Billion Electric Company BIPAC-7500G Virtual Server “Port Forwarding”, Port Number Protocol

Page 98
Virtual Server (“Port Forwarding”)

BIPAC-7500G – 802.11g ADSL VPN Firewall Router

Virtual Server (“Port Forwarding”)

In TCP/IP and UDP networks a port is a 16-bit number used to identify which application program (usually a server) incoming connections should be delivered to. Some ports have numbers that are pre-assigned to them by the IANA (the Internet Assigned Numbers Authority), and these are referred to as “well-known ports”. Servers follow the well-known port assignments so clients can locate them.

If you wish to run a server on your network that can be accessed from the WAN (i.e. from other machines on the Internet that are outside your local network), or any application that can accept incoming connections (e.g. Peer-to-peer/P2P software such as instant messaging applications and P2P file-sharing applications) and are using NAT (Network Address Translation), then you will usually need to configure your router to forward these incoming connection attempts using specific ports to the PC on your network running the application. You will also need to use port forwarding if you want to host an online game server.

The reason for this is that when using NAT, your publicly accessible IP address will be used by and point to your router, which then needs to deliver all traffic to the private IP addresses used by your PCs. Please see the WAN configuration section of this manual for more information on NAT.

The Internet Assigned Numbers Authority (IANA) is the central coordinator for the assignment of unique parameter values for Internet protocols. Port numbers range from 0 to 65535, but only ports numbers 0 to 1023 are reserved for privileged services and are designated as “well-known ports”. The registered ports are numbered from 1024 through 49151. The remaining ports, referred to as dynamic ports or private ports, are numbered from 49152 through 65535.

Examples of well-known and registered port numbers are shown in Table 4, for further information, please see IANA’s website at: http://www.iana.org/assignments/port-numbers

For help on determining which private port numbers are used by common applications on this list, please see the FAQs (Frequently Asked Questions) at: http://www.billion.com

Table 4: Well-know and registered Ports

Port Number Protocol

20Table 4: Well-know and registered PortsPort Number ProtocolTCP

21Manual backgroundManual backgroundTCP

22Manual backgroundManual backgroundTCP & UDP

23Manual backgroundManual backgroundTCP

25

TCP

53

TCP & UDP

69Manual backgroundManual backgroundUDP

80Manual backgroundManual backgroundTCP

Description

Manual backgroundManual backgroundFTP Data

Manual backgroundManual backgroundFTP Control

Manual backgroundManual backgroundSSH Remote Login Protocol

Manual backgroundManual backgroundTelnet

Manual backgroundManual backgroundSMTP (Simple Mail Transfer Protocol)

Manual backgroundManual backgroundDNS (Domain Name Server)

Manual backgroundManual backgroundTFTP (Trivial File Transfer Protocol)

