Instruction/ maintenance manual of the product Wireless VPN Broadband Router Edimax
Go to page of 90
Wireless VPN Broadband Router User’s Manual 0.
I ntroduction ......................................................................................... 3 Features ................................................................................................ 3 Minimum Requirements ................
2.4.3.2 802.1x only .............................................................................. 44 2.4.3.3 802 .1x WEP S tatic key ............................................................ 45 2.4.3.4 WPA Pre-shared key ..........................
Introduction Congratulations on purchasing this Wireless Broadband R outer. This Wireless Broadband Router is a co st-e ffe ctive IP Sharing Router that enables multiple users to share the Internet through an ADSL or cabl e modem.
• One User Manual / One Power Ada pter / Other A ccessories Note The WAN “idle timeout” au to-disconn ect function may not work due to abnormal activ ities of some network ap plication software, computer virus or hacker a ttacks from the Internet .
your original configurations will be replaced with the factory default settings) Front Panel On the route r’s front pa nel there are LED lights that in form you of the router’s cu rrent status. Below is an ex planation of ea ch LED and i ts description.
Setup Diagram Figure 1.2 below show s a typical setup for a Lo cal Area Netw ork (LAN). Figure 1.2 Getting started This is a step-by-step instr uction on how to star t using the router and ge t connected to the In ternet. 1) Setup y our network as show n in the se tup diagram abov e (fig 1.
Windows 95/98/Me , 2b) W i ndow s XP , 2c) Windo ws 2000 and 2d) Window s NT . 2a) Windo w s 95/98/Me 1. Click the Sta rt button and se lect Settings , then clic k Control Panel . The Control Panel w indow will appear. 2. Double-click Network icon. The Net work window will appear.
8 . Reboot the PC . Your PC w ill now obtain an IP address automati cally from your Broadband R outer’s DHCP server. Note :Please make sure that t he Bro adband router’s DHCP server is the only DHCP server available on y our LAN.
Once y ou’ve configured y our PC to obtain an IP address automatically, p lease proceed to Step 3 2c) Windo w s 2000 1. Click the St a rt button and se lect Settings , then clic k Control Panel . The Control Panel w indow will appear. 2. Double-click Ne twork and Dial-up Con nections icon.
2d) Windows NT 1. Click the St a rt button and se lect Settings , then clic k Control Panel . The Control Panel w indow will appear. 2. Double-click Network icon. The Net work window will appear. Sele ct the Protocol tab from th e Netw ork window . 3.
7. Click OK to confirm the setting . Your PC will now obtain a n IP address automatically from y our Broadband Router’s DHCP server. Note :Please make sure that the Broadband router’s DHCP serv er is the only DHCP server av ailable on your LAN. Once y ou’ve configured y our PC to obtain an IP address automati cally, please proceed to Step 3.
6) The HOME page screen below will appear. The Home Page is div ided into four se ction s, Quick Setup Wizard , General Setup , Status Info. and System Tools. Quick Setup Wizard (Chapter 1) Select your Internet connection ty pe an d then input the configurations needed to con nect to your Internet Serv ice Provider (ISP).
Hacker Attack Prevention, DMZ, Speci al applications and other function s to meet y our LAN requirements. Status Info . (Chapter 3) In this secti on you can see the Broadb and router' s system info rmation , Internet Connection, Device Status, System Log, Security Log and DHCP client informa tion.
Parameter Descrip tion Set Time Zone Select the time zone of the country you are currently in. The ro uter will se t its time based on your selectio n. Time Server Addre ss You can manually assign time serv er address if the default time serv er dose not wor k.
In this secti on you have to select one of four types of connections that you will be usin g to connect y our broadband rou ter’s WAN por t to your ISP (see screen below). Note : Different ISP’ s require differe nt methods of connecting to the Internet, plea se check w ith y our ISP a s to the type o f connection it requires.
