Manuals / TP-Link / Computer Equipment / Network Router

TP-Link TL-ER6020 manual  Port Triggering,  List of Rules

Models: TL-ER6020

1 168

Download 168 pages 1.21 Kb

Page 57

3.3.1.5Port Triggering

Note:

●The External port and Internal Port should be set in the range of 1-65535.

●The external ports of different entries should be different, whereas the internal ports can be the same.

List of Rules

In this table, you can view the information of the entries and edit them by the Action buttons.

The first entry in Figure 3-32indicates: This is a Virtual Server entry named host, all the TCP data packets from WAN1 to port 65534-65535 of the Router will be redirected to the port 65534-65535 of the LAN host with IP address of 192.168.0.103, and this entry is activated.

3.3.1.5Port Triggering

Some applications require multiple connections, such as Internet games, video conferencing, Internet calling, P2P download and so on. Port Triggering is used for those applications requiring multiple connections.

When an application initiates a connection to the trigger port, all the ports corresponding to the incoming port will open for follow-up connections.

Choose the menu Advanced→NAT→Port Triggering to load the following page.

Figure 3-33 Port Triggering

The following items are displayed on this screen:

Port Triggering

-52-

Image 57

TP-Link TL-ER6020 manual  Port Triggering,  List of Rules

Contents

REV1.0.1 1910010852 TL-ER6020 Gigabit Dual-WAN VPN RouterCOPYRIGHT & TRADEMARKS FCC STATEMENTCE Mark Warning Chapter 1 About this Guide CONTENTSNetwork Requirements Chapter 4 ApplicationHardware Specifications GlossaryChapter 5 CLI  One TL-ER6020 Router  One Power Cord  One Console Cable Package Contents Two mounting brackets and other fittings  Installation Guide The following items should be found in your packageChapter 1 About this Guide Symbol1.1 Intended Readers 1.2 ConventionsSpecifications Lists the hardware specifications of this RouterAppendix B FAQ Provides the possible solutions to the problems that may occur during Powerful Firewall  Powerful Data Processing CapabilityChapter 2 Introduction 2.1 Overview of the Router Dual-WAN Ports 2.2 Features Easy-to-use Hardware2.3.1 Front Panel 2.3 AppearanceTraffic Control Security LEDs  Reset buttonStatus Indication2.3.2 Rear Panel  Power Socket Grounding Terminal  Kensington Security Slot3.1.2 System Mode Chapter 3 Configuration3.1 Network 3.1.1 StatusFigure 3-3 Network Topology - Non-NAT Mode Figure 3-2 Network Topology - NAT Mode NAT Mode  Classic Mode  Non-NAT Mode3.1.3 WAN 1 Static IP Static IP Upstream Bandwidth 2 Dynamic IPDownstream Specify the bandwidth for receiving packets on the port Dynamic IP 3 PPPoE  Dynamic IP StatusFigure 3-8 WAN - PPPoE on. The connection can be re-established automatically when it  PPPoE Settings576-1492. The default MTU is 1480. It is recommended to keep the Enter the Account Name provided by your ISP. If you are not clearDynamic IP is selected, the obtained subnet address of WAN port is Here allows you to configure the secondary connection. Dynamic IP PPPoE Status 4 L2TPcorrect and your network is connected well. Consult your ISP if  L2TP Settings Figure 3-9 WAN - L2TPThe following items are displayed on this screen Internet connection by the Connect or Disconnect button. It Primary DNS  L2TP StatusSecondary DNS Upstream Bandwidth5 PPTP  PPTP SettingsFigure 3-10 WAN - PPTP The following items are displayed on this screenAccount Name  PPTP Status Status 6 BigPondPrimary DNS Secondary DNS Upstream Bandwidth Downstream Bandwidth  BigPond Settings Status  BigPond StatusIP Address Subnet Mask3.1.4.1 LAN 3.1.4 LAN3.1.4.2 DHCP  LAN DHCP Settings 3.1.4.4 DHCP Reservation 3.1.4.3 DHCP Client3.1.5 DMZ  DHCP Reservation List of Reserved Address 3.1.5.1 DMZ 3.1.6 MAC Address  DMZTips