USER GUIDE ADSL2 BARRICADE™ 1-Port ADSL/ADSL2+ Router SMC7901BRA5
1-Port ADSL/ADSL2+ Router User Guide No. 1, Creation Road III, Hsinchu Science Park, 30077, Taiwan, R.O.C. TEL: +886 3 5770270 Fax: +886 3 5780764 September 2011 Pub.
Information furnished by SMC Networks, Inc. (SMC) is believed to be accurate and reliable. However, no responsibility is assumed by SMC for its use, nor for any infringements of patents or other rights of third parties which may result from its use. No license is granted by implication or otherwise under any patent or patent rights of SMC. SMC reserves the right to change specifications at any time without notice. Copyright © 2011 by SMC Networks, Inc. No.
WARRANTY AND PRODUCT REGISTRATION To register SMC products and to review the detailed warranty statement, please refer to the Support Section of the SMC Website at http:// www.smc.com.
COMPLIANCES FEDERAL COMMUNICATION COMMISSION INTERFERENCE STATEMENT This equipment has been tested and found to comply with the limits for a Class B digital device, pursuant to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference in a residential installation.
COMPLIANCES of all devices connected to one line should not exceed five (5.0). To be certain of the number of devices you may connect to you line, as determined by the REN, you should contact your local telephone company to determine the maximum REN for your calling area. If your equipment causes harm to the telephone network, the telephone company may discontinue your service temporarily. If possible, they will notify you in advance.
COMPLIANCES pipe system, if present, are connected together. This precaution may be particularly important in rural areas. Caution: Users should not attempt to make such connections themselves, but should contact the appropriate electric inspection authority, or electrician, as appropriate.
COMPLIANCES ENVIRONMENTAL STATEMENT The manufacturer of this product endeavours to sustain an environmentally-friendly policy throughout the entire production process. This is achieved though the following means: ◆ Adherence to national legislation and regulations on environmental production standards. ◆ Conservation of operational resources. ◆ Waste reduction and safe disposal of all harmful un-recyclable byproducts. ◆ Recycling of all reusable waste content.
ABOUT THIS GUIDE PURPOSE This guide gives specific information on how to install the ADSL Gateway Router and its physical and performance related characteristics. It also gives information on how to operate and use the management functions of the ADSL Gateway Router. AUDIENCE This guide is for users with a basic working knowledge of computers. You should be familiar with Windows operating system concepts.
CONTENTS SECTION I WARRANTY AND PRODUCT REGISTRATION 4 COMPLIANCES 5 ABOUT THIS GUIDE 9 FIGURES 10 CONTENTS 13 TABLES 17 GETTING STARTED 1 INTRODUCTION SECTION II 18 19 Features and Benefits 19 Description of Hardware 20 Power Connector 22 Power Button 22 Reset Button 22 2 INSTALLING THE ROUTER 23 Package Contents 23 System Requirements 23 Cable Connections 24 Powering On 25 Configuring the TCP/IP Protocols 25 WEB CONFIGURATION 28 3 SYSTEM CONFIGURATION Using the Web
CONTENTS Step 1 - Getting Started 33 Step 2 - Time Zone 33 Step 3 - ADSL Settings 34 Step 4 - Configuration Saving 36 4 DEVICE INFORMATION 37 System Status 37 LAN Status 38 WAN Status 39 Port Mapping 40 Traffic Statistics 41 DSL Statistics 42 ARP Table 43 5 LAN SETTINGS 45 LAN Interface 46 DHCP Settings 47 DHCP Disabled 47 DHCP Relay 48 DHCP Server 49 DHCP Static IP 51 6 WAN SETTINGS 52 Channel Configuration 53 ATM Settings 55 ADSL Settings 57 7 SERVICES 59 D
CONTENTS NAT ALG and Pass-Through 71 NAT Port Trigger 72 FTP ALG Configuration 73 NAT IP Mapping 73 Quality of Service 74 MAC Filtering 76 DMZ 77 URL Blocking 78 Software Forbidden 79 DoS 80 IGMP Proxy Configuration 82 RIP Configuration 84 ARP Binding Configuration 85 8 ADVANCED 86 Bridge Setting 87 Log Setting 88 Routing Configuration 89 UPnP 91 SNMP Protocol Configuration 92 System Time Configuration 93 Other Advanced Configuration 94 Port Mapping 95 9 DIAGNOST
CONTENTS SECTION III APPENDICES 111 A TROUBLESHOOTING 112 Diagnosing Gateway Indicators 112 If You Cannot Connect to the Internet 113 Problems Accessing the Management Interface 113 B HARDWARE SPECIFICATIONS 114 Physical Characteristics 114 Software Features 115 Standards 116 Compliances 117 C CABLES AND PINOUTS 118 Twisted-Pair Cable Assignments 118 10/100BASE-TX Pin Assignments 119 Straight-Through Wiring 119 Crossover Wiring 120 RJ-11 Port 121 GLOSSARY 122 INDEX 125
FIGURES Figure 1: Top Panel 20 Figure 2: Rear Panel 21 Figure 3: Connecting the Router 24 Figure 4: Web Login 29 Figure 5: Home Page 30 Figure 6: Wizard Step 1 - Getting Started 33 Figure 7: Wizard Step 2 - Time Zone Configuration 33 Figure 8: Wizard Step 3 - ADSL Settings 34 Figure 9: Wizard Step 3 - Configuration Saving 36 Figure 10: System Status 37 Figure 11: Status - LAN 38 Figure 12: Status - WAN 39 Figure 13: Status - Port Mapping 40 Figure 14: Status - Traffic Statistics
FIGURES Figure 32: NAT — Exclude IP 70 Figure 33: NAT Forwarding Settings 70 Figure 34: NAT ALG and Pass-Through 71 Figure 35: NAT — Port Trigger 72 Figure 36: NAT — FTP ALG Configuration 73 Figure 37: NAT — IP Mapping 73 Figure 38: Quality of Service 74 Figure 39: MAC Filtering Settings 76 Figure 40: DMZ Settings 77 Figure 41: URL Blocking Settings 78 Figure 42: Software Forbidden Settings 79 Figure 43: DoS Settings 80 Figure 44: IGMP Proxy Configuration 83 Figure 45: RIP Configu
FIGURES Figure 68: Straight-through Wiring 119 Figure 69: Crossover Wiring 120 Figure 70: RJ-11 Wiring 121 – 12 –
TABLES Table 1: LED Display Indicators 21 Table 2: Configuration Menu 30 Table 3: LED Troubleshooting Chart 112 Table 4: Web Access Troubleshooting Chart 113 Table 5: 10/100BASE-TX MDI and MDI-X Port Pinouts 119 Table 6: RJ-11 Port Pinouts 121 – 17 –
SECTION I GETTING STARTED This section provides an overview of the ADSL Gateway Router, and describes how to install and mount the unit.
