Manuals / SMC Networks / Computer Equipment / Network Router

SMC Networks SMC7908VoWBRA manual DMZ Host Support, Security, Virtual Private Network VPN

Models: SMC7908VoWBRA

1 137

Download 137 pages 45.48 Kb

Page 16

INTRODUCTION

•DMZ Host Support

Allows a networked computer to be fully exposed to the Internet. This function is used when NAT and firewall security prevent an Internet application from functioning correctly.

•Security

The Barricade supports security features that deny Internet access to specified users, or filter all requests for specific services that the administrator does not want to serve. The Barricade’s firewall also blocks common hacker attacks, including IP Spoofing, Land Attack, Ping of Death, IP with zero length, Smurf Attack, UDP port loopback, Snork Attack, TCP null scan, and TCP SYN flooding.

•Virtual Private Network (VPN)

The Barricade supports three of the most commonly used VPN protocols — PPTP, L2TP, and IPSec. These protocols allow remote users to establish a secure connection to their corporate network. If your service provider supports VPNs, then these protocols can be used to create an authenticated and encrypted tunnel for passing secure data over the Internet (i.e., a traditionally shared data network). The VPN protocols supported by the Barricade are briefly described below.

•Point-to-Point Tunneling Protocol — Provides a secure tunnel for remote client access to a PPTP security gateway. PPTP includes provisions for call origination and flow control required by ISPs.

•L2TP merges the best features of PPTP and L2F — Like PPTP, L2TP requires that the ISP’s routers support the protocol.

•IP Security — Provides IP network-layer encryption. IPSec can support large encryption networks (such as the Internet) by using digital certificates for device authentication.

1-4

Image 16

SMC Networks SMC7908VoWBRA manual DMZ Host Support, Security, Virtual Private Network VPN