Set the MAC Address for WAN port Set the MAC Address for LAN portSet the MAC Address for DMZ port  MAC Address3.1.7.1 Statistics 3.1.7 Switch3.1.7.2 Port Mirror  StatisticsTips Port Mirror GeneralMode Mirroring PortApplication Example 3.1.7.3 Rate Control Rate Control 3.1.7.4 Port Config3.1.7.5 Port Status  Port Config3.1.7.6 Port VLAN 3.2 User Group Port VLAN Tips3.2.1 Group  Group Config3.2.2 User  List of Group View Config  User Config3.2.3 View  List of User3.3.1.1 NAT Setup 3.3 Advanced3.3.1 NAT  NAPT 3.3.1.2 One-to-One NAT NAT-DMZ  One-to-One NAT3.3.1.3 Multi-Nets NAT  List of Rules Multi-Nets NAT Application Example Network Requirements  list of RulesConfiguration procedure 3.3.1.4 Virtual Server Interface  Virtual ServerProtocol Status3.3.1.5 Port Triggering  Port Triggering List of Rules  List of Rules Status3.3.2 Traffic Control 3.3.1.6 ALG ALG 3.3.2.1 Setup  Default Limit General  Interface Bandwidth 3.3.2.2 Bandwidth Control Bandwidth Control Rule  List of Rulesdata flow might pass. Individual WAN port cannot be selected if 3.3.3 Session Limit 3.3.3.1 Session Limit General 3.3.4 Load Balance 3.3.4.1 Configuration3.3.3.2 Session List  Session Limit3.3.4.2 Policy Routing 3.3.4.3 Link Backup  General List of Rules  General You can select Timing or Failover ModeTiming 3.3.4.4 ProtocolFailover Status ：3.3.5.1 Static Route 3.3.5 Routing Protocol  List of Protocol List of Rules  Static RouteApplication Example 3.3.5.2 RIP General Choose the menu Advanced→Routing→RIP to load the following page List of RIP 3.3.5.3 Route Table3.4 Firewall 3.4.1 Anti ARP Spoofing3.4.1.1 IP-MAC Binding  General  IP-MAC BindingIP Address Status3.4.1.2 ARP Scanning 3.4.1.3 ARP List 3.4.2 Attack DefenseFigure 3-49 Attack Defense The following items are displayed on this screen General  MAC Filtering 3.4.3 MAC FilteringEnable Attack Packet Anomaly3.4.4.1 URL Filtering 3.4.4 Access Control URL Filtering Rule  List of RulesSelect the mode for URL Filtering. “Keyword’’ indicates that all the Configuration Procedure List of Rules Application Example Network Requirements3.4.4.3 Access Rules  Access Rules3.4.4.2 Web Filtering Select the service for the entry. Only the service belonging to the group on3.2.1 Groupother service types can still pass through the Router. You can add Select the Source IP Range for the entries, including the following3.4.4.4 Service Priority List of Rules  List of Service  Service3.4.5.1 Control Rules 3.4.5 App Control Control Rules  General List of Rules 3.4.5.2 Database3.5.1 IKE 3.5 VPN IKE Policy 3.5.1.1 IKE PolicySA Lifetime Specify ISAKMP SA Lifetime in IKE negotiation 3.5.1.2 IKE Proposal  List of IKE Policy IKE Proposal  List of IKE Proposal 3.5.2 IPsec IPsec Policy 3.5.2.1 IPsec Policy General Policy Namepolicy on VPN→IKE→IKE Policy page  IKE Modewhich PCs on the remote network are covered by this policy. Its Gateway of the remote peer should be set to the IP address ofPhase2. As it is independent of the key created in Phase1, this  Manual Modede-encrypted. Without PFS, the key in Phase2 is created based de-encrypted, the key in Phase2 is easy to be de-encrypted, in3.5.2.2 IPsec Proposal  List of IPsec Policy IPsecTips  IPsec Proposal  List of IPsec Proposal 3.5.2.3 IPsec SA3.5.3 L2TP/PPTP Authentication3.5.3.1 L2TP/PPTP Tunnel Protocol General  L2TP/PPTP TunnelProtocol ModeSelect the IP Pool Name to specify the address range for the servers Enter the account name of L2TP/PPTP tunnel. It should be configured3.5.3.2 IP Address Pool  List of Configurations IP Address Pool  List of IP Pool3.6.1 PPPoE Server 3.6 Services3.5.3.3 List of L2TP/PPTP Tunnel 3.6.1.1 General General Figure 3-66 General The following items are displayed on this screen3.6.1.2 IP Address Pool 3.6.1.3 Account  IP Address Pool List of IP Pool  Account is 48. If Enable Advanced Account