1 INTRODUCTION The Barricade ADSL Gateway Router (SMC7901BRA5) is an ADSL2/2+ modem contained in a compact unit. The router enables multiple wired users to securely access the Internet through a single-user account with the ADSL service provider. The router provides one 10/100 Mbps Ethernet port or USB port for connection to the end user, and one ADSL line for connection to the Internet service provider.
CHAPTER 1 | Introduction Description of Hardware DESCRIPTION OF HARDWARE This ADSL Gateway Router is a high bit-rate Digital Subscriber Line (DSL) modem that can connect to an ADSL Internet service provider. This unit provides the following ports on the rear panel: ◆ One RJ-11 port for connection to your ADSL service provider’s incoming line. ◆ One RJ-45 port for connection to a PC, or to a 10/100BASE-TX Ethernet Local Area Network switch. This port operates at 10/100 Mbps, half/full duplex.
CHAPTER 1 | Introduction Description of Hardware Figure 2: Rear Panel WAN Port USB Port Ethernet Port Reset Button Power Socket and On/Off Switch The ADSL Gateway Router includes key system and port indicators that simplify installation and network troubleshooting. The LEDs, which are located on the top of the unit for easy viewing, are described in the following table. Table 1: LED Display Indicators LED Status Description Power On Green The router is being supplied with power.
CHAPTER 1 | Introduction Description of Hardware POWER CONNECTOR The ADSL Gateway Router must be powered with its supplied power adapter. Failure to do so results in voiding of any warrantly supplied with the product. The power adapter automatically adjusts to any voltage between 100~240 volts at 50 or 60 Hz, and supplies 12 volts DC power to the unit. No voltage range settings are required. POWER BUTTON The ADSL Gateway Router has a power button.
2 INSTALLING THE ROUTER Before installing the ADSL Gateway Router, verify that you have all the items listed in “Package Contents.” If any items are missing or damaged, contact your local distributor. Also, be sure you have all the necessary tools and cabling before installing the router.
CHAPTER 2 | Installing the Router Cable Connections ◆ The router should be located in a cool dry place, with at least 5 cm (2 in.) of space on all sides for ventilation. ◆ Place the router out of direct sunlight, and away from heat sources or areas with a high amount of electromagnetic interference. The temperature and humidity should be within the ranges listed in the specifications.
CHAPTER 2 | Installing the Router Powering On 4. Connect one end of the included Ethernet cable to the Ethernet port on the ADSL Gateway Router, and the other end to a PC’s RJ-45 network port. Alternatively, you can connect the Ethernet port to a LAN switch. CAUTION: Do not plug a phone jack connector into any RJ-45 port. Use only twisted-pair cables with RJ-45 connectors that conform to FCC standards.
CHAPTER 2 | Installing the Router Configuring the TCP/IP Protocols 3. For Windows NT, click the “Protocols” tab. 4. Select “TCP/IP” from the list of network protocols; this may include details of adapters installed in your computer. 5. Click “Properties.” 6. Check the option “Obtain an IP Address.” WINDOWS 2000 1. Click “Start/Settings/Network/Dial-up Connections.” 2. Click “Local Area Connections.” 3. Select “TCP/IP” from the list of network protocols. 4. Click on “Properties.” 5.
CHAPTER 2 | Installing the Router Configuring the TCP/IP Protocols 2. In the TCP/IP dialog box, verify that “Ethernet” is selected in the “Connect Via:” field. 3. If “Using DHCP Server” is already selected in the “Configure” field, your computer is already configured for DHCP. Otherwise, select “Using DHCP Server” in the “Configure” field and close the window. 4. Another box will appear asking whether you want to save your TCP/IP settings. Click “Save.” 5.
SECTION II WEB CONFIGURATION This section describes the basic settings required to access the web management interface and provides details on configuring the Gateway.
3 SYSTEM CONFIGURATION USING THE WEB INTERFACE The router provides a web-based management interface for configuring device features and viewing statistics to monitor network activity. This interface can be accessed by any computer on the network using a standard web browser (such as Internet Explorer 5.0, Netscape 6.2, Mozilla Firefox 2.0, or above). To make an initial connection to the management interface, connect a PC to one of the router’s LAN ports.
CHAPTER 3 | System Configuration Using the Web Interface HOME PAGE When your web browser connects with the router’s web agent, the home page is displayed as shown below. Basic information can be viewed using the Status menu. To carry out detailed configuration tasks, use the other menu items. Figure 5: Home Page The main menu is displayed on the left side of the screen. Click on any of these items to open the sub-menu list.
CHAPTER 3 | System Configuration Using the Web Interface Table 2: Configuration Menu (Continued) Menu Description Page DHCP Mode Sets DHCP server and DHCP relay settings 47 Static IP Configures static DHCP assignments 51 Channel Config Configures the DSL channel settings 53 ATM Settings Configures DSL ATM settings 55 ADSL Settings Configures ADSL settings 57 DNS Server Configures DNS server settings 60 Dynamic DNS Configures DDNS settings 61 ACL Config Configures ACLs for LAN or WA
CHAPTER 3 | System Configuration Using the Web Interface Table 2: Configuration Menu (Continued) Menu Description Page UPnP Enables UPnP for the WAN interface 91 SNMP Configures SNMP settings 92 System Time Configures NTP time server settings 93 Others Configures Half Bridge settings 94 Port Mapping Maps LAN ports to WAN interfaces 95 Diag-Test Runs diagnostic tests for the ADSL link 97 Ping Sends Ping echo requests to other devices 98 Traceroute Checks routes to other deives 99
CHAPTER 3 | System Configuration Setup Wizard SETUP WIZARD The Wizard is designed to help you configure the basic settings required to get the ADSL Gateway Router up and running. Click “Wizard” in the main menu to get started. STEP 1 - GETTING After reading the wizard welcome message, click Next to continue. STARTED Figure 6: Wizard Step 1 - Getting Started STEP 2 - TIME ZONE Configure a Network Time Protocol (NTP) server to poll for time updates.