Click on one of the WAN type and then proceed to the manual’s relev ant sub-se ction ( 1.1 , 1.2 , 1. 3 , 1. 4 , 1.5 or 1.6 ). Click o n Back to return to the previous screen . 1.1 Cable Modem Choose Cable Modem if y our ISP w ill aut omatically give you an IP add ress.
address with the MAC address of tha t PC (you hav e to be using tha t PC for th e Clone MAC Address button to work). To find out the PC’ s MAC address see Appendix A. (see Glo ssary fo r an explanation on MAC address) Click < OK> when y ou have finished the co nfiguration a bove.
Subnet Mask Enter the Subnet M ask provided by your ISP (e.g. 25 5.255.255.0 ) Click < OK> when y ou have finished the co nfiguration a bove. Congratulati ons ! Y ou have completed th e configuration for the Fixed-IP x DSL connection.
Service Name This is opti onal. Enter the Serv ice name should your ISP requires it, oth erwise leav e it blank. MTU This is opti onal. You can specify the m aximum size o f your transmi ssion packet to the Interne t. Leave it as it is if y ou to not wish to set a max imum packet size.
connecti on. You can star t using the router now, if you w ish to u se some of the advance featu res supported by this r outer see cha pter 2, 3, 4 . 1.4 PPTP Select PPTP if y our ISP re quires the PPTP protocol to connect you to the Internet. Your ISP should provide all the information required in thi s section.
User ID Enter th e User Name prov ided by your ISP for the PPTP connection. Sometime s called a Connection ID Password Enter th e Password prov ided by y our ISP for the PPTP connectio n PPTP Gatew ay If your LAN ha s a PPTP gatew ay, then enter th at PPTP gateway IP address here.
computer when y ou are not using it. This function also may not work w ith some ISP. So p lease ma ke sure this function can w ork properly when you use thi s function in the fir st time, especially y our ISP charge y ou by time used. Click < OK> when y ou have finished the co nfiguration a bove.
Type in this MAC address in this secti on or use the "Clone MAC Addre ss" button to replace th e WAN MAC address with the MAC address of that PC (you hav e to be using that PC for the Clone MAC Address button to w ork). To find ou t the PC's MAC address see App endix A.
If you sele ct “Manual”, the router w ill connect to IS P only when y ou click “Connect” manuall y from the Web user in terface. The WAN connection w ill not be disconnected due to the idl e timeout. If the WAN line breaks dow n and latter links ag ain, the router will not auto-conne ct to the ISP.
Parameter Descrip tion User Name Enter the U ser Name provided by your ISP for the Telstra Big Pond co nnection Password Enter th e Password prov ided by y our ISP for the Telstra Big Pond co nne ction User deside login serv er Select if y ou want to assign the IP o f Telstra Big Pond’s login manually server manually.
If you hav e already configured th e Quick Setup Wizard y ou do NOT need to configure anything thi ng in the Gene ral Setup screen for y ou to start using the Internet.
2.4 Wirele ss Setup the w ireless LA N’s SSID, WEP key , MAC filtering. 2.5 QoS You can setup the QoS bandw idth control poli cy. 2.6 NAT You can con figure the Address Map ping, Virtua l Server and Special Applica tions functi ons in this s ection.
2.1.1 Time Zone Select the time zone of the country y ou are currently in. The ro uter will se t its time based on your sele ction. 2.1.2 Passw ord Settings Allows y ou to select a pa ssword in ord er to access the web-based management w ebsite.
Time Server Addre ss The router def au lt the “Time Server Address” is “192.43.24 4.18” Enable Daylight Savings The router can also ta ke Daylight sav ings into account. I f you wi sh to use thi s func tion, you must check/tick the enable box to enable your daylight sav ing configuration (below).
Parameters Description Current Passw ord Enter y our cu rrent passw ord for the re mote management administrator to login to y our Broadband rou ter. Note: By defaul t there is NO pa ssword New Passw .
Host Address This is the IP addre ss of the ho st in the Interne t that w ill have management/configura tion access to the Broadband router from a remote site.
