Garmin HN294DP/DI manual Security

Page 9

Introduction

find the HN294d and assign your computer an IP address. Now, you are ready to surf and use the Internet anywhere in your home.

Since a wireless network is more vulnerable to attacks than a traditional wired network it is recommended to make some configuration that will make it impossible for another user than you to access the wireless network. The HN294d has several configuration possibilities to help you improve the security in your wireless LAN.

In a wireless configuration the HN294d is designed to reach 50-100 meters indoors (up to 300 meters outdoors), but when choosing a location for your router keep in mind that this length is affected by a number of rules, such as:

The more walls the signal has to pass, the shorter will the signal reach.

The thicker the wall is, the shorter will the signal reach.

Keep the HN294d away from equipment that might disturb the signal (such as Bluetooth devices, microwave ovens and 2.4 GHz cordless phones).

1.2.3Security

You can connect more than 250 PCs to the HN294d, all sharing the same public IP address. This is made possible by NAT (Network Address Translation) technology. NAT also hides your PCs from the Internet, which serves as security protection, making it impossible to directly target your PCs from the outside. All traffic is addressed to the HN294d, which, with its powerful firewall, inspects all incoming and outgoing traffic and removes malicious or dangerous packets. The firewall is a full stateful packet inspection firewall, which means that it will not only inspect packets (like simple firewalls) but also will remember and investigate traffic flows and patterns to detect and prevent advanced attacks. To keep it simple, all that you need to do is select the desired level of security.

Even though your PCs are invisible and protected from the Internet you can still access the Internet as before, and all your Internet programs (games, applications, peer-to-peer programs, communications applications etc) will still work. This is handled by built-in mechanisms that recognize your programs and allow them to access the Internet directly. Everything is handled automatically and requires no user configuration.

The HN294 also supports pass-through of common VPN (Virtual Private Network) implementations making it possible for the user to create secure connections. A VPN is used to create secure connections where confidential information needs to be sent. The VPN can be compared to a