CHAPTER 3 | System Configuration Setup Wizard The following items are displayed on this page: ◆ Status – Enables or disables time synchronization with external servers. ◆ Server IP – Specifies the IP address of a public NTP time server on the Internet. ◆ Interval – Specifies the time interval for polling the NTP server. ◆ Time Zone – A drop-down box provides access to predefined time zones.
CHAPTER 3 | System Configuration Setup Wizard ◆ Protocol — The protocol used will be specified by your service provider. Choose from the following options: ■ ■ ■ ■ ◆ PPPoE — Point-to-Point Protocol over Ethernet (PPPoE). PPPoA — Point-to-Point Protocol over Asynchronous Transfer Mode (PPPoA). 1483 MER : DHCP — 1483 MER is an RFC standard MAC Encapsulated Routing protocol. 1483 MER : Static IP — 1483 MER is an RFC standard MAC Encapsulated Routing protocol.
CHAPTER 3 | System Configuration Setup Wizard STEP 4 - The final step in the setup wizard saves the configuration changes. Click CONFIGURATION Finish to complete the wizard, then click Save.
4 DEVICE INFORMATION The Status pages display information on hardware/software versions, LAN and WAN connection status, statistics, and the ARP table. SYSTEM STATUS The System Status page displays the hardware and software versions, and the WAN connection status and speed. Click Status, System. Figure 10: System Status The following items are displayed on this page: SYSTEM: ◆ Alias Name – An alias for the ADSL Router, enabling the device to be uniquely identified on the network.
CHAPTER 4 | Device Information LAN Status DSL: ◆ Operational Status – Displays the status of the DSL connection. ◆ Upstream Speed – The current upload speed of the DSL connection. ◆ Downstream Speed – The current download speed of the DSL connection. LAN STATUS The ADSL Router LAN window displays basic LAN port settings including DHCP information. Figure 11: Status - LAN The following items are displayed on this page: LAN STATUS Displays the basic information of the LAN port.
CHAPTER 4 | Device Information WAN Status ◆ MAC Address — Displays the physical layer address of the DHCP Client. ◆ Expiry(s) — Displays the duration of the lease time. ◆ Type — Indicates if the entry is dynamic or static. WAN STATUS The ADSL Router WAN window displays basic WAN port settings. Figure 12: Status - WAN The following items are displayed on this page: ◆ Interface — Displays the interface identifier. ◆ VPI/VCI — Displays the ATM channel identifiers.
CHAPTER 4 | Device Information Port Mapping PORT MAPPING The Port Mapping status shows the mapping of WAN and LAN interfaces to specific groups. Figure 13: Status - Port Mapping The following items are displayed on this page: ◆ Status — Indicates if port mapping is enabled or disabled. ◆ Select — Indicates the group identification. ◆ Interfaces — Specifies the WAN and LAN interfaces in the group. ◆ Status — Indicates if the group mapping is enabled.
CHAPTER 4 | Device Information Traffic Statistics TRAFFIC STATISTICS The ADSL Router Traffic Statistics - Interfaces window displays received and transmitted packet statistics for all interfaces on the ADSL Router. Figure 14: Status - Traffic Statistics The following items are displayed on this page: ◆ Interface — Displays the interface on which traffic is being monitored. ◆ Rx Packet — Displays the total number of packets received by the specified interface.
CHAPTER 4 | Device Information DSL Statistics DSL STATISTICS The ADSL Router DSL Statistics window displays received and transmitted packet statistics for all interfaces on the ADSL Router. Figure 15: Status - DSL Statistics The following items are displayed on this page: ◆ ADSL Status — Displays the ADSL connection status (“activating”, “up” or null). ◆ ADSL Mode — Displays the connection mode for the ADSL Router, which is fixed at ADSL2+.
CHAPTER 4 | Device Information ARP Table ◆ SNR Margin Downstream/Upstream (db) — Displays the current signal-to-noise margin expressed in decibels (dB). SNR is the ratio of signal power to the noise power corrupting the signal. ◆ Vendor ID – The vendor name of the digital signal processor (DSP). ◆ DSP Version – The current hardware version of the digital signal processor (DSP).
CHAPTER 4 | Device Information ARP Table The following items are displayed on this page: ◆ IP Address — IP address of a local entry in the cache. ◆ MAC Address — MAC address mapped to the corresponding IP address. ◆ Refresh — Sends a request to update the current parameters.
5 LAN SETTINGS This chapter describes LAN configuration on the ADSL Router. You can use the web browser interface to access IP addressing only if the ADSL Router already has an IP address that is reachable through your network.
CHAPTER 5 | LAN Settings LAN Interface LAN INTERFACE By default, the ADSL Router is configured with the IP address 192.168.2.1, subnet mask 255.255.255.0 and a default gateway of 192.168.2.1. Figure 17: LAN Configuration The following items are displayed on this page: ◆ Interface Name — Displays the name assigned to the interface. ◆ IP Address — Specifies an IP address for management of the ADSL Router. Valid IP addresses consist of four decimal numbers, 0 to 255, separated by periods. (Default: 192.
CHAPTER 5 | LAN Settings DHCP Settings ◆ Secondary IP Address — Specifies a secondary IP address for management of the unit. ◆ IGMP Snooping — Enables Internet Group Management Protocol (IGMP) multicast filtering. ◆ LAN Port — Selects the LAN port. ◆ Link Speed/Duplex Mode — Selects the port speed and duplex mode, or sets the port for auto-negotiation. ◆ MAC Address Control — Filters out traffic with source MAC addresses not configured in the table.
CHAPTER 5 | LAN Settings DHCP Settings DHCP RELAY Dynamic Host Configuration Protocol (DHCP) can dynamically allocate an IP address and other configuration information to network clients that broadcast a request. To receive the broadcast request, the DHCP server would normally have to be on the same subnet as the client. However, when the access point’s DHCP relay agent is enabled, received client requests can be forwarded directly by the access point to a known DHCP server on another subnet.
