CT-5374 Multi-DSL WLAN Router User Manual Version A2.
Preface This manual provides information related to the installation and operation of this device. The individual reading this manual is presumed to have a basic understanding of telecommunications terminology and concepts. If you find the product to be inoperable or malfunctioning, please contact technical support for immediate service by email at INT-support@comtrend.com For product update, new product release, manual revision, or software upgrades, please visit our website at http://www.comtrend.
NOTE: This document is subject to change without notice. Protect Our Environment This symbol indicates that when the equipment has reached the end of its useful life, it must be taken to a recycling centre and processed separate from domestic waste. The cardboard box, the plastic contained in the packaging, and the parts that make up this router can be recycled in accordance with regionally established regulations.
Table of Contents CHAPTER 1 INTRODUCTION .......................................................................................................... 5 1.1 FEATURES ....................................................................................................................................... 5 1.2 APPLICATION ................................................................................................................................... 6 CHAPTER 2 INSTALLATION ......................................
.15 CERTIFICATE ............................................................................................................................... 61 5.15.1 Local .............................................................................................................................. 62 5.15.2 Trusted CA ..................................................................................................................... 63 5.16 POWER MANAGEMENT.............................................................
Chapter 1 Introduction The CT-5374 Multi-DSL WLAN Router provides wired and wireless access for high-bandwidth applications in the home or office. It includes four fast Ethernet ports and supports ADSL2/2+ and VDSL2 connections with DSLAM switching. ADSL2+ connections support multiple simultaneous Internet connections while VDSL2 connections are suitable for triple play (Video + Voice + Data) applications. An integrated 802.
1.2 Application The following diagrams depict typical applications of the CT-5374.
Chapter 2 Installation 2.1 Hardware Setup Follow the instructions below to complete the hardware setup. BACK PANEL The figure below shows the back panel of the device. Power Button A/VDSL Port Ethernet (LAN) Ports Ethernet (LAN) Ports Power Port Reset Button Power ON Press the power button to the OFF position (OUT). Connect the power adapter to the power port. Attach the power adapter to a wall outlet or other AC source. Press the power button to the ON position (IN).
Ethernet (LAN) Ports Use 10/100 BASE-T RJ-45 cables to connect up to four network devices. These ports are auto-sensing MDI/X; so either straight-through or crossover cable can be used. DSL Port Connect to an ADSL2/2+ or VDSL with this RJ11 Port. This device contains a micro filter which removes the analog phone signal. If you wish, you can connect a regular telephone to the same line by using a POTS splitter. FRONT PANEL The Wi-Fi & WPS buttons are located on the bottom-left of the front panel, as shown.
2.2 LED Indicators The front panel LED indicators are shown below and explained in the following table. This information can be used to check the status of the device and its connections. LED Color Green Mode On IP connected and no traffic detected. If an IP or PPPoE session is dropped due to an idle timeout, the light will remain green if an ADSL connection is still present. Off Modem power off, modem in bridged mode or ADSL connection not present.
transmitting. slow: xDSL training failed. Green (for 10/100 Base-T) GbETH Amber (for 10/100/1000 Base-T) On Powered device connected to the associated port. Off No activity, modem powered off, no cable or no powered device connected to the associated port. Blink Traffic is passing. On Powered device connected to the associated port. Off No activity, modem powered off, no cable or no powered device connected to the associated port. Blink Traffic is passing.
Chapter 3 Web User Interface This section describes how to access the device via the web user interface (WUI) using an Internet browser such as Internet Explorer (version 5.0 and later). 3.1 Default Settings The factory default settings of this device are summarized below. • • • • • LAN IP address: 192.168.1.1 LAN subnet mask: 255.255.255.
STEP 4: Click OK to submit these settings. If you experience difficulty with DHCP mode, you can try static IP mode instead.
STATIC IP MODE In static IP mode, you assign IP settings to your PC manually. Follow these steps to configure your PC IP address to use subnet 192.168.1.x. NOTE: The following procedure assumes you are running Windows XP. However, the general steps involved are similar for most operating systems (OS). Check your OS support documentation for further details.
