Instruction/ maintenance manual of the product 7404V Series Billion Electric Company
Go to page of 155
V ersion Release 5.07 Last Revision Date: 08-15-2006 BiP AC 7404V Series V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router User ’ s Manual.
T able of Contents i T T a a b b l l e e o o f f C C o o n n t t e e n n t t s s CHAPTER 1: INTRODUCTION ............................................................................................................. 4 INTRODUCTION T O YOUR ROUTER .....
T able of Contents iii W AN - W ide Ar ea Network.................................................................................................................. 41 ISP ................................................................................
T able of Contents iii PROBLEMS WITH THE LAN INTERF ACE ..................................................................................... 153 APPENDIX A: PRODUCT SUPPOR T AND CONT ACT INFORMA TION .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 1: Introduction 4 Chapter 1: Introduction Introduction to your Router Welcome to the V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 1: Introduction 5 directly for auto detection. Multi-Protocol to Establish a Connection It supports PPPoA (RF C 2364 - PPP over A TM Adaptation La.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 1: Introduction 6 Rich Packet Filtering Not only filters the packe t based on IP address, but also based on Port numbers. It will filter p ackets from and to the Internet, and also provides a higher level of security control.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 2: Installing the router 7 Chapter 2: Inst alling the Router Import ant note for using this router Package Content s V oIP/(802.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 2: Installing the router 8 The Front LEDs LED Meaning 1 PWR Lit when power is ON. 2 SYS Lit when the system is ready . 3 – 6 LAN Port 1X — 4X (RJ-45 connector) Lit when connected to an Ethernet device.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 2: Installing the router 9 The Ethernet Port # 4 can be used as a console port. Y ou need a special console tool which already includes in the p ackage to connect with LAN port 4 and PC’ s RS-232 port (9-pin serial port).
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 2: Installing the router 10 7 ADSL Connect the supplied RJ-1 1 (“telephone”) cable to this port when connecting to the ADSL/telephone network. 8 Antenna (Wireless Router only) Connect the detachable antenna to this port.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 3: Basic Inst allation 11 Any TCP/IP cap able workst ation can be used to communicate with or through the router . T o configure other types of workstations, please consult the manufacturer ’ s documentation.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 3: Basic Inst allation 12 Connecting Y our Router 1. Connect this router to a LAN (Local Area Network) and the ADSL/telephone ( ADSL ) network. 2. Power on the device. 3. Make sure the PWR and SYS LEDs are lit steadily and that the LAN LED is lit.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 3: Basic Inst allation 13 Configuring PCs in Windows in Window XP 1. Go to St art / Control Panel (in Classic V iew). In the Control Panel, double-click Network Connections . 2. Double-click Local Area Connection .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 3: Basic Inst allation 14 Configuring PCs in Windows 2000 1. Go to St art / Settings / Control Panel . In the Control Panel, double-click Network and Dial-up Connections . 2. Double-click Local Area (“LAN”) Connection .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 3: Basic Inst allation 15 Configuring PC in Windows 95/98/ME 1. Go to St art / Settings / Control Panel . In the Control Panel, double-click Network and choose the Configuration tab. 2. Select TCP / IP -> NE2000 Comp atible , or the name of any Network Interface Card (NIC) in your PC.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 3: Basic Inst allation 16 Configuring PC in Windows NT4.0 1. Go to St art / Settings / Control Panel . In the Control Panel, double-click Network and choose the Protocols tab. 2. Select TCP/IP Protocol and click Properties .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 3: Basic Inst allation 17 Factory Default Settings Before configuring your , you need to know the following default settings. Web Interface (Username and Password) Username: admin Password: admin The default username and password are “ admin ” and “ admin ” respectiv ely .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 3: Basic Inst allation 18 Information from your ISP Before configuring this device, you have to check wi th your ISP (Internet Service Provider) to find out what kind of service is provided such as DHCP (Obt ain an IP Address Automatically , S tatic IP (Fixed IP Address) and PPPoE.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 3: Basic Inst allation 19 Configuring with your W eb Browser Open your web browser , enter the IP address of your router , which by default is 192.168.1.254 , and click “ Go ”, a user name and password window prompt will appear .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 20 Chapter 4: Configuration At the configuration homepage, the lef t navigation pane where bookmarks are provided links you direc.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 21 S t atus ARP T able This section displays the router’s ARP (Address Resolution Protocol) T able, which shows the mapping of Internet (IP) addresses to Ethernet (MAC) addresses.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 22 Gateway/Interface: The IP address of the gateway or existing interface that this route will use. Cost: The number of hop s counted as the cost of the route. RIP Routing T able Destination: The IP address of the destination network.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 23 MAC Address: The MAC Address that you wan t to assign t he fixed IP address. Maximum Lease Time: The maximum lease time interval you allow to clients. PPTP S tatus (Only the 7404VG O has VPN features) This shows det ails of your configured PPTP VPN Connections.