https://www.peplink.
12.3 Connect Clients to Cloud SpeedFusion Cloud provides a convenient way to route the LAN client to the cloud. From SpeedFusion Cloud > Connect Clients to Cloud. https://www.peplink.
Choose a client from the drop down list > Click + > Save > Apply Changes. 12.4 Link Wi‐Fi to Cloud SpeedFusion Cloud provides a convenient way to route the Wi-Fi client to the cloud from SpeedFusion Cloud > Link Wi-Fi to Cloud. This option is available for Balance 20X, Balance 30 Pro, and Balance One. https://www.peplink.
Create a new SSID for SpeedFusion Cloud. The new SSID will inherit all settings from one of the existing SSIDs including the Security Policy. Then click Save follow by Apply Changes. SpeedFusion Cloud SSID will be shown on Dashboard. https://www.peplink.
12.5 Optimize Cloud Application Optimize Cloud Application allows you to route Internet traffic through SpeedFusion Cloud based on the application. Go to SpeedFusion Cloud > Optimize Cloud Application. Select a Cloud application to route through SpeedFusion Cloud from the drop down list > Click > Save > Apply Changes. Click the to remove a selected Cloud application from routing through SpeedFusion Cloud. https://www.peplink.
13 Network Tab 13.1 WAN From Network > WAN, choose a WAN connection by clicking it. You can also enable IPv6 support in this section WAN Connection Settings (Ethernet) https://www.peplink.
Clicking an Ethernet WAN connection will result in the following screen: WAN Connection Settings WAN Connection Name Enable Enter a name to represent this WAN connection. This setting enables the WAN connection. If schedules have been defined, you will be able to select a schedule to apply to the connection. There are five possible connection methods for Ethernet WAN: Connection Method https://www.peplink.
● GRE The connection method and details are determined by, and can be obtained from the ISP. See the following sections for details on each connection method. DNS server settings can be configured in the corresponding menu for each connection method. This field shows that NAT (network address translation) will be applied to the traffic routed Routing Mode Hostname (Optional) over this WAN connection. IP Forwarding is available when you click the link in the help icon.
This option allows you to configure the WAN connection whether for normal daily usage or as a backup connection only. Connection Priority If Always-on is chosen, the WAN connection will be kept on continuously, regardless of the priority of other WAN connections. If Backup is chosen, the WAN connection will depend on other WAN connections. It will not be used when one or more higher priority dependent WAN connections are connected.
WAN Connection Settings (Cellular) Clicking an Ethernet WAN connection will result in the following screens: WAN Connection Settings WAN Connection Name Enable Routing Mode Indicate a name you wish to give this WAN connection Click the checkbox to toggle the on and off state of this connection. This option allows you to select the routing method to be used in routing IP frames via the WAN connection. The mode can be either NAT (Network Address Translation) or IP Forwarding.
This option allows you to configure the WAN connection whether for normal daily usage or as a backup connection only. Connection Priority If Always-on is chosen, the WAN connection will be kept on continuously, regardless of the priority of other WAN connections. If Backup is chosen, the WAN connection will depend on other WAN connections. It will not be used when one or more higher priority dependent WAN connections are connected.
Cellular Settings SIM Card Indicate which SIM card this cellular WAN will use. Only applies to cellular WAN with redundant SIM cards. For routers that support the SIM Injector, you may select the “Use Remote SIM Only” to provision a SIM from a SIM Injector. Further details on the SIM Injector found is available here: https://www.peplink.com/products/sim-injector/. https://www.peplink.
Preferred SIM Card If “Both SIMs” were selected on the above field, then you can designate the priority of the SIM card slots here. If “Use Remote SIM Only” is selected in the SIM card section, the Remote SIM Settings will be shown. Remote SIM Settings You may need to enable the remote SIM Host settings in the Remote SIM management, see the section 13.14.7 or Appendix C for more details on FusionSIM.
setting is Auto. APN / Login / Password / SIM PIN When Auto is selected, the information in these fields will be filled automatically. Select Custom to customize these parameters. The parameter values are determined by and can be obtained from the ISP. Bandwidth Allowance Monitor Check the box Enable to enable bandwidth usage monitoring on this WAN connection for each billing cycle. When this option is not enabled, bandwidth usage of each month is still being tracked but no action will be taken.