3.3 Login Procedure Perform the following steps to login to the web user interface. NOTE: The default settings can be found in 3.1 Default Settings. STEP 1: Start the Internet browser and enter the default IP address for the device in the Web address field. For example, if the default IP address is 192.168.1.1, type http://192.168.1.1. NOTE: For local administration (i.e. LAN access), the PC running the browser must be attached to the Ethernet, and not necessarily to the device. For remote access (i.e.
STEP 3: After successfully logging in for the first time, you will reach this screen.
Chapter 4 Device Information The web user interface window is divided into two frames, the main menu (at left) and the display screen (on the right). The main menu has several options and selecting each of these options opens a submenu with more selections. NOTE: The menu items shown are based upon the configured connection(s) and user account privileges. For example, if NAT and Firewall are enabled, the main menu will display the NAT and Security submenus.
4.1 WAN Select WAN from the Device Info submenu to display the configured PVC(s). Heading Description Interface Name of the interface for WAN Description Name of the WAN connection Type Shows the connection type VlanMuxId Shows 802.
4.2.1 LAN Statistics This screen shows data traffic statistics for each LAN interface. Heading Description Interface LAN interface(s) Received/Transmitted: 4.2.2 - Bytes Pkts Errs Drops Number Number Number Number of of of of Bytes Packets packets with errors dropped packets WAN Statistics This screen shows data traffic statistics for each WAN interface.
Heading Description Interface WAN interfaces Description WAN service label Received/Transmitted 4.2.3 - Bytes - Pkts - Errs - Drops Number Number Number Number of of of of Bytes Packets packets with errors dropped packets ATM Statistics The following figure shows Asynchronous Transfer Mode (ATM) statistics.
Heading Description Out Octets Number of transmitted octets over the interface In Errors Number of cells dropped due to uncorrectable HEC errors In Unknown Number of received cells discarded during cell header validation, including cells with unrecognized VPI/VCI values, and cells with invalid cell header patterns. If cells with undefined PTI values are discarded, they are also counted here.
Heading Description Oversized SDUs Number of PDUs discarded because the corresponding SDU was too large Short Packet Errors Number of PDUs discarded because the PDU length was less than the size of the AAL5 trailer Length Errors Number of PDUs discarded because the PDU length did not match the length in the AAL5 trailer 4.2.4 xDSL Statistics The xDSL Statistics screen displays information corresponding to the xDSL type. The two examples below (VDSL & ADSL) show this variation.
ADSL Click the Reset Statistics button to refresh this screen. Field Description Mode G.Dmt, G.lite, T1.413, ADSL2, ADSL2+,VDSL, VDSL2 Traffic Type Channel type Interleave or Fast Status Lists the status of the DSL link Link Power State Link output power state.
Line Coding (Trellis) Trellis On/Off SNR Margin (0.1 dB) Signal to Noise Ratio (SNR) margin Attenuation (0.1 dB) Estimate of average loop attenuation in the downstream direction. Output Power (0.1 dBm) Total upstream output power Attainable Rate (Kbps) The sync rate you would obtain. Rate (Kbps) Current sync rates downstream/upstream In VDSL mode, the following section is inserted.
OH Frames Total number of OH frames OH Frame Errors Number of OH frames received with errors RS Words Total number of Reed-Solomon code errors RS Correctable Errors Total Number of RS with correctable errors RS Uncorrectable Errors Total Number of RS words with uncorrectable errors HEC Errors Total Number of Header Error Checksum errors OCD Errors Total Number of Out-of-Cell Delineation errors LCD Errors Total number of Loss of Cell Delineation Total Cells Total number of ATM cells (includi
25
xDSL TONE GRAPH Click Draw Tone Graph on the xDSL Statistics screen and a pop-up window will display the xDSL bits per tone status, as shown below.
4.3 Route Choose Route to display the routes that the CT-5374 has found. Field Description Destination Destination network or destination host Gateway Next hub IP address Subnet Mask Subnet Mask of Destination Flag U: route is up !: reject route G: use gateway H: target is a host R: reinstate route for dynamic routing D: dynamically installed by daemon or redirect M: modified from routing daemon or redirect Metric The 'distance' to the target (usually counted in hops).
