Billion BIPAC 8500 manuel d'utilisation

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119

Aller à la page of

Un bon manuel d’utilisation

Les règles imposent au revendeur l'obligation de fournir à l'acheteur, avec des marchandises, le manuel d’utilisation Billion BIPAC 8500. Le manque du manuel d’utilisation ou les informations incorrectes fournies au consommateur sont à la base d'une plainte pour non-conformité du dispositif avec le contrat. Conformément à la loi, l’inclusion du manuel d’utilisation sous une forme autre que le papier est autorisée, ce qui est souvent utilisé récemment, en incluant la forme graphique ou électronique du manuel Billion BIPAC 8500 ou les vidéos d'instruction pour les utilisateurs. La condition est son caractère lisible et compréhensible.

Qu'est ce que le manuel d’utilisation?

Le mot vient du latin "Instructio", à savoir organiser. Ainsi, le manuel d’utilisation Billion BIPAC 8500 décrit les étapes de la procédure. Le but du manuel d’utilisation est d’instruire, de faciliter le démarrage, l'utilisation de l'équipement ou l'exécution des actions spécifiques. Le manuel d’utilisation est une collection d'informations sur l'objet/service, une indice.

Malheureusement, peu d'utilisateurs prennent le temps de lire le manuel d’utilisation, et un bon manuel permet non seulement d’apprendre à connaître un certain nombre de fonctionnalités supplémentaires du dispositif acheté, mais aussi éviter la majorité des défaillances.

Donc, ce qui devrait contenir le manuel parfait?

Tout d'abord, le manuel d’utilisation Billion BIPAC 8500 devrait contenir:
- informations sur les caractéristiques techniques du dispositif Billion BIPAC 8500
- nom du fabricant et année de fabrication Billion BIPAC 8500
- instructions d'utilisation, de réglage et d’entretien de l'équipement Billion BIPAC 8500
- signes de sécurité et attestations confirmant la conformité avec les normes pertinentes

Pourquoi nous ne lisons pas les manuels d’utilisation?

Habituellement, cela est dû au manque de temps et de certitude quant à la fonctionnalité spécifique de l'équipement acheté. Malheureusement, la connexion et le démarrage Billion BIPAC 8500 ne suffisent pas. Le manuel d’utilisation contient un certain nombre de lignes directrices concernant les fonctionnalités spécifiques, la sécurité, les méthodes d'entretien (même les moyens qui doivent être utilisés), les défauts possibles Billion BIPAC 8500 et les moyens de résoudre des problèmes communs lors de l'utilisation. Enfin, le manuel contient les coordonnées du service Billion en l'absence de l'efficacité des solutions proposées. Actuellement, les manuels d’utilisation sous la forme d'animations intéressantes et de vidéos pédagogiques qui sont meilleurs que la brochure, sont très populaires. Ce type de manuel permet à l'utilisateur de voir toute la vidéo d'instruction sans sauter les spécifications et les descriptions techniques compliquées Billion BIPAC 8500, comme c’est le cas pour la version papier.

Pourquoi lire le manuel d’utilisation?

Tout d'abord, il contient la réponse sur la structure, les possibilités du dispositif Billion BIPAC 8500, l'utilisation de divers accessoires et une gamme d'informations pour profiter pleinement de toutes les fonctionnalités et commodités.

Après un achat réussi de l’équipement/dispositif, prenez un moment pour vous familiariser avec toutes les parties du manuel d'utilisation Billion BIPAC 8500. À l'heure actuelle, ils sont soigneusement préparés et traduits pour qu'ils soient non seulement compréhensibles pour les utilisateurs, mais pour qu’ils remplissent leur fonction de base de l'information et d’aide.

Table des matières du manuel d’utilisation

  • Page 1

    BIPAC-8500/8520 SHDSL VPN Firewall Bridge / Router User’s Manual Version Release 1.54c[...]

  • Page 2

    T T a a b b l l e e o o f f C C o o n n t t e e n n t t s s C C H H A A P P T T E E R R 1 1 : : I I N N T T R R O O D D U U C C T T I I O O N N . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 1 1 I NTRODUCTION TO YOUR BIPAC-8500/8520 R OUTER ....................................................[...]

