5.3.4. Blocking Individual (or Service Port) of LAN Clients from Accessing the Internet 1. Click on the Security tab. 2. Under the Firewall menu item, click on Outgoing Policy. 3. Enter the IP address and port number (or range) to be blocked onto the corresponding text box at the bottom of the list (marked New) according the following figure. 4. Click combo box and select protocol. 5. Click combo box and select PERMIT / DENY action. 6. Check Enable box to log the event. 7. Press Apply.
This figure describes all the IP address coming from LAN port will be denied to access WAN services, but: Accessing to the port 80 (HTTP service) of WAN IP 210.201.37.199 from LAN IP 192.168.1.33(with port 80) will be allowed. Accessing to the port 20~80 of WAN IP 66.218.71.198 from LAN IP 192.168.1.52 (with port 20~80) will be allowed. Letting Stuff in By default, IEEE 802.
5.3.5. Mapping Internal Ports to the Outside Add a record of Port Mapping 1. Click on Port Mapping under Firewall in the Security tab. 2. Click on Add. 3. Enter Service Name (ex: FTP), External Port (ex: 23). 4. Click on TCP. 5. Enter the last digit of IP address into Internal Host (ex: 192.168.1.22), port (ex:23). 6. Click on Enable. 7. Press Apply. Any request from Internet for port 21 (FTP service port) to the IEEE 802.11g WLAN Router will be forwarded to LAN client 192.168.1.
Enable a record of Port Mapping 1. Click on Port Mapping under Firewall in the Security tab. 2. Click on some records of Port Mapping and press Apply.
.3.6. Configuring a Virtual Server Adding a record to virtual server 1. Setup FTP server and Telnet Server in LAN port (ex: 192.168.1.1) 2. Click on Virtual Server under Firewall in the Security tab. 3. Enter Name (ex: Test) 4. Enter Port Range (ex: 20, 30). 5. Select TCP / UDP / ALL. (ex: TCP) 6. Enter IP address (ex: 192.168.1.1). 7. Click on Enable. 8. Press Apply. Deleting a record from virtual server 1. Click on Virtual Server under Firewall in the Security tab. 2.
5.3.7. Port Triggering Configuration Port trigger is a set of rules that are used to open ports in the firewall dynamically. Each rule is composed of a trigger condition and a port opening rule. Add a Port Trigger rule for Realplayer 1. Click on Port trigger under Firewall in networking tab. 2. Add the following items in the port trigger page and press Apply. 3. Input the name. RealOne 4. Input the triggered port: 554-554 5. Select the triggered protocol: “TCP” 6. Input the opened port range: 7070-7071 7.
5.3.8. SNMP IEEE 802.11g WLAN Router supports the Simple Network Management Protocol (SNMP). This protocol allows other SNMP aware systems to remotely monitor the behavior of your IEEE 802.11g WLAN Router. IEEE 802.11g WLAN Router complies with SNMP version 1 and version 2 type requests. SNMP compliant network management systems (NMS) can requests information from your IEEE 802.11g WLAN Router by providing the proper community strings.
5.3.9. URL Blocking Uniform Resource Locator (URL) blocking can be used by parents to limit access to certain Internet sites for their children. This feature is more effective than Internet IP Blocking as Internet sites might have multiple IP addresses and the user does not required to know the IP address to set a blocking rule. In addition, the user can set a keyword list that would block any URL that comprises the keyword. This way, the user can make the list short, making it easier to manage.
5.4. INTRANET Local Area Network Computing Internet style The technology developed for the Internet has revolutionized so many aspects of modern day society. Applications of the Internet technology within a corporate environment present the same benefits and synergy at a much more personal scale. Dubbed Intranets, local area networks that leverage technology developed for the World Wide Web provide a wealth of resources to the office.
5.4.1. DHCP Server Basic Settings SET UP DHCP SERVER 1. Click on Basic Settings under DHCPD in the Intranet tab. 2. Click on Yes in Enable DHCP? 3. Enter the last digit of DHCP start IP and DHCP end IP. 4. Click on one of Contract Period. 5. Press Apply. MODIFY DHCP IP RANGE OF DHCP SERVER 1. Click on Basic Settings under DHCPD in the Intranet tab. 2. Modify DHCP start IP and DHCP end IP and press Apply. (IP value must be between 1 and 254) MODIFY CONTRACT PERIOD OF DHCP IP 1.
5.4.2. DHCPD Fixed MAC/IP Adding a record of fixed MAC/IP 1. Click on Fixed MAC / IP under DHCPD in the Intranet tab. 2. Enter MAC Address, the last digit of IP address, and press Apply. Deleting a record of fixed MAC / IP 1. Click on Fixed MAC / IP under DHCPD in the Intranet tab. 2. Click on del button beside record you want to delete. 3. Press Apply.