Parameters Description 2.2.1 Wireless ISP Your wireless ISP will give you the w ireless Internet broadband access 2.2.2 Dynamic IP address Your ISP w ill automatically give you an IP address 2.2.3 Static IP address Y our ISP has giv en you an IP addre ss already 2.
2.2.1 Wire less ISP Choose the the “ WAN Type”, “ Wirel ess ISP” and “Apply” button for connecti ng to the w ireless Acce ss Point an d proceed to the manual’s relevant sub -section. Once y ou have made a sel ection, click < More Configur ation> at the bottom of the screen and pro ceed to th e manual’s relevant sub -section 2.
matching IP address. Most IS Ps provide a DNS se rver for speed and convenience . If your Serv ice Provider connects y ou to th e Internet with dynamic IP settings, it is li kely that the DNS serv er IP address i s provided automatically.
2.2.9 DDNS DDNS allows you to map the static domain name to a dynamic IP address. You must ge t an accoun t, password an d your stati c domain name from the DDNS service providers. This router supports DynDNS, TZO and other common DDNS service providers.
Click < Apply> at the bo ttom of the screen to save the ab ove configurations. Y ou can now co nfigur e other advance se ct ions or start using th e router (w ith the adv ance setti ngs in place) 2.
DHCP Server Enabled You can enable or disable the DHCP server. By e nabling the DHCP server the router will automatically giv e your LAN clients an IP address.
Intranet. It supports WEP and WPA2 encry ption to enhance the se curi ty of your w ireless network. Parameters Default Description Enable or disable Enable You can select to enable or disable the wireless a ccess point module o f this router.
Parameters Defaul t Descrip tion Mode It allows you to set the AP to AP, Sta tion, Bridge or WDS mode. Band It allows you to set the AP fix at 802.11b or 802.11g mode. Y ou also can select B+ G mode to allow the AP select 802.11b and 802.11g connectio n automatically.
Clone MAC Click the “Clone M AC” button will copy the MAC address of your PC, that you are using to configure the AP , to the WLAN MAC. MAC address If you w ant to bridge more than one ne tworks t.
Parameters Description Authenticatio n Type There are two authenti cation ty pes: "Open System" and "Shared Key ". W hen you select "Open System", wireless stations c an asso ci ate with this wi reless router without WEP encry ption.
Data Ra te The “Data Rate” i s the rate thi s access point uses to transmit data pa ckets. The a ccess point will u se the highest possible sel ecte d transmission rate to transmit the data packet s.
2.4.3.1 WEP only When you sele ct 64-bit or128-bit WEP key, y ou have to e nter WEP key s to encrypt da ta. You can generate the key by yourself and e nter it.
Key 1 - Key 4 The WEP keys are u sed to encry pt data transmitte d in the wireless netw ork. Fill the tex t box by follow ing the rules : 64-bit WEP : input 10-digit Hex values (in the "A-F ", "a-f" and "0-9" rang e) or 5-digit ASCII character as the encryption key s.
RADIUS Server Po rt The service port of the external RADIUS server. RADIUS Server Pa ssword The password u sed by ex ternal RADIUS server. Click < Apply> at the bo ttom of the screen to save the ab ove configurations. Y ou can now co nfigur e other advance se ct ions or start using th e router (w ith the adv ance setti ngs in place) 2.
encryption key frequently . So th e encry ption key is not easy to be bro ken by hacker s. This can improv e security very much. Parameters D escription WPA(TKIP) TKIP can change the encryp tion key frequently to enhan ce the w ireless LAN security . WPA2(AES) This use CCMP pro tocol to chan ge encryption key frequen tly.
range) or at least 8 character pass phrase as the pre- shared key s. Click < Apply> at the bo ttom of the screen to save the ab ove configurations. Y ou can now co nfigur e other advance se ct ions or start using th e router (w ith the adv ance setti ngs in place) 2.
high level en cryption to enha nce the w ireless LAN se curity. WPA2 Mix ed This will use TKIP or AES based on the other communication pee r automatically . RADIUS Server IP address The IP ad dress of ex ternal RADIUS serv er. RADIUS Server Po rt The service port of the external RADIUS server.
