Ericsson W40 Mobile Broadband Router for Mobile Networks Ericsson W40 Mobile Broadband Router for Mobile Networks Guide User's Guide
MBR W40 – Admin’s Manual Disclaimer No part of this document may be reproduced in any form without the written permission of the copyright owner. The contents of this document are subject to revision without notice due to continued progress in methodology, design and manufacturing. Ericsson shall have no liability for any error or damage of any kind resulting from the use of this document. Trademark List Firefox® Firefox is a registered trademark of Mozilla Foundation.
MBR W40 – Admin’s Manual Contents 1 INTRODUCTION 1.1 Structure of this Guide 2 W40 MOBILE BROADBAND ROUTER OVERVIEW 2.1 Introduction 2.2 Feature Summary 2.2.1 W40 Data Router 2.2.2 W40 Cellular Gateway 2.2.3 W40 Voice support 2.3 Housing 2.3.1 Back Side Ports 2.3.2 Top Panel Interfaces 2.3.3 Front Panel 2.3.3.1 Built-in Ethernet Indicators 3 CONFIGURATION AND MANAGEMENT 3.1 Access and Login to the Web User Interface 3.1.1 Installation Wizard 3.1.1.1 Step 1: Cellular setup 3.1.1.2 Step 2: WiFi Setup 3.1.1.
MBR W40 – Admin’s Manual 3.7.3.3 Port Forwarding 3.7.3.4 DMZ Host 3.7.3.5 Port Triggering 3.7.3.6 Website Restrictions 3.7.3.7 Network Address Translation (NAT) 3.7.3.8 Connections (Firewall) 3.7.3.9 Advanced Filtering 3.7.4 Quality of Service 3.7.4.1 General 3.7.5 DNS Server 3.7.5.1 Viewing and Modifying the DNS Table 3.7.6 DHCP Server 3.7.6.1 IP Address distribution / DHCP Server Settings 3.7.6.2 IP Address distribution / DHCP Relay Settings 3.7.6.3 DHCP Connections 3.8 System 3.8.1 Overview 3.8.
MBR W40 – Admin’s Manual password, SSID and WiFi pre-shared key User Define definition in DDNS section is added Irena Guy 16/5 1.4 Cellular Network time – updated as not supported Irena Guy 16/5 1.4 WiFi Authentication methods are updated Irena Guy 16/5 1.4 Network Connection status indicator Irena Guy 30/5 1.4 Review Comments removed Irena Guy 13/6 1.5 Comment about power supply added Irena Guy 11/7 1.7 Comment regarding extensions authentication Irena Guy 11/7 1.
MBR W40 – Admin’s Manual 1 Introduction This chapter describes the structure of this guide and provides a list of reference documents. This guide is associated with a W40 firmware (W40_1_00_15) 1.1 Structure of this Guide This User’s Guide contains information that is needed for an end-user to configure and manage the Ericsson Mobile Broadband Router (MBR) W40 product series.
MBR W40 – Admin’s Manual 2 W40 Mobile Broadband Router Overview 2.1 Introduction The W40 Mobile Broadband Router (MBR) product facilitates protected, high-speed Internet access for multiple users in home or in small business environments. It includes capabilities such as router and switch functionality, as well as Circuit Switch Voice and VoIP telephony services (where offered by operators).
MBR W40 – Admin’s Manual 2.3 Housing Figure 2: W40 – Designed to Sit on a Desk 2.3.1 Back Side Ports The back side of the W40 includes the following interfaces: Figure 3: Ericsson W40 Back Side The interfaces are described in the tables below. Table 1: Ericsson W40 Back Side Interfaces 1 Interface Type Description Ext Ant MCX Optional MCX socket for external antenna connection.
MBR W40 – Admin’s Manual 2 Reset Push Button/Switch A small hole with a button inside. It is used to reset the W40 to its factory default configuration. Pressing the button for 30 seconds continuously while the power is on will reset the device to its factory default settings. Pressing the button for less than 30 seconds will reset the device. 3 Phone RJ - 11 Phone port for connecting a standard analog phone (FXS).
MBR W40 – Admin’s Manual 2.3.3 Front Panel The front panel of the W40 includes signal quality indicator LED’s and indicators described in the table below.
MBR W40 – Admin’s Manual Number 1 Indicator Description Network Connection status indicator. Status “Fast Flashing” - attempting to connect Status “On” - registered at home network Status “Slow Flashing” - registered at roaming Status “Off” – not registered 2 Internet Connection status indicator Status ‘On’: A connection to the Internet has been established. Status ‘Off’: Internet connection has not been established. 3 Wireless Network status indicator Status ‘On’: The WiFi is available.
MBR W40 – Admin’s Manual 3 Configuration and Management When the installation of the W40 is complete (as described in the Quick Installation Guide), the internal Web Based Management User Interface (WBM) is available for configuration and status control. This chapter provides detailed information about configuration options and management of the W40 using the WBM. 3.