To define the threshold manually using specific signal strength values, please click on the question Mark and the following field will be visible. WAN Connection Settings (USB) WAN Connection Settings WAN Connection Name Enable Indicate a name you wish to give this WAN connection This setting enables the WAN connection. If schedules have been defined, you will be able to select a schedule to apply to the connection. Each ISP may provide a set of DNS servers for DNS lookups.
This option allows you to configure the WAN connection whether for normal daily usage or as a backup connection only. Connection Priority If Always-on is chosen, the WAN connection will be kept on continuously, regardless of the priority of other WAN connections. If Backup is chosen, the WAN connection will depend on other WAN connections. It will not be used when one or more higher priority dependent WAN connections are connected.
recommended setting is Auto. APN / Login / Password / SIM PIN When Auto is selected, the information in these fields will be filled automatically. Select Custom to customize these parameters. The parameter values are determined by and can be obtained from the ISP. WAN Connection Settings (Common) The remaining WAN-related settings are common to both Ethernet and cellular WAN Physical Interface Settings This is the port speed of the WAN connection.
Clone client to always use the same MAC address to connect to the network. If it is the case, you may change the WAN interface's MAC address to the client PC's one by entering the PC's MAC address to this field. If you are not sure, click the Default button to restore to the default value. VLAN Check the box to assign a VLAN to the interface.
Health Check Settings To ensure traffic is routed to healthy WAN connections only, the Peplink Balance can periodically check the health of each WAN connection. Health Check settings for each WAN connection can be independently configured via Network > Interfaces > WAN > *Connection name* > Health Check Settings. Enable Health Check by selecting PING, DNS Lookup, or HTTP from the Health Check Method drop-down menu.
DNS lookups will be issued to test connectivity with target DNS servers. The connection will be treated as up if DNS responses are received from one or both of the servers, regardless of whether the result was positive or negative. Health Check DNS Servers This field allows you to specify two DNS hosts’ IP addresses with which connectivity is to be tested via DNS Lookup.
Other Health Check Settings Timeout This setting specifies the timeout in seconds for ping/DNS lookup requests. The default timeout is 5 seconds. Health Check Interval This setting specifies the time interval in seconds between ping or DNS lookup requests. The default health check interval is 5 seconds. Health Check Retries This setting specifies the number of consecutive ping/DNS lookup timeouts after which the Peplink Balance will treat the corresponding WAN connection as down.
Bandwidth Allowance Monitor Settings Bandwidth Allowance Monitor Action Start Day Monthly Allowance If Email Notification is enabled, you will be notified by email when usage hits 75% and 95% of the monthly allowance. If Disconnect when usage hits 100% of monthly allowance is checked, this WAN connection will be disconnected automatically when the usage hits the monthly allowance.
Additional Public IP Settings IP Address List IP Address List represents the list of fixed Internet IP addresses assigned by the ISP in the event that more than one Internet IP address is assigned to this WAN connection. Enter the fixed Internet IP addresses and the corresponding subnet mask, and then click the Down Arrow button to populate IP address entries to the IP Address List. Dynamic DNS Settings Peplink Balance routers allow registering domain name relationships to dynamic DNS service providers.
Dynamic DNS Settings Service Provider This setting specifies the dynamic DNS service provider to be used for the WAN. Supported providers are: ● changeip.com ● dyndns.org ● no-ip.org ● tzo.com ● DNS-O-Matic ● Others… support custom Dynamic DNS servers by entering its URL. Works with any service compatible with DynDNS API. Select Disabled to disable this feature.
13.2 LAN 13.2.1 Network Settings LAN interface settings are located at Network>LAN>Network Settings. Navigating to that page will show the following dashboard: This represents the LAN interfaces that are active on your router (including VLAN). A grey “X” means that the VLAN is used in other settings and cannot be deleted. You can find which settings are using the VLAN by hovering over the grey “X”. Alternatively, a red “X” means that there are no settings using the VLAN.
Inter-VLAN routing Check this box to enable routing between virtual LANs. Layer 2 PepVPN Bridging PepVPN Profiles to Bridge The remote network of the selected PepVPN profiles will be bridged with this local LAN, creating a Layer 2 PepVPN, they will be connected and operate like a single LAN, and any broadcast or multicast packets will be sent over the VPN.