Enable wireless access co ntrol Enable w ireless access con trol Add MAC address i nto the list Fill in the "MAC Ad dress" and "Comment" of the wi reless statio n to be added and then click "Add". Then thi s wireless station will be added into the "Current Access Co ntrol List" b elow.
Note: If the total assigned bandwidth o f higher priority applications is larger than the max imum bandwidth prov ided by the WAN port, the o ther applications w ill not get any bandw idth. Parameters Description Enable/Disable Qo S You can che ck “En able QoS” to enabl e QoS fun ction for th e WAN port .
Edit a QoS rule Select the rule you w ant to edit and cli ck “Edit”, then y ou will enter the de tail form of the QoS rule. Click “Apply ” after edi ting the form and the rule will be saved. Adjust QoS rule priority Y ou can select the rule and click “Move Up” to make its p riority higher.
Bandwidth You can assign the download or upload bandwidth by the unit of K bps (1024 bit pe r second). You can limit the maximum band width consumed by thi s rule by selecting “Max imum”. You also can reserve enough bandwidth fo r this rule by selecting “Guarantee”.
Reset Clear the con tent of this form . Click < Apply> at the bo ttom of the screen to save the ab ove configurations. Y ou can now co nfigur e other advance se ct ions or start using th e router (w ith the adv ance setti ngs in place) 2.
2.6.2 Virtual Serv er You can have different services (e.g . email, FTP, Web etc.) go ing to differen t service servers/clien ts in your LAN. The Vir tual Server allow s you to re-direct a particular service por t number (from the In ternet/WAN Port) to a particular LAN IP addre ss and its service por t number.
Parameter Descrip tion Enable Port Forwarding Enable Port Forwarding Private IP This is the private IP of the server behi nd the NAT firewall. Note: You need to give your LAN PC clients a fixed/stati c IP addr ess for Por t Forwarding to work properly .
retype again, just click "Clear" and the fields will be clea red. Remove Port Forw arding If you w ant to remov e some Port Forwarding setting s from the " Cur rent Port Forwarding Table", select the Port Forwarding setting s you w ant to remove in the table and then click "Delete Selected".
Parameters Description Enable Virtual Server Enable Virtu al Server. Private IP This is the LAN cl ient/h ost IP address that the Public Port number packet will be sent to. Note: You need to give your LAN PC clients a fixed/stati c IP addr ess for Virtual Serv er to wo rk properly.
settings from the table, just click "Dele te All" button. Click "Reset" will clear y our current selectio ns. Click < Apply> at the bo ttom of the screen to save the ab ove configurations.
Parameters Description Enable Trigger Port Enable the Special Application function. Trigger Port This is the out goin g (Outbound) ra nge of port numbers for thi s particular application Trigger Type Select whether the outbound port protocol is “TCP”, “UDP” or both.
Select an ap plication from the Popular Applications sel ection. Once y ou have selected an application, select a location (1- 10) in th e Copy to sele ction box and then click th e Copy to butto n. This will automatically li st the Public Por ts required for this popular application in the locatio n (1-10) you’d speci fied.
ID Trigg er Port Trigger Type Publ ic Port Public Type Comment 1 28800 UDP 2300-2400, 47624 TCP MSN Game Zo ne 2 6112 UDP 611 2 UDP Battle.ne t In the ex ample abov e, when a user trigger’s port 28800 (outbound) for MSN Game Zone then the router w ill allow incoming p ackets for ports 2300-2400 and 476 24 to be directed to that use r.
provided by UPnP can let application s that support UPnP smoo thly connect to Internet sites w ithout any incompatibility proble m due to the NAPT port translation.