CHAPTER 5 | LAN Settings DHCP Settings DHCP SERVER The unit can support up to 253 local clients. Addresses are assigned to clients from a common address pool configured on the unit. Configure an address pool by specifying start and end IP addresses. Be sure not to include the unit's IP address in the address pool range. Figure 20: DHCP Server The following items are displayed on this page: ◆ LAN IP Address — Displays the LAN IP address for management of the ADSL Router. (Default: 192.168.2.1.
CHAPTER 5 | LAN Settings DHCP Settings ◆ Default Gateway — Specifies the gateway address through which traffic is routed from. Usually the LAN IP address of the ADSL Router ◆ MAX Lease Time — Select a time limit for the use of an IP address from the IP pool. When the time limit expires, the client has to request a new IP address. The lease time is expressed in seconds.
CHAPTER 5 | LAN Settings DHCP Settings DHCP STATIC IP Assigns a physical MAC address to the DHCP pool by mapping it to a corresponding IP address. Figure 22: DHCP Static IP Assignment The following items are displayed on this page: ◆ IP Address — Enter the IP address from the DHCP address pool to assign to the specified MAC address. ◆ MAC Address — Enter the MAC address to be assigned to a static IP address from the DHCP address pool.
6 WAN SETTINGS This chapter describes WAN configuration on the ADSL Router. The WAN pages are used to configure standard WAN services, including VPI, VCI, encapsulation, service type (PPPoE, IPoE, bridging), ATM settings and ADSL settings.
CHAPTER 6 | WAN Settings Channel Configuration CHANNEL CONFIGURATION The Channel Configuration page configures channel operation modes of the ADSL Router. Figure 23: WAN Configuration The following items are displayed on this page: ◆ Default Route Selection – Enables the default route to be specified or selected automatically. ◆ VPI (Virtual Path Identifier) – A grouping of virtual channels which connect the same end-points, and which share a traffic allocation.
CHAPTER 6 | WAN Settings Channel Configuration ■ ◆ VC/MUX (Virtual Circuit Multiplexing) – When using this mode, the communicating hosts agree on the high-level protocol for a given circuit, which tends to reduce fragmentation overhead. This allows a sender to pass each datagram directly to AAL5 for transfer, and requires nothing to be sent besides the datagram and the AAL5 trailer.
CHAPTER 6 | WAN Settings ATM Settings selected, the WAN interface IP address is assigned by the remote DHCP server. ■ ■ Local IP address — The IP address of the WAN interface provided by the ISP. Gateway — The IP address of the remote gateway router provided by the ISP. ■ Netmask — The subnet mask for the local IP address. ■ Default Route — Enables or disables the default route IP address. ■ Unnmbered — Enables the IP unnumbered feature.
CHAPTER 6 | WAN Settings ATM Settings ◆ VCI (Virtual Channel Identifier) — Adds a VCI entry to the table. (Range: 32-65535; Default: 35) ◆ QoS — Selects packet level Quality of Service (QoS) for the connection. Options are: ■ ■ UBR (Unspecified Bitrate): Configures a PVC with a Peak Cell Rate indicating the maximum number of ATM cells that can be sent in a burst. CBR (Constant Bitrate): Configures a PVC at a constant bit rate.
CHAPTER 6 | WAN Settings ADSL Settings ADSL SETTINGS The ADSL Settings page configures the ADSL modulation type, ADSL2+ related parameters, capabilities and the ADSL tone mask. Figure 25: ATM Settings The following items can be enabled on this page: ◆ ADSL Modulation — ADSL Modulation refers to a frequency-division multiplexing (FDM) scheme utilized as a digital multi-carrier modulation method for DSL. A large number of closely-spaced orthogonal sub-carriers are used to carry data.
CHAPTER 6 | WAN Settings ADSL Settings ■ ■ ADSL2 — This standard extends the capability of basic ADSL data rates to 12 Mbit/s downstream and 3 Mbit/s upstream (with a mandatory capability of ADSL2 transceivers of 8 Mbit/s downstream and 800 Kbit/s upstream. ADSL2+ — This standard extends the capability of basic ADSL data rates to 24 Mbit/s downstream and 1.4 Mbit/s upstream depending on the distance from the DSLAM to the customer's home.
7 SERVICES The Advanced Configuration settings for the ADSL Router contain advanced system management configuration settings such as DNS setup, routing configuration, bridging, SNMP and TR-069 settings.
CHAPTER 7 | Services DNS Settings DNS SETTINGS Sets Domain Name Server (DNS) and Dynamic DNS settings. DNS SERVER The Domain Name Server (DNS) implements a human recognizable web address to a numerical IP address. DNS can be set automatically or manually. Figure 26: DNS Server Configuration The following items are displayed on this page: ◆ Obtain DNS Automatically — The DNS server IP address is automatically configured during dynamic IP assignment.
CHAPTER 7 | Services DNS Settings DDNS Dynamic DNS (DDNS) provides users on the Internet with a method to tie a specific domain name to the unit’s dynamically assigned IP address. DDNS allows your domain name to follow your IP address automatically by changing your DNS records when your IP address changes. The ADSL Router provides access to two DDNS service providers, DynDns.org, and TZO. To set up an DDNS account, visit the websites of these service providers at www.dyndns.org,or www.tzo.com.
CHAPTER 7 | Services DNS Settings TZO The following parameters apply to the TZO setting. ◆ Email — Specifies your contact email address for the DDNS service. ◆ Key — Specifes an encryption key for the DDNS service. DYNAMIC DDNS TABLE This table displays the configured servers in the DDNS setup. ◆ Select — Highlights an entry in the Dynamic DDNS Table. ◆ State — Displays the state of the server entry, enabled or disabled. ◆ Service — Displays the type of DDNS service.
CHAPTER 7 | Services Access Control Lists ACCESS CONTROL LISTS The ADSL Router supports Access Control Lists that filter IP addresses allowed access on the unit's LAN and WAN interfaces. Only traffic from IP addresses in the ACL table are allow access to the ADSL Router. LAN ACLS When you select LAN for the ACL “direction,” you can configure ACLs that apply to the LAN interfaces.
CHAPTER 7 | Services Access Control Lists CURRENT ACL TABLE Lists the configured ACLs on the LAN ports. ◆ Select — The number of the entry in the table. ◆ Direction — Displays if the ACL is applied to a LAN or WAN interface. ◆ IP Address/Interface — Displays the allowed IP address or range. ◆ Service — Dispays the allowed service. ◆ Port — Displays the TCP/UDP port of the allowed service. ◆ Action — Click the button to remove the entry from the table.
