NAT ALG Configuration, Enable VPN ALG | Dynalink RTA1025W guide

ADSL Router User Manual

NAT ALG Configuration

The need for IP address translation arises when a network's internal IP addresses cannot be used outside the network either for security reasons or because they are invalid for use outside the network. Use of NAT (Network Address Translation) devices allows local hosts on such private networks to transparently access the external global Internet and enables access to selective local hosts from the outside.

ALG (Application Level Gateway) is a security component that augments a firewall or NAT employed in a computer network. ALG allows legitimate application data to pass through the security checks of the firewall that would have otherwise restricted the traffic for not meeting its filter criteria. ALG application specific translation agents allow an application on a host in one address realm to connect to its counterpart running on a host in different realm transparently. An ALG may interact with NAT to set up state, use NAT state information, modify application specific payload and perform whatever else is necessary to get the application running across disparate address realms.

Enable VPN ALG:

VPN ALG allows two or more simultaneous VPN connections through this router. The default setting for VPN ALG is enabled.

Enable SIP ALG:

SIP ALG allows two or more simultaneous VoIP phone calls made by VoIP clients through this router. The default setting for SIP ALG is enabled.

Transparent use of SIP-based devices in a NAT scenario requires that modifications be made to the SIP messages. These modifications are performed by the ALG.

A SIP ALG provides functionality to allow VoIP traffic to pass both from the private to public and public to private side of the firewall when using Network Address Translation (NAT). The SIP-ALGinspects and modifies SIP traffic to allow SIP traffic to pass through the firewall so that person-to-person SIP sessions may be established.

Click Apply to upload your setting.

96

Image 109

Dynalink RTA1025W user manual NAT ALG Configuration, Enable VPN ALG, Enable SIP ALG

Contents

ADSL2+ Wireless Modem Router User’s Manual Copyright Notice For Using For InstallationFor Service FCC Contents Web Configuration VII Viii Unpacking FeaturesAdsl Compliance ADSL2 Compliance ATM Features Wireless LAN ComplianceBridging Features Security Features Routing FeaturesConfiguration and Management Subscription for Adsl Service Physical Outlook LED IndicatorsFront Panel Rear Panel Choosing a place for the Adsl Router System Requirement Connecting the Adsl Router For Windows ME USB Driver InstallationFor Windows Page For Windows XP Page Right-click on My Computer and press Properties For Windows Vista System Requirement and Installation Page System Requirement and Installation Page System Requirement and Installation Click Device Manager On the Control Panel folder, click System and Maintenance System Requirement and Installation Method One Uninstalling the USB DriverMethod Two System Requirement and Installation Method Two System Requirement and Installation Unplug your USB cable between your router and your PC System Requirement and Installation Click System and Maintenance Press System Page Method Two uninstall from program list Page Setting up TCP/IP Page System Requirement and Installation Highlight Protocol and click Add System Requirement and Installation For Windows NT Highlight TCP/IP Protocol and click OK Enable Obtain an IP address from a Dhcp server and click OK For Windows Page Obtain an IP address automatically. Then click OK Click Internet Protocol TCP/IP and then click OK Connection Click Internet ProtocolTCP/IP and then click OK When it returns to the General Tab on the Local Area Click Network Internet Select Network and Sharing Center Click Manage Network Connection on the left side System Requirement and Installation For Windows 98/ME Renewing IP Address on Client PC For Windows NT/2000/XP Released IP Address For Windows Vista Page Accessing the Internet Configuration PPP over ATM PPPoA ModeDescription Primary IP address Subnet Mask Go to Advanced Internet Connections. And click Add PPP over ATM PPPoA IP Extension ModeVCI PPP over Ethernet PPPoE Mode ISP PPP over Ethernet PPPoE IP Extension Mode Primary IP Address Numbered IP over ATM IPoA Preferred DNS server IP Address Numbered IP over ATM IPoA+NAT Start IP Address End IP Address Check Dhcp Server Off and click Next Unnumbered IP over ATM IPoA IP Address Primary DNS server Secondary DNS server Unnumbered IP over ATM IPoA+NAT Subnet mask 255.255.255.248 Click Next Bridge Mode Start IP Address192.168.1.2 End IP Address Primary IP address192.168.1.1Page Using Web-Based Manager Web Configuration Outline of Web Manager To Have the New Settings Take EffectLanguage Title Main Menu Window Current Version Quick Start Quick SetupConnect to Internet Auto Scan Internet Connection PVC PPP over ATM/ PPP over Ethernet Connection Type Manually Connect Dial on DemandSecondary IP Address & Subnet Mask Dhcp Server OnPage Use the following DNS server addresses None Dhcp Server On Bridging Page Overview Status Adsl BER Test Adsl Line Internet Connection Wireless ClientsTraffic Statistics Dhcp Table Local Network IP Address Advanced SetupHost Name Domain Name Relay On Local Network Dhcp ServerServer and Relay Off Local Network Igmp Snooping Local Network UPnP Web Configuration Adding a New One Internet Connections Vlan ID 802.1Q Vlan Tagging Add Default Route Internet DNS Server Igmp Proxy EnabledInternet Igmp Proxy Internet Connection Internet Adsl Enable Adsl PortBitswap Seamless Rate Adaptation Netmask IP Routing Static RouteGateway IP Address WAN Interface IP Routing Dynamic Routing EnabledRIP Version Operation IP Address seen by Internet Users Virtual Server Port Forwarding User defined Pre-defined Virtual Server Port Triggering Virtual Server Dynamic DNS Virtual Server DMZ Host IP Address： Virtual Server Static DNS Enable VPN ALG NAT ALG ConfigurationEnable SIP ALG Firewall Bridge Filtering Firewall Select the direction to filter packets Firewall IP Filtering Protocol Allow TrafficSource/Destination IP address Port Range 100 First generation Precedence and type of service bits Quality of ServiceSecond generation Differentiated services code point 101 102 Quality of Service Bridge QoSTraffic Class Name 802.1p Priority 103 Quality of Service IP QoSWAN 802.1p 104 105 Port MappingGroup Name Available Interfaces 106 Basic Settings Wireless107 108 Wireless Security Select Wireless NetworkSecurity 109 110 Authentication TypeFormat Key 1 to 802.1x environment Configuration For 802.1X Wireless Network111 Radius Shared Secret 112 For WPA Wi-Fi Protected Access For WPA-PSK WPA2-PSK Mixed WPA2/WPA-PSK 113Pre-Share Key 114 WPA2 Pre-authenticationFor WPA-2 Mixed WPA2/WPA Network Re-auth Interval Access Control Access ControlView Access Control List MAC Address of Wireless adaptor Repeater AP Mode116 Search Other Repeaters Press Run Diagnostic Tests on DiagnosticsManagement 117 Management Control From Remote Management Accounts118 Management Control From Local TR-069 Client Configuration119 Identify the Validation of Certificate from ACS 120 121 122 Internet Time System Log Configuring System Log123 Log Level 124 System Log ConfigurationMode Viewing System Log Remote Side Server 125 Viewing System Log Local Side Adsl Router 126 127 Backup Config Reset Router Update FirmwareRestore 128 129 UPnP for XP 130 Problems with WAN Problems with LANPC on the LAN cannot access the Web page of the Adsl Router 131 132 Problems with Upgrading 133 Glossary Public IP Address 134 135 Appendix a Specifications 136 137 Retreiving Client Certificate Next Select User Certificate, then Next 138 139 140 Enabling 802.1x Authentication and SecurityConnections 141 142 143 Enabling WPA Authentication and Security 144 145 Enabling WPA-PSK Authentication and Security 146