MBR W40 – Admin’s Manual The first attempt to enter to the WBM from a computer connected to W40 will display the installation wizard. To setup your gateway, follow the wizard procedure steps. 3.1.1 Installation Wizard Once W40 is physically connected, an Installation wizard will be started, and it will automatically analyze your network environment and configure its components.
MBR W40 – Admin’s Manual If the PIN code is required, you will be notified during the wizard and redirected to a different screen where you will have to enter the missing parameters. The screen looks like this: Figure 10: Entering Missing Parameters Once you have entered all the required parameters, usually only a PIN code is needed and confirming the action by clicking “OK”. You will then be redirected back to the wizard.
MBR W40 – Admin’s Manual 3.1.1.2 Step 2: WiFi Setup This step configures your WiFi network. W40 default SSID is "MBR_W40". You may of course change this name according to your preference. Select the WiFi security level and password if required and then click Next. Figure 11: Installation Wizard Wireless Setup 3.1.1.3 Step 3: Internet Connection Setup In this step the W40 will connect to the internet automatically. You may be asked to enter the APN (Access Point Name) parameters manually.
MBR W40 – Admin’s Manual Figure 13 cellular VoIP Line configuration screen In order to setup a cellular VoIP line, you need to enter the following parameters, which need to be obtained from your mobile service provider*: -SIP Server IP, Authentication User Name and Authentication Password * Public/Fixed IP based SIM card may be required. Click the “Next” button to continue, or “Skip” button if you prefer to skip this step. 3.1.1.
MBR W40 – Admin’s Manual 3.2 Navigational Aids The Web-Based Management (WBM) is a Web site that can be explored with any Web browser. This section illustrates the WBM's page structure and describes its navigational components and their hierarchical relationships. Figure 15: Navigation Components 1. The top level navigational aids are the tabs, which group the WBM screens into several main categories. 2. Each tab has an Items Menu that lists the menu items relevant for the category. 3.
MBR W40 – Admin’s Manual Add icon to add a row to the table. Edit icon to edit a row in the table. Remove icon to remove a row from the table. Download icon to download a file from the table. Copy icon to copy an item to the clipboard. Move Up icon to move a row one step up in the table. Move Down icon to move a row one step down in the table.
MBR W40 – Admin’s Manual 3.4 Home Tab 3.4.1 Overview The Overview screen presents the status of W40 various modules and parts in one convenient location. You can quickly and efficiently view and configure your WAN and LAN networks, as well as hardware peripherals, Internet connection, IP PBX and bandwidth consuming applications, or computers. Figure 18: Home Tab – Overview The Home tab is not only informative, but also provides shortcuts to different features and their configurations.
MBR W40 – Admin’s Manual 3.4.2 Map View The Network Map screen (Home -> Map View) displays a graphical network map. Figure 19: The Network Map The network map depicts the various network elements, such as the Internet connection, firewall, gateway, and local network computers and peripherals. Represents the Internet Represents the gateway's Firewall. Click this icon to configure your security settings.
MBR W40 – Admin’s Manual Represents a computer (host) connected to the gateway. This host is either a DHCP client that has received an IP lease from W40, or a host with a static IP address that was auto-detected by W40. Note that W40 will recognize a physically connected host and display it in the Network Map only after network activity from that host has been detected (e.g. trying to browse to the WBM or to surf the Internet). Click this icon to view network information for the corresponding host.
MBR W40 – Admin’s Manual 3.5 Internet Connection Tab 3.5.1 Settings The Internet-Connection Settings screen (Internet Connection-> Settings) provides general information regarding your WAN Internet connection, including the connection's status, protocol, speed, duration, and Internet address. Refer to this screen for a quick status reference. Figure 20: Internet Connection – Settings The Settings screen provides basic information and configuration options for Internet connection supported by the W40.
MBR W40 – Admin’s Manual the network services available on connected computers (hosts). The screen then refreshes, displaying each computer's network services. Figure 21: Network Services Detection To view more information on a specific computer: Click its link. The Host Information screen appears.
MBR W40 – Admin’s Manual This screen presents all of the information relevant to the connected computer, such as connection information, available services, traffic statistics, and connection list. It also enables you to perform connectivity tests with the computer. The following sections are included in the screen: Section Services More Info This section lists the services on the computer that are available to other computers, either from the LAN, via Web access, or both.
MBR W40 – Admin’s Manual 3.6.2.1 Overview Screen and Settings Figure 23: WiFi Overview To see an overview of the WiFi settings, general section: Navigate to Local Network Wireless. The WiFi screen appears.
MBR W40 – Admin’s Manual Parameter Enable WiFi WiFi Network (SSID) More Info Check or uncheck this box to enable or disable the WiFi connection The W40 supports a single SSID. The system arrives with a default preconfigured SSID that may be manually changed. It is also possible to configure the SSID to be hidden. In this case the SSID will not be broadcasted, so wireless clients in the range will not see the SSID, only clients that are aware of the SSID will be able to connect to W40.