DHCP Server Settings DHCP Server When this setting is enabled, the DHCP server automatically assigns an IP address to each computer that is connected via LAN and configured to obtain an IP address via DHCP. The Pepwave router’s DHCP server can prevent IP address collision on the LAN. DHCP Server Logging Enable logging of DHCP events in the eventlog by selecting the checkbox.
information to LAN hosts. To define an extended DHCP option, click the Add button, choose the option to define and enter its value. For values that are in IP address list format, you can enter one IP address per line in the provided text area input control. Each option can be defined once only. DHCP Reservation This setting reserves the assignment of fixed IP addresses for a list of computers on the LAN. The computers to be assigned fixed IP addresses on the LAN are identified by their MAC addresses.
13.2.2 Network Settings (Common Settings) Static Route Settings Static Route This table is for defining static routing rules for the LAN segment. A static route consists of the network address, subnet mask, and gateway address. The address and subnet mask values are in w.x.y.z format. The local LAN subnet and subnets behind the LAN will be advertised to the VPN. Remote routes sent over the VPN will also be accepted. Any VPN member will be able to route to the local subnet. Click to create a new route.
WINS Server Settings Check the box to enable the WINS Server. A list of WINS clients will be displayed at Status>WINS Clients. Enable Enter any needed DNS proxy settings. Once all settings have been entered, click Save to store your changes. DNS Proxy Settings A To enable the DNS proxy feature, check this box, and then set up the feature at Network>LAN>DNS Proxy Settings. DNS proxy server can be enabled to serve DNS requests originating from LAN/PPTP/SpeedFusionTM peers.
feature can improve DNS response time by storing all received DNS results for faster DNS lookup. However, it cannot return the most updated result for frequently updated DNS records. By default, DNS Caching is disabled. Include Google Public DNS Servers Local DNS Records A When this option is enabled, the DNS proxy server will forward DNS requests to Google's public DNS servers, in addition to the DNS servers defined in each WAN. This could increase the DNS service's availability.
Drop-in mode (or transparent bridging mode) eases the installation of the Peplink Balance on a live network between the firewall and router, such that changes to the settings of existing equipment are not required. The following diagram illustrates drop-in mode setup: Enable drop-in mode using the Setup Wizard. After enabling this feature and selecting the WAN for dropin mode, various settings, including the WAN's connection method and IP address, will be automatically updated.
Drop-in Mode Settings Enable Drop-in mode eases the installation of the Peplink Balance on a live network between the existing firewall and router, such that no configuration changes are required on existing equipment. Check the box to enable the drop-in mode feature. Please refer to Section 12, Drop-in Mode for details. WAN for DropIn Mode Select the WAN port to be used for drop-in mode. If WAN 1 with LAN Bypass is selected, the high availability feature will be disabled automatically.
WAN Default Gateway WAN DNS Servers A Enter the WAN router's IP address in this field. If there are more hosts in addition to the router on the WAN segment, click the button next to “WAN Default Gateway” and check the I have other host(s) on WAN segment box and enter the IP address of the hosts that need to access LAN devices or be accessed by others. Enter the selected WAN's corresponding DNS server IP addresses. - Advanced feature, please click the button on the top right-hand corner to activate. 13.
13.3 VPN 13.3.1 SpeedFusion Peplink Balance SpeedFusionTM Bandwidth Bonding is our patented technology that enables our SD-WAN routers to bond multiple Internet connections to increase site-to-site bandwidth and reliability. SpeedFusion securely connects one or more branch offices to your company's main headquarters or to other branches. The data, voice, and video communications between these locations are kept confidential across the public Internet.
This device will be identified by other SpeedFusion Peers by this local ID. The following menus will appear: SpeedFusion Profiles This table displays all defined profiles. Click the New Profile button to create a new profile for making a VPN connection to a remote unit via available WAN connections. Each pair of VPN connection requires its own profile. The local LAN subnet and subnets behind the LAN (defined under Static Route on the LAN Settings page) will be advertised to the VPN.
