Manuale d’uso / di manutenzione del prodotto VRT-401G del fabbricante Planet Technology
Vai alla pagina of 86
54M Wireless VPN Firewall Router VRT-401G User’s Manual 1.
Copyright Copyright (C) 2005 PLANET Technolog y Corp. All rights reserved. The products and programs described in this User’s Manual are licensed products of PLA NET Technology, This User’s Manual.
Table of Content Introduction ......................................................................................................... 5 Features ........................................................................................................
2.5 QoS .............................................................................................................. 48 2.6 NAT .............................................................................................................. 50 2.6.1 Port Forwarding .
Introduction Congratulations on purch asing Planet 54M Wireless VPN Firewall Router – VRT-401G. It is a cost-effective VPN Firewall Route r that enables mu ltiple users to access the resource thro ugh VPN tunnel.
Get to know the Wireless VPN Firewall Router Back Panel The diagram (fig1.0) below shows the VRT-401 G’s back panel. The router’s back panel is divided into three sections, LAN , WAN and Reset : Figure 1.0 1) Local Area Net work (LAN) The VRT-401G’s 4 LAN ports are where you connect your LAN’s PCs, print er servers, hubs and switches etc.
LAN 10/100M ON LAN port 100Mbps is conn ected (Port 1-4) OFF LAN port 10Mbps is connected LAN LNK/ACT ON LAN is conn ected (Port 1-4) OFF No LAN connection Flashing LAN port has Activity (ACT), data b.
Configure your PC to obtain an IP address autom atically By default the VRT-401G’s DHCP is on, this means that you can obtain an IP address automatically once you’ve configured your PC to obtain an IP addre ss automatically.
8: Reboot the PC. Your PC will now obtain an IP address automatically you’re your Broadband Router’s DHCP serve r. Note : Please make sure th at the Broadband router ’s DHCP server is the only DHCP server available on your LAN.
5: Click OK to confirm the setting. Your PC will now obtain an IP address automatically from your Broadband Router’s DHCP server. Note : Please make sure that the Broadband router ’ s DHCP server is the only DHCP server available on your LAN. Once you’ve configured your PC to obta in an IP address automatically, please proceed to Step 3.
6: Click OK to confirm the setting. Your PC will now obtain an IP address automatically from your Broadband Router’s DHCP server. Note : Please make sure that the Broadband router ’ s DHCP server is the only DHCP server available on your LAN. Once you’ve configured your PC to obta in an IP address automatically, please proceed to Step 3.
6: Check each of the tabs and verify the following settings: • IP Address: Select Obtain an IP address from a DHCP server . • DNS: Let all fields are blank. • WINS: Let all fields are blank. • Routing: Let all fields are blank. 7: Click OK to confirm the setting.
4) Once your PC has obtained an IP ad dress from your router, enter the default IP address 192.168.0.1 (VRT-401G’s IP addre ss) into your PC’s web browser and press <e nter> 5) The login screen below will appear. Enter the “Use r Name” and “Password” and then click <OK> to login.
Menu Description Quick Setup Wizard (Chapter 1) Select your I nternet connection type and then input the configurations needed to connect to your Internet Service Provider (ISP).
7) Click on Quick Setup Wizard (see chapter 1) to start configuring settings required by your ISP so that you can start accessing th e Internet. The other sections (Genera l Setup, Status Information and Tools) do not need to be configured unless you w ish to implement/monitor more advance features/inform ation.
Chapter 1 Quick Setup The Quick Setup section is designe d to get you using the VRT-401G as quickly as possible. In the Quick Setup you are required to fill in only t he information necessary to access the Internet. Once you click on the Quick Setup Wizard in the HO ME page, you should see the screen below.
Step 2) Broadband Type In this section you have to sele ct one of four types of connec tions that you will be using to connect your VRT-401G’s WAN p ort to your ISP (see screen below). Note : Different ISP’s require different methods of conne cting to the Internet, please check with your ISP as to the type of connection it requires.
1.1 Cable Modem Choose Cable Modem if your ISP will a utomatically give you an IP address. Some ISP’s may also require that you fill in addit ional information such as Host Name a nd MAC address (see screen below).
