Instruction/ maintenance manual of the product 8501 Billion Electric Company
Go to page of 134
BiP AC 8500/8501/8520 SHDSL VPN Firewall Bridge/ Router User ’ s Manual V ersion Release 5.07 Last Revision Date: 09-04-2006.
T T a a b b l l e e o o f f C C o o n n t t e e n n t t s s CHAPTER 1: INTRODUCTION .............................................................................................................. 3 I NTRODUCTION TO YOUR R OUTER ........................
DNS ................................................................................................................................................ 47 SHDSL – BiP AC 8500 .............................................................................
SHDSL VPN Fire w all Bridge/Router Chapter 1: Introduction Chapter 1: Introduction Introduction to your Router Welcome to the Billion BiP AC 8500/8501/8520 SHDSL Router .
SHDSL VPN Fire w all Bridge/Router Chapter 1: Introduction Domain Name System (DNS) relay It provides an easy way to map the domain name (a friendly name for users such as www .
SHDSL VPN Fire w all Bridge/Router Chapter 1: Introduction Firmware Upgradeable Device can be upgraded to the late st firmware through the WEB based GUI. Rich Management Interfaces It supports flexible management interfaces with local console port, LAN port, and W AN port.
SHDSL VPN Fire w all Bridge/Router Chapter 2: Installing the Router Chapter 2: Inst alling the Router Import ant note for using this router Wa r n i n g Do not use this router in high humidity or high temperatures. Do not use the same power source for this router as othe r equipment.
SHDSL VPN Fire w all Bridge/Router The Front LEDs of BiP AC 8500 7 2 4 1 3 LED Meaning 1 LINE Lit when successfully connected to SHDSL line and it is synchronized. 2 LAN Port 1X — 4X (RJ-45 connector) Lit when connected to an Ethernet device. Green for 100Mbps; Orange for 10Mbps.
SHDSL VPN Fire w all Bridge/Router 8 The Front LEDs of BiP AC 8520 3 5 2 1 4 LED Meaning 1 2 LINE 1 & 2 Lit when successfully connected to SHDSL line and it is synchronized. 3 LAN Port 1X — 4X (RJ-45 connector) Lit when connected to an Ethernet device.
SHDSL VPN Fire w all Bridge/Router 9 The Front LEDs of BiP AC 8501 3 1 2 4 LED Meaning 1 PWR Lit when power is ON. 2 SYS Lit when the system is ready . 3 LAN Port 1X — 4X (RJ-45 connector) Lit when connected to an Ethernet device. Green for 100Mbps; Orange for 10Mbps.
SHDSL VPN Fire w all Bridge/Router 10 The Rear Port s of BiP AC 8500 / 8520 4 1 3 *6 2 5 Port Meaning 1 Power Switch Power ON/OFF switch 2 PWR Connect the supplied power adapter to this jack. 3 RESET T o be sure the device is being turned on press RESET button for: 1-3 seconds : quick reset the device.
SHDSL VPN Fire w all Bridge/Router 11 The Rear Port s of BiP AC 8501 5 1 3 6 2 4 Port Meaning 1 Power Switch Power ON/OFF switch 2 PWR Connect the supplied power adapter to this jack. 3 RESET T o be sure the device is being turned on press RESET button for: 1-3 seconds : quick reset the device.
SHDSL VPN Fire w all Bridge/Router Chapter 3: Basic Installation 12 Chapter 3: Basic Inst allation The router can be configured with your web browser . A web b rowser is included as a standard application in the following operating systems: Linux, Mac OS, Windows 98/NT/2000/X P/ Me, etc.
SHDSL VPN Fire w all Bridge/Router Chapter 3: Basic Installation 13 Configuring PCs in Windows in Window XP 1. Go to St art / Control Panel (in Classic V iew). In the Control Panel, double-click Network Connections . 2. Double-click Local Area Connection .
