Manuals / Brands / Computer Equipment / Network Router / Siemens / Computer Equipment / Network Router

Siemens SE551 Refresh, uRemote management enabled, uFirewall for your Internet connection turned off, uAddress translation for your Internet connection turned off

1 148

Download 148 pages, 5.94 Mb

Status information

uFirewall for your Internet connection turned off

Your network is not protected against hackers making unauthorised access from the Internet. The section entitled "Firewall" on page 52 describes how to avoid this secu- rity risk.

uAddress translation for your Internet connection turned off

The clients in your network are not protected against unauthorised access from the Internet. The section entitled "Setting up the NAT function" on page 61 describes how to avoid this security risk.

uOne or more of your local clients directly exposed to the Internet

One or more clients in your network are directly visible to the Internet as exposed hosts and therefore particularly exposed to risk (e.g. from hacker attacks). You should only activate this function if it is absolutely necessary (e.g. to operate a Web server) and other functions (e.g. port forwarding) are not adequate. In this case you should take appropriate measures on the clients concerned. The section entitled "Opening the firewall for selected PCs (Exposed Host)" on page 65 describes how to avoid this security risk.

uRemote management enabled

Any user, including unauthorised ones, who gains knowledge of the system pass- word for your device can access your device's configuration program via the Inter- net. The section entitled "Setting up Remote Management" on page 93 describes how to avoid this security risk.

ìClick on Refresh to refresh this screen and update the displayed data.