MBR W40 – Admin’s Manual 3. Enter the MAC address to be filtered and click the 'OK' button. A MAC address list appears, upon which the selected filtering action (allow/deny) will be performed. Figure 27: MAC Filtering Table To see an overview of the WiFi settings, Security section 1. Navigate to Local Network Wireless. The Wireless Overview screen appears. In the Wireless Overview screen, you can find the Security Section Figure 28: Security Section 2.
MBR W40 – Admin’s Manual Figure 29: Transmission Properties Section 2. Specify Transmission Properties as the following: Parameter Transmission Rate Transmit Power CTS Protection Mode CTS Protection More Info The transmission rate is set according to the speed of your WiFi connection. Select the transmission rate from the drop-down menu, or select 'Auto' to have W40 automatically use the fastest possible data transmission rates (the only option when using 802.11ng).
MBR W40 – Admin’s Manual Send (CTS) packet, signaling that transmission can commence. If the number of packets are less than the preset threshold, then the RTC/CTS mechanism will not be active. If you encounter inconsistent data flow, try a minor reduction of the RTS threshold size.
MBR W40 – Admin’s Manual 3.6.3 Shared Storage You can connect an external storage to your W40 and share this storage with all the devices on your home network (LAN and WLAN). The external storage can be connected via the USB port. Once the external storage is connected, it appears on the home screen. The storage management screen can be accessed via it’s link on the home page or via Local Network Shared Storage.
MBR W40 – Admin’s Manual Figure 32: Partitions 3.6.4 Shared Printer With your W40, you can print documents and pictures from any computer in your local network. When connecting a printer to the W40 USB port, it appears in the Home Overview screen with a status “Connected”. Note: When disconnecting the printer from W40, it reminds in the list with status “disconnected”.
MBR W40 – Admin’s Manual 3.7 Services Tab The Services Overview screen (see Figure 35) presents a summary of W40 services and the current status (enabled/disabled). These services are configurable via their respective tabs under the Services main tab. Figure 35: Services Overview 3.7.1 Personal Domain Name (DDNS) Typically, when you connect to the Internet, your service provider assigns an unused IP address from a pool of IP addresses.
MBR W40 – Admin’s Manual Figure 37: Personal Domain Name Settings Screen 3. Specify the DDNS parameters as follows: Parameter Host Name Enter your full DDNS domain name. Connection Select the connection to which you would like to couple the DDNS service. In W40 there is only one option – “WAN Cellular Modem”. Provider Select your DDNS service provider. The screen will refresh, displaying the parameters required by each provider.
MBR W40 – Admin’s Manual Figure 38: Dynamic DNS Activated W40 can handle more than one DDNS hostname. You can define more than one hostname for a single WAN connection by simply repeating the procedure above for the same connection. When you have finished activating the DDNS service, you can verify that it was activated correctly. To verify that DDNS is activated for a hostname: Browse to the hostname (e.g., http://itsp.dyndns.org). If the hostname is resolved correctly, the W40 WBM login page opens.
MBR W40 – Admin’s Manual To open the analog extension settings screen: 1. Navigate to Services Voice (or Home Phones). The Analog Extensions section shows W40 physical telephone port, for which the W40 PBX functions as an Analog Telephone Adaptor (ATA) device. Figure 40: Analog Extension To modify the analog port extensions and other settings: 1. Click the extension number or its action icon. The Edit Extension screen appears. Figure 41: Edit Extension Screen 2.
MBR W40 – Admin’s Manual To enable/disable the VoIP extensions: 1. 2. Click the extension number or its action icon. The Edit Extension screen appears. Check or uncheck the Enable VoIP Extension. Figure 42: Enable VOIP Extension To Configure a SIP Phone This section provides general information about how to configure a SIP phone to work with MBR. It also includes information about SIP phone devices. Configure the phone with the following settings. Refer to the device's documentation if necessary.
MBR W40 – Admin’s Manual Figure 43” Edit Extension Screen 3. Configure the parameters as follows: Parameter Extension Number Description Specify the extension number as it was set on the device (the SIP phone). The PBX supports extension numbers containing 3 to 9 digits. Last Name, First Name Enter the last name and first name of the extension's owner. Class of Service Select the classes of service to apply to the extension.
MBR W40 – Admin’s Manual or office from disguising a Wi-Fi SIP phone as one of your office extensions and making free phone calls at your expense. When this option is selected, the screen refreshes, providing user name and password fields. By default, the W40 does not require extension authentication. Authentication User Name The user name used for SIP device authentication. Note that this user name must first be configured on the SIP device.
MBR W40 – Admin’s Manual To configure cellular related parameters: 1. Information about the cellular related parameters appears in the Cellular Lines section of the screen (Figure 44). The Status column indicates the status of each cellular channel, cellular operator identification information, and its reception level. Figure 45: Cellular Lines Section Note: If the cellular line status is ‘Not registered’, check the following: 3.
MBR W40 – Admin’s Manual Figure 46: Cellular Line Configuration Screen Note: Some cellular line parameters can only be viewed and modified by users with Administrator permissions. 3. The screen contains the following fields: Parameter Description Name Enter a name for the cellular channel (free text). Status Displays the status of the network. Operator Name The name of the service provider that is associated to the SIM card is referenced here.