SHDSL VPN Fire w all Bridge/Router Chapter 3: Basic Installation 14 Configuring PCs in Windows 2000 1. Go to St art / Settings / Control Panel . In the Control Panel, double-click Network and Dial-up Connections . 2. Double-click Local Area (“LAN”) Connection .
SHDSL VPN Fire w all Bridge/Router Chapter 3: Basic Installation 15 Configuring PC in Windows 95/98/ME 1. Go to St art / Settings / Control Panel . In the Control Panel, double-click Network and choose the Configuration tab. 2. Select TCP / IP -> NE2000 Comp atible , or the name of any Network Interface Card (NIC) in your PC.
SHDSL VPN Fire w all Bridge/Router Chapter 3: Basic Installation 16 Configuring PC in Windows NT4.0 1. Go to St art / Settings / Control Panel . In the Control Panel, double-click Network and choose the Protocols tab. 2. Select TCP/IP Protocol and click Properties .
SHDSL VPN Fire w all Bridge/Router Chapter 3: Basic Installation 17 Factory Default Settings Before configuring your , you need to know the following default settings. Web Interface (Username and Password) Username: admin Password: admin The default username and password are “ admin ” and “ admin ” respectiv ely .
SHDSL VPN Fire w all Bridge/Router Chapter 3: Basic Inst allation 18 Information from your ISP Before configuring this device, you have to check wi th your ISP (Internet Service Provider) to find out what kind of service is provided such as DHCP (Obt ain an IP Address Automatically , S tatic IP (Fixed IP Address) and PPPoE.
SHDSL VPN Fire w all Bridge/Router Chapter 3: Basic Installation 19 Configuring with your W eb Browser Open your web browser , enter the IP address of your router , which by default is 192.168.1.254 , and click “ Go ”, a user name and password window prompt will appear .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Chapter 4: Configuration At the configuration homepage, the lef t navigati on pane where bookmarks are provided links you directly to the de.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration S tatus ARP T able This section displays the router’s ARP (Address Resolution Protocol) T able, which shows the mapping of Internet (IP) addresses to Ethernet (MAC) addresses.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration DHCP T able Leased: The DHCP assigned IP addresses information. IP Address: A list of IP addresses of devices on your LAN (Local Area Network).
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Name: The name you assigned to the p articular PPTP connection in your VPN configuration. T ype: The type of connection (dial-in/dial-out). Enable: Whether the connection is currently enabled.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration L2TP St atus This shows details of your configure d L2TP VPN Connections. Name: The name you assigned to the p articular L2TP connection in your VPN configuration. T ype: The type of connection (dial-in/dial-out).
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Event Log This page displays the router’s Event Log entries. Major events are logged to this window , such as when the router ’s SHDSL c.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration NA T Sessions This section lists all curr ent NA T sessions between inte rface of types external (W AN) and internal (LAN). Diagnostic It tests the connection to computer(s) which is connected to LAN ports and also the W AN Internet connection.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration UPnP Portmap The section lists all por t-mapping established using UPnP (Universal Plug and Play). Please see the Advanced section of this manual for more details on UPnP and the router ’s UPnP configuration options.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Quick S tart For detailed instruction s on configuring your WAN settings, p lease see the WA N section of this manual.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Select the desired option from the list and click Apply to return to the Quick S t art interface to continue configuring your ISP connection. Please note that the content s of this list will vary , d epending on what is supported by your ISP .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Configuration When you click this item, you get following sub-items to configure your router . LAN, W AN, System, Firewall, VPN, QoS, V irtu al Server , T ime Schedule and Advanced These functions are described below in the following sections.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Ethernet Primary IP Address IP Address: The default IP on this router . SubNetmask: The default subnet mask on this router . RIP: RIP v1, RIP v2, and RIP v2 Multicast. Check to enable RIP function.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration IP Alias This function support s to create multiple virtual IP interfaces on this router . It help s to connect two or more local networks to the ISP or remote node. In this case, an internal router is not required.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Ethernet Client Filter The Ethernet Client Filter supports u p to 16 Ethernet network machines that helps you to manage your network control to accept traf fic from specific authorized machines or can restrict unwanted machine(s) to access your LAN.