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 24 L2TP St atus (Only the 7404VGO has VPN features) This shows det ails of your configured L2TP VPN Connections. Name: The name you assigned to the p articular L2TP connection in your VPN configuration.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 25 Event Log This page displays the router’s Event Log entries. Major events are logged to this window , such as when the route.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 26 NA T Sessions This section lists all curr ent NA T sessions between inte rface of types external (W AN) and internal (LAN). Diagnostic It tests the connection to computer(s) which is connected to LAN port s and also the W AN Internet connection.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 27 UPnP Portmap The section list s all port-mapping est ablished using UPnP (Universal Plug and Play . See Advanced section of this manual for more det ails on UPnP and the rout er ’s UPnP configuration options.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 28 Quick S t art For detailed instructions on configuring your W AN settings, please see the WA N section of this manual.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 29 Select the desired option from the list and click Apply to return to the Quick S tart interface to continue configuring your ISP connection. Please note that the content s of this list will vary , depending on what is supported by your ISP .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 30 Configuration When you click this item, you get following sub-items to configure the ADSL router . - LAN, W an, System, Firew all, VPN, V oIP , QoS, Virtual Server , Time Schedule and Advanced These functions are described below in the following sections.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 31 Ethernet Primary IP Address IP Address: The default IP on this router . SubNetmask: The default subnet mask on this router . RIP: RIP v1, RIP v2, and RIP v2 Mult icast. Check to enable RIP function.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 32 Ethernet Client Filter The Ethernet Client Filter support s up to 16 Ethernet network machines that helps you to manage your network control to accept traf fic from specific authorized machines or can restrict unwa nted machine(s) to access your LAN.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 33 Active PC in LAN displays a list of individual Ethernet device’s IP Address & MAC Address which connecting to the router . Y ou can easily by checking the box next to the IP address to be blocked or allowed.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 34 Wireless (Wireless Ro uter only) Parameters WLAN Service: Default setting is set to Enable . If you do not have any wireless, both 802.1 1g and 802.1 1b, device in your network, select Disable.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 35 TX PowerLevel: It is function that enhances the wirele ss transmitting signal strength.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 36 Wireless Security (Wireless Router only) Y ou can disable or enable with WP A or WEP for protecting w ireless network.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 37 WEP WEP Encryption: T o prevent unauthorized wireless stations from accessing dat a transmitted over the network, the router offers highly secure dat a encryption, known as WEP .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 38 Wireless Client / MAC Address Filter (Wireless Router only) The MAC Address support s up to 16 wireless network machines and helps you to manage your network control to accept traffic f rom specific authorized mach ines or to restrict unwanted machine(s) to access your LAN.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 39 Port Settin g This section allows you to configure the settings for the r outer ’s Ethe rnet ports t o solve some of the compatibility problems that may be encountered while connecting to the I nternet, as well allowing users to tweak the performance of their network.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 40 DHCP Server Y ou can disable or enable the DHCP (Dynamic Host C onfiguration Protocol) server or enable the router ’ s DHCP relay functions.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 41 W AN - Wide Area Network W AN refers to your Wi de Area Network connection, i.e. your router ’s connection to your ISP and the Internet. Here are the items within the W AN section: ISP , DNS and ADSL .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 42 RFC 1483 Routed Connections Description: User-definable name for the connection. VPI and VCI: Enter the information provided by your ISP . A TM Class: The Quality of Service for A TM layer .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 43 RFC 1483 Bridged Connections Description: User-definable name for the connection. VPI and VCI: Enter the information provided by your ISP . A TM Class: The Quality of Service for A TM layer .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 44 PPPoA Routed Connections Description: User-definable name for the connection. VPI/VCI: Enter the information provided by your ISP . A TM Class: The Quality of Service for A TM layer .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 45 Det ail: Y ou can define the destination port and packet type (TCP/UDP) without checking by timer . It allows you to set which outgoing traf fic will not trigger and reset the idle timer .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 46 IPoA Routed Connections Description: User-definable name for the connection. VPI/VCI: Enter the information provided by your ISP . A TM Class: The Quality of Service for A TM layer .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 47 PPPoE Connections Description: User-definable name for this connection. VPI/VCI: Enter the information provided by your ISP . A TM Class: The Quality of Service for A TM layer .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 48 Connect on Dema nd: If you want to establish a PPPoE session only when there is a packet requesting access to the Internet (i. e. when a program on your computer attempts to access the Internet).