MBR W40 – Admin’s Manual Parameter Description the network is not part of the SIM operator’s network. Uncheck the checkbox to disable roaming. IMEI International Mobile Equipment Identity, used to identify an individual mobile station within a GSM or UMTS network. Note: The IMEI number is displayed when the MBR is registered to the cellular network. IMSI The SIM’s International Mobile Subscriber Identity is referenced here.
MBR W40 – Admin’s Manual Figure 47: Edit VoIP Line Screen 2. The screen contains the following fields: Parameter Name Limit number of simultaneous calls Description Enter a name for the VoIP line. Select this option if you want to control the maximum number of simultaneous calls put through the VoIP line. This is useful, for example, if your proxy account has a call limit. When you select this option, the screen refreshes, and the Maximum Number of Simultaneous Calls field is added to the screen.
MBR W40 – Admin’s Manual Parameter Description User Name Authentication User Name Enter the login name used for authentication on the SIP Server. Authentication Password Enter the password used for authentication on the SIP Server. Host name or address Specify the external SIP Server host name or IP address. Port Enter the port number of the External SIP Server. Register with proxy Select this option to enable registration with the SIP Server.
MBR W40 – Admin’s Manual Note: call transfer, call switch, 3-way conference call are pending cellular provider waiting call functionality The following table describes some of the calling operations which can be performed by the extensions. Calling operation VoIP Extension Analog Extension Using “hold” function Hitting on hook/flash button. Use a “Transfer” function on the SIP phone. Call the wanted extension.
MBR W40 – Admin’s Manual To configure incoming call handling: 1. On the main PBX screen (Services Voice Incoming Calls or Home Services Voice Incoming Calls), click the Incoming Calls tab. The Incoming Calls screen appears. Figure 48: Incoming Calls Screen The Incoming call routing is enabled by default. You can enable or disable this functionality by checking or unchecking the “Incoming Call’s routing” checkbox.
MBR W40 – Admin’s Manual To define a new dial-plan entry: 1. Navigate to the External Lines screen (Services Voice External Lines or Home External Lines). 2. At the top right of the External Lines screen, click Outgoing Calls. The Outgoing Calls screen appears and displays a list of the existing dial-plan entries. Figure 50: Outgoing Calls Screen 3. Click the New Dial Plan Entry link. The Edit Dial Plan Entry screen appears: Figure 51: Edit Dial Plan Entry Screen 4.
MBR W40 – Admin’s Manual cellular line (Cellular 1). Remove Digits From the Select this option to remove one or more of the digits from the Beginning of the Dialed beginning of the target phone number before dialing the number. Number When this option is selected, the screen refreshes, and the following field is added: Number of Digits to Remove – Enter the number of digits to remove from the number. Add Digits to the Select this option to add digits before dialing the telephone number.
MBR W40 – Admin’s Manual To define a new Emergency Call dial-plan entry: Users with cellular VoIP line service must register their location with their mobile service provider to enable emergency services. Contact your mobile service provider for more details. Important: If SIM card is not inserted or if the cellular VoIP line is not registered, emergency services are not available via the W40. 1. 2. Navigate to the External Lines screen (Services Voice External Lines or Home External Lines).
MBR W40 – Admin’s Manual Figure 54: CDR screen The box at the top of the screen provides the following information about the list of calls that appears in the table below it. Total Calls The total number of calls released during the specified time period (see Start time/End time below). Start time / End time Specify the time period to include in the CDR report. Number of last calls to Specify the maximum number of report lines to display on the screen.
MBR W40 – Admin’s Manual All call-record information is stored in the csv files listed under CDR Files in the upper section of the screen. The name of each CDR file includes the date covered by the report date and a file number. These files can be downloaded to the PC for handling by external applications such as MS Excel. To download a csv file: Right-click the name of the file and specify the storage place on the PC or in a shared directory on the network. 3.7.2.
MBR W40 – Admin’s Manual To define a hunt group: 1. In the main IP-PBX screen (Services Voice), click the Hunt Groups tab. The Hunt Groups screen appears. Figure 57: Hunt Groups screen 2. Click the New Hunt Group link to create new hunt group. The Hunt Group Parameters screen appears. Figure 58: Hunt Group Parameters Screen 3. Set the parameters as follows: Parameter Description Name Specify a name for the hunt group.
MBR W40 – Admin’s Manual 3.7.2.9 Advanced Telephony Options This section (Services Voice Advanced) mostly provides advanced options intended for a technician or a system administrator. The following settings can be modified by the user: Parameter End of number Description Dialing option which indicates to PBX that the destination number’s dialing is finished and can be transmitted to the destination.
MBR W40 – Admin’s Manual 3.7.3 Firewall The W40 gateway security suite includes security services: Stateful Packet Inspection Firewall, user-authentication protocols, and password protection mechanisms. These features together allow users to connect their computers to the Internet and simultaneously be protected from the security threats of the Internet.