  • Page 3

    Table of Contents ii Permanent Table .................................................................................... 21 PPTP Status ............................................................................................................................... .2 2 IPSec Status ...................................................................[...]

  • Page 4

    Table of Contents iii IP Throttling .......................................................................................... 100 Virtual Server (“Port Forwarding”) ..............................................................................................101 Advanced .........................................................................[...]

  • Page 5

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 1: Introduction Chapter 1: Introduction Introduction to your BIPAC-8500/8520 Router Welcome to the Billion BIPAC-8500/8520 Router. Your Billion router is an “all-in-one” unit, combining an SHDSL modem, SHDSL router and Ethernet network s witch, providing everything you need t[...]

  • Page 6

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 1: Introduction Netw ork Address Translation (NAT) Allows multi-users to access outside resource s such as the Internet simultaneously with one IP address/one Internet access account. M any application layer gateway (ALG) are supported such as web browser, ICQ, FTP, Telnet, E-mai[...]

  • Page 7

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 1: Introduction Simple Netw ork Management Protocol (SNMP) It is an easy way to remotely manage the router via SNMP. Web based GUI Supports web based GUI for configuration and management. It is user-friendly and comes with on-line help. It also suppo rts remote management capabil[...]

  • Page 8

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 1: Introduction BIPAC-8500 / 8520 SHDSL Router Application 8500 / 8520 Figure 1.1 Application Diagram of 8500 / 8520 Thank you for y our purchase, and welcome to the w orld of broadband Internet! 4[...]

  • Page 9

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 2: Installing the Router Important note for using the BIPAC-8500 / 8520 SHDSL Router  DO NOT use the BI PAC-8500/8520 in high humidity or high temperatures.  DO NOT use the same power source for the BIPAC-8500 / 8520 as other equipment.  DO NOT open or repair the case yo[...]

  • Page 10

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router The Front LEDs of BIPAC-8500 6 2 4 1 3 LED Meaning 1 LINE Lit when successfully connected to SHDSL line and it is synchronized. 2 LAN Port 1X — 4X (RJ-45 connector) Lit when connected to an Ethernet device. Green for 100Mbps; Orange for 10Mbps. Blinking when data is Transmitted / Recei[...]

  • Page 11

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 2: Installi ng the Router The Front LEDs of BIPAC-8520 3 5 2 1 4 LED Meaning 1 2 LINE 1 & 2 Lit when successfully connected to SHDSL line and it is synchronized. 3 LAN Port 1X — 4X (RJ-45 connector) Lit when connected to an Ethernet device. Green for 100Mbps; Orange for 10M[...]

  • Page 12

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 2: Installing the Router The Rear Ports 1 2 3 4 5 *6 * Only the BIPAC-8520 has two Line jack ports. BIPAC-8500 has one. Port Meaning 1 Power Sw itch Power ON/OFF switch 2 PWR Connect the supplied power adapter to this jack. 3 RESET After the device is powered on, pr ess it to r[...]

  • Page 13

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 2: Installing the Router Cabling One of the most common causes of problems is bad cabling or SH DSL line(s). Make sure that all connected devices are turned on. On the front of the product is a bank of LEDs. Verify that the LAN Link and SHDSL line LEDs are lit. If they are not, v[...]

  • Page 14

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 3: Basic Installation 10 Chapter 3: Basic Installation The router can be configured wit h your web browser. A web br owser is included as a standard application in the following operating systems: Linux, Mac OS, Window s 98/NT/2000/XP/Me, etc. The product provides a very easy and[...]

  • Page 15

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 3: Basic Installation 11 Configuring PCs in Windows For Windows XP 1. Go to Start / Control Panel (in Classic View). In the Control Panel, double-click Network Connections . 2. Double-click Local Area Connection . (See Figure 3.1) 3. In the LAN Area Connection Status window, clic[...]

  • Page 16

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 3: Basic Installation 12 For Windows 2000 1. Go to Start / Settings / Control Panel . In the Control Panel, double-click Network and Dial-up Connections . 2. Double-click Local Area (“LAN”) Connection . (See Figure 3.5) 3. In the LAN Area Connection Status window, click Prope[...]