This feature allows you to change the local ID of a PepVPN connection. Click the connection and the following menu will appear: button to select your After updating the local ID, click Save to store your changes. Link Failure Detection The bonded VPN can detect routing failures on the path between two sites over each WAN connection. Failed WAN connections will not be used to route VPN traffic. Health check packets are sent to the remote unit to detect any failure.
A list of defined SpeedFusion connection profiles and a Link Failure Detection Time option will be shown. Click the New Profile button to create a new VPN connection profile for making a VPN connection to a remote Peplink Balance via the available WAN connections. Each profile is for making a VPN connection with one remote Peplink Balance. PepVPN Profile Settings This field is for specifying a name to represent this profile.
Pre-shared Key defines the pre-shared key used for this particular VPN connection. The VPN connection's session key will be further protected by the pre-shared key. The connection will be up only if the pre-shared keys on each side match. When the peer is running firmware 5.0+, this setting will be ignored. Enter Remote IDs either by typing out each Remote ID and Pre-shared Key, or by pasting a CSV. If you wish to paste a CSV, click the setting.
While using PepVPN, utilize multiple WAN links to reduce the impact of packet loss and get the lowest possible latency at the expense of extra bandwidth consumption. This is suitable for streaming applications where the average bitrate requirement is much lower than the WAN's available bandwidth. WAN SmoothingA Off - Disable WAN Smoothing. Normal - The total bandwidth consumption will be at most 2x of the original data traffic.
13.3.2 IPsec VPN Peplink Balance IPsec VPN functionality securely connects one or more branch offices to your company's main headquarters or to other branches. Data, voice, and video communications between these locations are kept safe and confidential across the public Internet. All Peplink products can make multiple IPsec VPN connections with Peplink routers, as well as Cisco and Juniper routers. Note that all LAN subnets and the subnets behind them must be unique.
https://www.peplink.
IPsec VPN Settings Name This field is for specifying a local name to represent this connection profile. Active When this box is checked, this IPsec VPN connection profile will be enabled. Otherwise, it will be disabled. Connect Upon Disconnection of Check this box and select a WAN to connect to this VPN automatically when the specified WAN is disconnected. To activate this function, click the button next to the “Active” option.
Pre-shared Key This defines the peer authentication pre-shared key used to authenticate this VPN connection. The connection will be up only if the pre-shared keys on each side match. Remote Certificate (pem encoded) Available only when X.509 Certificate is chosen as the Authentication method, this field allows you to paste a valid X.509 certificate. Local ID In Main Mode, this field can be left blank.
IPsec traffic will go through this link. However, should unforeseen problems (e.g.,unplugged cables or ISP problems) cause WAN1 to go down, our IPsec implementation will make use of WAN2 and WAN3 for failover IPsec Status shows the current connection status of each connection profile and is displayed at Status > IPsec VPN. 13.3.
GRE Tunnel Profile Settings Name This field is for specifying a name to represent this GRE Tunnel connection profile. Active When this box is checked, this GRE Tunnel connection profile will be enabled. Otherwise, it will be disabled. Remote GRE IP Address This field is for entering the remote GRE’s IP address Tunnel Local IP Address This field is for specifying the tunnel source IP address.
13.4 Outbound Policy Outbound policies for managing and load balancing outbound traffic are located at Network>Outbound Policy. Click the button beside the Outbound Policy box: A selection menu will appear, giving you the choice between three different Outbound Policy Settings: Outbound Policy Settings High Application Compatibility Outbound traffic from a source LAN device is routed through the same WAN connection regardless of the destination Internet IP address and protocol.
traffic for all connections that do not match any of the rules above it. Under the Service heading, click Default to change these settings. To rearrange the priority of outbound rules, drag and drop them into the desired sequence. By default, Auto is selected as the Default Rule. You can select Custom to change the algorithm to be used. Please refer to the upcoming sections for the details on the available algorithms. To create a custom rule, click Add Rule at the bottom of the table. https://www.peplink.
New Custom Rule Settings Service Name Enable This setting specifies the name of the outbound traffic rule. This setting specifies whether the outbound traffic rule takes effect. When Enable is checked, the rule takes effect: traffic is matched and actions are taken by the Pepwave router based on the other parameters of the rule. When Enable is unchecked, the rule does not take effect: the Pepwave router disregards the other parameters of the rule.