MBR W40 – Admin’s Manual 3.7.3.1 Overview The firewall regulates the flow of data between the local network and the Internet. Both incoming and outgoing data are inspected and then either accepted (allowed to pass through the W40) or rejected (barred from passing through the W40) according to a flexible and configurable set of rules. These rules are designed to prevent unwanted intrusions from the outside while allowing home users access to the Internet services that they require.
MBR W40 – Admin’s Manual 3. Select Block IP Fragments to protect the local network from a common type of hacker attack that could make use of fragmented data packets to sabotage your home network. Note that VPN over IPSec and some UDPbased services make legitimate use of IP fragments. You should be careful not to block IP fragments from the local network if you want to make use of these select services. 4. Click OK to save the settings.
MBR W40 – Admin’s Manual If you want to add a new address, select User Defined. Add a new Network Object to represent the new host, as explained in section Error! Reference source not found.. 4. Under Protocol, select the type of protocol to use. To expand the list of available protocols, select Show All Services. To add a new protocol, select User Defined. Add a new Service to represent the protocol, as explained in section Error! Reference source not found..
MBR W40 – Admin’s Manual You can disable an access control rule in order to make a service available without having to remove the rule from the Access Control screen. This may be useful if you wish to make the service available only temporarily and expect that you will want to reinstate the restriction in the future. To temporarily disable a rule: Clear the check box next to the service name. To reinstate a rule at a later time Reselect the check box.
MBR W40 – Admin’s Manual Figure 65: Port Forwarding 2. Click the New Entry link. The Add Port Forwarding Rule screen appears. Figure 66: Add Port Forwarding Rule 3. Select the Specify Public IP Address check box if you would like to apply this rule on the W40 non-default IP address defined in the NAT screen (refer to Section 3.7.3.8 ). The screen refreshes. Figure 67: Specify Public IP Address 4. Enter the additional external IP address in the Public IP Address field. 5.
MBR W40 – Admin’s Manual 4. By default, the W40 will forward traffic to the same port as the incoming port. If you wish to redirect traffic to a different port, select the Specify option in the Forward to Port drop-down menu. The screen refreshes, and an additional field appears, enabling you to enter the port number. Figure 68: Forward to a Specific Port 8. By default, the rule will always be active.
MBR W40 – Admin’s Manual To enable Gaming Mode 1. 2. 3. Click “Gaming Mode Enabled” Type the IP of the local device connected to the W40 that will act as a gaming server Click “OK” to save a settings 3.7.3.5 DMZ Host The DMZ (Demilitarized) Host feature allows one of the local computers to be exposed to the Internet.
MBR W40 – Admin’s Manual The firewall blocks inbound traffic by default. The server replies to W40 IP, and the connection is not sent back to your host, since it is not part of a session. In order to solve this you need to define a Port Triggering entry, which allows inbound traffic on UDP port 3333 only after a LAN host generated traffic to UDP port 2222.
MBR W40 – Admin’s Manual Figure 72: Edit Service Server Ports 4. 5. 6. 7. In the Protocol combo-box, select UDP. The screen will refresh, providing source and destination port options (see Figure 72). Leave the Source Ports combo-box at its default "Any". In the Destination Ports combo-box, select "Single". The screen will refresh again, providing an additional field in which you should enter "2222" as the destination port. Figure 73: Edit Service Server Ports 8. 9. Click OK to save the settings.
MBR W40 – Admin’s Manual 10. Similar to the trigger ports screen, select UDP as the protocol, leave the source port at "Any", and enter a 3333 as the single destination port (see Figure 75). Figure 75: Edit Service Opened Ports 11. Click OK to save the settings. You can disable a port triggering rule without having to remove it from the Port Triggering screen. To temporarily disable a rule, clear the check box next to the service name. To reinstate it at a later time, simply reselect the check box.
MBR W40 – Admin’s Manual 3.7.3.7 Website Restrictions You may configure the W40 to block specific Internet Web sites so that they cannot be accessed from computers in the local network. Furthermore, restrictions can be applied to a comprehensive and automatically-updated table of sites to which access is not recommended. To block access to a Website: 1. Click the Website Restrictions link of the Firewall menu item under the Services tab. Figure 76: Website Restrictions 2. Click the New Entry link.
MBR W40 – Admin’s Manual Figure 78: Resolving 8. Click the Refresh button to update the status if necessary. If the site is successfully located then Active will appear in the status bar. Figure 79: Active Status Note: If the site wasn’t successfully located, Hostname Resolution Failed will appear. When the W40 fails to locate the Website, do the following: Use a Web browser to verify that the Website is available. If it is, then you probably entered the Website address incorrectly.
MBR W40 – Admin’s Manual you wish to connect, such as a security server, requires that packets have a specific IP address – you can define a NAT rule for that address. To Configure the Network Address Translation: 1. Click the NAT link of the Firewall menu item under the Services tab. The NAT screen appears. Figure 80: Network Address Translation 2. 3.