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Active PC in LAN displays a list of individual Ethernet device’ s IP Address & MAC Address which connecting to the router . Y ou can easily by checking the box next to the IP address to be blocked or allowed.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Port Settin g This section allows you to configure the settings for the r outer ’ s Ethernet port s to solve some of the compatibility problems that may be encountered while connecting to the I nternet, as well allowing users to tweak the performance of their network.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration DHCP Server Y ou can disable or enable the DHCP (Dynamic Host C onfiguration Protocol) server or enable the router ’s DHCP relay functions.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration W AN - Wide Area Network W AN refers to your Wide Area Ne twork connection, i.e. your router ’s connection to your ISP and the Internet. Here are the items within the W AN section: ISP , DNS and SHDSL .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration RFC 1483 Routed Connections Description: User-definable name for the connection. VPI and VCI: Enter the information provided by your ISP .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration RFC 1483 Bridged Connections Description: User-definable name for the connection. VPI and VCI: Enter the information provided by your ISP . A TM Class: The Quality of Service for A TM layer .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration PPPoA Routed Connections Description: User-definable name for the connection. VPI/VCI: Enter the information provided by your ISP .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration predetermined period of time. Det ail: Y ou can define the destination port and packet type (TCP/UDP) without checking by timer . It allows you to set which outgoing traf fic will not trigger and reset the idle timer .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration IPoA Routed Connections Description: User-definable name for the connection. VPI/VCI: Enter the information provided by your ISP .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration PPPoE Connections Description: User-definable name for this connection. VPI/VCI: Enter the information provided by your ISP .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Connect on Demand: If you want to establish a PPPoE session only when there is a packet requesting access to the Internet (i.e. when a program on your computer attempt s to access the Internet).
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration PPPoE with Pass-through Connections PPPoE with pass-through adapt s the following method: PPPoE Routed mode + 1483 Bridge Mode. With pure PPPoE connection, the router can get one W AN address to the router .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Authentication Protocol: Default is Chap(Auto). Y our ISP will advise you whether to use Chap or Pap. Connection: Always on: If you want the router to establish a PPPoE session when starting up and to automatically re-establish the PPPoE session w hen disconnected by the ISP .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration DNS A Domain Name System (DNS) contains a mapping t able for domain name and IP addresses. On the Internet, every host has a unique and user-friendly name (domain name) such as www .helloworld.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration SHDSL – BiP AC 8500 Mode: The SHDSL device can function as a CPE (Customer Premises Equipment) or CO (Central Office).
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration SHDSL – BiP AC 8520 4-wired Mode 2-wired Mode 4-Wired Connection: BiP AC 8520 supports either 2-wire and 4-wires SHDSL connection. Activate the device to 4-wired by enabling the function; otherwise , disable it to be used as 2-wire mode connection.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration SHDSL – BiP AC 8501 Mode : The SHDSL device can function as a CPE (Customer Premises Equipment) or CO. Select CPE mode when the BiPAC 8501 is connecting to your ISP. Annex T ype: It is the DSL operating mode standard.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration System Here are items within the System section: Time Zone, Remote Access, Firmware Upgrade, Backup/Restore, Restart and User Management.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Remote Access T o temporarily permit remote admini stration of the rout er (i.e. from out side your LAN), select a time period the router will permit remote access for and click Enable.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Firmware Upgrade Y our router ’s “firmware” is t he softw are that allows it to operate and provides all it s functionality . Think of your router as a dedicated computer , and the firmware as the sof tware it runs.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Backup / Restore These functions allow you to save and backup your router ’s current se ttings to a file on your PC, or to restore a previously saved backup.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Rest art Ro uter Click Resta rt with option Current Settings to reboot your router (and restore your last saved configuration).