This setting specifies the destination IP address, IP network, Domain name, SpeedFusion Cloud, PepVPN Profile or Grouped network for traffic that matches the rule. Destination If Domain Name is chosen and a domain name, such as foobar.com, is entered, any outgoing accesses to foobar.com and *.foobar.com will match this criterion. You may enter a wildcard (.*) at the end of a domain name to match any host with a name having the domain name in the middle. If you enter foobar.*, for example, www.foobar.
For a full explanation of each Algorithm, please see the following article: https://forum.peplink.com/t/exactly-how-do-peplinks-load-balancing-algorithmns-work/8059 Load Distribution Weight This is to define the outbound traffic weight ratio for each WAN connection. This field allows you to configure the default action when all the selected Connections are not available. When No connections are available Drop the Traffic - Traffic will be discarded.
Expert Mode is available on some Pepwave routers for use by advanced users. To enable the feature, click on the help icon and click turn on Expert Mode. In Expert Mode, a new special rule, SpeedFusionTM Routes, is displayed in the Custom Rules table. This rule represents all SpeedFusionTM routes learned from remote VPN peers. By default, this bar is on the top of all custom rules. This position means that traffic for remote VPN subnets will be routed to the corresponding VPN peer.
● USB: 10 Total weight is 60 = (10 +10 + 10 + 10 + 10 + 10). Matching traffic distributed to Ethernet WAN1 is 16.7% = (10 / 60 x 100%. Matching traffic distributed to Ethernet WAN2 is 16.7% = (10 / 60) x 100%. Matching traffic distributed to Wi-Fi WAN is 16.7% = (10 / 60) x 100%. Matching traffic distributed to Cellular 1 is 16.7% = (10 / 60) x 100%. Matching traffic distributed to Cellular 2 is 16.7% = (10 / 60) x 100%. Matching traffic distributed to USB is 16.7% = (10 / 60) x 100%.
By Destination: The same WAN connection will be used for traffic matching the rule, originating from the same machine, and going to the same destination. This option can better distribute loads to WAN connections when there are only a few client machines. The default mode is By Source. When there are multiple client requests, they can be distributed (persistently) to WAN connections with a weight.
Starting from Firmware 5.2, outbound traffic can be prioritized to go through SpeedFusionTM connection(s). By default, VPN connections are not included in the priority list. Tip Configure multiple distribution rules to accommodate different kinds of services. Algorithm: Overflow The traffic matching this rule will be routed through the healthy WAN connection that has the highest priority and is not in full load.
Algorithm: Least Used https://www.peplink.
The traffic matching this rule will be routed through the healthy WAN connection that is selected in Connection and has the most available download bandwidth. The available download bandwidth of a WAN connection is calculated from the total download bandwidth specified on the WAN settings page and the current download usage. The available bandwidth and WAN selection is determined every time an IP session is made. Algorithm: Lowest Latency https://www.peplink.
The traffic matching this rule will be routed through the healthy WAN connection that is selected in Connection and has the lowest latency. Latency checking packets are issued periodically to a nearby router of each WAN connection to determine its latency value. The latency of a WAN is the packet round trip time of the WAN connection. Additional network usage may be incurred as a result.
Algorithm : Fastest Response Time The Fastest response Time algorithm works as follows: When a network session is created, the first outgoing packet of that particular session is duplicated to all the available WANs. When the first response is received from a remote server, any further traffic for this session will be routed over that particular WAN connection for the fastest possible response time. If any slower responses are received on other connections afterwards, they will be discarded. 13.
13.5.1 Servers The settings to configure servers on the LAN are located at Network>Inbound Access>Servers. Inbound connections from the Internet will be forwarded to the specified Inbound IP address(es) based on the protocol and port number. When more than one server is defined, requests will be distributed to the servers in the weight ratio specified for each server.
Tip At least one server must be defined before services can be added. To define a new service, click the Add Service button, upon which the following menu appears: Services Settings Enable This setting specifies whether the inbound service rule takes effect. When Yes is selected, the inbound service rule takes effect. If the inbound traffic matches the specified IP protocol and port, action will be taken by the Peplink Balance based on the other parameters of the rule.
