Billion Electric Company BIPAC-7500G user manual General Settings

Page 58

General Settings

Billion BIPAC-7500G–802.11g ADSL VPN Firewall Router with 3DES Accelerator

General Settings

You can choose not to enable Firewall, to add all filter rules by yourself, or enable the Firewall using preset filter rules and modify the port filter rules as required. The Packet Filter is divided into two sections: Port Filters and Address Filters, used to filter packets based-on Applications (Port) or IP addresses.

There are four options when you enable the Firewall, they are:

All blocked/User-defined: no pre-defined port or address filter rules by default, meaning that all inbound (Internet to LAN) and outbound (LAN to Internet) packets will be blocked. Users have to add their own filter rules for further access to the Internet.

High/Medium/Low security level: the pre-defined port filter rules for High, Medium and Low security are displayed in Port Filters of Packet Filter.

Select either High, Medium or Low security level to enable the Firewall. The only difference between these three security levels is the preset port filter rules in the Packet Filter. Firewall functionality is the same for all levels; it is only the list of preset port filters that changes between each setting.

If you choose of the preset security levels and then add custom filters, you may temporarily disable the firewall and recover your custom filter settings by re-selecting the same security level.

The “Block WAN Request” is a stand-alone function and not relate to whether security enable or disable. Mostly it is for preventing any scan tools from WAN site by hacker.

Any remote user who is attempting to perform this action may result in blocking all the accesses to configure and manage of the device from the Internet.

