Efficient Networks 5400 Series, 5500 Series, 5200 Series Dhcp Dynamic Host Configuration Protocol

Page 73

SpeedStream Router User Guide

When you clone a set of rules, any existing Custom rules are deleted and a new set of Custom rules (a replica of the cloned level) is created. When you click Clone Rule Set on the Firewall – Custom IP Filter Configuration screen, the Current IP Filter Rules table refreshes with the new rules set. You can edit, add or delete this new set of rules.

Rule Numbering

If you select a specific Firewall Level (e.g., Low) and then examine the list of rules displayed in the Current IP Filter Rules table, you will notice that the numbers start at xx20; e.g., Low starts at 120, not 100. The numbers preceding xx20 (1-19) are skipped to allow you extra space at the front of the list to add new rules. Additionally, the preconfigured rules are not consecutively numbered - Low, for example, is numbered as 120, 122, 124 – allowing you to easily interject new rules between the existing ones.

Important! The rule numbers represent the priority with which the rules will be applied in filtering IP packets. Consequently, rule number 120 would be applied before rule number 122. If, for example, rule 120 denies all inbound traffic, it would render all other inbound rules useless – no inbound traffic allowed!

This numbering/priority scheme applies independently to the two categories of rules, inbound and outbound. Inbound rules are applied only to inbound packets; outbound rules are applied only to outbound packets.

The display of rules in the table is ordered by the Direction category. Inbound rules are displayed first; outbound rules display second.

DHCP (Dynamic Host Configuration Protocol)

The router provides two user-configurable Dynamic Host Configuration Protocol (DHCP) modes: DHCP server (enabled by default from the factory) and DHCP relay agent.

DHCP Relay

The router can be configured to operate as a DHCP relay agent. This allows local machines on the LAN to acquire their IP addresses via DHCP requests and replies that are forwarded through the router to/from a DHCP server on the WAN. In this case, the DHCP requests are forwarded to a specific DHCP server on the WAN network and the DHCP reply is forwarded back to the LAN network.

The DHCP relay agent can be configured with a Primary and a Secondary DHCP Server IP address. The Secondary address is only used if the Primary is unreachable. Any DHCP requests that are received by the router are relayed to the Primary DHCP server at the specified IP address.

This DHCP server is then responsible for assigning the DHCP information to the DHCP client. Typically, this DHCP server will exist in the WAN space.

DHCP Server

When operating as a DHCP server, the router will dynamically assign IP addresses to LAN nodes. The DHCP server verifies a device’s identity, leases it an IP address for a predetermined period of time, and reclaims the address for reassignment at the end of the lease period. The DHCP server supports DHCP client hosts on the LAN side only. The router will ignore all DHCP requests which arrive from the WAN interface.

65

Page 72 Page 74
Image 73
Page 72 Page 74
Contents Router User Guide Software License General Provisions Contents Viewing Status Screens Iii 51-57 List of IllustrationsSpeedStream Router User Guide Hardware Description IntroductionAbout the SpeedStream Router Features and BenefitsFirewall Security General Safety GuidelinesSession Tracking Hardware Installation Installing the RouterBasic Installation Procedure Minimum System RequirementsRecording System Settings Installing Line FiltersIn-Line Filter Wall-Mount Filter Connecting the CablesTwo-to-One Adapter Ethernet Installation Method USB Installation Method Windows 95 / 98 / ME Configuring Computer Network SettingsTCP/IP Properties dialog box displays TCP/IP Properties dialog box, click the IP Address tab Windows NT Double-clickNetwork and Dial-up Connections WindowsWindows XP Navigating the Web Interface Getting StartedLevel SnoozeIP Filter Rules Screen Navigation ElementsLog To log on to the Web interface for the first time Logging On to the Web InterfaceLogging On to a PPP Session Entering the Network PasswordService Name Access ConcentratorTo specify the host configuration settings Customizing Router SettingsClick Save Settings HostDhcp Configuration Options To specify the Dhcp configuration settings To change the user name or password User Setup System LoginTo configure the Time Client Time Client Configuration OptionsTime Client Static RoutesTo disable NAT and Napt To access the NAT/NAPT Configuration screenTo enable NAT and specify a destination IP address NAT/NAPT ServerTo enable Napt Port Forwarding Configuration OptionsPort Forwarding To delete an existing entry To edit an existing port forwarding configurationTo delete all entries in the table To add a port forwarding entryFirewall Security Levels FirewallDMZ Configuration Options DMZ SettingsFirewall Snooze Control To enable DMZ and specify an accessible computer On the Firewall DMZ Configuration screen, click Disable DMZ To disable DMZCustom IP Filter Rules Cloning a Rule DefinitionCustom IP Filter Configuration Firewall Simple Setup screenCreating Custom IP Filter Rules Fill in the following informationIf TCP/UDP chosen in , select the desired rule options Select a protocol to filterSpecify Source Port Operator options Specify Destination Port Operator optionsTypes of Attack BackgroundADS Configuration Options Select Enable Attack Detection To enable ADSTo save the new settings To filter, or drop, a packet typeTo configure RFC2684 settings RFC2684 Configuration OptionsRFC2684 UPnP Configuration Options Bridge ModeTo configure UPnP settings UPnP Universal Plug and PlayTo enable bridge mode RIP Configuration OptionsRIP Routing Information Protocol LAN Servers To configure RIP settingsSystem Log System Log Configuration Options RebootTo configure the System Log Firmware Update ResetTo reset the router To update the router firmwareTo cancel the reset DiagnosticsClick Run Diagnostics at the bottom of the screen System Summary Viewing Status ScreensFirewall Log Interface MapTo display the Interface Map Interface Map Interface Map screen displaysStatus and Statistics Screens To update the displayATM/AAL Status/Statistics To display the System Log screenEthernet Status/Statistics DSL Status/StatisticsRoutes USB Status/StatisticsBasic Troubleshooting Steps TroubleshootingInterpreting the LED Display Pwr LED Not Lit Resolving Specific IssuesContacting Technical Support Administrative User Setup Configuration Data SheetsAttack Detection System Firewall Custom IP Filter Configuration Firewall DMZ Firewall Snooze Control Firewall LevelPPP Login Static Route RIPUPnP Technical Specifications Protocol Firewall Security LevelsNeed for Speed VNC Acronyms Acronyms and Technical ConceptsMAC address Rx ErrorsOctet PPPoETechnical Concepts Dhcp Dynamic Host Configuration Protocol Icsa 3.0a-compliancy PPP Point-to-Point Protocol Index Data Sheets See Configuration Data Sheets PPP Network TCP
Top Page Image Contents