Click < Apply> at the bo ttom of the screen to save the ab ove configurations. Y ou can now co nfigur e other advance se ct ions or start using th e router (w ith the adv ance setti ngs in place) 2.6.6 Static Routin g This router prov ides Static Routing function w hen NAT is disabled.
Hop Count The number of hop s (routers) to pass through to reach the de stination LAN. Interfa ce The interfa ce that g o to the next hop (r outer). Add a Rule Fill in the "De stination LAN IP&qu.
Parameters Description 2.6.1 Access Control Access Contro l allow s you to specify which hosts users can or cannot h ave access to certain Interne t applications 2.6.2 URL Blocking URL Blocking allow you to speci fy which URLs can not be accesse d by users.
Parameters Description Deny If select “Deny” the n all PCs will be allow ed to access I nternet accept f or the PCs in the list below. Allow If select “Allow” th en all PCs will be de nied to access I nternet accept f or the PCs in the list below.
Add PC Fill in “Client PC M AC Address” and “ Comment” of the P C that is allow ed to a ccess the In ternet, and then clic k “Add”. If you find any ty po before adding i t and w ant to retype again, just click "Reset" and the fields w ill be cleared.
Note: You need to give your LAN PC clients a fixed/stati c IP address for the Access Control rule to w ork properly. Client PC Serv ice You can block th e clients from accessing some Internet services by ch e cking the services y ou want to block. Protocol This allow s you to select UDP, TCP or both protocol ty pe you want to block.
2.7.2 URL Blocking You can block access to some Web sites from particular P Cs by enter ing a full URL addre ss or just keyw ord of the Web site. Parameters Description Enable URL Blocki ng Enable/disab le URL Blocking Add URL Keyw ord Fill in “URL/Keyw ord” and then click “Add”.
2.7.3 DoS (Denial of Service) The Broadband rou ter's firewall can block common hacker atta cks, including Denial of Service, Pi ng of Death, Por t Scan and Sy nc Flood.
2.7.4 DMZ If you hav e a local client PC that cann ot run an Internet application (e .g. Games) properly from behind the NAT fir ewall, then y ou can open the client up to unre stricted two-w ay In ternet a ccess by defini ng a DMZ Host.
2.8 VPN Virtual Priv ate Network (VPN) p rovi des a secure, private communication tunnel be tween `two or more dev ices across the Internet. These VPN devices can be eith er a computer runni ng VPN so ftware or a special device like a VPN enabled route r.
Chapter 3 Status The Status section allow s you to monito r the curre nt status of y our router. You can use the Status pag e to moni tor: the connectio n status of the Broadband router's WAN/LAN.
3.6 Active DHCP Client View your LAN client's info rmation t hat is currently linked to the Broadband rou ter's DHCP server 3.7 Statisti cs Shows the sta tistics Select one o f the abov e five Statu s selections and proceed to the manual’s relevant sub -section 3.
Parameters Description Information You can see the ro uter’s system infor mation such as the router’s: LAN MAC Addr ess, WAN MAC Address, Hardware v ersion, Serial Number, Boo t code Version, Runtime code Version 3.
3.3 Device Status View the Br oadband router’s curre nt configuration setting s. The Device Status displays the configuration sett ings you’v e configured in the Quic k Set up Wiz ard/G e n eral S etup s ectio n. Parameters Description Device Status This page show s the Broadband router ’s current device se ttings.
3.4 System Log View the ope ration log o f the sy stem. Parameters Description System Log This page shows the curren t system l og of the Broadband rou ter.
3.5 Security Log View any attempts that hav e been made to illeg ally gain ac cess to your network. Parameters Description Security Log This pa ge shows the curren t securi ty log of the Broadband router . It display s any illegal attemp ts to access your ne twork.
3.6 Active DHCP Client View your LAN client's information that is curren tly linked to th e Broadband router's DHCP server Parameters Description Active DHCP Client This page s hows all DHCP clients (LAN PCs) currently connected to your netwo rk.