102

Contents

Page Page Contents Configuring the Advanced Settings Administration and status information Status information Installing the printer port for network printers Appendix Safety precautions Your contribution to the environment (ECO) The Gigaset SE551 WLAN dsl/cable Page Wired local network (Ethernet) Internet Wireless local network (WLAN) We generally differentiate between two types of wireless network: uInfrastructure mode u Ad-hocmode You can use the Gigaset SE551 WLAN dsl/cable to connect uwirelessly networked PCs to the Internet and Linking wireless networks with the Internet cable modem Linking a wireless network (WLAN) to an Ethernet (LAN) Access Point Ethernet All PCs can access the Internet via the Gigaset SE551 WLAN dsl/cable Please remember: uInternet access As with many DSL providers the Internet is accessed via the PPPoE Client –Shared Internet access uSecurity functions uOffering your own services on the Internet ConnectionPoint one First Steps Front panel LED displays LED State Back panel Element Description Warning Reset Updated firmware will not be affected Then the feet may well mark the furniture surface Position the Gigaset SE551 WLAN dsl/cable so that it cannot fall If you wish to mount the Gigaset SE551 WLAN dsl/cable on the wall, use To the DSL or cable modem To the PC Wireless Radio network Wired LAN1 LAN4 Half duplex Full duplex To the mains power supply 12V DC power The user interface ìClick on OK You will now see the start screen Traffic Control Start screen functions On the start screen you can The configuration program offers you the following functions: Basic Setup Wizard from page Security Setup Wizard page 34. For the protection of your network we recommend Language The user interface pages contain the following elements: Log Off button button Log Off Help Basic Setup Wizard Page Service provider Other ìSelect how Internet sessions are to be established via Connection mode: Always on In the Idle time before disconnect Connect on demand < Back Finish Security Setup Wizard I would like to run the Security Setup Wizard now Security settings Current password New password Confirm new password all SSID broadcast Page WPA2 / WPA with Pre-sharedkey (PSK) WPA2 PSK PSK Pre-shared WEP encryption Key length Input type Passphrase Manual key entry ìSelect the Key type, Hex or ASCII Hex With a ìConfirm the key by entering it again in the Confirm key field MAC address filter Entering MAC addresses manually Add Selecting from the list of logged-inPCs Known wireless clients uYou can completely reset the Gigaset SE551 WLAN dsl/cable (see page 18) ìClick on Finish to conclude the wizard The settings will now be active on your Gigaset SE551 WLAN dsl/cable Configuring the Advanced Settings Via the Internet menu you can umake DNS server settings (page 48) uconfigure time and volume control for using the Internet (see page 50) provide your own services on the Internet (NAT u define QoS properties (priorities for data transfer) (see page 68) Page Internet Connection ìIn the Advanced Settings – Internet menu, select Internet Connection Port Forwarding ìSelect UPnP Ports DNS server ìIn the Advanced Settings – Internet menu, select DNS Servers Use custom DNS servers Preferred DNS server Alternate DNS server MAC address ìIn the Advanced Settings – Internet menu, select MAC Address Use default device MAC address Use MAC address of this PC Use custom MAC address Traffic Control Traffic Control ìIn the Advanced Settings – Internet menu, select Traffic Control Traffic Control Reset traffic counters Global time limit ìEnter the total amount of time available per month in hours Global volume limit ìEnter the total volume of data available per month in megabytes (MB) Individual limits You can: uprotect your network against hacker attacks (see below) block individual PCs' access to selected services or Internet sites ìIn the Advanced Settings – Internet menu, select Firewall ìSelect the required option Attack detection ìIn the Advanced Settings – Internet – Firewall menu, select Attack Detection ìSelect the security level for the firewall Medium The level Custom E-mailnotification of a hacker attack Notification interval E-mail address to notify User-definedsettings Stateful Packet Inspection Traffic All Setting up access control to the Internet Access Control Schedule Rules ìSelect Access Control in the Advanced Settings – Internet – Firewall menu Access Rules Schedule rule Edit Access rule type Apply to all clients Filtering mode –Select the Services you wish to allow or block Protocol Port 80,90-140,180 Schedule Rules Access Rules ìIn the Access Control field under Schedule Rules, click on Edit field under , click on Page Where configuration is concerned, this means: You have to define a Never expires Local Network Lease time Port Triggering Address Translation (NAT) Port Triggering Enabled Local protocol Local port Public protocol ìApply the settings by clicking OK Port Forwarding To set up port forwarding for a service, select Port Forwarding ìSelect the protocol of the service you are providing from the Protocol list Local IP address ìClick on Add ìClick on Delete if you wish to delete the data in the relevant line again Opening the firewall for selected PCs (Exposed Host) To set up a PC as Exposed Host, select ìEnter the Local IP address of the PC that is to be enabled as Exposed Host ìEnter a name for the PC in the Comment field ìActivate the entry by selecting the option ìClick on the Delete button to delete the entry from the list Apply the settings by clicking OK Dynamic DNS Advanced Set- tings Domain name QoS (Quality of Service) QoS ìIn the Advanced Settings – Internet menu, select the entry QoS Differentiated services In the field next to ìSelect Advanced Settings – Local Network Defining the private IP address for the Gigaset SE551 WLAN dsl/cable Subnet mask Configuring the DHCP server DHCP Server Obtain an IP address automatically ìTo activate the DHCP server, select On If the DHCP server is active, you can define a activate the Gigaset SE551 WLAN dsl/cable's wireless module (see below) u set Encryption for wireless transmissions (see page 74), and u restrict access to the Gigaset