Parameters Description IP This is the IP address that your ISP has given you. Subnet Mask Enter the Subnet Mask provided by your ISP (e.g. 255.255.255.0) DNS This is the ISP’s DNS server IP addre ss Gateway IP This is the ISP’s IP address gateway TTL This is optional.
Parameter Description User Name Enter the User Name provided by your ISP for the PPPoE connectio n Password Enter the Password pr ovided by your ISP for the PPPoE connectio n Service Name This is optional. Enter the Service name should your ISP requires it, otherwise leave it blank.
Note: This “idle timeout” f unction may not work due to abn ormal activities of some network appli cation software, computer virus or hacker attacks from the Internet. For example, some software sends network packets to the In ternet i n the background, even when you are not using the Internet.
Parameter Description Obtain an IP address The ISP requires you to obtain an IP address by DHCP automatically before conne cting to the PPTP serve r. MAC Address Your ISP may require a pa rticular MAC address in order for you to connect to the Internet.
WAN connection will not disconnect du e to the idle timeout. If the WAN line breaks down and latter links again, the router will not auto-connect to the ISP.
Parameter Description Obtain an IP address The ISP requires you to obtain an IP address by DHCP automatically before conn ecting to the L2TP server. MAC Address Your ISP may require a pa rticular MAC address in order for you to connect to the Internet.
Idle Time Out The WAN "idle timeout" auto-di sconnect function may not work due to abnormal activities of some network application software, computer viru s or hacker attacks from the Internet. For example, some software sends net work packets to the Internet in the background, even when you are not using the Internet.
Click < OK> when you have finished the configuration above. Congratulations ! You have completed the configuration for the Telstra Big Pond connection. You can start using the ro uter now, if you wish to use some of the advance features supported by th is router see chapter 2, 3, 4.
Chapter 2 General Settings Once you click on the General Setup button at the Home Page, y ou should see the screen below. If you have already configured the Quick Setup Wizard you do NOT need to configure anything thing in the General Setup screen for you to start usi n g the Internet.
Select one of the above five General Setup select ions and proceed to the manual’s relevant sub- section 2.1 System The system screen allows you to specify a ti me zone, to change the system password and to specify a remote management use r for the VRT -401G Parameters Description System Settings 2.
Parameter Description Set Time Zone Select the time zone of the country you are currently in. The router will set its time based on your sele ction. Time Server Address The router def ault the “Time Server Address” is “192.43.244.18” Enable Daylight Savings The router can also take Daylight savings into accoun t.
Parameters Description Current Password Enter your current password for the remote management administrator to login to your VRT-401G. Note : By default the password is admin New Password Enter your n.
Host Address This is the IP address of the host in the Internet that will have management/configuration acce ss to the VRT-401G from a remote site. This means if you are at home and your home IP addre.
Parameters Description 2.2.1 Dynamic IP address Your ISP will automatically give you an IP address 2.2.2 Static IP address Your ISP has given you an IP address already 2.2.3 PPPoE Your ISP requires PPPoE connection. 2.2.4 PPTP Your ISP requires you to use a Point-to-Point Tunneling Protocol (PPTP) connection.
2.2.5 L2TP Select L2TP if your ISP requires the L2TP protoc ol to connect you to the Internet. Your ISP should provide all the information required in this section. (See chapter 1 “L2TP” for more d etail) 2.2.6 Telstra Big Pond Select Telstra Big Pond if your ISP requires the Te lstra Big Pond proto col to connect you to the Internet.
2.2.8 DDNS DDNS allows you to map the static domain na me to a dynamic IP address. You must get an account, password and your static domain name from the DDNS service prov iders. Thi s router supports DynDNS, TZO an d other comm on DDNS service provid ers.
Parameters Default Description LAN IP IP address 192.168.0. 1 This is the router’s LAN port IP address (Your LAN clients default gateway IP address) IP Subnet Mask 255.255.255.0 Spec ify a Subnet Mask for your LAN segment 802.1d Spanning Tree Disabled If 802.
Note: By default the IP range is from: Start IP 192.168.0.100 to End IP 192.168.0.20 0 . If you want your PC to have a static/fixed IP address then you’ll have to choose an IP address out side this IP address Pool.
