This Chapter explains the settings available via the Advanced configuration section of the "Advanced" menu.
Normally, it is not necessary to use these screens, or change any settings. These screens and settings are provided to deal with non-standard situations, or to provide additional options for advanced users.
The settings available are:
PC Database
|
This is the list of PCs shown when you select the "DMZ PC" or a "Virtual
Server". This database is maintained automatically, but you can add and delete
entries for PCs which use a Fixed (Static) IP Address.
|
Options
|
Various options, such as backup DNS, UPnP, and enable TFTP firmware upgrade
option.
|
Security
|
Firewall and other security-related settings.
|
Logs
|
View or clear all logs, set E-Mailing of log files.
|
MAC Address
|
Set the MAC (hardware) address used on the Internet (WAN port) interface.
This is required only if your ISP has recorded the MAC (hardware) address you
should use.
|
Routing
|
Only required if your LAN has other Routers or Gateways.
|
The PC Database is used whenever you need to select a PC (e.g. for the "DMZ" PC). It eliminates the need to enter IP addresses. Also, you do not need to use fixed IP addresses on your LAN.
An example PC Database screen is shown below.
Known PCs
|
This lists all current entries. Data displayed is name (IP Address)
type. The "type" indicates whether the PC is connected to the LAN.
|
Name
|
If adding a new PC to the list, enter its name here. It is best if this
matches the PC's "hostname".
|
IP Address
|
Enter the IP Address of the PC. The PC will be sent a "ping" to determine
its hardware address. If the PC is not available (not connected, or not powered
On) you will not be able to add it.
|
Buttons |
|
This will add the new PC to the list. The PC will be sent a "ping" to
determine its hardware address. If the PC is not available (not connected, or
not powered On) you will not be able to add it.
|
|
Delete
|
Delete the selected PC from the list. This should be done in 2
situations:
|
Refresh
|
Update the data on screen.
|
Generate Report
|
Display a read-only list showing full details of all entries in the PC
database.
|
Advanced
Administration |
View the Advanced version of the PC database screen. See below for
details.
|
This screen is displayed if the "Advanced Administration" button on the PC Database is clicked. It provides more control than the standard PC Database screen.
Known PCs
|
This lists all current entries. Data displayed is name (IP Address)
type. The "type" indicates whether the PC is connected to the LAN.
|
PC Properties |
|
Name
|
If adding a new PC to the list, enter its name here. It is best if this
matches the PC's "hostname".
|
IP Address
|
Select the appropriate option:
|
MAC Address
|
Select the appropriate option
|
Buttons |
|
Add as New Entry
|
Add a new PC to the list, using the data in the "Properties" box.
If "Automatic discovery" (for MAC address) is selected, the PC will be sent a "ping" to determine its hardware address. This will fail unless the PC is connected to the LAN, and powered on. |
Update Selected PC
|
Update (modify) the selected PC, using the data in the "Properties"
box.
|
Clear Form
|
Clear the "Properties" box, ready for entering data for a new PC.
|
Refresh
|
Update the data on screen.
|
Generate Report
|
Display a read-only list showing full details of all entries in the PC
database.
|
Standard Screen
|
Click this to view the standard "PC Database" screen.
|
This screen allows advanced users to enter or change a number of settings. For normal operation, there is no need to use this screen or change any settings.
An example Options screen is shown below.
Backup DNS |
|
IP Address
|
Enter the IP Address of the DNS (Domain Name Servers) here. These DNS will
be used only if the primary DNS is unavailable.
|
TFTP |
|
Enable Firmware Upgrade using TFTP
|
|
UPnP |
|
Enable UPnP
Services |
|
Allow Configuration...
|
|
Allow Internet access to be disabled
|
|
MTU |
|
MTU size
|
MTU (Maximum Transmission Unit) value should only be changed if advised to
do so by Technical Support.
|
This screen allows you to set Firewall and other security-related options.
Firewall |
|
Enable DoS
Firewall |
If enabled, DoS (Denial of Service) attacks will be detected and blocked.
The default is enabled. It is strongly recommended that this setting be left
enabled.
Note:
|
Threshold
|
This setting affects the number of "half-open" connections allowed.
|
Options |
|
Respond to ICMP
|
The ICMP protocol is used by the "ping" and "traceroute" programs, and by
network monitoring and diagnostic programs.
|
Allow IPsec
|
The IPSec protocol is used to establish a secure connection, and is widely
used by VPN (Virtual Private Networking) programs.
|
Allow PPTP
|
PPTP (Point to Point Tunneling Protocol) is widely used by VPN (Virtual
Private Networking) programs.
|
Allow L2TP
|
L2TP is a protocol developed by Cisco for VPNs (Virtual Private
Networks).
|
The Logs record various types of activity on the Broadband Router. This data is useful for troubleshooting, but enabling all logs will generate a large amount of data and adversely affect performance.
Since only a limited amount of log data can be stored in the Broadband Router, log data can also be E-mailed to your PC.