MBR W40 – Admin’s Manual This screen is divided into two main sections: Matching and Operation. The Matching section defines the LAN addresses to be translated to the external addresses which are defined in the Operation section. 6. Matching Use this section to define characteristics of the packets matching the rule. Source Address The source address of packets sent or received by the W40.
MBR W40 – Admin’s Manual Error! Reference source not found. for further instruction. Note, however, that in this case the network object may only be an IP address since NAPT is port-specific. NAPT Ports Specify the port(s) of the IP address to which the original IP address will be translated. Enter a single port or select Range in the drop-down menu. The screen refreshes, enabling you to enter a range of ports. Figure 85: Add NAPT Rule 8. Logging section allows you to monitor the rule.
MBR W40 – Admin’s Manual 7. Click OK to save the settings. The new IP addresses are displayed in the NAT IP Addresses Pool section. Figure 88: NAT IP Addresses 8. Click OK to save the settings. You can now add NAT/NAPT rules based on these IP addresses. To add a NAT/NAPT rule: 1. Click the New Entry link in the NAT/NAPT Rule Sets section. The Add NAT/NAPT Rule screen appears. Figure 89: Add NAT/NAPT Rule 2. Follow the example to create the required NAT/NAPT rules.
MBR W40 – Admin’s Manual Example 1: Translate the address 192.168.1.10 to 192.168.71.12 In this example, we assume that LAN addresses (192.168.1.X) are not yet connected. Therefore, they do not appear as drop-down menu options, and network objects must be created in order to represent them. 1. Select User Defined in the Source Address drop-down menu. The Edit Network Object screen appears. Figure 90: Edit Network Object 2. Click New Entry. The Edit Item screen appears. Figure 91: Edit Item 3.
MBR W40 – Admin’s Manual This rule translates one LAN IP address to one NAT IP address which means that this LAN computer will have WAN access at all times. The status is therefore set to "Active". Example 2: Translate the range 192.168.1.11-192.168.1.15 to 192.168.71.12-192.168.71.15 Define this NAT rule in the same manner depicted above with the exception of selecting IP Range (instead of IP Address) as the network object type.
MBR W40 – Admin’s Manual This rule translates five new LAN IP addresses to two NAT IP addresses, both of which are already in use by the second rule. W40 is therefore unable to resolve this situation and the rule's status is set to "Error". Notice that had this rule been defined as the second rule, all three rules would be valid. This is because the NAT address 192.168.71.15 would still be available for rule number 1.
MBR W40 – Admin’s Manual Figure 98: NAT/NAPT Rule Sets This rule translates a LAN IP address to a NAT IP address with specific ports. Its status is set to "Active". 3.7.3.9 Connections (Firewall) The connection list displays all the connections that are currently open, as well as various details and statistics. You can set this list to close an undesired connection by clicking its action icon.
MBR W40 – Admin’s Manual 3.7.3.10 Advanced Filtering Advanced filtering is designed to allow comprehensive control over the firewall's behavior. You can define specific input and output rules, control the order of logically similar sets of rules, and make a distinction between rules that apply to WAN and LAN devices. To view the W40 advanced filtering options, click the Advanced Filtering link of the Firewall menu item under the Services tab. The Advanced Filtering screen appears.
MBR W40 – Admin’s Manual Figure 102: Add Advanced Filter The Matching and Operation sections of this screen define the operation to be executed when matching conditions apply. 3. Use the Matching Section to define characteristics of the packets matching the rule. Source Address The source address of packets sent or received by the W40. The drop-down menu provides the ability to specify the computer or group of computers on which you would like to apply the rule.
MBR W40 – Admin’s Manual addresses and service ports defined above. Reject Accept Connection Accept Packet 5. 6. 7. Deny access to packets that match the criteria defined and send an ICMP error or a TCP reset to the origination peer. Allow access to packets that match the criteria defined. The data transfer session will be handled using Stateful Packet Inspection (SPI), meaning that other packets matching this rule will be automatically allowed access.
MBR W40 – Admin’s Manual 3.7.4 Quality of Service Quality of Service refers to the capability of a network device to provide better service to a selected network traffic. This is achieved by shaping the traffic and processing higher priority traffic before lower priority traffic. The Broadband Connection to the Internet is typically the most significant bottleneck of the network. This is where the high speed LAN (100 Mbps) meets limited broadband bandwidth of few Mbps.
MBR W40 – Admin’s Manual Figure 105: General WAN Devices Bandwidth (Rx/Tx) Before selecting the QoS profile that most suits your needs, select your bandwidth from this drop-down menu. If you do not see an appropriate entry, select User Defined, and enter your Tx and Rx bandwidths manually. Tx Bandwidth This parameter defines the gateways outbound transmission rate. Enter your Tx bandwidth in Kbits per second. Rx Bandwidth This parameter defines the gateways Internet traffic reception rate.
MBR W40 – Admin’s Manual Gamer Priority By Host Game-related traffic will receive priority. This entry provides the option to configure which computer in your LAN will receive the highest priority and which the lowest. If you have additional computers, they will receive medium priority. High Priority Host - Enter the host name or IP address of the computer to which you would like to grant the highest bandwidth priority.