AP Mode setting Page: Station-Ad Hoc mode setting page: 37.
Station-Infrastructure mode setting page: AP Bridge-Point to Point mode setting page: 38.
AP Bridge-Point to Mult i-Point mode setting page: AP Bridge-WDS mode setting page: 39.
Parameters Default Description Mode It allows you to set the AP to AP, Station, Bridge or WDS mode. Band It allows you to set the AP fix at 802.11b or 802.11g mode. You also can select B+G mode to allow the AP select 802.11b and 802.11g connection automatically.
2.4.2 Advanced Settings You can set advanced wirel ess LAN parameters of this router. The param eters include Authentication Type, Fragment Threshold, RTS Threshold, Bea con Interval, Preamble Type …… You should not change these para meters unless you know what e ffect the change s will have on this router.
Data Rate The “Data Rate” is the rate this access point uses to transmit data packets. The ac cess point will use the highest possible selected transmi ssion rate to transmit the data packets.
Parameters Default Description Key Length 64 -bit You can select the WEP key length for encryption, 64-bit or 128-bit. Larger WEP key length will provide higher level of security, but the throughput will be lower.
2.4.3.2 802.1x only IEEE 802.1x is an authentication prot ocol. Every user must use a valid account to login to this Access Point before accessi ng the wireless LAN. The auth entication is processed by a RADIUS server. This mode only authenticates user by IEEE 802.
For the WEP settings, please refer to se ction 2.4.3.1 “WEP only”. For the 802.1x settings, please refer to section 2.4.3.2 “802.1x only”. 2.4.3.4 WPA Pre-shared key Wi-Fi Protected Access (WPA) is an advanced security standa rd. You can use a pre-shared key to authenticate wireless stations and en crypt data during communication.
WPA2(AES) This use CCMP prot ocol to change encryption key frequently. AES can provide high level encryption to enhance the wireless LAN security. WPA2 Mixed This w ill use TKIP or AES based on the other communication pee r auto matically.
WPA2(AES) This use CCMP prot ocol to change encryption key frequently. AES can provide high level encryption to enhance the wireless LAN security. WPA2 Mixed This w ill use TKIP or AES based on the other communication pee r auto matically. RADIUS Server IP address The IP address of external RADIUS server.
Remove MAC address from the list If you want to remove some MAC address from the "Current Access Co ntro l List ", select the MAC addresses you want to remove in the list and then click "Delete S elected". If you want remove all MAC addresse s from the table, just click "Delete All" button.
Add a QoS rule into the table Click “Add ” then you will enter a form of the QoS rule. Click “Apply” after filling out the form and the rule will be added into the table.
Bandwidth You can assign the downl oad or upload bandwidth by the unit of Kbps (1024 bit per second). You can lim it the maximum bandwidth co nsumed by this rule by selecting “Maxim u m”. You also can re serve enough bandwidth for this rule by selecting “Guarantee”.
Parameter Description 2.6.1 Port Forwarding You can hav e diffe rent services (e.g. email, FTP, Web etc.) going to different servic e se rvers/clients in your LAN. The Port Forwarding allows you to re-direct a particular range of service port numbers (fro m the Internet/WAN Ports) to a particul ar LAN IP address.
2.6.1 Port Forwarding The Port Forwarding allows you to re-direct a par ticular ran ge of service port numbers (from the Internet/WAN Ports) to a particul ar LAN IP addr ess.
Computers use numbers called port numbers to reco gnize a particular service/Internet application type. The Virtual Server allows you to re-dir ect a particular service port number (from the Internet/WAN Port) to a particular LA N pr ivate IP address and its service port number.
Server Table" below. If you find any typo before adding it a nd want to change the setting, just click "Clear" an d retype it again.. Remove Virtual Server If you want to remo ve some V.
2.6.3 Special Applications Some applications require multiple co nnections, such as Internet games, video confere ncing, Internet telephony and others. In this section y ou can configu re the router to support multiple connections for these types of applications.
Ports required for this popular application in the location (1-1 0) you’d specified. Add Special Application Fill in the "Trigger Po rt", "Trigger Type”, “P ublic Port”, "Publi c Type", "Public Port" and "Comment" of the setting to be added and then click "Add".