54

Chapter 4:Configuration

Image 58

Contents BIPAC-7500G Version Release 1.10e802.11g ADSL VPN Firewall Router with 3DES Accelerator User’s Manual Page CHAPTER 3 BASIC INSTALLATION Table of ContentsCHAPTER 2 INSTALLING THE ROUTER CHAPTER 4 CONFIGURATIONAPPENDIX A PRODUCT SUPPORT AND CHAPTER 5 TROUBLESHOOTINGCONTACT INFORMATION S AVE C ONFIGURATION TO F LASHFast Ethernet Switch FeaturesWireless Ethernet 802.11g Quick Installation WizardFirewall Universal Plug and Play UPnP and UPnP NAT TraversalNetwork Address Translation NAT Domain Name System DNS relayStatic and RIP1/2 Routing Dynamic Host Configuration Protocol DHCP client and serverFirmware Upgradeable Simple Network Management Protocol SNMPBIPAC-7500G ADSL Router Application Figure 1.1 Application DiagramPackage Contents Chapter 2 Installing the RouterImportant note for using the BIPAC-7500G ADSL Router 1 PWR 2 SYS 3 LAN port 4 LAN port 5 LAN port 6 LAN port 7 WLAN The Front LEDsMeaning 10 MAIL 11 PPP 13 ADSLPort RESET PWR Power SwitchThe Rear Ports LINE CONSOLE LANCabling Chapter 3 Basic Installation Connecting your router2. Double-click Local Area Connection. See Figure Configuring PCs in WindowsFor Windows XP 4. Select Internet Protocol TCP/IP and click Properties. See FigureIn the LAN Area Connection Status window, click For WindowsDouble-click Local Area “LAN” Connection . See Properties . See FigureFor Windows 98 / ME 5. Then select the DNS Configuration tab. See Figure3. Click Properties 3. Select the Obtain an IP address from a DHCP server For Windows NT4.02. Select TCP/IP Protocol and click Properties. See Figure 3.12 TCP / IPLAN Device IP Settings Factory Default SettingsUsername and Password ISP setting in WAN siteInformation from your ISP PPPoE PPPoA RFC1483 Bridged RFC1483 Routed IPoAConfiguring with your Web Browser Figure 3.14 User namd & Password Prompt WidonwSave Config to FLASH Chapter 4 ConfigurationQuick Start Status ARP TableRouting Table Routing TableRIP Routing Table Expired Table DHCP TableLeased Table Permanent TablePPTP Status IPSec Status L2TP Status Email StatusEvent Log Error LoggingUPnP Portmap Quick Start Click Start to begin scanning for encapsulation types offered by your ISP. If the scan is successful you will then be presented with a list of supported options Ethernet ConfigurationLAN Local Area Network LAN, WAN, System, Firewall, VPN, QoS, Virtual Server and AdvancedWireless ESSID BroadcastWireless Security WPA Pre-Shared KeyPage Port Setting DHCP Server the requesting PC in the LAN your Local Area Network WAN Wide Area Network RFC 1483 Routed Connections PPPoE Connections Advanced Options PPPoE Connectiondiscovered the DNS server IP address, it automatically gives the address to the local DNS relay so that a connection can be established RFC 1483 Bridged Connections All Ip PppoePPPoA Routed Connections Advanced Options PPPoA Chapter 4 Configuration IPoA Routed Connections Page ADSL System Time ZoneRemote Access Firmware Upgrade Backup / Restore Restart Router User Management Firewall and Access Control URL Filter To block PCs on your local network from unwanted websites General Settings Packet Filter Port Filters Table 1 Pre-defined Port FilterAddress Filters Configuring Packet Filter Click Port FiltersClick Add TCP Filter Click Delete4. Click Add TCP Filter Input HTTP port number Select “Allow”HTTP inbound & outbound application Intrusion Detection Block DurationType of Block Duration Table 2 Hacker attack types recognized by the IDSIntrusion Name Detect Parameter Blacklist Drop PacketMAC Address Filter URL Filter Restrict URL Features Firewall Log Log information can be seen in the Status - Event Log after enablingVPN Virtual Private Networks PPTPRemote Access PPTP Connection Click Apply after changing settings LAN to LAN PPTP Connection Click Apply after changing settings IPSec Click Create to configure a new IPSec VPN connectionRemote Configure a new VPN ConnectionLocal ProposalMD5 A one-way hashing algorithm that produces a 128−bit hash Advanced Option L2TP Remote Access L2TP Connection MD5 A one-way hashing algorithm that produces a 128−bit hash LAN to LAN L2TP Connection IPSec Enable for enhancing your LT2P VPN security Function Example Configuring a Remote Access PPTP VPN Dial-in ConnectionConfiguring PPTP VPN in the Office DescriptionKey Length Mode Idle Time Auto statefulExample Configuring a Remote Access PPTP VPN Dial-out Connection Configuring the PPTP VPN in the OfficeMode Idle Time statefulExample Configuring a LAN-to-LAN PPTP VPN Connection Configuring PPTP VPN in the Head Office Configuring PPTP VPN in the Branch Office 192.168.0.0/24 69.1.121.30 192.168.1.0/24 69.1.121.3 12345678 Example Configuring a IPSec LAN-to-LAN PPTP VPN ConnectionTable 3 Network Configuration and Security Plan Tunnel mode ESPMD5 with AESIP address of the head office router in Configuring IPSec VPN in the Head OfficeWAN side Configuring IPSec VPN in the Branch Office QoS Quality of Service Prioritization HighIP Throttling Table 4 Well-know and registered Ports Virtual Server “Port Forwarding”Port Number Protocol POP3 Post Office Protocol Version TCP or UDP, however you can specify other protocols using the drop-down Protocol menu. Setting the protocol to “all” will cause all incoming connection attempts using all protocols on all port numbers to be forwarded to the specified IP address Advanced Static RoutingDynamic DNS Check Emails Device Management Embedded Web ServerSNMP V1 and Universal Plug and Play UPnPSNMP From RFC1650 EtherLike-MIB SNMP Version SNMPv2c and SNMPv3From RFC 1213 MIB-II From RFC 1493 Bridge MIBFrom RFC 1474 PPP/Bridge MIB From RFC 1472 PPP/Security MIBFrom RFC 1473 PPP/IP MIB From RFC1573 IfMIBSave Configuration to Flash Logout Problems with the WAN Interface Chapter 5 TroubleshootingProblems starting up the router ProblemFrequent loss of ADSL linesync disconnections Problems with the LAN InterfaceCan’t ping any PCs on the LAN Contact Billion AUSTRALIA APPENDIX A Product Support and Contact InformationWORLDWIDE