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration User Management In order to prevent unauthorized access to your router ’s configuration interface, it requires all users to login with a password. Y ou can set up multiple user account s, each with their own password.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Firewall and Access Control Y our router includes a full SPI (S t ateful Packet Inspection) firewall for controlling Internet access from your LAN, as well as helping to prevent att acks from hackers.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration General Settings Y ou can choose not to enable Firew all, you will not able to add filter rules by yourself in the Packet Filter , or enable the Firewall using preset filter rules an d modify the packet filter rules as required.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Packet Filter This function is only available when the Firewall is enabled and one of th ese four security levels is chosen (All blocked, High, Medium and Low). The predefined port filter rules in the Packet Filter must modify accordingly to the level of Firewall, which is selected.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Example: Predefined Port Filters Rules The predefined port filter rules for High, Medium and Low security levels are listed. See T able 1. Note: Firewall – All Blocked/User-defin ed, you must define and create the port filter rules yourself.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration 61 MSN (7001) UDP(17) 7001 7001 YES YES N/A N/A N/A N/A MSN VEDIO (9000) TCP(6) 9000 9000 NO YES N/A N/A N/A N/A Inbound: Internet to LAN ; Outbound: LAN to Internet.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Packet Filter – Add TCP/UDP Filte r Rule Name: Users-define description to iden tify this entry or click to select existing predefined rules. The maximum name length is 32 characters. Time Schedule: It is self-defined time period.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Packet Filter – Add Raw IP Filter Rule Name: Users-define description to iden tify this entry or click to select existing predefined rules. Time Schedule: It is self-defined time period. Y ou may specify a time schedule for your prioritization policy .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Example: Configuring your firewall to al low for a publicly accessible web server on your LAN The predefined port filter rule for HTTP (TCP port 80) is the same no matter whether the firewall is set to a high, medium or low security level.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Configuring Packet Filter: 1. Click Port Filters . Y ou will then be presented with the predefined port filter rules screen (in thi s case for the low security level), shown below: Note: Y ou may click Edit the predefined rule instead of Dele te it.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration 5. The new port filter rule for HTTP is shown below: 6. Configure your Virtual Server (“port forwarding”) settings so that incomin g HTT.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Intrusion Detection The router ’s Intrusion Detection System (IDS) is used to detect hacker attacks and intrusion attem pts from the Internet.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration T able 2: Hacker att ack types recognized by the IDS Intrusion Name Detect Parameter Blacklist T ype of Block Duration Drop Packet Show Log .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration URL Filter URL (Uniform Resource Locator – e.g. an address in the form of http://www .abcde.com or http://www .example.com ) filter rules allow you to prevent users on your network from accessing p articular websites by their URL.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration 3. If the packet does not match either of the abov e two items, it is sent to the remote web server . 4. Please be note that the completed URL, “www” + domain name, shall be specified. For example to block traffic to www .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration IM / P2P Blocking IM, short for Instant Message, is required to use client program software that allows users to communicate, in exchanging text message, with other IM users in re al time over the Internet.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Firewall Log Firewall Log display log information of any unexpected action with your firewall settings. Check the Enable box to activate the logs. Log information can be seen in the St atus – Event Log after enabling.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration VPN - V irtual Private Networks Virtual Private Networks is ways to e stablish secured communication tunnels to an organization’ s network via the Internet. Y our router supports three main types of VPN (V irtual Private Network), PPTP , IPSec and L2TP .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration PPTP Connection - Remote Access Connection Name: User-defined name for the connection (e.g. “connection to of fice”). T ype: Check Dial Out if you want your router to operate as a client (connecting to a remote VPN server , e.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Example: Configuring a Remote Access PPTP VPN Dial-out Connection A comp any’s office esta blishes a PPTP VPN connection with a file server located at a sep arate location. The router is installed in the office, connected to a couple of PCs and Servers.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Configuring the PPTP VPN in the Office Y ou can either input the IP address (69.1.121.33 in this case) or hostname to reach the server .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration PPTP Connection - LAN to LAN Connection Name: User-define description of the connection. T ype: Check Dial Out if you want your router to operate as a client (connecting to a remote VPN server , e.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Example: Configuring a PPTP LAN-to-LAN VPN Connection The branch office e stablishes a PPTP VPN tunnel with head of fice to connect two private networks over the Internet. The routers are inst alled in the head office and branch office accordingly .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Configuring PPTP VPN in the Head Office The IP address 192.168 .1.201 will be assigned to the router located in the branch of fice. Please make sure this IP is not used in the head office LAN.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Configuring PPTP VPN in the Branch Office The IP address 69.1.12 1.30 is the Public IP address of the router located in head office.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration IPSec (IP Security Protocol) Click Create to create a new IPSec VPN connection account. After you have created the IPSec connection, account information will be displayed. (See example above).