Contents

Page 54Mbps Wireless Voip Router with built-in ADSL Modem From SMC’s line of award-winning connectivity solutions38 Tesla SeptemberTrademarks LIMITED WARRANTY LIMITED WARRANTY COMPLIANCES Federal Communication Commission Interference StatementIMPORTANT STATEMENT FCC Radiation Exposure Statement FCC - PartCOMPLIANCES EC Conformance Declaration COMPLIANCESSafety Compliance Wichtige Sicherheitshinweise Germany COMPLIANCESTABLE OF CONTENTS InstallationConfiguring Client PC Introductionviii Configuring the Voice ADSL RouterTABLE OF CONTENTS Cables . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . B-1 About the Barricade CHAPTER INTRODUCTIONVoIP Voice over IP Features and Benefits Wireless and Wired LAN Internet AccessApplications Shared IP AddressSecurity DMZ Host SupportVirtual Private Network VPN CHAPTER INSTALLATION Package ContentsSystem Requirements Hardware DescriptionFigure 2-1. Rear Panel DescriptionLED Indicators Figure 2-2. Front PanelStatus DescriptionConnect the System ISP SettingsPhone/FAX Connection Phone Line Configuration Installing a Full-Rate ConnectionFigure 2-3. Installing with a Splitter Connect the ADSL LineFigure 2-4. Installing without a Splitter Installing a Splitterless ConnectionCONNECT THE SYSTEM Attach to Your Network Using Ethernet Cabling Connect the Power AdapterCHAPTER 3 CONFIGURING CLIENT PC “Configuring Your Macintosh Computer” on pageSee “Windows 2000” on page “Windows XP” on page or depending on your operating systemTCP/IP Configuration Windows Disable HTTP Proxy Obtain IP Settings from Your BarricadeYour computer is now configured to connect to the Barricade Disable HTTP Proxy Windows XPObtain IP Settings from Your Barricade WINDOWS XP Configuring Your Macintosh Computer Internet Explorer Disable HTTP ProxyCONFIGURING CLIENT PC 3-103. Uncheck all check boxes and click OK CHAPTER CONFIGURING THE VOICE ADSL ROUTER Navigating the Management Interface CONFIGURING THE VOICE ADSL ROUTERMaking Configuration Changes NAVIGATING THE MANAGEMENT INTERFACESETUP WIZARD Channel and SSIDParameter DescriptionTime Zone SETUP WIZARDParameter Setting Parameter ConfirmDescription Parameter If the parameters are correct, click “NEXT” to save these settingsDescription Parameter Setting - Country or ISP Not Listed 4-10 ISP use BridgingCONFIGURING THE VOICE ADSL ROUTER Parameter4-11 ISP use 1483Bridging-DHCP4-12 ISP use 1483Bridging-FixIPClick “NEXT” to continue to the “Confirm” settings page Parameter4-13 ISP use PPPoEClick “NEXT” to continue to the “Confirm” settings page Parameter4-14 ISP use PPPoAClick “NEXT” to continue to the “Confirm” settings page Parameter4-15 ISP use 1483RoutingClick “NEXT” to continue to the “Confirm” settings page ParameterAdvanced Setup 4-16Sets the local time zone, the password for administrator access, and Configures a variety of security and specialized functions including4-17 ADVANCED SETUPMenu DescriptionSYSTEM Time Settings4-18 4-19 Password SettingsADVANCED SETUP 4-20 Remote ManagementADVANCED SETUP 4-21Domain Name Servers DNS are used to map a domain name 4-22 4-23 ATM PVCParameter Description4-24 ATM Interface1483 Bridging Parameter4-25 PPPoAParameter Description4-26 1483 RoutingQoS Parameters - PCR, SCR and MBS are configurable Parameter4-27 PPPoEParameter Description4-28 MAC Encapsulated RoutingParameter DescriptionClone MAC Address 4-29ADVANCED SETUP Parameter 4-30Description 4-31 WIRELESSADVANCED SETUP 4-32 Channel and SSIDParameter DescriptionAccess Control 4-33restrict access based on MAC address ADVANCED SETUPCONFIGURING THE VOICE ADSL ROUTER 4-34Security 4-35 4-36 4-37 802.1XParameter Description4-38 ParameterDescription Quiet Period4-39 ADVANCED SETUPAddress Mapping 4-40CONFIGURING THE VOICE ADSL ROUTER The more common TCP service ports include 4-41Virtual Server 4-42 Special ApplicationNAT Mapping Table 4-43ADVANCED SETUP 4-44 ROUTINGStatic Route Parameter 4-45Description 4-46 Poison ReverseRouting Table 4-47Parameter Description FIREWALL 4-48Access Control 4-49The following items are on the Access Control screen 4-50 1. Click “Add PC” on the Access Control screen2. Define the appropriate settings for client PC services 3. Click “OK” and then click “SAVE SETTINGS” to save your settings4-51 MAC FilterClick Yes to enable, or No to disable this function ADVANCED SETUP4-52 URL BlockingCONFIGURING THE VOICE ADSL ROUTER You can define up to 30 sites hereSchedule Rule 4-53ADVANCED SETUP 4-54 2. Define the appropriate settings for a schedule rule3. Click “OK” and then click “SAVE SETTINGS” to save your settings CONFIGURING THE VOICE ADSL ROUTERIntrusion Detection Intrusion Detection Feature 4-554-56 CONFIGURING THE VOICE ADSL ROUTER4-57 Stateful Packet Inspection4-58 Connection PolicyDefaults ParameterDoS Criteria and Port Scan Criteria 4-59that will cause the software to stop deleting half 4-60 4-61 SNMPCommunity 4-62 Trapunauthorized individuals from accessing information on your system ParameterUPNP 4-634-64 ADSLADSL Parameters 4-65 ADSL StatusADVANCED SETUP Scroll down to view more information4-66 The number of Fast Path Cyclic Redundancy Check errorsThe following items are included on this information page Parameter4-67 ParameterDescription Superframes represent the highest level of data presentationDDNS 4-68Dial Setting VOIP4-69 ParameterPort Settingfor Phone 4-70You can configure the port settings for your phone in this page ParameterPort Settingfor Line Advanced setting4-71 Parameter4-72 CONFIGURING THE VOICE ADSL ROUTER4-73 Outgoing ModeEnterprise Mode ADVANCED SETUPITSP mode 4-74CONFIGURING THE VOICE ADSL ROUTER H.323 Setting 4-75Parameter Description4-76 Numbering Plan4-77 ParameterDescription ParameterPBX ID/Prefix 4-78Peer Gateway 4-79 User ManagementVOIP Status ADVANCED SETUP4-80 TOOLS Configuration Tools4-81 Firmware Upgrade 4-82Reset 4-83STATUS 4-84CONFIGURING THE VOICE ADSL ROUTER Scroll down to view more information on the Status page4-85 ADVANCED SETUP4-86 The following items are included on the Status pageParameter DescriptionFinding the MAC address of a Network Card WINDOWS NT4/2000/XPMACINTOSH LINUXAPPENDIX A TROUBLESHOOTING Troubleshooting ChartSymptom ActionTroubleshooting Chart SymptomTROUBLESHOOTING ActionSymptom Troubleshooting ChartAction Symptom Troubleshooting ChartAction Specifications Wiring ConventionsAPPENDIX B CABLES Ethernet CableFigure B-1. RJ-45 Ethernet Connector Pin Numbers RJ-45 Port ConnectionStraight-Through Wiring Pin AssignmentsCrossover Wiring Crossover Cable Pin AssignmentsFigure B-2. RJ-11 Connector Pin Numbers ADSL CableSpecifications Wiring ConventionsSignal Name Figure B-3. RJ-11 PinoutsWire Color APPENDIX C SPECIFICATIONS Physical Characteristics PortsADSL Features ATM FeaturesSecurity Features LAN FeaturesVoIP Features Radio Features Wireless RF module Frequency Band 802.11g Radio 2.4GHzModulation Rate-Output Power dBm 802.11g - 6Mbps RF Output Power Modulation Rate-Output Power dBm 802.11b - 1MbpsOperating Channels IEEE 802.11b compliant 11 channels US, Canada Temperature IEC Vibration IEC 68-2-36, IEC Shock IEC Drop IEC DimensionsWeight Input PowerStandards Conformance Electromagnetic Compatibility SafetySPECIFICATIONS