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 49 PPPoE with Pass-through Connections PPPoE with pass-through adapt s the following method: PPPoE Routed mode + 1483 Bridge Mode. With pure PPPoE connection, the router can get one W AN address to the router .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 50 Authentication Protocol: Default is Chap(Auto). Y our ISP will advise you whether to use Chap or Pap.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 51 DNS A Domain Name System (DNS) contains a mapping t able for domain name and IP addresses. On the Internet, every host has a unique and user-friendly name (domain name) such as www .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 52 ADSL Connect Mode: This mode will automatically detect your AD SL line code, ADSL2+, ADSL2, G .dmt, G .lite, T1.413, AnnexM2 and AnnexM2+. But in some area, multimode cannot detect the ADSL line code well.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 53 Advanced Options ADSL Parameters help to interpret your ADSL line statistics. SNR Margin: It is known as Signal to Noise Ration Margin. It is the relative of DSL strength to Noise ratio.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 54 System Here are the items within the System section: Time Zone, Remote Access, Firmware Upgrade, Backup/Restore, Restart and User Management.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 55 Remote Access T o temporarily permit remote administration of the rout er (i.e. from out side your LAN), select a time period the router will permit remote access for and click Enable.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 56 DO NOT power down the router or interrupt the firmw are upgrading while it is still in process. Improper operation could damage the router . Firmware Upgrade Y our router ’ s “firmware” is the sof tware that allows it to oper ate and provides all it s functionality .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 57 Backup / Restore These functions allow you to save and backup your router ’ s current settings to a file on your P C, or to restore a previously saved backup.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 58 Rest art Router Click Resta rt with option Current Settings to reboot your router (and restore your last saved configuration).
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 59 User Management In order to prevent unauthorized access to your router ’s configuration interface, it requires all users to login with a password. Y ou can set up multiple user accounts, each with their own password.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 60 When using Virtual Servers your PCs will be exposed to the degree specified in your V irtual Server settings provided the ports specified are opened in your firewall p acket filter settings.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 61 General Settings Y ou can choose not to enable F irewall and still able to ac cess to URL Filter and IM/P2P Blocking or enable the Firewall using preset filter rules and modify the port filter rule s as required.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 62 Packet Filter This function is only available when the Firewall is enabled and one of th ese four security levels is chosen (All blocked, High, Medium and Low).
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 63 Example: Predefined Port Filters Rules The predefined port filter rules for High, Medium and Low security levels are listed. See T able 1. Note: Firewall – All Blocked/User-defined, you must defin e and create the po rt filter rules yourself.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 64 MSN (7001) UDP(17) 7001 7001 YES YES N/A N/A N/A N/A MSN VEDIO (9000) TCP(6) 9000 9000 NO YES N/A N/A N/A N/A Inbound: Internet to LAN ; Outbound: LAN to Internet.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 65 Packet Filter – Add TCP/UDP Filter Rule Name: Users-define description to identify this entry or click to select existing predefined rules. The maximum name length is 32 characters.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 66 Packet Filter – Add Raw IP Filter Rule Name: Users-define description to identify this entry or click to select existing predefined rules. Time Schedule: It is self-defined time period.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 67 Example: Configuring your firewall to allow for a publicly accessible web server on your LAN The predefined port filter rule for HTTP (TCP port 80) is the same no matter whether the firewall is set to a high, medium or low security level.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 68 Configuring Packet Filter: 1. Click Port Filters . Y ou will then be presented with the predefined port filter rules screen (in this case for the low security level), shown below: Note: You may click Edit the predefined rule instead of De lete it.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 69 5. The new port filter rule for HTTP is shown below: 6. Configure your V irtual Server (“port forwarding”) settings so tha.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 70 Intrusion Detection The router ’s Intrusion Detection System (IDS) is used to detect hacker att acks and intrusion attempt s from the Internet.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 71 T able 2: Hacker att ack types recognized by the IDS Intrusion Name Detect Parameter Blacklist T ype of Block Duration Drop Pa.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 72 URL Filter URL (Uniform Resource Locator – e.g. an address in the form of http://www .abcde.com or http://www .example.com ) filter rules allow you to prevent users on your network from accessing p articular websites by their URL.