Features is not selected, the 3.6.1.4 Exceptional IP List of Account 3.6.1.5 List of Account 3.6.2 E-Bulletin Exceptional IP  List of Account General  E-BulletinInterval Title3.6.3 Dynamic DNS  List of E-BulletinTips  Dyndns DDNS 3.6.3.1 DynDNS3.6.3.2 No-IP  List of DynDNS Account No-IP DDNS  List of No-IP Account 3.6.3.3 PeanutHull PeanutHull DDNS 3.6.3.4 Comexe  List of PeanutHull Account Comexe DDNS  List of Comexe Account 3.6.4 UPnP3.7.1 Admin Setup 3.7 Maintenance3.7.1.1 Administrator  Administrator3.7.1.2 Login Parameter Re-enter the new password for confirmation General 3.7.1.3 Remote Management  Remote Management List of Subnet 3.7.2 Management 3.7.2.1 Factory Defaults3.7.2.2 Export and Import Configuration Procedure Configuration Version 3.7.2.3 Reboot Export  Import3.7.3 License 3.7.2.4 Firmware Upgrade3.7.4 Statistics 3.7.4.1 Interface Traffic Statistics Interface Traffic Statistics  Advanced WAN Information 3.7.4.2 IP Traffic Statistics3.7.5.1 Diagnostics 3.7.5 Diagnostics Traffic Statistics  IP Traffic Statistics Tracert  Ping List of WAN status 3.7.5.2 Online DetectionDisplays whether the Online Detection is enabled  General Config 3.7.6 Time Current Time 3.7.7 Logs  List of Logs Config Error conditions LevelDescription Severity4.1 Network Requirements Chapter 4 Application4.2 Network Topology 4.3 Configurations 4.3.1 Internet SettingTips 4.3.1.1 System Mode 4.3.1.3 Link Backup4.3.1.2 Internet Connection 1 IKE Setting 4.3.2 VPN SettingSettings 4.3.2.1 IPsec VPN IKE Policy AuthenticationMD5 Encryption3DESSettings  IPsec Proposal 2 IPsec SettingSettings Tips IPsec Policy SettingsproposalIPsec1 you just created 4.3.2.2 PPTP VPN Setting  IP Address PoolTips  L2TP/PPTP Tunnel SettingsL2TP/PPTPEnable ProtocolPPTP ModeServer UsernamePPTP Passwordabcdefg 4.3.3.1 User Group 4.3.3 Network Management Group  User View 4.3.3.2 App ControlSettings Settings4.3.3.3 Bandwidth Control 1 Enable Bandwidth Control3 Bandwidth Control Rule 2 Interface BandwidthSettings Keep the default value4.3.4 Network Security 4.3.3.4 Session LimitSettings 4.3.4.1 LAN ARP Defense 1 Scan and import the entries to ARP List2 Set IP-MAC Binding Entry Manually 3 Set Attack Defense 4.3.4.2 WAN ARP DefenseSettings 00-11-22-33-44-aa4.3.4.3 Attack Defense 4.3.4.4 Traffic Monitoring1 Port Mirror 2 Statistics Figure 4-23 IP Traffic Statistics Chapter 5 CLI 5.1 ConfigurationFigure 5-3 Select the port to connect Figure 5-2 Connection DescriptionFigure 5-5 Connection Properties Settings 148 Figure 5-4 Port Settings5.2 Interface Mode Logout or Access the next mode Accessing Pathenable adminEnter the privileged mode enableShow command history IP configurationTP-LINK ip-mac get mode 5.4 Command IntroductionIp-mac Bind Mode normal TP-LINK # ip-mac set mode restrictTP-LINK # sys restore TP-LINK # sys reboot This command will reboot system, Continue?Y/NThis command will restore system, Continue?Y/N TP-LINK # sys export configTry to get the configuration file config.bin Password admin File name config.binGet configuration file config bin succeed, file size is 7104 bytes TP-LINK sys show CPU Used Rate 1% TP-LINK # sys updateTP-LINK user set password Enter old password TP-LINK user get Username admin Password adminEnter new password Confirm new password TP-LINK # user get Username admin Password admin5.4.6 exit View the history commandTP-LINK history 1. history 2. sys show 3. historyPower Appendix A Hardware SpecificationsStandards PortsAppendix B FAQ 4. Make sure that the NAT DMZ service is disabled Glossary Appendix C GlossaryAH（Authentication Header） data authentication, and anti-replay services. ESP encapsulatesfor services such as IPSec that require keys. Before any IPSec GlossaryDescription Description GlossaryDescription GlossaryTelnet is used for remote terminal connection, enabling users to enterprise