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration IPSec VPN Connection Connection Name: User-defined name for the connection (e.g. “connection to of fice”). Local Network: Set the IP address, subnet or address range of the local network.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration 3DES: S tands for T riple Data Encryption S t andard, it uses 168 (56*3) bits as an encryption method. AES: S tands for Advanced Encryption S tandards, you can use 128, 192 or 256 bits as encryption method.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Advanced Option This function is only available after completed creating an IPSec account. Click Advanced Option to change the following settings: IKE (Internet key Exchange) Mode: Select IKE mode to Main mode or Aggressive mode.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration encryption method. Diffie-Hellman Group: It is a public-key cryptography protocol that allows two parties to establish a shared secret over an unsecured communication channel (i.e. over the Internet).
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Example: Configuring a IPSec LAN-to-LAN VPN Connection T able 3: Network Configur ation and Security Plan Branch Office Head Office Local Network ID 192.168.0.0/24 192.168.1.0/24 Local Router IP 69.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Configuring IPSec VPN in the Head Office 1 2 3 4 5 Item Function Description 1 Connection Name IPSec_HeadOf fice Given a name of IPSec connection Subnet Check Subnet radio button IP Address 192.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Configuring IPSec VPN in the Branch Office 1 2 3 4 5 Item Function Description 1 Connection Name IPSec_Branch Office Given a name of IPSec connection Subnet Check Subnet radio button IP Address 192.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Example: Configuring a IPSec Host-to-LAN VPN Connection 89.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Configuring IPSec VPN in the Office 1 2 Item Function Description 1 Connection Name IPSec Given a name of IPSec connection Subnet Check Subnet radio button IP Address 192.168.1.0 2 Netmask 255.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration L2TP (Layer T wo T unneling Protocol) T wo types of L2TP VPN are supported Remote Access and LAN-to-LAN (please refer below for more information.). Click Create to create a new VPN connection account.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration L2TP Connection - Remote Access L2TP VPN Connection Connection Name: User-defined name for the connection (e.g. “connection to of fice”). T ype: Check Dial Out if you want your router to operate as a client (connecting to a remote VPN server , e.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Click Apply af ter changing settings. L2TP over IPSec (L2TP/IPSec) VPN Connection IPSec: Enable for enhancing your L2TP VPN security . Authentication: Authentication establishes the integrity of the datagram and ensures it is not t ampered with in transmit.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Example: Configuring a L2TP VPN - Remote Access Dial-in Connection A remote worker establishes a L2TP VPN connection with the head office using Microsof t's VPN Adapter (included with Windows XP/2000/ME, etc.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Configuring L2TP VPN in the Office The input IP address 192.168.1.200 will be assigned to the remote worker .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Example: Configuring a Remote Access L2TP VPN Dial-out Connection A comp any’s office esta blishes a L2TP VPN connection with a file server located at a sep arate location. The router is installed in the office, connected to a couple of PCs and Servers.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Configuring the L2TP VPN in the Office 1 2 3 5 4 6 Item Function Description 1 Connection Name VPN_L2TP Given name of L2TP connection Dial out Check Dial out 2 Server IP Address (or Hostname) 69.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Example: Configuring your Router to Dial-in to the Server Currently , Microsoft Windows operation system does not support L2TP incoming service. Additional sof tware ma y be required to set up your L2TP incoming service.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration L2TP Connection - LAN to LAN L2TP VPN Connection Connection Name: User-define description of the connection. T ype: Check Dial Out if you want your router to operate as a client (connecting to a remote VPN server , e.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Click Apply af ter changing settings. L2TP over IPSec (L2TP/IPSec) VPN Connection IPSec: Enable for enhancing your L2TP VPN security . Authentication: Authentication establishes the integrity of the datagram and ensures it is not t ampered with in transmit.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Example: Configurin g L2TP LAN-to-LAN VPN Connection The branch office e stablishes a L2TP VPN tunnel with head of fice to connect two private networks over the Internet. The routers are inst alled in the head office and branch office accordingly .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Configuring L2TP VPN in the Head Office The IP address 192.168 .1.200 will be assigned to the router located in the branch of fice. Please make sure this IP is not used in the head office LAN.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Configuring L2TP VPN in the Branch Office The IP address 69.1.12 1.30 is the Public IP address of the router located in head office.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration QoS (Quality of Service) QoS function helps you to control your network traf fic for each application from LAN (Ethernet and/or Wireless) to W AN (Internet).