5.4.3. DHCP Server Status 1. Click on Current Status under DHCPD in the Intranet tab.
5.5. ADMINISTRATION Access Control and Troubleshooting tools IEEE 802.11g WLAN Router provides an extensive set of system tools that equip the novice network administrator to do advanced network trouble shooting. IEEE 802.11g WLAN Router also provides sophisticated control structures which can restrict access to its configuration. Authentication By now you have familiarized yourself with username/password authentication mechanism used by IEEE 802.11g WLAN Router.
5.5.1. User Account User who has Read / Write access right 1. Click on the Authentication tab and choose the User Account menu item. 2. Under the User who has Read/Write access right item, enter the user name in the Username text box. 3. Enter the password in the password text box. 4. Enter password again in the confirm password text box. User who has Read-Only access right 1. Click on the Authentication tab. Choose the User Account menu item, 2.
5.5.2. Access IP 1. Click on the Authentication tab. Choose the Access IP menu item. 2. Select Enable / Disable on WAN access. 3. Enter up to three sets of LAN IP address (or Ranges) into appropriate text box. 4. Click on Apply button.
5.5.3. Language 1. Click on the Administration tab. 2. Under the Authentication menu item, click on Language. 3. Select your language in the Language box. 4. Clicks Apply to set your language.
5.5.4. System Status 1. Click on the Administration tab. 2. Under the Authentication menu item, click on System status.
5.5.5. Time Setup 1. Click on the Administration tab. 2. Under the System menu item, click on Time Setup. 3. Select your time zone in the Time Zone selection box. 4. Choose either Set Time Manually or Use Time Server. 5. If you choose the setup time manually, enter current time by specifying Month, Day, Hours, Minutes, and Seconds in the appropriate fields. 6. If you choose to use Time Server, specifying the Time server. 7. Click on Apply button to setup time.
5.5.6. System Restart 1. Click on the Administration tab. 2. Under the System menu item, click on System Restart. 3. Press Yes button to restart the system.
5.5.7. Factory Default 1. Click on the Administration tab. 2. Under the system menu item, click on Factory Default. 3. Press Yes button to restart the system with factory default.
5.5.8. Software Update 1. Click on the Administration tab. 2. Under the System menu item, click on Software Update. 3. Choose either the software update file is in the internet or on the local host. 4. If the file is in the internet, type in the URL. 5. If the file is on local host, type in the name file with full path or click on Browse button to search the file on local host. 6. Click Apply button to start update.
5.5.9. Config Setting 1. Click on the Administration tab. 2. Under the System menu item, click on Config Setting. 3. Select following method to Download or Upload configuration file. 4. If you select Download, you can either enter the path and filename in then text box or press browser button to assign path and filename. Press Download button to start. 5. If you select Upload, then press Upload button to save.
5.5.10. System Log IEEE 802.11g WLAN Router provides a system log of all system activities up to 50 entries. Old entries will be purged automatically to ensure a healthy system. However, if you want to keep a full system log, you can setup a remote system log daemon (remote syslogd) to record all system events remotely. This feature can also be very helpful to monitor the system activities at distant. 1. Change some settings of IEEE 802.11g WLAN Router. 2. Click on the Administration tab. 3.
6. Terminology Boot It is the process when the PC starts executing instructions. Browser It is an application program that helps users to view and interact with the information of the World Wide Web. BSS (Basic Service Set) A group of wireless Network PC Card users and an Access Point. Cable Modem It is a device that connects a PC to the Internet via the cable television network.
Ethernet It is a common LAN protocol defined as the 802.3 standard by IEEE (Institute of Electrical and Electronics Engineers). All clients in the network share the total bandwidth. It could be 10 Mbps (Ethernet), 100 Mbps (Fast Ethernet) or 1000 Mbps (Gigabit Ethernet). FTP (File Transfer Protocol) File Transfer Protocol enables you to transfer files in a bi-directional method over a TCP/IP network. Firewall It is a mechanism that protects a network from attacks from the other networks.
LAN (Local Area Network) It consists a group of PCs and network devices that communicate with each other over a network and share the resources of a single processor or server within a small geographic area. MAC Address (Media Access Control Address) It is a unique number assigned to any Ethernet network device by the device manufacture. It enables the network to identify the device at the hardware level.
SMTP ( Simple Mail Transfer Protocol ) It is a standard e-mail protocol that defines the message format and manages the e-mail transmission between e-mail servers. Software It is a series of instructions that tells the PC how to process the data. Static IP Address Static IP is also a WAN access type provided by some Internet Service Providers. You need to enter the information of IP address, Subnet Mask, Default Gateway, Primary DNS, and Secondary DNS IP Address.
Wireless LAN It is a network technology that uses the air to transmit data between wireless clients and Access Points.