Parameters Default Description UPnP Feature Dis abl e You can Enable or Disabl e UPnP feature here. After you enable the UPnP feature, all client systems that support UPnP, like Windows XP, can discover this router automatically and access the Internet through this router without any configuration.
Parameters Default Description Enable You can select to enabl e “Application Layer Gateway”, then the router will let that application correctly pass though the NAT gateway. Click < Apply> at the bottom of the screen to sav e the above configurations.
Parameter Description Enable Static Routing Static Routing f unction is default disabled. You have to enable the Static Routing f unction before your routing rules take effect. Destination LAN IP The network address of destination LAN. Subnet Mask The subnet mask of destination LAN.
Click < Apply> at the bottom of the screen to sav e the above configurations. You can now configure other advance section s or start using the router (with the advance settings in place) 2.
users to define the traffic type permitted in your LA N. You can control which PC cli ent can have access to these services. Parameters Description Deny If select “Deny” then all PCs will be allowed to access Internet accept for the PCs in the list below.
and then click "Delete Selected". If you want remove all PCs from the table, just click "Delete All" button. You can now configure other advan ce sections or start using the router (with the advance setti ngs in place) Add PC Parameters Description Client PC Description The description for this client PC rule.
Protocol This allows you to select UDP, TCP or both prot ocol types you want to block. Port Range It can be assigned up to five port ranges. The router will block clients from accessi ng Internet services that use these ports. Apply Changes Click “Apply Changes” to save the setting.
You can block access to some Web sites from particular PCs by entering a full URL address o r just keyword of the Web site. Parameters Description Enable URL Blocking Enable/disable URL Blocking Add URL Keyword Fill in “URL/Keywo rd” and then click “Add”.
Parameters Description Denial of Service Feature Ping of Death Protections from Ping of Death attack Discard Ping From WAN The router’ s WAN port will not respo nd to any Ping reques ts Port Scan Protection the router from Port Scan. Sync Flood Protection the router from Sync Flood attack.
2.7.4 DMZ If you have a local client PC that cannot run a n Internet application (e.g. Games) prope rly from behind the NAT firewall, then you can open the client up to unrestricted two- way Internet access by defining a DMZ Host.
2.8 VPN Virtual Private Network (VPN) provides a secu re, private communication tunnel between two or more devices across the Internet. These VPN devi ces can be either a comput er running VPN software or a special dev ice like a VPN enabled router.
Parameters Description Enable IPSEC VPN Enable the IPSec VPN Server. Enable NAT Traversal Enable the NAT Tr aversal function allows the clients behind NAT to connect to this VPN server. Generate RSA Key Automatically generate the RSA Public Key. Show RSA Public Key Click this bu tton to show the RSA Public Key.
Click < Apply Changes> a t the bottom of the screen to save the above configurations. You can now configure other advance sections or start using the router (wit h the advan ce settings in place) Edit Connection Parameters Description Enable Tunnel # Che c k this ch eck box to enable this tunnel setting.
Connection Type When select the Initiator, the tunnel will automatically connect at the boot time. When select the Responder, the tunnel will connect only when you pressed the “Connect” button. Local/Remote ID Specify the ID of local site and remote site.
Diffie Hellman You can choose which Diffie Hellman protocol you want to use at the Phase 1. Key Life Time Enter the life time for the key. After this time, the key will expire. PFS If you turn on this option, the keys that protect data transmission are not used to derive additional key s.
L2TP Settings Parameters Description Enable L2TP Server By enable this se rv er, we can enable the operation of a virtual private network (VPN) over the Internet. Server IP Address Specify the IP Addr ess that the L2TP clients talked with. Note: The Server IP Address can be different to LAN IP or WAN IP.
PPTP Settings Parameters Description Enable PPTP Server By enable this serv er, we can enable the operation of a virtual private network (VPN) over the Internet. Server IP Address Specify the IP Addr ess that the PPTP clients talk ed with. Note: The Server IP Address can be different to LAN IP or WAN IP.
Chapter 3 Status The Status section allows you to monitor the current status of your router . You can use the Status page to monitor: the connectio n status of t he VRT-401G's WAN/LAN interfaces,.
