5 DMZ, 5.1 DMZ | TP-Link TL-ER5120 manual

3.1.5 DMZ

DMZ (Demilitarized Zone) is a network which has fewer default firewall restrictions than the LAN does. TL-ER5120 provides a DMZ port to allow all the local hosts connected to this port to be exposed to the Internet for some special-purpose services, such as such as Internet gaming and video-conferencing.

The DMZ physical port can work in Public mode and Private mode.

In Public mode, the DMZ port allows the Hosts in DMZ to directly communicate with Internet via routing mode using public IP address. However, the Hosts in DMZ cannot access LAN.

Figure 3-16 DMZ – Public Mode

In Private mode, the DMZ port allows the Hosts in DMZ to access Internet via NAT mode which translates private IP addresses within DMZ to public IP addresses for transport over Internet. The Hosts in DMZ can directly communicate with LAN using the private IP addresses within the different subnet of LAN.

Figure 3-17 DMZ – Private Mode

3.1.5.1DMZ

This page allows you to configure the DMZ port of TL-ER5120.

-35-

Image 40

TP-Link TL-ER5120 manual 5 DMZ, 5.1 DMZ

Contents

TL-ER5120 Gigabit Load Balance Broadband Router Copyright & Trademarks FCC Statement Contents Application 111 136 Hardware Specifications 135Glossary 138 Package Contents Conventions Intended ReadersOverview of this Guide Page Overview of the Router Features Easy-to-useHardware Basic Functions Appearance Front PanelSecurity LEDs Reset button Power SocketRear Panel Interface Description Please use only the power cord provided with this Router Network Status System Mode StatusPage NAT Mode WAN Mode Non-NAT ModeClassic Mode ¾ WAN Mode 3.2 WAN1 Static IP WAN Static IP Following items are displayed on this screen ¾ Static IP Dynamic IP Bandwidth¾ Dynamic IP Connection Type Host NameGet IP Address by Unicast IP Address PPPoE ¾ PPPoE Settings WAN PPPoE Following items are displayed on this screen Password Active ModeSettings Service Name Downstream Bandwidth Subnet Address¾ PPPoE Status L2TP ¾ L2TP Settings 10 WAN L2TP Following items are displayed on this screen Default Gateway Server IPSecondary Connections ¾ L2TP Status Primary DNS/Secondary DNS Upstream Bandwidth DownstreamStatus IP Address Primary DNS Secondary DNS ¾ Pptp Settings 11 WAN Pptp Following items are displayed on this screen Account Name Primary DNS/Secondary DNS¾ Pptp Status BigPond ¾ BigPond Settings ¾ BigPond Status 4 LAN 4.1 LAN ¾ Dhcp Settings Dhcp Dhcp Client Dhcp Reservation ¾ Dhcp Reservation ¾ List of Reserved Address 5 DMZ 5.1 DMZ ¾ DMZ MAC AddressMode Set the MAC Address for LAN port Set the MAC Address for WAN portSet the MAC Address for DMZ port ¾ MAC Address Statistics Switch¾ Statistics Port Mirror ¾ General ¾ Port Mirror Rate Control Application Example Port Config ¾ Rate Control ¾ Port Config Port Status Port Vlan User Group¾ Port Vlan ¾ Group Config GroupUser ¾ List of Group ¾ User Config View¾ List of User Group Name Select the name of the desired Group Advanced NAT Setup1 NAT One-to-One NAT Mapping IP AddressInterface DMZ Forwarding Multi-Nets NAT ¾ Multi-Nets NAT Application Example Network Requirements Configuration procedure ¾ Virtual Server Virtual ServerProtocol Port Triggering 1.6 ALG ¾ Port Triggering Setup Traffic Control¾ ALG 323 ALG Use ¾ Interface Bandwidth Bandwidth Control Guaranteed DirectionGroup Bandwidth Up Limited Bandwidth Session Limit Session Limit Configuration Load BalanceSession List ¾ Session Limit Policy Routing 39 Policy Routing Link Backup WAN 40 Link Backup Following items are displayed on this screen Backup ProtocolTiming Failover Routing Static Route¾ Protocol ¾ List of Protocol ¾ Static Route Metric Description Status 5.2 RIP 43 RIP Following items are displayed on this screen Route Table ¾ List of RIP Anti ARP Spoofing FirewallIP-MAC Binding ¾ IP-MAC Binding ARP Scanning 46 ARP Scanning Attack Defense ARP List ¾ General Not sure MAC Filtering¾ MAC Filtering Access Control URL Filtering ¾ URL Filtering Rule Object Access Rules Web Filtering Service ¾ Access RulesPolicy Source Group on3.2.1 GroupDestination Priority Service 53 Service App Control Control RulesName Dest. Port ¾ Control Rules Application PPPoE Server ServicesDatabase General PPPoE User IsolationPrimary/Secondary Max Sessions IP Address Pool Account ¾ IP Address PoolPool Name IP Address Range ¾ Account Expiration Date Status MAC Binding MAC Address Session Timeout Exceptional IP¾ List of Account ¾ Exceptional IP List of Account BulletinIP Address Range Description Status Enable E-Bulletin Enable LogsInterval ¾ E-Bulletin Dynamic DNS Content Object Effective Time Publisher Description Status¾ List of E-Bulletin Ddns Service DynDNS¾ Dyndns Ddns Domain Name ¾ List of DynDNS Account No-IP¾ No-IP Ddns ¾ List of No-IP Account PeanutHull¾ PeanutHull Ddns ¾ List of PeanutHull Account Comexe¾ Comexe Ddns UPnP ¾ List of Comexe Account Maintenance Admin SetupAdministrator ¾ List of UPnP Mapping Login Parameter ¾ Administrator Application Example Network Requirements Factory Defaults ManagementRemote Management ¾ Remote Management Reboot ¾ Configuration VersionExport and Import ¾ Export Statistics Firmware UpgradeInterface Traffic Statistics IP Traffic Statistics ¾ Interface Traffic Statistics¾ Advanced WAN Information Interface Displays the interface IP Fragment Rx Diagnostics DiagnosticsEnable IP Traffic Statistics Enable Auto-refresh 76 Diagnostics Following items are displayed on this screen ¾ Ping ¾ Tracert Online DetectionDetecting Time Port Displays the detected WAN port DetectionWAN Status Display the detecting results System Time Logs Get GMTManual Synchronize With Send System Logs Level Description Internet Setting ConfigurationsNetwork Requirements System Mode Internet Connection WAN Static IP Settings Network ManagementUser Group Group App Control View Enable Bandwidth Control App Rules Interface Bandwidth Bandwidth Control Rule LAN ARP Defense Network SecurityScan and import the entries to ARP List Set IP-MAC Binding Entry Manually Set Attack Defense WAN ARP Defense Attack Defense Traffic Monitoring Port Mirror 17 Port Mirror StatisticsPage Configuration CLIPage Connection Properties Settings 126 Interface Mode Mode Accessing Path Prompt Logout or Access the next Admin Online Help Command Introduction Get Get the ip configuration 1 ip Ip-mac3 sys TP-LINK # sys restore TP-LINK # sys import config TP-LINK user set password Enter old password History Exit Power StandardsPorts Transmission Medium Appendix B FAQ Page Appendix C Glossary Glossary Description Allows dissimilar communication devices to communicate By the Ieee Glossary Description