  • Page 17

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 3: Basic Installation 13 For Windows 98 / ME 1. Go to Start / Settings / Control Panel . In the Control Panel, double-click Network and choose the Configuration tab. 2. Select TCP / IP -> NE2000 Compatible , or the name of any Network Interface Card (NIC) in your PC. ( See Fig[...]

  • Page 18

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 3: Basic Installation 14 For Windows NT4.0 1. Go to Start / Settings / Control Panel . In the Control Panel, double-click Network and choose the Protocols tab. 2. Select TCP/IP Protocol and click Properties . ( See Figure 3.12) 3. Select the Obtain an IP address from a DHCP serve[...]

  • Page 19

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 3: Basic Installation 15 Factory Default Settings Before configuring your, you need to know the following default settings. Web Interface: Username: admin Password: admin LAN Device IP Settings: IP Address: 192.168.1.254 Subnet Mask: 255.255.255.0 ISP setting in WAN site: PPPoE D[...]

  • Page 20

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 3: Basic Installation 16 Information from your ISP Before configuring this device, you have to che ck with your ISP (Internet Service Provider) what kind of service is provided such as PPPoE, PPPoA, RFC1483, or IPoA. Gather the information as illustrated in t he following table a[...]

  • Page 21

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 3: Basic Installation 17 Configuring with your Web Browser Open your web browser, enter the IP address of your router, which by default is 192.168.1.254 , and click “ Go ”, a user name and password window prompt will ap pear. The default username and password are “admin” [...]

  • Page 22

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Chapter 4: Configuration At the configuration homepage, the left navigation pane wher e bookmarks are provided links you directly to the desired setup page, including: Status (ARP Table, Routing Table, DHCP T able, PPTP Status, IPSec Status, L2TP Status, Email St[...]

  • Page 23

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Status ARP Table This section displays the router’s ARP (Addre ss Resolution Protocol) Table, which shows the mapping of Internet (IP) addresse s to Ethernet (MAC) addresses. Th is is useful as a quick way of determining the MAC address of the network interface[...]

  • Page 24

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Routing Table Routing Table: Valid: It indicates a successful routing status. Destination: The IP address of the destination network. Netmask: The destination netmask address. Gateway/Interface: The IP address of the gateway or existing interface that this route [...]

  • Page 25

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration DHCP Table Leased: The DHCP assigned IP addresses information. IP Address: A list of IP addresses of devices on your LAN (Local Area Network). Expired: The expired IP addresses information. Permanent: The fixed host mapping information Leased Table IP Address: Th[...]

  • Page 26

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration PPTP Status This shows details of your configured PPTP VPN Connections. Name: The name you assigned to the particular PPTP connection in your VPN configuration. Type: The type of connection (dial-in/dial-out). Enable: Whether the connection is currently enabled. [...]

  • Page 27

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration IPSec Status This shows details of your configured IPSec VPN Connections. Name: The name you assigned to the particular VPN entry. Active: Whether the VPN Connection is currently Active. Connection State: Whether the VPN is Connected or Disconnected. Statistics: [...]

  • Page 28

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration L2TP Status This shows details of your configured L2TP VPN Connections. Name: The name you assigned to the particular L2TP connection in your VPN configuration. Type: The type of connection (dial-in/dial-out). Enable: Whether the connection is currently enabled. [...]

  • Page 29

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Event Log This page displays the router’s Event Log entries. Major events are logged to this window, such as when the router’s SHDSL connection is disc onnected, as well as Firewall events when you have enabled Intrusion or Blocking Logging in the Configurati[...]

  • Page 30

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration NAT Sessions This section lists all current NAT sessions bet ween interface of types external (WAN) and internal (LAN). UPnP Portmap The section lists all port-mappi ng established using UPnP (Universal Plug and Play). Please see the Advanced section of this manu[...]

  • Page 31

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Quick Start For detailed instructions on configur ing your WAN settings, please see the WAN section of this manual. Usually, the only details you will need for the Quick Start wizard to get you online are your login (often in the form of username@ispname ), your [...]

  • Page 32

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Select the desired option from the list and click Apply to return to the Quick Start interface to continue configuring your ISP connection. Please note that the contents of this list will vary, depending on what is supported by your ISP. 28[...]