IP Protocol The IP Protocol setting, along with the Port setting, specifies the protocol of the service as TCP, UDP, ICMP, or IP. Inbound traffic that matches the specified IP Protocol and Port(s) will be forwarded to the LAN hosts specified by the Servers setting. Upon choosing a protocol, the Protocol Selection Tool drop-down menu can be used to automatically the port information of common Internet services (e.g. HTTP, HTTPS, etc.).
Included Server(s) This setting specifies the LAN servers that handle requests for the service, and the relative weight values. The amount of traffic that is distributed to a server is proportional to the weight value assigned to the server relative to the total weight.
Note: DNS names may only contain alphanumeric characters (A-Z and 0-9), hyphens (-), and periods (.). The period is only allowed when it is used to delimit the components of domain style names. For more information, see the following websites: ● rfc952 ● rfc1123 DNS Settings DNS Servers This setting specifies the WAN IP addresses on which the DNS server of the Peplink Balance should listen.
The Peplink Balance serves both the clients that are accessing from the specified IP addresses, and the clients that are accessing its LAN interface. Routing Control by Subnet Database Default SOA / NS When this function is enabled, the system will check to see if an incoming DNS client is within any WAN's ISP subnet. Only the matched WAN(s)'s IP addresses will be returned. Note that this feature is available only when a subnet database has been defined.
This page is for defining the domain’s SOA, NS, MX, CNAME, A, TXT, and SRV records. Seven tables are presented in this page for defining the five types of records. SOA Records https://www.peplink.
Click on the icon to choose whether to use the pre-defined default SOA record and NS records. If the option Use Default SOA and NS Records is selected, any changes made in the default SOA/NS records will be applied to this domain automatically. Otherwise, select the option Customize SOA Record for this domain to customize this domain's SOA and NS records. This table displays the current SOA record.
● ● ● ● ● ● should be the WAN connection's name server IP address that is registered in the DNS registrar. If this field is entered, a corresponding A record for the name server will be created automatically. If it is left blank, the A record for the name server must be created manually. E-mail: Defines the e-mail address of the person responsible for this zone. Note: format should be mailbox-name.domain.com, e.g., hostmaster.example.com.
Records button in the MX Records box. Then the table will expand to look like the following: When creating an MX record for the domain itself (not a sub-domain), the Host field should be left blank. For each record, Priority and Mail Server name must be entered. Priority typically ranges from 10 to 100. Smaller numbers have a higher priority. After finishing adding MX records, click the Save button. CNAME Records The CNAME Record table shows the domain’s CNAME records.
This table shows the A records of the domain name. To add an A record, click the New A Record button. The following screen will appear: A record may be automatically added for the SOA records with a name server IP address provided. A Record Host Name This field specifies the A record of this sub-domain to be served by the Peplink Balance. The wildcard character “*” is supported. The IP addresses of “*.domain.name" will be returned for every name ending with ".domain.
Address(es) returned when the Peplink Balance responds to DNS queries for the domain name specified by Host Name. The IP addresses listed in each box as default are the Internet IP addresses associated with each of the WAN connections. Static IP addresses that are not associated with any WAN can be entered into the Custom IP list. A PTR record is also created for each custom IP.
To add a new TXT record, click the New TXT Record button in the TXT Records box. Click the Edit button to edit the record. The time-to-live value and the TXT record’s value can be entered. Click the Save button to finish. When creating a TXT record for the domain itself (not a sub-domain), the Host field should be left blank. The maximum size of the TXT Value is 255 bytes. After editing the five types of records, you can leave the page by simply going to another section of the web admin interface.
● ● ● ● ● Service: The symbolic name of the desired service. Priority: Indicates the priority of the target; the smaller the value, the higher the priority. Weight: A relative weight for records with the same priority. Target: The canonical hostname of the machine providing the service. Port: Enter the TCP or UDP port number on which the service is to be found. Reverse Lookup Zones Reverse lookup zones can be configured in Network>Inbound Access>DNS Settings.
IP numbers are 1, 2, ... 254, respectively. SOA Record You can click the link Click here to define SOA record to create or click on the Name Server field to edit the SOA record. https://www.peplink.