EN/LZT 108 6377 R4 - September 2003

3

Page 8 Page 10
Image 9
Page 8 Page 10
Contents ADSL Wireless Router HN294dp/diUser Guide Disclaimer CopyrightAbstract Trademark ListHardware Description and Installation ContentsInitial Configuration IntroductionADSL-mode - RFC1483 Router Advanced ConfigurationADSL-mode - RFC1483 MER Router ADSL-mode - PPPoE RouterImportant Information TroubleshootingGlossary 1.2 About the ADSL Wireless Router HN294d 1 Introduction1.1 About this User Guide 1.2.1 Ease of Use 1.2.2 Wireless Features1.2.3 Security 1.2.4 Advanced Possibilities 2.1.1 Package Contents Hardware Description and Installation2.1 Before You Start Figure 1 - HN294d Package Contents2.2.1 Front Panel and LED Indicators 2.1.2 Subscription for ADSL Service2.2 Physical Appearance Symbol2.2.2 Back Panel and Connectors Table 1 - Description of LEDsFigure 2 - Back Panel of the HN294d Figure 3 - Wall mounting of the HN294d 2.3 Choose a Place for the Router2.4 Connect the HN294d 2.4.1 Connect Wireless Computers3. Connect the Power Supply 4. Power ON the HN294d1. Connect the ADSL Line 2.4.2 Connect Computers via Cables2. Connect a client PC to one of the four LAN ports OR to the USB port2.4.2.1 Install USB Drivers 3. Select Install USB Driver and wait until the following window is displayed 7. Click Finish to close the InstallShield wizard 2.5.1 Use DHCP 2.5 Configure Client PCsIn Windows 98/98SE and Me In WindowsIn Windows XP 2.5.2 Use Static IP AddressesIn Windows XP 3.1 Introduction Initial ConfigurationConnection Type Select ADSL-mode3.2 Access the Configuration Wizard 3.3 Access the Internet 4.1 Description 4 ADSL-mode - RFC1483 Bridge4.2 IP Addresses Assigned by PPPoE RFC1483 2684 Bridged Mode single PVC4.4 Static IP Addresses 4.3 IP Addresses Assigned by DHCP5.1 Description 5 ADSL-mode - RFC1483 Router5.2 IP Addresses Assigned by DHCP RFC1483 2684 Routed Mode single PVC5.3 Static IP Addresses 6.1 Description 6 ADSL-mode - RFC1483 MER Router6.2 IP Addresses Assigned by DHCP 7.1 Description 7 ADSL-mode - PPPoE Router7.3 IP Addresses Assigned by DHCP 7.2 PPPoE Termination and PPPoE Passthrough8.1 Description 8 ADSL-mode - PPPoA Router8.2 IP Addresses Assigned by DHCP Advanced Configuration 9.2 Access the Web Manager9.1 Introduction 9.2.1 Outline of the Web Manager 9.3.1 Connect/Disconnect to ISP 9.3 OverviewDisconnect 9.4 System 9.4.2 Administration9.4.1 Device Information 9.4.2.1 Account9.4.2.2 Remote Management 9.4.2.3 Web Port 9.4.3 Backup Configuration9.4.3.2 Restore 9.4.3.1 Backup9.4.5 Upgrade Firmware 9.4.4 Save Configuration9.4.6 Reset Router 9.4.6.1 Reset to Factory Default 9.5 Status 9.5.1 DSL ConnectionParameter 9.5.2 WAN Connection 9.5.3 Traffic Counter 9.5.6 Wireless Client 9.5.4 Routing Table9.5.5 DHCP Table EN/LZT 108 6377 R4 - September 9.6 Configuration 9.6.1 DSL Configuration9.6.2 LAN Configuration 9.6.2.1 IP Address Enter your IP settings and click the Apply buttonThe table below describes the parameters 192.168.0.1 and 255.255.255.0 respectively. This9.6.2.2 DHCP Server Enable and configure the DHCP serverInterface Start IP Address End IP Address DHCP lease time Domain Name Servers Enable and configure the DHCP Relay Agent9.6.3.1 Basic Setup 9.6.3 WLAN ConfigurationWireless SSID Set the Wired Equivalent Privacy Mechanism to ON 9.6.3.2 Association Control Add / Remove client Create a new ATM PVC Interface 9.6.4 WAN Configurationselected PPP Configuration IP Configuration9.6.5.1 Static Route 9.6.5 IP RouteDestination Address and Netmask 9.6.5.2 Dynamic Routing9.6.6.1 DNS Relay 9.6.6 DNSTo enable DNS Relay or modify the current settings proceed as follows 9.6.6.2 DNS Server 9.6.7.1 Firewall 9.6.7 SecurityEN/LZT 108 6377 R4 - September Modify or delete existing rules 3. Click the Modify link next to the rule you want to modify Description of parameters when creating a new filtering rule 9.6.7.2 Intrusion Detection On the Configuration Security Intrusion Detection you can enable/disable the intrusion detection function and also see and modify the existing rules9.6.8 Virtual Server Create a new virtual server Create a DMZ zone External PacketInternal Host 9.6.9 IGMP Proxy 9.6.10 UPnP 10.1 Basic Functions 10 TroubleshootingLAN Connection Indication/Symptom10.2.2 How to use IPCONFIG 10.2.1 How to use WINIPCFG10.3 WAN Connection 10.4 WLAN ConnectionStart Run… type command and click OK . In the 10.6 Safety Mode 10.5 Reset the HN294d4. Click the Upgrade button 11 Important Information 11.1 Product Care and Maintenance11.2 License Agreement 11.2.3 Limited Warranty11.2.1 License 11.2.2 Term11.2.4 Intended Use 11.2.5 Limitation of Liability11.2.6 Governing Law 11.3 Regulatory Information 11.3.2 Safety Approvals11.3.1 EU Directives 11.3.1.1 Declaration of Conformity11.3.2.1 UL 1950 Statement 11.3.3 EMC Approvals11.3.4 Telecom Approval 11.3.3.1 FCC Part 15 Statement11.3.3.2 FCC RF Radiation Exposure Statement 11.3.4.1 FCC Part 68 Statement 11.3.7 Power Supply 11.3.5 Access Point Frequency Band11.3.6 Caution 11.3.8 Environmental InformationAccess Point GlossaryADSL AsynchronousDHCP DeviceDOS attack Domain nameDownstream DSLAMEthernet EncapsulationFirewall FirmwareHost G.liteHTTP IEEEIntranet IP addressMAC address Ping Peer-to-peerPort POTSRouter SMTPSSID T1.413 Stateful InspectionTCP/IP TelnetUPnP UpstreamVirtual Server WLAN VPI and VCI
Top Page Image Contents