  • Page 33

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Configuration When you click this item, you get following sub-items to configur e the SHDSL router. LAN, WAN, System, Firewall, VPN, QoS, Virtual Server and Advanced These functions are described below in the following sections. LAN (Local Area Network) There are[...]

  • Page 34

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Port Setting This section allows you to configure the setti ngs for the router’s Et hernet ports to solve some of the compatibility problems that may be encountered while connecting to the Internet, as well allowing users to tweak the performance of their netwo[...]

  • Page 35

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration DHCP Server You can disable or enable the DHCP (Dynamic Host Configuration Protocol) server or enable the router’s DHCP relay functions. The DHCP protocol allows your router to dynamically assign IP addresses to PCs on your network if they are configured to obt[...]

  • Page 36

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration If you check DHCP Relay Agent and click Next , then you will have to enter the IP address of the DHCP server which will assign an IP addr ess back to the DHCP client in the LAN. Use this function only if advised to do so by your network administrator or ISP. Clic[...]

  • Page 37

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration WAN (Wide Area Network) WAN refers to your Wide Area Network connection, i.e. your router’s connection to your ISP and the Internet. There are two items within the WAN section: ISP , DNS and SHDSL . ISP The factory default is PPPoE. If your ISP uses this access[...]

  • Page 38

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration RFC 1483 Routed Connections Description: Your description of this connection. VPI and VCI: Enter the information provided by your ISP. ATM Class: The Quality of Service for ATM layer. NAT: The NAT (Network Address Translation) feat ure allows multiple users to ac[...]

  • Page 39

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration PPPoE Connections Description: A user-definable name for this connection. VPI/VCI: Enter the information provided by your ISP. ATM Class: The Quality of Service for ATM layer. NAT: The NAT (Network Address Translation) feat ure allows multiple users to access the[...]

  • Page 40

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration DHCP client function, and specif y the IP address manually. The setting of this item is specified by your ISP. Authentication Protocol: Default is Chap(Auto ). Your ISP will advise you whether to use Chap or Pap. Connection:  Always on: If you want the router [...]

  • Page 41

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Give DNSto Relay: Controls whether the PPP Internet Protocol Cont rol Protocol (IPCP) can request the DNS server IP address fo r a remote PPP peer . Once IPCP has discovered the DNS server IP address, it autom atically gives the address to the local DNS relay so [...]

  • Page 42

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration RFC 1483 Bridged Connections VPI and VCI: Enter the information provided by your ISP. ATM Class: The Quality of Service for ATM layer. Encapsulation method: Select the encapsulation format, this is provided by your ISP. Ether Filter Type: Specify the type of ethe[...]

  • Page 43

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration PPPoA Routed Connections Description: User-definable name for the connection. VPI/VCI: Enter the information provided by your ISP. ATM Class: The Quality of Service for ATM layer. NAT: The NAT (Network Address Translation) feat ure allows multiple users to access[...]

  • Page 44

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Connection:  Always on: If you want the router to establish a PPPoA session when starting up and to automatically re-establish the PPPo A session when disconnected by the ISP.  Connect to Demand: If you want to establish a P PPoA session only when there is [...]

  • Page 45

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Give DNSto Client: Controls whether the PPP Internet Protocol Cont rol Protocol (IPCP) can request a DNS server IP address for a remote PPP peer. Once IPCP has discovered the DNS server IP address, it automatically gives the address to the local DNS client so tha[...]

  • Page 46

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration IPoA Routed Connections Description: User-definable name for the connection. VPI/VCI: Enter the information provided by your ISP. ATM Class: The Quality of Service for ATM layer. NAT: The NAT (Network Address Translation) feat ure allows multiple users to access [...]

  • Page 47

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration DNS A Domain Name System (DNS) contains a mapping table for domain name and IP addresses. On the Internet, every host has a unique and user-friendly name (domain name) such as www.billion.co m and an IP address. An IP address is a 32-bit number in the form of xxx[...]

  • Page 48

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration SHDSL Mode: The default is CPE (Customer Premises Equi pment) mode. If you want to do back to back connection with another BIPAC-8500, you must set to CO (Central Office) mode on another unit. Annex Type: SHDSL standard. The default is Annex A and both sites shou[...]