MBR W40 – Admin’s Manual Figure 107: Add or Edit a DNS Entry To edit the host name or IP address of an entry: 1. Click the Edit button that appears in the Action column. The DNS Entry screen appears. If the host was manually added to the DNS Table, then you may modify its host name and/or IP address, otherwise you may only modify its host name. 2. Click OK to save the settings. To remove a host from the DNS table: Click the Delete button that appears in the Action column.
MBR W40 – Admin’s Manual Figure 108: DHCP Server Your gateway's DHCP server: Defines the range of IP addresses that can be allocated in the LAN. Defines the length of time for which dynamic IP addresses are allocated. Provides the above configurations for each LAN device and can be configured and enabled/disabled separately for each LAN device.
MBR W40 – Admin’s Manual To edit the DHCP server settings for a device: 1. 2. In the Service section, in the IP Address Distribution combo-box, select the DHCP service: Disabled Disable the DHCP server for this device. DHCP Server Enable the DHCP server for this device. DHCP Relay Set this device to act as a DHCP relay (refer to section 3.7.6.2). Assuming you have chosen DHCP Server, complete the following fields: Start IP Address The first IP address that may be assigned to a LAN host.
MBR W40 – Admin’s Manual Figure 111: DHCP Relay Server Address 4. Specify the IP address of the DHCP server. 5. Click OK to save the settings. 6. Click OK once more in the DHCP Settings screen.
MBR W40 – Admin’s Manual 3.7.6.3 DHCP Connections To view a list of computers currently recognized by the DHCP server: Click the Connection List button that appears at the bottom of the IP Address Distribution screen (see Figure 109). The DHCP Connections screen appears: Figure 112: DHCP Connections To define a new connection with a fixed IP address: 1. Click the New Static Connection link. The DHCP Connection Settings screen appears: Figure 113: DHCP Connection Settings 2.
MBR W40 – Admin’s Manual The DHCP Connections screen will reappear (see Figure 114), displaying the defined static connection. This connection can be edited or deleted using the standard action icons.
MBR W40 – Admin’s Manual 3.8 System 3.8.1 Overview The Overview screen presents a summary of W40 system status indication. This includes various details such as version number, release date, type of platform and wireless network status information. There is an option to upgrade the software version by clicking Upgrade link.
MBR W40 – Admin’s Manual 3.8.2 Routing Access W40 routing settings by clicking the Routing menu item under the System tab or by clicking the Routing icon in the Advanced screen. The Routing screen appears in its basic view. Figure 3116: Routing – Basic View 3.8.2.1 Routing Table You can add, edit and delete routing rules from the routing table in the manner described in section 3.3 To add a routing rule, click the New Route link or the action icon. The Route Settings screen appears.
MBR W40 – Admin’s Manual 3.8.3 Management 3.8.3.1 Universal Plug and Play Universal Plug-and-Play is a networking architecture that provides compatibility among networking equipment, software and peripherals. W40 UPnP enabled products can seamlessly connect and communicate with other Universal Plug-and-Play enabled devices, without the need for user configuration, centralized servers, or product-specific device drivers.
MBR W40 – Admin’s Manual Enable Automatic Cleanup of Old Unused UPnP Services Select this check-box to enable automatic cleanup of invalid rules. This feature checks the validity of all UPnP services every 5 minutes, and removes old and obsolete services unless a user-defined rule depends on them (see chapter Section ). WAN Connection Publication W40 will publish only one WAN connection. 3.8.3.
MBR W40 – Admin’s Manual Figure 120 TR-069 configuration screen Parameter CWMP enable ACS URL ACS User Name ACS Password MBR Port for ACS access CPE Username CPE Password Enable Periodic Info Exchange Description The remote management by TR 069 can be enabled or disabled The Configuration Server URL The Configuration Server User Name for authentication The Configuration Server Password for authentication The Port that the Configuration Server will use to access the W40 The User name that the Configuratio
MBR W40 – Admin’s Manual 3.8.4 Maintenance 3.8.4.1 Configuration File W40 enables you to view, save and load its configuration file in order to backup and restore your current configuration. Access this feature either from the Maintenance tab under the System screen, or by clicking its icon in the Advanced screen. The Configuration File screen appears (see Figure 121 ), displaying the complete contents of the W40 configuration file.
MBR W40 – Admin’s Manual Figure 123: Restore Factory Settings 2. Click OK to restore W40 factory settings. Note: All W40 settings and parameters, not only those in the Advanced section, will be restored to their default values. This includes the a user-specified password for accessing management GUI. 3.8.4.4 W40 Firmware Upgrade W40 offers a built-in mechanism for upgrading its software image without losing any of your custom configurations and settings.