Manual backgroundManual backgroundWorld Wide Web HTTP

94

Chapter 4: Configuration

Page 97 Page 99
Image 98
Page 97 Page 99
Contents 802.11g ADSL VPN Firewall Router with 3DES Accelerator User’s Manual Version Release 1.10eBIPAC-7500G Page CHAPTER 3 BASIC INSTALLATION Table of ContentsCHAPTER 2 INSTALLING THE ROUTER CHAPTER 4 CONFIGURATIONAPPENDIX A PRODUCT SUPPORT AND CHAPTER 5 TROUBLESHOOTINGCONTACT INFORMATION S AVE C ONFIGURATION TO F LASHFast Ethernet Switch FeaturesWireless Ethernet 802.11g Quick Installation WizardFirewall Universal Plug and Play UPnP and UPnP NAT TraversalNetwork Address Translation NAT Domain Name System DNS relayStatic and RIP1/2 Routing Dynamic Host Configuration Protocol DHCP client and serverFirmware Upgradeable Simple Network Management Protocol SNMPBIPAC-7500G ADSL Router Application Figure 1.1 Application DiagramImportant note for using the BIPAC-7500G ADSL Router Chapter 2 Installing the RouterPackage Contents 1 PWR 2 SYS 3 LAN port 4 LAN port 5 LAN port 6 LAN port 7 WLAN The Front LEDsMeaning 10 MAIL 11 PPP 13 ADSLPort RESET PWR Power SwitchThe Rear Ports LINE CONSOLE LANCabling Chapter 3 Basic Installation Connecting your router2. Double-click Local Area Connection. See Figure Configuring PCs in WindowsFor Windows XP 4. Select Internet Protocol TCP/IP and click Properties. See FigureIn the LAN Area Connection Status window, click For WindowsDouble-click Local Area “LAN” Connection . See Properties . See Figure3. Click Properties 5. Then select the DNS Configuration tab. See FigureFor Windows 98 / ME 3. Select the Obtain an IP address from a DHCP server For Windows NT4.02. Select TCP/IP Protocol and click Properties. See Figure 3.12 TCP / IPLAN Device IP Settings Factory Default SettingsUsername and Password ISP setting in WAN siteInformation from your ISP PPPoE PPPoA RFC1483 Bridged RFC1483 Routed IPoAConfiguring with your Web Browser Figure 3.14 User namd & Password Prompt WidonwQuick Start Chapter 4 ConfigurationSave Config to FLASH Status ARP TableRIP Routing Table Routing TableRouting Table Expired Table DHCP TableLeased Table Permanent TablePPTP Status IPSec Status L2TP Status Email StatusUPnP Portmap Error LoggingEvent Log Quick Start Click Start to begin scanning for encapsulation types offered by your ISP. If the scan is successful you will then be presented with a list of supported options Ethernet ConfigurationLAN Local Area Network LAN, WAN, System, Firewall, VPN, QoS, Virtual Server and AdvancedWireless ESSID BroadcastWireless Security WPA Pre-Shared KeyPage Port Setting DHCP Server the requesting PC in the LAN your Local Area Network WAN Wide Area Network RFC 1483 Routed Connections PPPoE Connections Advanced Options PPPoE Connectiondiscovered the DNS server IP address, it automatically gives the address to the local DNS relay so that a connection can be established RFC 1483 Bridged Connections All Ip PppoePPPoA Routed Connections Advanced Options PPPoA Chapter 4 Configuration IPoA Routed Connections Page ADSL System Time ZoneRemote Access Firmware Upgrade Backup / Restore Restart Router User Management Firewall and Access Control URL Filter To block PCs on your local network from unwanted websites General Settings Packet Filter Port Filters Table 1 Pre-defined Port FilterAddress Filters Configuring Packet Filter Click Port FiltersClick Add TCP Filter Click Delete4. Click Add TCP Filter Input HTTP port number Select “Allow”HTTP inbound & outbound application Intrusion Detection Block DurationType of Block Duration Table 2 Hacker attack types recognized by the IDSIntrusion Name Detect Parameter Blacklist Drop PacketMAC Address Filter URL Filter Restrict URL Features Firewall Log Log information can be seen in the Status - Event Log after enablingVPN Virtual Private Networks PPTPRemote Access PPTP Connection Click Apply after changing settings LAN to LAN PPTP Connection Click Apply after changing settings IPSec Click Create to configure a new IPSec VPN connectionRemote Configure a new VPN ConnectionLocal ProposalMD5 A one-way hashing algorithm that produces a 128−bit hash Advanced Option L2TP Remote Access L2TP Connection MD5 A one-way hashing algorithm that produces a 128−bit hash LAN to LAN L2TP Connection IPSec Enable for enhancing your LT2P VPN security Function Example Configuring a Remote Access PPTP VPN Dial-in ConnectionConfiguring PPTP VPN in the Office DescriptionKey Length Mode Idle Time Auto statefulExample Configuring a Remote Access PPTP VPN Dial-out Connection Configuring the PPTP VPN in the OfficeMode Idle Time statefulExample Configuring a LAN-to-LAN PPTP VPN Connection Configuring PPTP VPN in the Head Office Configuring PPTP VPN in the Branch Office 192.168.0.0/24 69.1.121.30 192.168.1.0/24 69.1.121.3 12345678 Example Configuring a IPSec LAN-to-LAN PPTP VPN ConnectionTable 3 Network Configuration and Security Plan Tunnel mode ESPMD5 with AESWAN side Configuring IPSec VPN in the Head OfficeIP address of the head office router in Configuring IPSec VPN in the Branch Office QoS Quality of Service Prioritization HighIP Throttling Port Number Protocol Virtual Server “Port Forwarding”Table 4 Well-know and registered Ports POP3 Post Office Protocol Version TCP or UDP, however you can specify other protocols using the drop-down Protocol menu. Setting the protocol to “all” will cause all incoming connection attempts using all protocols on all port numbers to be forwarded to the specified IP address Advanced Static RoutingDynamic DNS Check Emails Device Management Embedded Web ServerSNMP Universal Plug and Play UPnPSNMP V1 and From RFC1650 EtherLike-MIB SNMP Version SNMPv2c and SNMPv3From RFC 1213 MIB-II From RFC 1493 Bridge MIBFrom RFC 1474 PPP/Bridge MIB From RFC 1472 PPP/Security MIBFrom RFC 1473 PPP/IP MIB From RFC1573 IfMIBSave Configuration to Flash Logout Problems with the WAN Interface Chapter 5 TroubleshootingProblems starting up the router ProblemCan’t ping any PCs on the LAN Problems with the LAN InterfaceFrequent loss of ADSL linesync disconnections WORLDWIDE APPENDIX A Product Support and Contact InformationContact Billion AUSTRALIA
Top Page Image Contents