  • Page 49

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration System There are six items within the System section: Time Zone, Remote Access, Firmware Upgrade, Backup/Restore, Restart and User Management. Time Zone The router does not have a real time clock on board; instead, it uses the Simple Network Time Protocol (SNTP) [...]

  • Page 50

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Remote Access To temporarily permit remote administration of the router (i.e. from outside your LAN), select a time period t he router will permit remote access for and click Enable. You may change other configuration options for t he web administration interface[...]

  • Page 51

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Firmware Upgrade Your router’s “firmware” is the software that allows it to operate and provides all its functionality. Think of your router as a dedicated computer, and the firmware as the software it runs. Over time this software may be improved and modif[...]

  • Page 52

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Backup/Restore These functions allow you to save and backup y our router’s current settings to a file on your PC, or to restore a previously saved backup. This is useful if you wish to experiment with different settings, knowing that you have a backup handy in [...]

  • Page 53

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Restart Router Click Restart with option Current Settings to reboot your router (and restore your last saved configuration). If you wish to restart the rout er using the factory default se ttings (for example, after a firmware upgrade or if you have saved an inco[...]

  • Page 54

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration User Management In order to prevent unauthorized a ccess to your router’s configur ation interface, it requires all users to login with a password. You can se t up multiple user accounts, each with their own password. You are able to Edit existing users and Cre[...]

  • Page 55

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Firewall and Access Control Your router includes a full SPI (Stateful Packe t Inspection) firewall fo r controlling Internet access from your LAN, as well as helping to prev ent attacks from hackers. In addition to this, when using NAT (Network Addre ss Translati[...]

  • Page 56

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration URL Filter : To block PCs on your local network from unwanted websites. You can find six items under the Firewall section: General Settings, Packet Filter, Intrusion Detection, MAC Address Filter, URL Filter and Firewall Log. 52[...]

  • Page 57

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration General Settings You can choose not to enable Firewall, to add a ll filter rules by yourself, or enable the Firewall using preset filter rules and modify the port filter rules as required. The Packet Filter is divided into two sections: Port Filters and Address F[...]

  • Page 58

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Packet Filter 54[...]

  • Page 59

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Port Filters The pre-defined port filter rules for High, Medium and Low security levels are listed. See Table 1. T able 1: Pre-defined Port Filter Port Number Firewall - High Firewall - Medium Firewall - Low Application Protocol Start End Inbound Outbound Inbound[...]

  • Page 60

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Address Filters Address Filters are used to block traffic to/fr om particular IP addresses. They can be used to block IP addresses either on the Internet or on your local network. There are no pre- defined address filter rules; you can add the filter rules to m e[...]

  • Page 61

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Example: Configuring your firewall to a llow for a publicly accessible web server on your LAN The pre-defined port filter rule for HTTP (TCP port 80) is the same no matter whether the firewall is set to a high, medium or low security level. To setup a web server [...]

  • Page 62

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration 2. Click Port Filters . You will then be presented with the pre- defined port filter rules screen (in this case for the low security level), shown below: Click Delete 3. Click Delete to delete the existing HTTP rule. 4. Click Add TCP Filter . Click Add TCP Filter[...]

  • Page 63

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration 6. The new port filter rule for HTTP is shown below: 7. Configure your Virtual Server (“port forwar ding”) settings so that incoming HTTP requests on port 80 will be forwarded to the PC running your web server: To enable the HTTP service in Virtual Server set[...]

  • Page 64

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Intrusion Detection The router’s Intrusion Detection System (IDS) is used to detect hacker attacks and intrusion attempts from the Internet. If the IDS function of the firewall is enabled, inbound packets are filtered and bl ocked depending on whether they are [...]

  • Page 65

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Max PING Count : This is a threshold value to decide whether an ICMP Echo Storm is occurring or not. Default value is 15 ICMP Echo Requests (PING) per second. Max ICMP Count : This is a threshold to decide whether an ICMP flood is occurring or not. Default value [...]

  • Page 66

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration MAC Address Filter A MAC (Media Access Control) address is the unique network hardware identifier for each PC on your network’s interface (i.e. its Network Interface Card or Ethernet card). Using your router’s MAC Address Filt er function, you can configur e [...]