CHAPTER 7 | Services Access Control Lists ◆ Add — Adds the ACL to the ACL Table. CURRENT ACL TABLE Lists the configured ACLs on the LAN ports. ◆ Select — The number of the entry in the table. ◆ Direction — Displays if the ACL is applied to a LAN or WAN interface. ◆ IP Address/Interface — Displays the allowed IP address or range. ◆ Service — Dispays the allowed service. ◆ Port — Displays the TCP/UDP port of the allowed service. ◆ Action — Click the button to remove the entry from the table.
CHAPTER 7 | Services IP/Port Filtering IP/PORT FILTERING IP/Port filtering restricts connection parameters to limit the risk of intrusion and defends against a wide array of common hacker attacks. IP/Port filtering allows the unit to permit, deny or proxy traffic through its ports and IP addresses.
CHAPTER 7 | Services IP/Port Filtering ◆ Source IP Address — Specifies the source IP address to block or allow traffic from. ◆ Destination IP Address — Specifies the destination IP address to block or allow traffic from. ◆ Subnet Mask — Specifies a subnet mask. ◆ Source Port — Specifies a range of ports to block traffic from the specified LAN IP address. ◆ Destination Port — Specifies a range of ports to block traffic from the specified LAN IP address from reaching.
CHAPTER 7 | Services NAT/NAPT Settings NAT/NAPT SETTINGS Network Address Translation (NAT) is a standard method of mapping multiple “internal” IP addresses to one “external” IP address on devices at the edge of a network. For the router, the internal (local) IP addresses are the IP addresses assigned to local PCs by the DHCP server, and the external IP address is the IP address assigned to the specified WAN interface.
CHAPTER 7 | Services NAT/NAPT Settings Figure 31: NAT — Virtual Servers The following items are displayed on this page: ◆ Service Type – Sets a name to describe the virtual server service. ■ Usual Service Name – Select a name from the list of common applications. ■ User-defined Service Name – Set a custom name to describe the service. ◆ Protocol – Specifies the port type. (Options: TCP or UDP; Default: TCP) ◆ WAN Setting – Selects a WAN interface or IP address.
CHAPTER 7 | Services NAT/NAPT Settings NAT EXCLUDE IP You can use the Exclude IP feature to block an IP address or range of IP addresses from accessing WAN interfaces. Figure 32: NAT — Exclude IP The following items are displayed on this page: ◆ Interface – Select the WAN interface for the Exclude IP service. ◆ IP Range – Specifies an IP address range to block on the WAN interface.
CHAPTER 7 | Services NAT/NAPT Settings ◆ Remote IP Address — Specifies the source IP address on the WAN to allow access from. Leaving this parameter blank allows access from all traffic. ◆ Enable — Checking this box activates the parameters configurated once added to the Current NAT Port Forwarding Table.
CHAPTER 7 | Services NAT/NAPT Settings ◆ MSN — Enables MSN passthrough. (Default: Enabled) NAT PORT TRIGGER Port triggering is a way to automate port forwarding in which outbound traffic on predetermined ports (“triggering ports”) causes inbound traffic to specific incoming ports to be dynamically forwarded to the initiating host while the outbound ports are in use. Figure 35: NAT — Port Trigger The following items are displayed on this page: ◆ Port Trigger – Enables the feature.
CHAPTER 7 | Services NAT/NAPT Settings FTP ALG FTP ALG Configuration specifies a non-standard FTP port for passthrough CONFIGURATION traffic. The standard port for FTP connections is TCP port 21, and the router monitors port 21 to ensure the NAT passthrough of FTP. When the FTP server port is not 21, you must specify the TCP port to ensure NAT passthrough of FTP.
CHAPTER 7 | Services Quality of Service The following items are displayed on this page: ◆ Type – Selects the type of mapping to use. Either one-to-one, one-tomany, many-to-many, or many-to-one. ◆ Local Start/End IP – Defines a local IP address pool range. ◆ Global Start/End IP – Defines an external IP address pool range. QUALITY OF SERVICE The Quality of Service page is used to enable or disable QoS, and set the default priority for packets not matching any classification rules.
CHAPTER 7 | Services Quality of Service The following items are displayed on this page: ◆ IP QoS – If enabled, QoS rules will be applied to traffic entering the Gateway. ◆ QoS Policy – Selects Stream-based, 802.1p-based, or DSCP-based policy. ◆ Schedule Mode – Selects either Strict or Weighted Fair Queueing (WFQ) as the port priority mode. ◆ 802.1p Configuration – When the QoS Policy is 802.1p-based, you can map the 802.1p values to port priority queues.
CHAPTER 7 | Services MAC Filtering MAC FILTERING MAC based packet filtering enables the router to filter clients based on their physical layer address. Figure 39: MAC Filtering Settings The following items are displayed on this page: ◆ Outgoing Default Policy — A default action for MAC addresses not configured in the filter table. (Default: Allow, maximum 32 entries are allowed.) ◆ Incoming Default Policy — A default action for MAC addresses not configured in the filter table.
CHAPTER 7 | Services DMZ DMZ DMZ enables a specified host PC on the local network to access the Internet without any firewall protection. Some Internet applications, such as interactive games or videoconferencing, may not function properly behind the router's firewall. By specifying a Demilitarized Zone (DMZ) host, the PC's TCP ports are completely exposed to the Internet, allowing open two-way communication. The host PC should be assigned a static IP address.
CHAPTER 7 | Services URL Blocking URL BLOCKING By filtering inbound Uniform Resource Locators (URLs) the risk of compromising the network can be reduced. URLs are commonly used to point to websites. By specifying a URL or a keyword contained in a URL traffic from that site may be blocked. Figure 41: URL Blocking Settings The following items are displayed on this page: ◆ URL Blocking Capability — Enables or disables URL blocking. (Default: Enabled) ◆ Apply Changes — Implements the selected URL blocking.
CHAPTER 7 | Services Software Forbidden SOFTWARE FORBIDDEN The Software Forbidden page enables traffic from listed application software to be blocked by the router. Figure 42: Software Forbidden Settings The following items are displayed on this page: ◆ Current Forbidden Software List — Software applications that are currently blocked by the router. ◆ Add Forbidden Software — Lists pre-defined software applications that can be added to the Forbidden Software table.