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 73 dropped. 3. If the packet does not match either of the above two items, it is sent to the remote web server . 4. Please be note that the completed URL, “www” + domain name shall be specified.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 74 IM / P2P Blocking IM, short for Inst ant Message, is required to use clie nt program software t hat allows users to communicate, in exchanging text message, with other IM users in re al time over the Internet.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 75 Firewall Log Firewall Log display log information of any unexpected action with your firewall settings. Check the Enable box to activate the logs. Log information can be seen in the St atus – Event Log after enabling.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 76 VPN - V irtual Private Networks (BiP AC 7404VGO Onl y) Virtual Private Networks is ways to establish secured communication tunnels to an organization ’s network via the Internet.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 77 PPTP Connection - Rem ote Access Connection Name: User-defined name for the connection (e.g. “connection to of fice”). T ype: Check Dial Out if you want your router to operate as a client (connecting to a remote VPN server , e.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 78 Example: Configuring a Remote Access PPTP VPN Dial-out Connection A company’ s office establishes a PPTP VPN connection with a file server located at a separate location. The router is installed in the office, connected to a couple of PCs and Servers.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 79 Configuring the PPTP VPN in the Office Y ou can either input the IP address (69.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 80 PPTP Connection - LAN t o LAN Connection Name: User-define description of the connection. T ype: Check Dial Out if you want your router to operate as a client (connecting to a remote VPN server , e.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 81 Example: Configuring a PPTP LAN-to-LAN VPN Connec tion The branch of fice establishes a PPTP VPN tunnel with head office to connect two private networks over the Internet. The routers are inst alled in the head office and branch office accordingly .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 82 Configuring PPTP VPN in the Head Office The IP address 192.168 .1.201 will be assigned to the router located in the branch of fice. Please make sure this IP is not used in the head of fice LAN.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 83 Configuring PPTP VPN in the Branch Office The IP address 69.1.12 1.30 is the Public IP address of the router located in head office.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 84 IPSec (IP Security Protocol) Click Create to create a new IPSec VPN connection account. After you have created the IPSec connection, account information will be displayed. (S ee example above).
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 85 IPSec VPN Connection Connection Name: User-defined name for the connection (e.g. “connection to of fice”). Local Network: Set the IP address, subnet or address range of the local network.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 86 3DES: S tands for T riple Data Encryption S tandard, it u ses 168 (56*3) bits a s an encryption method. AES: S tands for Advanced Encryption S tandards, you can use 128, 192 or 256 bit s as encryption method.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 87 Advanced Option This function is only available af ter completed creating an IPSec account. Click Advanced Option to change the following settings: IKE (Internet key Exchange) Mode: Select IKE mode to Main mode or Aggressive mode.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 88 AES: S tands for Advanced Encryption S tandards, you can use 128, 192 or 256 bits as encryption method. Diffie-Hellman Group: It is a public-key cryptography protocol that allows two p arties to esta blish a shared secret over an unsecured communication channel (i.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 89 Example: Configuring a IPSec LAN-to-LAN VPN Connection T able 3: Network Configur ation and Security Plan Branch Office Head Office Local Network ID 192.168.0.0/24 192.168.1.0/24 Local Router IP 69.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 90 Configuring IPSec VPN in the Head Office Item Function Description 1 Connection Name IPSec_HeadOffice Given a name of IPSec connection Subnet Check Subnet radio button IP Address 192.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 91 Configuring IPSec VPN in the Branch Office Item Function Description 1 Connection Name IPSec_Branch Office Given a name of IPSec connection Subnet Check Subnet radio button IP Address 192.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 92 Example: Configuring a IPSec Host-to-LAN VPN Connection.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 93 Configuring IPSec VPN in the Office Item Function Description 1 Connection Name IPSec Given a name of IPSec connection Subnet Check Subnet radio button IP Address 192.168.1.0 2 Netmask 255.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 94 L2TP (Lay er T w o T unneling Protocol) T wo types of L2TP VPN are supported Remote Access and LAN-to-LAN (please refer below for more information.). Click Create to create a new VPN connection account.