MBR W40 – Admin’s Manual To access the Diagnostics screen: In the Maintenance menu, select the Diagnostics, or click the Diagnostics icon in the Advanced screen. Figure 125: Maintenance – Diagnostics screen To diagnose network connectivity: 1. Under the Ping section, enter the IP address or URL to be tested in the Destination field. 2. Enter the number of pings you would like to run. 3. Click Go. In a few moments, diagnostic statistics will be displayed.
MBR W40 – Admin’s Manual Figure 126: User password screen To change a password: 1. 2.
MBR W40 – Admin’s Manual 3.8.5 System Debug log The system debug log page allows tracing system events and creating reports which can be downloaded to a remote PC during a Web administration session. Figure 127: System Debug Log screen To configure System debug functionality: 1. Press the Settings button. The System Debug configuration screen appears. It provides a list of debug parameters Parameter Log level Description Specifies the level of detail in the debugging trace file. Range: 1-8.
MBR W40 – Admin’s Manual PBX Logging Start the PBX activity tracing. Debug level Specifies the level of detail in the debugging trace file. Range: 1-8. Verbose Level Specifies the level of detail in the PBX activity used protocols debugging trace file. Range: 112. Create syslog file Activate saving trace in the debug report file. Max size of log Specifies the maximum size of the debug file. File continue to fill information in FIFO mode when size expired.
MBR W40 – Admin’s Manual Figure 129: Advanced Tab 97
MBR W40 – Admin’s Manual This screen enables you to configure the following features: DHCP server – Modify the behavior of the DHCP server for each LAN device and view a list of DHCP clients in the local network. This icon redirects to the DHCP menu item under the Services tab (refer to section 3.7.6) DNS Server - View and Modify the DNS Table. This icon redirects to the DNS server menu item under Services tab (refer to section 3.7.5) Firewall – Monitor and define firewall rules.
MBR W40 – Admin’s Manual 1 Appendix 1.
MBR W40 – Admin’s Manual Acronym Definition LAN Local Area Network MAC Media Access Control MTU Maximum Transmission Unit NAPT Network Address Port Translation OAM Operations and Maintenance OEM Original Equipment Manufacturer PDA Personal Digital Assistant POP3 Post Office Protocol 3 PPP Point-to-Point Protocol PPTP Point-to-Point Tunneling Protocol RIP Routing Information Protocol SPI Stateful Packet Inspection TCP Transmission Control Protocol TFTP Trivial File Transfer Proto
MBR W40 – Admin’s Manual Acronym Definition USB Universal Serial Bus VPN Virtual Private Network WAN Wide Area Network 101
MBR W40 – Admin’s Manual 2 Glossary 100Base-T Also known as "Fast Ethernet," an Ethernet cable standard with a data transfer rate of up to 100 Mbps. 10Base-T An older Ethernet cable standard with a data transfer rate of up to 10 Mbps. 802.11, 802.11b A family of IEEE (Institute of Electrical and Electronics Engineers)-defined specifications for wireless networks. Includes the 802.11b standard, which supports high-speed (up to 11 Mbps) wireless data transmission. 802.
MBR W40 – Admin’s Manual Client Any computer or program that connects to, or requests the services of, another computer or program on a network. For a local area network or the Internet, a client is a computer that uses shared network resources provided by a server. Client/server network A network of two or more computers that rely on a central server to mediate the connections or provide additional system resources.
MBR W40 – Admin’s Manual Edge computer The computer on a network that connects the network to the Internet. Other devices on the network connect to this computer. The computer running the most current, reliable operating system is the best choice to designate as the edge computer. Encryption The translation of data into a secret code. Encryption is the most effective way to achieve data security. To read an encrypted file, you must have access to a secret key or password that enables you to decrypt it.
MBR W40 – Admin’s Manual Internet domain In a networked computer environment, a collection of computers that share a common domain database and security policy. A domain is administered as a unit with common rules and procedures, and each domain has a unique name. Intranet A network within an organization that uses Internet technologies (such as a Web browser for viewing information) and protocols (such as TCP/IP), but is available only to certain people, such as employees of a company.
MBR W40 – Admin’s Manual NAT Acronym for network address translation. The process of converting between IP addresses used within a private network and Internet IP addresses. NAT enables all of the computers on a network to share one IP address. Network A collection of two or more computers that are connected to each other through wired or wireless means. These computers can share access to the Internet and the use of files, printers, and other equipment.
MBR W40 – Admin’s Manual Resource Any type of hardware (such as a modem or printer) or software (such as an application, file, or game) that users can share on a network. Restore factory defaults The term used to describe the process of erasing your base stations current settings to restore factory settings. You accomplish this by pressing the Reset button and holding it for five or more seconds. Note that this is different from resetting the base station.
MBR W40 – Admin’s Manual USB MBRr The plug end of the USB cable that is connected to a USB port. It is about half an inch wide, rectangular and somewhat flat. USB port A rectangular slot in a computer into which a USB MBRr is inserted. UTP Acronym for Unshielded Twisted Pair. A cable that contains one or more twisted pairs of wires without additional shielding. It is more flexible and takes less space than a shielded twisted pair (STP) cable, but has less bandwidth.