  • Page 67

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration URL Filter URL (Uniform Resource Locator – e.g. an address in the form of http://www.billion.com or http://www.example.com ) filter rules allow you to prev ent users on your network from accessing particular websites by their URL. T here are no pre-defined URL [...]

  • Page 68

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Domains Filtering: This function checks the domain name in URLs accessed against your list of domains to block or allow. If it is matched, the URL request will be sent (Trusted) or dropped (Forbidden). The checking procedure is: 1. Check the domain in the URL to [...]

  • Page 69

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Firewall Log Firewall Log display log information of any unex pected action with your firewall settings. Check the Enable box to activate the logs. Log information can be seen in the Status – Event Log after enabling. 65[...]

  • Page 70

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration VPN (Virtual Private Networks) Your router support three main types of VPN (Virtual Private Network), PPTP , IPSec and L2TP , and these are the two major section choices from the menu on the left. PPTP There are two types of PPTP VPN supported, Remote Access and [...]

  • Page 71

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Remote Access PPTP Connection Connection Name: This allows you to identify this par ticular connection, e.g. “Connection to office”. Type: Check Dial Out if you want your rout er to operate as a c lient (connecting to a remote VPN server, e.g. your office ser[...]

  • Page 72

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Mode: You may select Stateful or Stat eless mode. The key will be changed every 256 packets when you select Stateful mode. If you select Stateless mode, the key will be changed in each packet. Idle Time : Auto-disconnect the VPN connection when there is no activi[...]

  • Page 73

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration LAN to LAN PPTP Connection Connection Name: A user-define description of the connection. Type: Check Dial Out if you want your r outer to operate as a c lient (connecting to a remote VPN server, e.g. your office server), check Dial In operates as a VPN server. Wh[...]

  • Page 74

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Key Length: The data can be encrypted by MPPE algorithm with 40 bits or 128 bits. Default is Auto , it is negotiated when establishing a connection. 128 bit keys provide stronger encryption than 40 bit keys. Mode: You may select Stateful or Stat eless mode. The k[...]

  • Page 75

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration IPSec Click Create to configure a new IPSec VPN connection. 71[...]

  • Page 76

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Configure a new VPN Connection Connection Name: A user-defined name for the connection (e.g. “connection to office”). Local: Local Network: Set the IP address, subnet or addre ss range of the local network.  Single Address: The IP address of the local host[...]

  • Page 77

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Authentication: Authentication establishes the integrity of the dat agram and ensures it is not tampered with in transmit. There are three options, Message Digest 5 ( MD5 ), Secure Hash Algorithm ( SHA-1 ) or NONE . SHA-1 is more resistant to brute-force attacks [...]

  • Page 78

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Advanced Option Click Advanced Option to change the following settings: IKE Mode: Select IKE mode to Main mode or Aggressive mode. Local ID:  Type: Specify local ID type.  Content: Input ID’s information, like domain name www.ipsectest.com . Remote ID: ?[...]

  • Page 79

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration L2TP There are two types of L2TP VPN supported, Remote Access and LAN-to-LAN (please refer below for more information.). Click Create to configure a new VPN connection. 75[...]

  • Page 80

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Remote Access L2TP Connection Connection Name: This allows you to identify this par ticular connection, e.g. “Connection to office”. Type: Check Dial Out if you want your r outer to operate as a client (connecting to a remote VPN server, e.g. your office serv[...]

  • Page 81

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration IPSec: Enable for enhancing your LT2P VPN security. Authentication: Authentication establishes the integrity of the dat agram and ensures it is not tampered with in transmit. There are three options, Message Digest 5 ( MD5 ), Secure Hash Algorithm ( SHA-1 ) or NO[...]

  • Page 82

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration LAN to LAN L2TP Connection Connection Name: A user-define description of the connection. Type: Check Dial Out if you want your r outer to operate as a client (connecting to a remote VPN server, e.g. your office server), check Dial In operates as a VPN server. Whe[...]

  • Page 83

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Idle Time : Auto-disconnect the VPN connection when there is no activity on the connection for a predetermined period of time. 0 means this connection is always on. Click Apply after changing settings. IPSec: Enable for enhancing your LT2P VPN security. Authentic[...]