4.4 ARP Click ARP to display the ARP information.
4.5 DHCP Click DHCP to display all DHCP Leases.
Chapter 5 Advanced Setup Click on the link to jump to a specific section: 5.1 5.2 5.3 5.4 5.5 5.6 5.7 5.8 Layer 2 Interface WAN LAN IPv6 LAN Host NAT Security Parental Control Quality of Service (QoS) 5.9 Routing 5.10 DNS 5.11 DSL 5.12 UPnP 5.13 Print Server 5.14 Interface Grouping 5.15 Certificate 5.16 Power Management 5.1 Layer 2 Interface The ATM, PTM and ETH WAN interface screens are described here. 5.1.1 ATM Interface Add or remove ATM interface connections here.
5.1.2 PTM Interface Add or remove PTM interface connections here. Click Add to create a new connection (see Appendix G - Connection Setup). To remove a connection, select its Remove column radio button and click Remove. 5.1.3 ETH WAN INTERFACE This screen displays the Ethernet WAN Interface configuration. NOTE: This option only applies to models with an Ethernet WAN port. Click Add to create a new connection (see Appendix G - Connection Setup).
5.2 WAN This screen allows for the configuration of WAN interfaces. Click the Add button to create a new connection. For connections on ATM or ETH WAN interfaces see Appendix G - Connection Setup. NOTE: ETH and ATM service connections cannot coexist. In Default Mode, up to 8 WAN connections can be configured; while VLAN Mux and MSC Connection Modes support up to 16 WAN connections. To remove a connection, select its Remove column radio button and click Remove.
5.3 LAN Configure the LAN interface settings and then click Apply/Save. Consult the field descriptions below for more details. GroupName: Select an Interface Group. 1st LAN INTERFACE IP Address: Enter the IP address for the LAN port. Subnet Mask: Enter the subnet mask for the LAN port. Enable IGMP Snooping: Enable by ticking the checkbox . Standard Mode: In standard mode, multicast traffic will flood to all bridge ports when no client subscribes to a multicast group – even if IGMP snooping is enabled.
Enable LAN side firewall: Enable by ticking the checkbox . DHCP Server: To enable DHCP, select Enable DHCP server and enter Start and End IP addresses and the Leased Time. This setting configures the router to automatically assign IP, default gateway and DNS server addresses to every PC on your LAN. Static IP Lease List: A maximum of 32 entries can be configured. To add an entry, enter MAC address and Static IP and then click Save/Apply.
IP Address: Enter the secondary IP address for the LAN port. Subnet Mask: Enter the secondary subnet mask for the LAN port. 5.4 IPv6 LAN Host Configure the IPv6 LAN Host options (see below) and then click Save/Apply. DHCPv6 Server: To enable DHCP for IPv6, select the Enable DHCPv6 server checkbox . This setting enables the router to assign IP settings to every IPv6-capable LAN device (IPv6 clients). RADVD: Select the checkbox to enable the Router ADVertisement Daemon.
Enable MLD Snooping: Enable by ticking the checkbox . Standard Mode: In standard mode, multicast traffic will flood to all bridge ports when no client subscribes to a multicast group – even if snooping is enabled. Blocking Mode: In blocking mode, the multicast data traffic will be blocked and not flood to all bridge ports when there are no client subscriptions to any multicast group. 5.5 NAT To display this option, NAT must be enabled in at least one PVC shown on the Chapter 5 Advanced Setup - .
Consult the table below for field and header descriptions. Field/Header Description Use Interface Select a WAN interface from the drop-down box. Select a Service Or Custom Service User should select the service from the list. Or User can enter the name of their choice. Server IP Address Enter the IP address for the server. External Port Start Enter the starting external port number (when you select Custom Server). When a service is selected, the port ranges are automatically configured.
5.5.2 Port Triggering Some applications require that specific ports in the firewall be opened for access by the remote parties. Port Triggers dynamically 'Open Ports' in the firewall when an application on the LAN initiates a TCP/UDP connection to a remote party using the 'Triggering Ports'. The Router allows the remote party from the WAN side to establish new connections back to the application on the LAN side using the 'Open Ports'. A maximum 32 entries can be configured.