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 95 L2TP Connection - Remote Access L2TP VPN Connection Connection Name: User-defined name for the connection (e.g. “connection to of fice”). T ype: Check Dial Out if you want your router to operate as a client (connecting to a remote VPN server , e.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 96 the VPN tunnel to the Internet; therefore, active the function may degrade the Internet performance. Click Apply af ter changing settings. L2TP over IPSec (L2TP/IPSec) VPN Connection IPSec: Enable for enhancing your L2TP VPN security .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 97 Example: Configuring a L2TP VPN - Remote Access Dial-in Connection A remote worker establishes a L2TP VPN connection with the head office using Micro soft's VPN Adapter (included with Windows XP/2000/ME, etc.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 98 Configuring L2TP VPN in the Office The input IP address 192.168.1.200 will be assigned to the remote worker .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 99 Example: Configuring a Remote Access L2TP VPN Dial-out Connection A company’ s office establishes a L2TP VPN connection with a file server located at a sep arate location. The router is installed in the office, connected to a couple of PCs and Servers.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 100 Configuring the L2TP VPN in the Office Item Function Description 1 Connection Name VPN_L2TP Given name of L2TP connection Dial out Check Dial out 2 Server IP Address (or Hostname) 69.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 101 Example: Configuring your Router to Dial-in to the Server Currently , Microsoft Windows operation system does not support L2TP incoming service. Additional sof tware may be required to set up your L2TP incoming service.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 102 L2TP Connection - LAN to LAN L2TP VPN Connection Connection Name: User-define description of the connection. T ype: Check Dial Out if you want your router to operate as a client (connecting to a remote VPN server , e.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 103 predetermined period of time. 0 means this connection is always on. Click Apply af ter changing settings. L2TP over IPSec (L2TP/IPSec) VPN Connection IPSec: Enable for enhancing your L2TP VPN security .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 104 Example: Configurin g L2TP LAN-to-LAN VPN Connection The branch of fice establishes a L2T P VPN tunnel with head of fice to connect two private networks over the Internet. The routers are inst alled in the head office and branch office accordingly .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 105 Configuring L2TP VPN in the Head Office The IP address 192.168 .1.200 will be assigned to the router located in the branch of fice. Please make sure this IP is not used in the head of fice LAN.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 106 Configuring L2TP VPN in the Branch Office The IP address 69.1.12 1.30 is the Public IP address of the router located in head office.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 107 V oIP - V oice over Internet Protocol V oIP enables telephone calls through existing Internet connection instead of goin g through the PSTN (Public Switched T elephone Network).
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 108 Wiza rd This section provides easy setup for your V oIP service. Phone port 1 and 2 can be registered to different SIP Service Provider . V oice QoS DSCP Marking : Dif ferentiated Services Code Point (DSCP), it is the fir st 6 bits in t he T oS byte.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 109 Setting for Phone Port 2 Click box of Same as Phone Port 1 to set phone port 2 be identical as phone port 1. Please refer to descriptions in “Setting for Phone Port 1”. User-defined Profiles Note: User defined profiles are limited to 8 only.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 11 0 Confirm Password: Re-enter the password for confirmation. Display Name: This parameter will be appeared on the Caller ID. General Settings This section reflect s and cont ains basic settings for the V oIP module from selected provider in the Wizard section.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 111 value is 5100) Region: This selection is a drop-down box, which allows user to select the country for which the V oIP device must work. When a country is selected, the country p arameters are automatically loaded.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 11 2 PSTN Auto-fallback: Whenever V oIP SIP respo nses error and error code matching with the cod es in the Edit section, the V oiP calls will automatically fallback to PSTN. In the other word, the call will be called via the PSTN when V oIP SIP returns an error code.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 11 3 Phone Port This section displays sta tus and allows you to edit the account information of your Phones.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 11 4 Confirm Password: Re-enter the password for confirmation. Display Name: This parameter will be appeared on the Caller ID. Codec Preference Codec is known as Coder-Decoder used for data si gnal conversion.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 11 5 PSTN Dial Plan (Router with LINE port only) This section enables you to configure “V oIP with PSTN switching” on your system. Y ou can define a range of dial plans to make regular call from V oIP switching t o PSTN line.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 11 6 PSTN Dial Plan Examples: 1) Dial with Prefix If you dial 01223 707070, number 01223707070 will be dialed out via FXO to make a regular phone call. 2) Dial without Prefix If you dial 9102, the number 102 will only be dialed out via FXO port to make a regular phone call.