Figure 12.2 Using The Nslookup Utility

    RX3042H User's Manual Index Figure 12.2. Using the nslookup Utility There may be several addresses associated with an Internet name. This is common for web sites that receive heavy traffic; they use multiple, redundant servers to carry the same information.

  • Page 127: Index

    RX3042H User's Manual Index Index ACL Configuration page, 74 relay, 51 Computers Domain Name System. See DNS configuring IP information, 13 Dynamically assigned IP addresses, 36 Configuration Manager Eth-0 interface overview, 25 defined, 22 troubleshooting, 109 Ethernet cable, 12 Connectors...
  • Page 128 RX3042H User's Manual Index Windows Me, 15 Netmask. See Network mask Windows NT 4.0, 16 Network classes, 107 IP Configuration Network ID, 107 Windows XP, 13 Network interface card, 1 IP information Network mask, 107 configuring on LAN computers, 13...
  • Page 129 RX3042H User's Manual Index changing, 90 Upgrading firmware, 101 default, 19, 24 User Password Configuration page, recovering, 111 Username PC configuration, 13 default, 19, 24 PC Configuration WAN DHCP, 29 static IP addresses, 17 WAN IP address, 29 Ping, 111...

Table of Contents