Name Server: Enter the NS record's FQDN server name here. For example: "ns1.mydomain.com" (equivalent to "www.1stdomain.com.") "ns2.mydomain.com." Email, Refresh, Retry, Expire, Min Time, and TTL are entered in the same way as in the forward zone. Please refer to Section 17.3.5 for details. NS Records https://www.peplink.
The NS record of the name server defined in the SOA record is automatically added here. To create a new NS record, click the New NS Records button. When creating an NS record for the reverse lookup zone itself (not a sub-domain or dedicated zone), the Host field should be left blank. Name Server must be a FQDN. CNAME Records To create a new CNAME record, click the New CNAME Record button. CNAME records are typically used for defining classless reverse lookup zones.
To create a new PTR record, click the New PTR Record button. For Host IP Number field, enter the last integer in the IP address of a PTR record. For example. for the IP address 11.22.33.44, where the reverse lookup zone is 33.22.11.in-arpa.addr, the Host IP Number should be 44. The Points To field defines the host name which the PTR record should be pointed to. It must be a FQDN.
● ● ● In the Target DNS Server IP Address field, enter the IP address of the DNS server. In the Transfer via…field, choose the connection which you would like to transfer through. Select Next >> to continue. ● In the blank space, enter the Domain Names (Zones) which you would like to assign the IP address entered in the previous step. Enter one domain name per line. Select Next >> to continue.
overwrite the existing record or << Back to go back to the previous step. After the zone records process have been fetched, the fetch results would be shown as above. You can view import details by clicking the corresponding hyperlink on the right-hand side. https://www.peplink.
13.6 NAT Mappings The Peplink Balance allows the IP address mapping of all inbound and outbound NATed traffic to and from https://www.peplink.
an internal client IP address. NAT mappings can be configured at Network>NAT Mappings. To add a rule for NAT mappings, click Add NAT Rule and the following screen will be displayed: NAT Mapping Settings LAN Client(s) NAT Mapping rules can be defined for a single LAN IP Address, an IP Range, or an IP Network. https://www.peplink.
Address This refers to the LAN host’s private IP address. The system maps this address to a number of public IP addresses (specified below) in order to facilitate inbound and outbound traffic. This option is only available when IP Address is selected. Range The IP range is a contiguous group of private IP addresses used by the LAN host. The system maps these addresses to a number of public IP addresses (specified below) to facilitate outbound traffic.
13.7 MediaFast MediaFast settings can be configured by navigating to Network > MediaFast. Setting Up MediaFast Content Caching To access MediaFast content caching settings, select Network > MediaFast. MediaFast Enable Domains / IP Addresses Source IP Subnet Click the checkbox to enable MediaFast content caching. Choose to Cache on all domains, or enter domain names and then choose either Whitelist (cache the specified domains only) or Blacklist (do not cache the specified domains).
The Secure Content Caching menu operates identically to the MediaFast menu, except it is for secure content cachting accessible through https://. In order for Mediafast devices to cache and deliver HTTPS content, every client needs to have the necessary certificates installed*. *See https://forum.peplink.com/t/certificate-installation-for-mediafast-https-caching/ Cache Control Content Type Check these boxes to cache the listed content types or leave boxes unchecked to disable caching for the listed types.
Prefetch Schedule Content prefetching allows you to download content on a schedule that you define, which can help to preserve network bandwidth during busy times and keep costs down. To access MediaFast content prefetching settings, select Network > MediaFast > Prefetch Schedule. https://www.peplink.
Prefetch Schedule Settings Name This field displays the name given to the scheduled download. Status Check the status of your scheduled download here. Next Run Time/Last Run Time Last Duration Result Last Download These fields display the date and time of the next and most recent occurrences of the scheduled download. Check this field to ensure that the most recent download took as long as expected to complete.
Simply provide the requested information to create your schedule. Clear Web Cache Clear Statistics Click to clear all cached content. Note that this action cannot be undone. Click to clear all prefetch and status page statistics. https://www.peplink.
13.8 ContentHub Integrated into MediaFast-enabled routers, ContentHub allows you to deliver webpages and applications using the local storage on your router. Users will be able to access news, articles, videos, and access your web app, without the need for internet access. ContentHub Storage needs to be configured before content can be uploaded to the ContentHub. Follow the link on the information panel to configure storage. To access ContentHub, navigate to Network > ContentHub and check the Enable box.