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 11 7 4) Dial at Timeout no Prefix If you only dial 97070 and no more numbers, after the timeout activates, 7070 will be dialed without prefix to make a regular call via FXO port.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 11 8 V oIP Dial Plan This section helps you to make a telephony number dialed as making a regular call via V oIP . Y ou no longer need to memorize a long dial string of number for making a V oIP call.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 11 9 Dial Plan Rules List Click Add to create and define V oIP dial-plan rule(s). Prefix Processing: Prepend xxx unconditionally: xxx number is appended unconditionally to the front of the dialing number when making a call.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 120 a traditional phone number (PSTN) to an Internet addresses/ SIP URL. The ENUM number must be registered via a public ENUM site or your V oIP Service Provider .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 121 Localcheap.com is the default V oIP provider I set on phone port 1. When I call out any number start with 1 or 2 or 3 and plus rest of the phone number for local call, 03 is alw ays prepended in front of these number .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 122 Mobilecheap.com is the default V oIP provider I set on phone port 2. When I call out 123-39-45678 for a mobile call, 123 is replaced with 09. Therefore, 09-39-45678 is the actual phone number called out via Mobilecheap.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 123 Ring & T one This section allows advanced user to change the existing or newly defined parameters for the various ring tones (dial tone, busy tone, answer tone and etc.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 124 Special Dial Codes The following table list s the special dial codes that are built-in to the system: Option Description Flash-hook (Wireless Router with LINE port only) Switch to PSTN line Note: A quick press of the hook.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 125 QoS - Quality of Service QoS function helps you to control your network traf fic for each application from LAN (Ethernet and/or Wireless) to W AN (Internet).
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 126 Source IP Address Range : The sou rce IP addre ss or range of p ackets t o be monitored. Destination IP address Range : The destination IP address or range of p ackets to be monitored.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 127 Outbound IP Throttling (LAN to W AN) IP Throttling allows you to limit the speed of IP traffic. The value entered will limit the speed of the application that you set to the specified value’ s multiple of 32kbps.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 128 Inbound IP Throttling (W AN to LAN) IP Throttling allows you to limit the speed of IP traffic. The value entered will limit the speed of the application that you set to the specified value’ s multiple of 32kbps.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 129 Example: QoS for your Network Connection Diagram Information and Settings Upstream: 928 kbp s Downstream: 8 Mbps V oIP User : 192.168.1.1 Normal Use rs : 192.168.1.2~192.168.1.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 130 Mission-critical application Mostly the VPN connection is mission-critical application for doing data exchange between head and branch office. The mission-critical application must be sent out smoothly without any dropping.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 131 Sometime your customers or friends may upload their f iles to your FTP server and that will saturate your downstream bandwidth. The settings below help you to limit bandwidth for the restricted application.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 132 V irtual Server (known as Port Forwarding) In TCP/IP and UDP networks a port is a 16-bit number used to identify which application program (usually a server) incoming connections should be delivered to.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 133 Add Virtual Server Because NA T can act as a “natural” Internet firewall, yo ur router protect s your network from being .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 134 Example: If you like to remote accessing your Router through the W eb/HTTP at all time, you would need to enable port number 80 (Web/H TTP) and map to Router ’s IP Addre ss.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 135 Edit DMZ Host The DMZ Host is a local computer exposed to the Internet. When setting a p articular internal IP address as the.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 136 Edit One-to-One NA T (Netw ork Address T ranslation) One-to-One NA T maps a specific private/local IP address to a global/public IP address. If you have multiple public/W AN IP addresses fro m you ISP , you are eligible for One-to-One NA T to utilize these IP ad dresses.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 137 Time Schedule: User-defined time period to enable your virtual server . Y ou may specify a time schedule or Always on for the usage of this V irtual Server Entry .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 138 Example: List of some well-known and registered port numbers. The Internet Assigned Numbers Authority (IANA) is the central coordinat or for the assignment of unique parameter values for Int ernet protocols.