CHAPTER 7 | Services DoS DO S Denial of Service (DoS) is an attempt by a hacker to flood an IP address, domain, or server with repeated external communincation requests, effectively saturating the system with an information flood that renders it slow or effectively inoperable for genuine users to access it. DoS attacks are also referred to as non-intrusion attacks, the goal of which is to cripple your system but not steal data.
CHAPTER 7 | Services DoS ■ ■ ■ ■ Whole System Flood: FIN: Prevents a FIN (no more data from sender) flood in which part of a TCP packet from an invalid (or spoofed) IP address floods the network with connection resets. Whole System Flood: UDP: Prevents a flood of large numbers of raw UDP (User Datagram Protocol) packets targeted at the unit. Whole System Flood: ICMP: Prevents a flood of ICMP (internet control message protocol) messages from an invalid IP address causing all TCP requests to be halted.
CHAPTER 7 | Services IGMP Proxy Configuration ■ ■ ■ TCP SynWithData: Prevents the hacker sending a volume of requests for connections that cannot be completed. UDP Bomb: Also called a UDP Flood or packet storm. Prevents the hacker congesting the network by generating a flood of UDP packets between it and the unit using the UDP chargen service (a testing utility that generates a character string for every packet it receives).
CHAPTER 7 | Services IGMP Proxy Configuration Figure 44: IGMP Proxy Configuration The following items are displayed on this pages: ◆ IGMP Proxy — Enables IGMP proxy.
CHAPTER 7 | Services RIP Configuration RIP CONFIGURATION RIP is an Internet protocol you can set up to share routing table information with other routing devices on your LAN, at your ISP’s location, or on remote networks connected to your network via the ADSL line. Most small home or office networks do not need to use RIP; they have only one router, such as the router, and one path to an ISP.
CHAPTER 7 | Services ARP Binding Configuration ARP BINDING CONFIGURATION The router uses its tables to make routing decisions, and uses Address Resolution Protocol (ARP) to forward traffic from one hop to the next. ARP is used to map an IP address to a physical layer MAC address. When an IP frame is received by the router, it first looks up the MAC address corresponding to the destination IP address in the ARP cache.
8 ADVANCED The Advanced Configuration settings for the ADSL Router contain advanced system management configuration settings.
CHAPTER 8 | Advanced Bridge Setting BRIDGE SETTING This feature allows you to set the bridge aging time and to enable Spanning Tree. The Spanning Tree Protocol (STP) can be used to detect and disable network loops, and to provide backup links between bridges.
CHAPTER 8 | Advanced Log Setting LOG SETTING The ADSL Router supports a logging process that controls error messages saved to memory. The logged messages serve as a valuable tool for isolating ADSL Router and network problems. The Log Setting page displays the latest messages logged in chronological order. Log messages saved in the ADSL Router’s memory are erased when the device is rebooted.
CHAPTER 8 | Advanced Routing Configuration EVENT LOG TABLE Displays the current entries in the System Log table. ◆ Time — Displays the date and time the log entry was created. ◆ Index — The number of the log entry. ◆ Type — Displays the source of the log message. ◆ Log Information — Information that identifies the cause of the event that prompted the system log message. ROUTING CONFIGURATION This page displays the information necessary to forward a packet along the best path toward its destination.
CHAPTER 8 | Advanced Routing Configuration ◆ Subnet Mask — The network mask of the destination subnet. The default gateway uses a mask of 0.0.0.0. ◆ Next Hop — The IP address of the next hop through which traffic will flow towards the destination subnet. ◆ Metric — Defines the number of hops between network nodes that data packets travel. The default value is 0, which means that the subnet is directly one hop away on the local LAN network.
CHAPTER 8 | Advanced UPnP UPNP UPnP (Universal Plug and Play) provides inter-connectivity between devices supported by the same standard. UPnP is based on standard Internet protocols, such as TCP/IP, UDP, and HTTP. Figure 50: UPnP The following items are displayed on this page: ◆ UPnP — Enables UPnP on the ADSL Router. (Default: Enabled) ◆ WAN Interface — Selects the WAN interface for the UPnP service.
CHAPTER 8 | Advanced SNMP Protocol Configuration SNMP PROTOCOL CONFIGURATION Simple Network Management Protocol (SNMP) is a communication protocol designed specifically for managing devices on a network. SNMP is typically used to configure devices for proper operation in a network environment, as well as to monitor them to evaluate performance or detect potential problems. The ADSL Router can be managed locally or remotely by SNMP.
CHAPTER 8 | Advanced System Time Configuration SYSTEM TIME CONFIGURATION The System Time page allows you to manually configure time settings or enable the use of an NTP server. Figure 52: System Time Configuration The following items are displayed on this page: ◆ System Time — Displays the current date and time and allows you to manually configure time settings. ◆ DayLight — Enables daylight saving time to be configured. ◆ State — Enables NTP (Network Time Protocol).
CHAPTER 8 | Advanced Other Advanced Configuration OTHER ADVANCED CONFIGURATION Enables the Half Bridge feature for PPPoE (PPPoA) connections. When the router is set to Half Bridge, it establishes the PPPoE/PPPoA connection with the ISP, then forwards all other traffic to DHCP clients connected to the router. Figure 53: Other Advanced Configuration The following items are displayed on this page: ◆ Half Bridge — Displays the current date and time and allows you to manually configure time settings.
CHAPTER 8 | Advanced Port Mapping PORT MAPPING Port Mapping supports multiple ports to WAN interfaces and bridging groups. Each group performs as an independent network. You can create up to four groups on the router. Figure 54: Port Mapping Configuration The following items are displayed on this page: ◆ WAN – The WAN interfaces that can be grouped. ◆ LAN – The LAN interfaces that can be grouped. ◆ Interfaces Group — The grouped WAN and LAN interfaces.
9 DIAGNOSTICS The Diagnostics page is used to test the local Ethernet connection, or the WAN connection for the DSL signal and the connection to DSL provider network.
CHAPTER 9 | Diagnostics Diagnostic Test DIAGNOSTIC TEST The diagnostic test shows the test results for the connectivity of the physical layer and protocol layer for both LAN and WAN sides. Figure 55: Diagnostic Test The following items are displayed on this page: ◆ Select the Interface — Selects the WAN connection. (Default: vc0) ◆ Run Diagnostic Test — Performs a diagnostic test on the LAN and WAN side connections. LAN CONNECTION CHECK Displays the result of a test for connectivity on the LAN port.