3.7 Statistics View the statistics of packe ts sent and received on WAN, LAN and Wireles s LAN. Parameters Description Statistics Show s th e counters of packets sen t and received on WAN, LAN and Wi reless LAN.
Chapter 4 Tool This page includ es the basi c configuration tools, su ch as C onfiguration Tools (save or restore configuration settin gs), Firmware Upgrade (up grade system firmware) and Rese t.
4.1 Configurati on Tools The Configuration Tools screen allow s you to save ( Backup ) the router’s current configur ation setting. Saving th e configuration se ttings prov ides an added protec tion and conv enience should prob lems occur w ith the router and you hav e to reset to factory default.
4.2 Firm w are Upgrade This page allow s you to upgrade the router’s firmw are Parameters D escription Firmware Upgrade This tool allows y ou to upgrade the Broadband router’s sy stem fi rmware .
4.3 Reset You can reset the router’s system sho uld any problem exist. The rese t function e ssentially Re-boots your rou ter’s system Parameters Description Reset In the event that the sy stem stops re sponding correctly or in some w ay stops functioning, y ou can perform a reset.
Appendix A How to Manuall y find your PC’s IP and M AC address 1) In Window ’s open the Command Prom pt program 2) Type Ip config /all and <enter> • Your PC’s IP address is the one entitled IP address (192.168.1.77) • The router’ s IP address i s the one en titled Default Gate wa y (192.
Glossary Default Gate w ay (Router): Every non-router IP dev ice needs to configure a default gatew ay’s IP address. When t he dev ice sends out an IP packet, if the destina tion is n ot on the same ne t work, the d evice ha s to sen d the packet to its defaul t gateway, w hich will then send it out to wards the destination.
1’s follow ed by consecutiv e trailing 0’s, su ch as 11111111.11111111.111111 11.00000000. Therefo re sometimes a network mask can also be described si mply as “x” numbe r of leading 1’s.
Application Protocol Port Number Telnet TCP 23 FTP TCP 21 SMTP TCP 25 POP3 TCP 110 H.323 TCP 1720 SNMP UCP 161 SNMP Trap UDP 162 HTTP TCP 80 PPTP TCP 1723 PC Anywhere TCP 5631 PC Anywhere UDP 5632 PPPoE: Point-to- Point Pro tocol over E thernet.
WA N: Wide Area N etwork. A n etwork that connects computer s lo ca ted in geographically separate area s (e.g. differen t buildings, citi es, countrie s). The Interne t is a wide area network. Web-based management Graphical User Interface (GUI): Many devices support a gr aphical use r interface that is based on the w eb browser.
An important point after buying a device Edimax Wireless VPN Broadband Router (or even before the purchase) is to read its user manual. We should do this for several simple reasons:
If you have not bought Edimax Wireless VPN Broadband Router yet, this is a good time to familiarize yourself with the basic data on the product. First of all view first pages of the manual, you can find above. You should find there the most important technical data Edimax Wireless VPN Broadband Router - thus you can check whether the hardware meets your expectations. When delving into next pages of the user manual, Edimax Wireless VPN Broadband Router you will learn all the available features of the product, as well as information on its operation. The information that you get Edimax Wireless VPN Broadband Router will certainly help you make a decision on the purchase.
If you already are a holder of Edimax Wireless VPN Broadband Router, but have not read the manual yet, you should do it for the reasons described above. You will learn then if you properly used the available features, and whether you have not made any mistakes, which can shorten the lifetime Edimax Wireless VPN Broadband Router.
However, one of the most important roles played by the user manual is to help in solving problems with Edimax Wireless VPN Broadband Router. Almost always you will find there Troubleshooting, which are the most frequently occurring failures and malfunctions of the device Edimax Wireless VPN Broadband Router along with tips on how to solve them. Even if you fail to solve the problem, the manual will show you a further procedure – contact to the customer service center or the nearest service center