Schedule Active Type Checkbox toggles the activation of the content. This option allows you to select Website or Application Protocol HTTP,HTTPS or both Domain/Pat h The contenhub uses http://mytest.com). Method Source this as the domain name for client access (such as Only applicable for Application type: Choose between sync or file upload Enter the server details that the content will be downloaded from. Enter your credentials under Username and Password. Period Bandwidth Limit https://www.
Click “Save & Apply Now” to activate the changes. Below is a screenshot after configuration: The content will be synced based on the Period that is configured If you want to trigger the sync manually, you can click The “Status” column shows the sync progress. When the sync is completed,you’ll see a summary as shown in the screenshot below: before. “ ”. To access the content, open a browser in MFA’s client and enter the domain configured before (such as http://mytest.com).
After installing the framework, you can select the type to “Application” and configure the website: https://www.peplink.
The setting is the same as Website type and you can refer to the description in the above section For the Application type, you need to pack your application as below: 1. Implement two bash script files, start.sh and stop.sh in root folder, to start and stop your application. the Mediafast router will only execute start.sh and stop.sh when the corresponding website is enabled and disabled respectively. 2. Compress your application files and the bash script to tar.gz format. 3.
MDM Settings In addition to performing content caching, MediaFast-enabled routers can also serve as an MDM, administrating to client devices. To access MDM Settings, navigate to Network > MDM Settings: MDM Settings Enable Account Settings Click this checkbox to enable MDM on your router. Click Follow Web Admin Account to allow client devices to use the built-in administrator account when performing MDM. Set Custom to specify a username and password your router will use to log into your client devices.
https://forum.peplink.com/t/how-to-run-a-docker-application-on-a-peplink-mediafast-router/16021 KVM Mediafast enabled routers now support KVM. Users will have to download and install Virtual Machine Manager to manage the KVM virtual machines, through this users are able to virtualise the linux environment. For detailed configuration instructions please refer to our knowledge base: https://forum.peplink.com/t/how-to-install-virtual-machine-into-peplink-routers/29269 13.9 Captive Portal https://www.
The captive portal serves as a gateway that clients have to pass if they wish to access the Internet using your router. To configure, navigate to Network>Captive Portal. Captive Portal Settings Enable Check Enable and then, optionally, select the LANs/VLANs that will use the captive portal. Hostname To customize the portal’s form submission and redirection URL, enter a new URL in this field. To reset the URL to factory settings, click Default.
Select External Server to use the Captive Portal with a HotSpot system. As described in the following knowledgebase article: https://forum.peplink.com/t/using-hotspotsystem-wi-fi-on-pepwave-max-routers/ This authenticates your clients through a RADIUS server. After selecting this option, you will see the following fields: RADIUS Server Fill in the necessary information to complete your connection to the server and enable authentication. This authenticates your clients through a LDAP server.
Allowed Clients To whitelist a client, enter the MAC address / IP address here and click . To delete an existing client from the list of allowed clients, click the button next to the listing. Splash Page Here, you can choose between using the Balance’s built-in captive portal and redirecting clients to a URL you define.
13.10 QoS 13.10.1 User Groups LAN and PPTP clients can be categorized into three user groups - Manager, Staff, and Guest. This menu allows you to define rules and assign client IP addresses or subnets to a user group. You can apply different bandwidth and traffic prioritization policies on each user group in the Bandwidth Control and Application sections. The table is automatically sorted, and the table order signifies the rules' precedence.
rule. Two default rules are predefined and put at the bottom. They are All DHCP reservation clients and Everyone, and they cannot be removed. The All DHCP reservation client represents the LAN clients defined in the DHCP Reservation table on the LAN settings page. Everyone represents all clients that are not defined in any rule above. Click on a rule to change its group.
You can define a maximum download speed (over all WAN connections) and upload speed (for each WAN connection) that each individual Staff and Guest member can consume. No limit can be imposed on individual Managers. By default, download and upload bandwidth limits are set to unlimited (set as 0). 13.10.3 Application You can choose whether to apply the same prioritization settings to all user groups or customize the settings for each group.