SE551 WLAN dsl/cable's LAN (see page 74) Wireless Network ìSelect the On option for Wireless Network (default setting) ConnectionPoint ìSelect the Off option to deactivate SSID broadcast Transmission mode IEEE 802.11g only IEEE 802.11b/g (mixed) Super G (108 Mbit/s) Super G Select the mode for using Super G (108 Mbit/s) Static Dynamic If you do not wish to use Disabled Setting wireless security ìIn the Wireless Network menu, select Encryption WPA2-PSKand WPA2-PSK / WPA-PSK WPA with Pre-sharedkey (WPA-PSK) WPA2-PSK WPA2-PSK Security WPA and WPA2 with authentication server WPA2 WPA2 / WPA Enter the IP address of the RADIUS server in the RADIUS server IP address WEP ìSelect the Authentication type: Shared Open Default key Key important Allowed clients ìIn the Wireless Network menu, select Allowed Clients Selecting from the list of logged-in PCs Known wireless clients button to add the entry to the list Repeater function (WDS) In the Wireless Network menu, select Repeater (WDS) Wireless distribution system SSID Channel Safely Remove Hardware File server ìIn the Advanced Settings menu, select File Server ìSelect the On option for the File Server Host name Server Domain / workgroup Workgroup Partitions list and sharing directories Delete All Shares Setting up or editing a share ìEnter a name for the share Browse You can now set access protection for the directory ìFirst, select the On option for Security Web Server ìIn the Advanced Settings menu, select Web Server Partition HTTP ìActivate the HTTP service for your Web server You can change the \gigaset_http FTP ìActivate the FTP service for your Web server \gigaset_ftp \gigaset_http For Printer server ìActivate your device's integrated printer server ìClick OK to accept the changes Administration and status information Time zone Date format Time format Internet Time System time Last synchronization with time server Use custom time servers Preferred time server Setting Idle time before log off: ìIn the Administration menu, select Remote Management Remote Management Allowed connections: Remote Management for one particular PC: Authorized client http://X.X.X.X:8080 uIn the Administration menu, select Save & Restore Saving configuration data ìFor Task, select the option Save configuration Save Restoring the back-up ìFor Task, select the option Restore configuration A window will appear prompting you to confirm the procedure ìClick on OK. The configuration will now be updated Resetting to the factory settings ìIn the Administration menu, select Firmware Update Current firmware version Firmware update file Status System Log Log level Critical –Debugging:complete and detailed information about all your device's functions Status information uConnection status uIP address Local network uDHCP Server Wireless network uSystem password not changed uIdentification of your wireless network visible or not changed uEncryption for your wireless network not activated uAccess to your wireless network not restricted to allowed clients uFirewall for your Internet connection turned off uAddress translation for your Internet connection turned off uOne or more of your local clients directly exposed to the Internet uRemote management enabled Disconnect uConnection mode uMAC address uDefault gateway uPreferred DNS server uAlternate DNS server uDownstream rate uGlobal traffic limits –Time Total Available –Volume uSubnet mask uDHCP clients uChannel uWireless clients Uptime uRepeater (WDS) –WDS links Device uSystem uptime uBootcode version uWireless driver version uHardware version uSerial number Installing the printer port for network printers Start Printers and Faxes Add printer Next Local printer Plug and Play printer Create a new port Standard TCP/IP Port Printer Name or IP Address Port Name Gigaset_Druckerport Additional Port Information Required Network Print Server (1 port) Add Printer wizard Settings Printer Select a Printer Port Gigaset_Druckerport (Standard TCP/IP Port) Printer Port Driver Properties Details Connection Settings ìGo through Start – Settings – Printer and click on New Printer Local Printer Gigaset_Druckerport Appendix Configuring the popup blocker ìSelect Allow popups from this screen Tools – Popup Manager Tools – Internet Options Privacy Symptom Possible cause and solutions Time and Volume Contingent ping Interfaces Wireless properties Operating environment LED displays (green) Compliance with security conditions and regulations Country-specificrequirements have been taken into consideration www.gigaset.com/docs United Kingdom Ireland We offer you support that is fast and tailored to your specific needs www.gigaset.com/customercare UK helpdesk: 0 84 53 67 08 12. Ireland 18 50 77 72 Please address any questions about DSL access to your network provider uThe device is opened (this is classed as third party intervention) Repairs or other work done by persons not authorised by Gigaset Communications u The software is manipulated uDevices fitted with accessories not authorised by Gigaset Communications Page Glossary DHCP Dynamic Host Configuration Protocol DHCP Server See DHCP DMZ DoS attack Denial of Service Digital Subscriber Line Dynamic IP address See also Static IP address Firewall See also NAT Flat rate Full duplex Gateway IGMP Internet Group Management Protocol Protocols Among the most important Internet services are: uelectronic mail (email) IP address Subnet mask ipconfig Static IP address Dynamic IP address Mbps Million bits per second Specification of the transmission speed in a network MER MAC Encapsulated Routing Port Forwarding Port See also: Virtual server PPPoA Point-to-PointProtocol over ATM Repeater Roaming Router Server SIP Service Set Identifier Static IP address Subnet A subnet divides a network into smaller units Subnet mask TCP/IP UDP User Datagram Protocol TCP Broadcast WEP Wired Equivalent Privacy Wireless LAN WPA WPA-PSK Index IP addresses wall mounting network connection mode service provider opening manually port forwarding 128 bit (ASCII) port triggering creating wired trigger port local network Protocol) full duplex Page Issued by Gigaset Communications GmbH is a trademark licensee of Siemens AG www.gigaset.com No.: A31008-M1029-B101-2x-7619