CHAPTER 9 | Diagnostics Ping PING The ADSL Router provides the function of “pinging” its own IP address or URL to test for connectivity. Figure 56: Ping The following items are displayed on this page: ◆ Host — The host IP address or URL to test for connectivity.
CHAPTER 9 | Diagnostics Traceroute TRACEROUTE Traceroute discovers the routes that packets take when traveling to a destination. Traceroute works by taking advantage of the error messages generated by routers when a packet exceeds its time-to-live (TTL) value. The traceroute command first sends probe datagrams with the TTL value set at one. This causes the first router to discard the datagram and return an error message.
CHAPTER 9 | Diagnostics Traceroute Figure 59: Traceroute Result – 100 –
CHAPTER 9 | Diagnostics ADSL Tone Diagnostics ADSL TONE DIAGNOSTICS The ADSL page displays diagnostic testing for the ADSL connection. Figure 60: ADSL Tone Diagnostics The following items are displayed on this page: ◆ Start — Starts the diagnostics test. ◆ Downstream/Upstream — Displays downstream and upstream traffic. ◆ Hlin Scale — Displays the scaling factor for H.Real and H.Image represented in fixed-point format.
CHAPTER 9 | Diagnostics ADSL Tone Diagnostics ◆ Output Power (dBm) — Displays the output power of the unit in decibels per milliwatt. ◆ Tone Number — Displays the tone number of the ADSL signal. (Range: 0~255) ◆ H.Real — Displays the real part of channel transfer function of each subcarrier. ◆ H.Image — Displays the imaginary part of channel transfer function of each subcarrier. ◆ SNR — Displays the SNR (Singal to Noise Ratio) of each subcarrier expressed in decibels.
10 ADMINISTRATION SETTINGS The Admin pages are used to manage configuration files, system logs, TR069 ACS, passwords; and also to update software and reboot the system.
CHAPTER 10 | Administration Settings Commit/Reboot COMMIT/REBOOT Use this page to save the current configuration and reboot the system. Figure 61: Commit/Reboot The following items are displayed on this page: ◆ Reboot from — Select the option for router’s configuration: ■ Save the current configuration — Select this option if you want to save your changes for the next reboot. ■ Restore to the factory default configuration — Select this option if you want to return all changes to default values.
CHAPTER 10 | Administration Settings Backup/Restore Settings BACKUP/RESTORE SETTINGS The Backup/Restore Settings page allows you to backup current settings to a local file, and load previously saved settings to the unit. Figure 63: Backup/Restore Settings The following items are displayed on this page: ◆ Save Settings to File — Saves the current configuration to a file locally on the management PC.
CHAPTER 10 | Administration Settings Password Setup PASSWORD SETUP Management access to the ADSL Router is controlled through different levels of user name and password. To protect access to the management interface, you need to configure a new Administrator’s password as soon as possible. If a new password is not configured, then anyone having access to the ADSL Router may be able to compromise the unit's security by entering the default values.
CHAPTER 10 | Administration Settings Upgrade Firmware UPGRADE FIRMWARE You can update the ADSL Router’s firmware by using the Upgrade Firmware facility which allows you to upload new firmware manually by specifying a file path. Make sure the firmware file you want to use is on the local computer by clicking Browse to search for the file to be used for the update. Figure 65: Upgrade Firmware The following items are displayed on this page: ◆ Select File — Specifies the firmware file for the upgrade.
CHAPTER 10 | Administration Settings TR-069 Configuration TR-069 CONFIGURATION The Technical Report 069 (TR069) protocol defines a specification for remote management of CPE devices. The protocol uses HTTP for two-way communication between the CPE device and an Auto Configuration Server (ACS), allowing service providers to provide CPE configuration, software upgrades, and other service functions for end-users.
CHAPTER 10 | Administration Settings TR-069 Configuration The following items are displayed on this pages: ACS Defines the Auto Configuration Server parameters. ◆ Enable — Enables/disables TR-069 support. (Default: Enabled) ◆ URL — Speceifies the URL required for the CPE to connect to the ACS. ◆ User Name — Enter the user name that the ADSL Router should use when connecting to the ACS. ◆ Password — Enter the password that the ADSL Router should use when connecting to the ACS.
CHAPTER 10 | Administration Settings TR-069 Configuration ◆ Skip MReboot — Specifies whether to send an MReboot event code in the inform message. ◆ Delay — Specifies whether to start TR-069 after a short delay. ◆ Auto-Execution — Specifies whether to automatically start TR-069 after the router is powered on. CERTIFICATE MANAGEMENT Defines the digital certificate files used for authentication between the ADSL Router and the ACS.
SECTION III APPENDICES This section provides additional information and includes these items: ◆ “Troubleshooting” on page 112 ◆ “Hardware Specifications” on page 114 ◆ “Cables and Pinouts” on page 118 – 111 –
A TROUBLESHOOTING DIAGNOSING GATEWAY INDICATORS Gateway operation is easily monitored via the LED indicators to identify problems. The table below describes common problems you may encounter and possible solutions. If the solutions in the table fail to resolve the problem, contact technical support for advice. Table 3: LED Troubleshooting Chart Symptom Cause Solution Power indicator does not light up after power on. Power outlet, power cord, or external power adapter may be defective.
APPENDIX A | Troubleshooting If You Cannot Connect to the Internet IF YOU CANNOT CONNECT TO THE INTERNET ◆ Check that your computer is properly configured for TCP/IP. For more information, see “Configuring the TCP/IP Protocols” on page 25. ◆ Make sure the correct network adapter driver is installed for your PC operating system. If necessary, try reinstalling the driver. ◆ Check that the network adapter’s speed or duplex mode has not been configured manually.