Enable Logs |
|
Outgoing Connections
|
If selected, Outgoing Internet connections are logged. Normally, the
(Internet) "Destination" will be shown as an IP address. But if the "URL Filter"
is enabled, the "Destination" will be shown as a URL.
|
Access Control
|
If enabled, the log will include attempted outgoing connections which have
been blocked by the "Access Control" feature.
|
DoS Attacks
|
If enabled, this log will show details of DoS (Denial of Service) attacks
which have been blocked by the built-in Firewall.
|
Timezone
|
Select the correct Timezone for your location. This is required for the
date/time shown on the logs to be correct.
|
E-Mail Reports |
|
Send E-mail alert
|
If enabled, an E-mail will be sent immediately if a DoS (Denial of Service)
attack is detected. If enabled, the E-mail address information must be
provided.
|
E-mail Logs
|
You can choose to have the logs E-mailed to you, by enabling either or both
checkboxes. If enabled, the Log will sent to the specified E-mail address. The
interval between E-mails is determined by the "Send" setting.
|
Send
|
Select the desired option for sending the log by E-mail.
|
E-Mail Address |
|
E-mail Address
|
Enter the E-mail address the Log is to be sent to. The E-mail will also
show this address as the Sender's address.
|
Subject
|
Enter the text string to be shown in the "Subject" field for the
E-mail.
|
SMTP Server
|
Enter the address or IP address of the SMTP (Simple Mail Transport
Protocol) Server you use for outgoing E-mail.
|
Port No.
|
Enter the port number used to connect to the SMTP Server. The default value
is 25.
|
The MAC (hardware) address is a low-level network identifier. It may be called "MAC Address", "Hardware Address", or "Physical Address". On a PC, this address is associated with the Network card or adapter. The address on the MAC Address screen is the address on the Internet (WAN port) interface, and has no effect on the LAN interface.
Select MAC Address from the Advanced menu to reach a screen like the example below.
MAC (hardware) Address
|
The current MAC (hardware) address is displayed.
If your ISP has recorded a Hardware Address, you can "spoof" that address
by entering it in the address field. The hardware address consists of 12
characters, where each character is a digit (0..9) or a character between A and
F.
|
Buttons |
|
Default
|
Inserts the default MAC address into the MAC address field. You must click
"Save" to actually change the address used.
|
Copy from PC
|
Inserts the MAC address from your PC into the MAC address field. You must
click "Save" to actually change the address used.
|
Save
|
Save your changes to the Broadband Router.
|
Cancel
|
Reverse any changes made since the last "Save".
|
If the MAC address is changed, the Broadband Router must restart. |
The routing table is accessed by the Routing link on the Advanced screen.
Generally, you will use either RIP (Routing Information Protocol) OR the Static Routing Table, as explained above, although is it possible to use both methods simultaneously.
Static Routing Table
RIP |
|
Enable RIP
|
Check this to enable the RIP (Routing Information Protocol) feature of the
Broadband Router.
The Broadband Router supports RIP 1 only.
|
Static Routing |
|
Static Routing
Table Entries |
This list shows all entries in the Routing Table.
|
Properties
|
|
Buttons |
|
Save
|
Save the RIP setting. This has no effect on the Static Routing Table.
|
Add
|
Add a new entry to the Static Routing table, using the data shown in the
"Properties" area on screen. The entry selected in the list is ignored, and has
no effect.
|
Update
|
Update the current Static Routing Table entry, using the data shown in the
"Properties" area on screen.
|
Delete
|
Delete the current Static Routing Table entry.
|
Clear Form
|
Clear all data from the "Properties" area, ready for input of a new entry
for the Static Routing table.
|
Generate Report
|
Generate a read-only list of all entries in the Static Routing table.
|
It is essential that all IP packets for devices not on the local LAN be passed to the Broadband Router, so that they can be forwarded to the external LAN, WAN, or Internet. To achieve this, the local LAN must be configured to use the Broadband Router as the Default Route or Default Gateway.
The local router is the Router installed on the same LAN segment as the Broadband Router. This router requires that the Default Route is the Broadband Router itself. Typically, routers have a special entry for the Default Route. It should be configured as follows.
Destination IP Address
|
Normally 0.0.0.0, but check your router documentation.
|
Network Mask
|
Normally 0.0.0.0, but check your router documentation.
|
Gateway IP Address
|
The IP Address of the Broadband Router.
|
Metric
|
1
|
Other routers on the local LAN must use the Broadband Router's Local Router as the Default Route. The entries will be the same as the Broadband Router's local router, with the exception of the Gateway IP Address.
For the LAN shown above, with 2 routers and 3 LAN segments, the Broadband Router requires 2 entries as follows.
Entry 1 (Segment 1) |
|
Destination IP Address
|
192.168.1.0
|
Network Mask
|
255.255.255.0 (Standard Class C)
|
Gateway IP Address
|
192.168.0.100 (Broadband Router's local Router)
|
Metric
|
2
|
Entry 2 (Segment 2) |
|
Destination IP Address
|
192.168.2.0
|
Network Mask
|
255.255.255.0 (Standard Class C)
|
Gateway IP Address
|
192.168.0.100
|
Metric
|
3
|
Destination IP Address
|
0.0.0.0
|
Network Mask
|
0.0.0.0
|
Gateway IP Address
|
192.168.0.1 (Broadband Router's IP Address)
|
Destination IP Address
|
0.0.0.0
|
Network Mask
|
0.0.0.0
|
Gateway IP Address
|
192.168.1.80 (Broadband Router's local router)
|