Parameters Description Information You can see the router’s system in formation su ch as the router’s: LAN MAC Address, WAN MAC Ad dress, Hard ware version, Serial Number, Boot code Version, Runtime cod e Version 3.
3.3 Device Status View the VRT-401G’s current configuration setti ng s. The Device Status displays the settings you’ve configured in the Quick Setup Wizard/Gene ral Setup section. Parameters Description Device Status This page shows the VRT-401G’s current device settings.
Parameters Description System Log This page shows the current syst em log of the VRT-401G. It displays any event occurred after system start up. At the bottom of the page, t he system log ca n be save.
Security Log This page shows the cu rr ent security log of the VRT-401G. It displays any illegal attempts to acce ss y our network. At the bottom of the page, the security log can be saved < Save &.
Parameters Description Statistics Shows the counters of packets sent and re ceived on WAN, LAN and Wireless LAN. 79.
Chapter 4 Tool This page includes the b asic conf iguration tools, such as Confi guration Tool s (save or restore configuration settings), Firmware Upgrade (upgrade system firmware) and Reset.
Parameters Description Configuration Tools Use the " Backup " tool to save the VRT-401G current configuration to a file named "config.bin" on your PC. You can then use the " Restore " tool to re store the saved configuration to the VRT-401G.
Once you’ve selected the new firmwa re file, click < Apply > at the bottom of the screen to start the upgrade process. (You may have to wait a few min u tes for the upgrade to complete). O nce the upgrade is complete you can start using the router.
Appendix A How to Manually find your PC’s IP and MAC address 1) In Window’s open the Command Prompt program 2) Type Ipconfig /all and <enter> • Your PC’s IP address is the one entitled IP address (192.168.1.77) • The router’s IP address is the one entitled Def ault G ateway (192.
Glossary Default Gateway (Router): Every non-router IP devi ce needs to configure a default gateway’s IP address. When the device sends out an IP packet, if the destination is not on the sam e network, the device has to send the packet to its default gateway, whi ch will then send it out towards the destination.
ISP: Internet Service Provider. An ISP is a business that provides connectivity to the Internet for individuals and other businesse s or organizations. LAN: Local Area Network. A LAN is a group of computers and d evices connected together in a relatively small area (such as a house or an offi ce).
create IP address numbers used only within a pa rticular network (as opposed to valid IP address numbers recognized by the Internet, whi ch must be assigned by InterNIC). TCP/IP, UDP: Transmissio n Control Protocol/Internet Protocol (TCP/IP) and Unreliable Datag ram Protocol (UDP).
Un punto importante, dopo l’acquisto del dispositivo (o anche prima di acquisto) è quello di leggere il manuale. Dobbiamo farlo per diversi motivi semplici:
Se non hai ancora comprato il Planet Technology VRT-401G è un buon momento per familiarizzare con i dati di base del prodotto. Prime consultare le pagine iniziali del manuale d’uso, che si trova al di sopra. Dovresti trovare lì i dati tecnici più importanti del Planet Technology VRT-401G - in questo modo è possibile verificare se l’apparecchio soddisfa le tue esigenze. Esplorando le pagine segenti del manuali d’uso Planet Technology VRT-401G imparerai tutte le caratteristiche del prodotto e le informazioni sul suo funzionamento. Le informazioni sul Planet Technology VRT-401G ti aiuteranno sicuramente a prendere una decisione relativa all’acquisto.
In una situazione in cui hai già il Planet Technology VRT-401G, ma non hai ancora letto il manuale d’uso, dovresti farlo per le ragioni sopra descritte. Saprai quindi se hai correttamente usato le funzioni disponibili, e se hai commesso errori che possono ridurre la durata di vita del Planet Technology VRT-401G.
Tuttavia, uno dei ruoli più importanti per l’utente svolti dal manuale d’uso è quello di aiutare a risolvere i problemi con il Planet Technology VRT-401G. Quasi sempre, ci troverai Troubleshooting, cioè i guasti più frequenti e malfunzionamenti del dispositivo Planet Technology VRT-401G insieme con le istruzioni su come risolverli. Anche se non si riesci a risolvere il problema, il manuale d’uso ti mostrerà il percorso di ulteriori procedimenti – il contatto con il centro servizio clienti o il servizio più vicino.