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Destination IP address Range : The destination IP address or range of p ackets to be monitored. DSCP Marking : Differe ntiated Services Code Point (DSCP), it is the first 6 bits in the T oS byte.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Outbound IP Throttling (LAN to W AN) IP Throttling allows you to limit the speed of IP traffic. The value entered will limit the speed of the application that you set to the specified value’ s multiple of 32kbps.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Inbound IP Throttling (W AN to LAN) IP Throttling allows you to limit the speed of IP traffic. The value entered will limit the speed of the application that you set to the specified value’ s multiple of 32kbps.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Example: QoS for your Network Connection Diagram Normal PCs Vo I P Restricted PC Information and Settings Upstream: 928 kbp s Downstream: 8 Mbps V oIP User : 192.168.1.1 Normal Use rs : 192.168.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Mission-critical application Mostly the VPN connection is mission-critical application for doing data exchange between head and branch office. The mission-critical application must be sent out smoothly without any dropping.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Sometime your customers or friends may upload their f iles to your FTP server and that will saturate your downstream bandwidth. The settings below help you to limit bandwidth for the restricted application.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration V irtual Server (“Port Forwarding”) In TCP/IP and UDP networks a port is a 16-bit number used to identify which application program (usually a server) incoming connections should be delivered to.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Add Virtual Server Because NA T can act as a “natural” Internet firewall, yo ur router protects your network from being accessed by outs.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Example: If you like to remote accessing your Router through the W eb/HTTP at all time, you would need to enable port number 80 (Web/H TTP) and map to Router ’s IP Address. Then all incoming HTTP request s from you (Remote side) will be forwarded to the Router with IP address of 192.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Edit DMZ Host The DMZ Host is a local computer exposed to the Internet. When setting a p articular internal IP address as the DMZ Host, all .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Edit One-to-One NA T (Netw ork Address T ranslation) One-to-One NA T maps a specific private/local IP address to a global/public IP address. If you have multiple public/W AN IP addresses from you ISP , you are eligible for One-to-One NA T to utilize these IP ad dresses.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Time Schedule: A self-defined time period to enable your virtual server . Y ou may specify a time schedule or Always on for the usage of this V irtual Server Entry .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Example: List of some well-known and registered port numbers. The Internet Assigned Numbers Authority (IANA) is the central coordinat or for the assignment of unique parameter values for Int ernet protocols.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Time Schedule The T ime Schedule supports up to 16 time slot s which helps you to manage your Internet connection. In each time profile, you may schedule specific day(s) i.e. Monday through Sunday to restrict or allowing the usage of the Internet by users or applications.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Configuration of Time Schedule Edit a Time Slot 1. Choose any T ime Slot (ID 1 to ID 16) to edit, click Edit. Click Edit Note: Watch it carefully, the days you have sel ected will pres ent in capital letter.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Advanced Configuration options within the Advanced section are for users who wish to take a dvantage of the more advanced features of the router . Users who do not underst and the features should not attempt to reconfigure their router , unless advised to do so by support staff.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Dynamic DNS The Dynamic DNS function allows you to alias a dynamic IP address to a static hostname, allowing users whose ISP does not assign them a st atic IP address to use a domain name.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Check Email This function allows you to have the router chec k your POP3 mailbox for new Email messages. The Mail LED on your router will light when it detects new messages waiting for download.