B HARDWARE SPECIFICATIONS PHYSICAL CHARACTERISTICS PORTS 1 RJ-11 VDSL line (to phone jack in the wall) 1 RJ-45 10/100BASE-TX (Ethernet connection to PC) 1 USB (optional connection to PC) ETHERNET INTERFACE RJ-45 connector, auto MDI/X pinout detection 10BASE-T: 100-ohm, UTP cable; Category 3 or better 100BASE-TX: 100-ohm, UTP cable; Category 5 or better *Maximum Cable Length - 100 m (328 ft) DSL INTERFACE RJ-11 connector, using standard phone cable (26 AWG) LED INDICATORS Power, Link, Data, Ethernet, USB
APPENDIX B | Hardware Specifications Software Features SOFTWARE FEATURES ATM FEATURES Support up to 8 ATM PVCs Support ATM Forum UNI 3.1/4.0 PVC Support UBR, CBR, and rt-VBR and nrt-VBR service classes Provide ATM layer functionality Support up to 8 PVCs – traffic shaping (CBR, UBR, rt/nrt-VBR) Support PPPoA (RFC2364) Support MPoA functionality (RFC2684) Support IP over ATM (IPoA) Support ATM cell format ITU -T I.
APPENDIX B | Hardware Specifications Standards User authentication for PPP (PAP/CHAP) DDoS (Dynamic DoS) Protection FIREWALL NAT DMZ Filtering – IP Filtering, MAC Filtering, URL Filtering ACL (Access Control List) VPN (IPSec, PPTP, L2TP) pass-through Software Forbidden MANAGEMENT Access administration Web-based configuration - HTTP server System configuration backup and restore SNMP Support (V.1 and V.
APPENDIX B | Hardware Specifications Compliances COMPLIANCES EMISSIONS FCC Part 15B Class B FCC Part 68 CE Mark ENVIRONMENTAL RoHS compliant SAFETY EN60950-1 :2006+A11 :2009 – 117 –
C CABLES AND PINOUTS TWISTED-PAIR CABLE ASSIGNMENTS For 10/100BASE-TX connections, a twisted-pair cable must have two pairs of wires. For 1000BASE-T connections the twisted-pair cable must have four pairs of wires. Each wire pair is identified by two different colors. For example, one wire might be green and the other, green with white stripes. Also, an RJ-45 connector must be attached to both ends of the cable. NOTE: Each wire pair must be attached to the RJ-45 connectors in a specific orientation.
APPENDIX C | Cables and Pinouts 10/100BASE-TX Pin Assignments 10/100BASE-TX PIN ASSIGNMENTS Use unshielded twisted-pair (UTP) or shielded twisted-pair (STP) cable for RJ-45 connections: 100-ohm Category 3 or better cable for 10 Mbps connections. Also be sure that the length of any twisted-pair connection does not exceed 100 meters (328 feet).
APPENDIX C | Cables and Pinouts Crossover Wiring CROSSOVER WIRING If the twisted-pair cable is to join two ports and either both ports are labeled with an “X” (MDI-X) or neither port is labeled with an “X” (MDI), a crossover must be implemented in the wiring. (When auto-negotiation is enabled for any RJ-45 port on this gateway, you can use either straightthrough or crossover cable to connect to any device type.
APPENDIX C | Cables and Pinouts RJ-11 Port RJ-11 PORT Standard telephone RJ-11 connectors and cabling can be found in several common wiring patterns. These six-pin connectors can accommodate up to three wire-pairs (three telephone lines), but usually only one or two pairs of conductor pins and wires are implemented. The RJ-11 port on this device contains one wire-pair, an inner pair on pins 3 and 4. This wire-pair carries the digital data.
GLOSSARY 10BASE-T IEEE 802.3-2005 specification for 10 Mbps Ethernet over two pairs of Category 3 or better UTP cable. 100BASE-TX IEEE 802.3-2005 specification for 100 Mbps Fast Ethernet over two pairs of Category 5 or better UTP cable. 1000BASE-T IEEE 802.3ab specification for 1000 Mbps Gigabit Ethernet over four pairs of Category 5 or better UTP cable. BACKBONE The core infrastructure of a network.
GLOSSARY ITU International Telecommunication Union ITU-T Telecommunication Standardization Section of ITU LAN Local Area Network: A group of interconnected computers and support devices. MAC ADDRESS The physical layer address used to uniquely identify network nodes. MTU Maximum Transfer Unit. The maximum transfer unit for traffic crossing this device. MTU should be set to a value that minimizes unnecessary fragmentation and maximizes the transfer of large sequential data streams.
GLOSSARY RJ-45 CONNECTOR A connector for twisted-pair wiring. SPLITTER A filter to separate DSL signals from POTS signals to prevent mutual interference. SNTP Simple Network Time Protocol: SNTP allows a device to set its internal clock based on periodic updates from a Network Time Protocol (NTP) server. Updates can be requested from a specific NTP server, or can be received via broadcasts sent by NTP servers. TCP/IP Transmission Control Protocol/Internet Protocol.
INDEX NUMERICS E 10/100BASE-TX pin assignments 119 100BASE-TX 20 10BASE-T 20 Ethernet 20 A ACLs 63 ADSL capability 58 ADSL modulation 57 ADSL settings 57 ADSL tone diagnostics 101 AnnexL option 58 AnnexM option 58 ARP table 43 ATM settings 55 B backup/restore settings 105 bridge configuration 87 buttons Reset 22 F factory defaults, resetting 22 front panel 20, 21 G Gateway features 19 H hardware, description 20 I IGMP proxy configuration 82 installation connecting cables 24 powering on 25 IP/Por
INDEX power connector 22 powering on 25 problems, troubleshooting 112 R rear panel 20, 21 Reset button 22 RIP configuration 84 RJ-11 pin assignments 121 port 20 RJ-45 connector pins 118 RJ-45 port 20 routing configuration 89 S SNMP protocol configuration 92 specifications component 114 environmental 114 power 114 specifications, hardware 114 standards IEEE 116 ITU-T 116 straight-through cables 119 system indicators 21 requirements 23 system log 88 T TCP/IP, PC configuration 25 time zone 93 TR-069 confi
Headquarters & Sub-Sahara Africa Office No. 1, Creation Rd. III Hsinchu Science Park Taiwan 30077 Tel: +886 3 5770270 Fax: +886 3 5780764 Asia-Pacific Office 1 Coleman Street #07-09, The Adelphi Singapore 179803 Tel: +65-63387667 Fax: +65-63387767 SMC NETWORKS TECHNICAL SUPPORT From Singapore in English and Tel: +65-63387667, Ext. 4 (Mon.-Fri. 9 AM to 5 PM) From the United Arab Emirates in English (Sun.-Thu. 9 AM to 6 PM) Tel: +971 800 222866/+971 4 3564810 From U.S.A.