Field/Header Description Trigger Port Start Enter the starting trigger port number (when you select custom application). When an application is selected, the port ranges are automatically configured. Trigger Port End Enter the ending trigger port number (when you select custom application). When an application is selected, the port ranges are automatically configured. Trigger Protocol TCP, TCP/UDP, or UDP. Open Port Start Enter the starting open port number (when you select custom application).
5.6 Security To display this function, you must enable the firewall feature in WAN Setup. For detailed descriptions, with examples, please consult Appendix A - Firewall. 5.6.1 IP Filtering This screen sets filter rules that limit IP traffic (Outgoing/Incoming). Multiple filter rules can be set and each applies at least one limiting condition. For individual IP packets to pass the filter all conditions must be fulfilled. NOTE: This function is not available when in bridge mode. Instead, 5.6.
Consult the table below for field descriptions. Field Description Filter Name The filter rule label Protocol TCP, TCP/UDP, UDP, or ICMP. Source IP address Enter source IP address. Source Subnet Mask Enter source subnet mask. Source Port (port or port:port) Enter source port number or range. Destination IP address Enter destination IP address. Destination Subnet Mask Enter destination subnet mask. Destination Port (port or port:port) Enter destination port number or range.
Consult the table below for field descriptions. Field Description Filter Name The filter rule label Protocol TCP, TCP/UDP, UDP, or ICMP. Source IP address Enter source IP address. Source Subnet Mask Enter source subnet mask. Source Port (port or port:port) Enter source port number or range. Destination IP address Enter destination IP address. Destination Subnet Mask Enter destination subnet mask. Destination Port (port or port:port) Enter destination port number or range.
FORWARDED. It can be changed by clicking the Change Policy button. Choose Add or Remove to configure MAC filtering rules. The following screen will appear when you click Add. Create a filter to identify the MAC layer frames by specifying at least one condition below. If multiple conditions are specified, all of them must be met. Click Save/Apply to save and activate the filter rule. Consult the table below for detailed field descriptions.
5.7 Parental Control This selection provides WAN access control functionality. 5.7.1 Time Restriction This feature restricts access from a LAN device to an outside network through the device on selected days at certain times. Make sure to activate the Internet Time server synchronization as described in 8.5 Internet Time, so that the scheduled times match your local time. Click Add to display the following screen. See below for field descriptions. Click Apply/Save to add a time restriction.
5.7.2 URL Filter This screen allows for the creation of a filter rule for access rights to websites based on their URL address and port number. Click Add to display the following screen. Enter the URL address and port number then click Save/Apply to add the entry to the URL filter. URL Addresses begin with “www”, as shown in this example. A maximum of 100 entries can be added to the URL Filter list. Tick the Exclude radio button to deny access to the websites listed.
5.8 Quality of Service (QoS) NOTE: QoS must be enabled in at least one PVC to display this option. (see Appendix G - Connection Setup for detailed PVC setup instructions). 5.8.1 Queue Management Configuration To Enable QoS tick the checkbox and select a Default DSCP Mark. Click Apply/Save to activate QoS.
Click Enable to activate the QoS Queue. Click Add to display the following screen. Name: Identifier for this Queue entry. Enable: Enable/Disable the Queue entry. Interface: Assign the entry to a specific network interface (QoS enabled). Precedence: Configure precedence for the Queue entry. Lower integer values for precedence imply higher priority for this entry relative to others. 5.8.3 QoS Classification The network traffic classes are listed in the following table.
Click Add to configure a network traffic class rule and Enable to activate it. To delete an entry from the list, click Remove. This screen creates a traffic class rule to classify the upstream traffic, assign queuing priority and optionally overwrite the IP header DSCP byte. A rule consists of a class name and at least one logical condition. All the conditions specified in the rule must be satisfied for it to take effect. Field Description Traffic Class Name Enter a name for the traffic class.
Field Description Source MAC Address A packet belongs to SET-1, if a binary-AND of its source MAC address with the Source MAC Mask is equal to the binary-AND of the Source MAC Mask and this field. Source MAC Mask This is the mask used to decide how many bits are checked in Source MAC Address.