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 139 T ime Schedule The T ime Schedule supports up to 16 time slot s which helps you to manage your Internet connection. In each time profile, you may schedule specific day(s) i.e. Monday through Sunday to restrict or allowing the usage of the Internet by users or applications.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 140 Configuration of Time Schedule Edit a Time Slot 1. Choose any T ime Slot (ID 1 to ID 16) to edit, click Edit. Note: Watch it carefully, the days you have selected will presen t in capital letter.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 141 Advanced Configuration options within the Advanced section are for users who wish to take a dvantage of the more advanced features of the router .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 142 Dynamic DNS The Dynamic DNS function allows you to alias a dynamic IP address to a static hostname, allowing users whose ISP does not assign them a st atic IP address to use a domain name.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 143 Check Email This function allows you to have the router check your POP3 mailbox for new Email messages. The Mail LED on your router will light when it detects new messages waiting for download.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 144 Device Management The Device Management advanced configuration settings allow you to control your router ’ s security options and device monitoring features.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 145 After 100 seconds, the device will au tomatically logout User A. Universal Plug and Play (UPnP) UPnP of fers peer-to-peer network connectivity for PCs and other network devices, along with control and data transfer between devices.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 146 IP group ICMP group TCP group UDP group EGP (not applicable) T ransmission SNMP group From RFC165.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 147 IGMP IGMP , known as Internet Group Management Protocol , is used to management host s from multicast group. IGMP Forwarding: Accepting multicast p acket. Default is set to Enable.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 148 VLAN groups need to be created. Ethernet: P1 (Port 1) Ethernet1: P2, P3 and P4 (Port 2, 3, 4) Please uncheck P2, P3, P4 from Ethernet VLAN Port first. Note: You should setup each VLAN g roup with caution.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 149 S paces next to VPI and VCI, type 0 and 33 in respectively . Select appropriate A TM Class, Encaps ulation Method, Acceptable Frame T ype, Filter T ype and PVID for Unt agged Frames.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 150 Step 3: Setup VLAN Service Go to Configuration Advanced VLAN Bridge DefaultVlan lists all member port s . It is necessary to group specific member ports for each VLAN. From the example, two VLAN groups are requested: Dat a and Video.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 151 Mapping the VLAN Bridge with Bridge Interface created in S tep1, you will see the conformable relationship in these two screenshot s. Step 4: IGMP Snooping Enable Go Configuration Advanced IGMP .
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 4: Configuration 152 Logout T o exit the router’s web interface, choose Logout . Please ensure that you have saved the configuratio n settings before you logout. Be aware that the router is restricted to only one PC accessing the configuration we b pages at a time.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Chapter 5: T roubleshooting 153 Chapter 5: T roubleshooting If the router is not functioning properly , first check this chapter for simple troubleshooting before contacting your service provider or Billion support.
V oIP/(802.1 1g) ADSL2+ (VPN) Firewall Router Appendix A: Product Support and Contact Information 154 APPENDIX A: Product Support and Cont act Information Most problems can be solved by referring to the T roubleshooting section in the User ’s Manual .
An important point after buying a device Billion Electric Company 7404V Series (or even before the purchase) is to read its user manual. We should do this for several simple reasons:
If you have not bought Billion Electric Company 7404V Series yet, this is a good time to familiarize yourself with the basic data on the product. First of all view first pages of the manual, you can find above. You should find there the most important technical data Billion Electric Company 7404V Series - thus you can check whether the hardware meets your expectations. When delving into next pages of the user manual, Billion Electric Company 7404V Series you will learn all the available features of the product, as well as information on its operation. The information that you get Billion Electric Company 7404V Series will certainly help you make a decision on the purchase.
If you already are a holder of Billion Electric Company 7404V Series, but have not read the manual yet, you should do it for the reasons described above. You will learn then if you properly used the available features, and whether you have not made any mistakes, which can shorten the lifetime Billion Electric Company 7404V Series.
However, one of the most important roles played by the user manual is to help in solving problems with Billion Electric Company 7404V Series. Almost always you will find there Troubleshooting, which are the most frequently occurring failures and malfunctions of the device Billion Electric Company 7404V Series along with tips on how to solve them. Even if you fail to solve the problem, the manual will show you a further procedure – contact to the customer service center or the nearest service center