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Device Management The Device Management advanced configuration settings al low you to control your router ’s security options and device monitoring features.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration After 100 seconds, the device will au tomatically logout User A. Universal Plug and Play (UPnP) UPnP of fers peer-to-peer network connectivity for PCs and other network devices, along with control and data transfer between devices.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration IP group ICMP group TCP group UDP group EGP (not applicable) T ransmission SNMP group From RFC1650 (EtherLike-MI.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration IGMP IGMP , known as Internet Group Management Protocol , is used to management host s from multicast group. IGMP Forwarding: Accepting multicast p acket. Default is set to Enable. IGMP Snooping: Allowing switched Ethernet to check and make correct forwarding decisions.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Ethernet1: P2, P3 and P4 (Port 2, 3, 4) Please uncheck P2, P3, P4 from Ethernet VLAN Port first. Note: You should setup each VLAN g roup with caution. Each Bridge Interface is arranged in this order.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration S paces next to VPI and VCI, type 0 and 33 in respectively . Select appropriate A TM Class, Encapsulation Method, Accept able Frame T ype, Filter T ype and PVID for Unt agged Frames. VPI and VCI: Enter the information provided by your ISP .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Step 3: Setup VLAN Service Go to Configuration Advanced VLAN Bridge DefaultVlan lists all member port s. It is necessary to group specific member ports for each VLAN. From the example, two VLAN groups are requested: Dat a and Video.
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Mapping the VLAN Bridge with Bridge Interface created in S tep1, you will see the conformable relationship in these two screenshot s. Step 4: IGMP Snooping Enable Go Configuration Advanced IGMP .
SHDSL VPN Fire w all Bridge/Router Chapter 4: Configuration Logout T o exit the router ’s web interface, choose Logout . Please ensure that you have saved the configuratio n settings before you logout. Be aware that the router is restricted to only one PC accessing the configuration we b pages at a time.
SHDSL VPN Fire w all Bridge/Router Chapter 5: T roubleshooting Chapter 5: T roubleshooting If the router is not functioning properly , first check this chapter for simple troubleshooting before contacting your service provider or Billion support.
SHDSL VPN Fire w all Bridge/Router Appendix A: Product Support and Contact Information APPENDIX A: Product Support and Cont act Information Most problems can be solved by referring to the T roubleshooting section in the User ’s Manual .
An important point after buying a device Billion Electric Company 8501 (or even before the purchase) is to read its user manual. We should do this for several simple reasons:
If you have not bought Billion Electric Company 8501 yet, this is a good time to familiarize yourself with the basic data on the product. First of all view first pages of the manual, you can find above. You should find there the most important technical data Billion Electric Company 8501 - thus you can check whether the hardware meets your expectations. When delving into next pages of the user manual, Billion Electric Company 8501 you will learn all the available features of the product, as well as information on its operation. The information that you get Billion Electric Company 8501 will certainly help you make a decision on the purchase.
If you already are a holder of Billion Electric Company 8501, but have not read the manual yet, you should do it for the reasons described above. You will learn then if you properly used the available features, and whether you have not made any mistakes, which can shorten the lifetime Billion Electric Company 8501.
However, one of the most important roles played by the user manual is to help in solving problems with Billion Electric Company 8501. Almost always you will find there Troubleshooting, which are the most frequently occurring failures and malfunctions of the device Billion Electric Company 8501 along with tips on how to solve them. Even if you fail to solve the problem, the manual will show you a further procedure – contact to the customer service center or the nearest service center