  • Page 84

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Example: Configuring a Remote Access PPTP VPN Dial-in Connection A remote worker establishes a PPTP VPN c onnection with the head office using Microsoft's VPN Adapter (included with Window s 2000/ME, etc.). The router is installed in the head office, connect[...]

  • Page 85

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Private IP Address Assigned to Dialing User 192.168.1.200 An assigned IP address for the remote worker Username username 3 Password 123456 Input username & password to authenticate remote worker Auth.Type Chap(Auto) Data Encryption Auto Key Length Auto 4 Mode[...]

  • Page 86

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Example: Configuring a Remote Ac cess PPTP VPN Dial-out Connection A company’s office establishes a PPTP VPN connec tion with a file server located at a separate location. The router is installed in the o ffice, connected to a couple of PCs and Servers. Dial-ou[...]

  • Page 87

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Auth.Type Chap(Auto) Data Encryption Auto Key Length Auto 4 Mode stateful Keep as default value in most of the cases, PPTP server & client will determine the value automatically. Refer to manual for details if you want to change the setting. 5 Idle Time 0 The[...]

  • Page 88

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Example: Configuring a LAN-to-LAN PPTP VPN Connection The branch office establishes a PPTP VPN t unnel with head office to connect two private networks over the Internet.. The routers are in stalled in the head office and branch office accordingly. A ttention Bot[...]

  • Page 89

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Configuring PPTP VPN in the Head Office The IP address 192.168.1.201 will be assigned to the rout er located in the branch office. Please make sure this IP is not used in the head office LAN. 1 2 3 4 5 6 Item Function Description 1 Connection Name HeadOffice Give[...]

  • Page 90

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Configuring PPTP VPN in the Branch Office The IP address 69.1.121.30 is the Public IP address of the router loca ted in head office. If you registered the DDNS (please refer to the DDNS section of this manual ), you can also use the domain name instead of the IP [...]

  • Page 91

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Example: Configuring a IPSe c LAN-to-LAN VPN Connection T able 3: Netw ork Configuration and Security Plan Branch Office Head Office Local Network ID 192.168.0.0/24 192.168.1.0/24 Local Router IP 69.1.121.30 69.1.121.3 Remote Network ID 192.168.1.0/24 192.168.0.0[...]

  • Page 92

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Configuring IPSec VPN in the Head Office 1 2 3 4 5 Item Function Description 1 Connection Name IPSec_HeadOffice Given a name of IPSec connection Subnet Check Subnet radio button IP Address 192.168.1.0 2 Netmask 255.255.255.0 Head office network 3 Secure Gateway A[...]

  • Page 93

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Configuring IPSec VPN in the Branch Office 1 2 3 4 5 Item Function Description 1 Connection Name IPSec_Branch Office Given a name of IPSec connection Subnet Check Subnet radio button IP Address 192.168.0.0 2 Netmask 255.255.255.0 Branch office network 3 Secure Ga[...]

  • Page 94

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Example: Configuring a Remote Ac cess L2TP VPN Dial-in Connection A remote worker establishes a L2TP VPN connection with the head office using Microsoft's VPN Adapter (included with Windows XP/2000/ME, etc. ). The router is installed in the head office, conn[...]

  • Page 95

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Configuring L2TP VPN in the Office The input IP address 192.168.1.200 will be assigned to the remote worker. Please make sure this IP is not used in the Office LAN. 1 2 3 5 6 4 Item Function Description 1 Connection Name VPN_L2TP Given a name of L2TP connection D[...]

  • Page 96

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Example: Configuring a Remote Ac cess L2TP VPN Dial-out Connection A company’s office establishes a L2TP VPN connection with a file server located at a separate location. The router is installed in the o ffice, connected to a couple of PCs and Servers. Dial-out[...]

  • Page 97

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Configuring the L2TP VPN in the Office 1 2 3 5 6 4 Item Function Description 1 Connection Name VPN_L2TP Given name of L2TP connection Dial out Check Dial out 2 Server IP Address (or Hostname) 69.121.1.33 An Dialed server IP Username username 3 Password 123456 A g[...]

  • Page 98

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Example: Configuring your Rout er to Dial-in to the Server Currently, Microsoft Windows operation system does not support L2TP incoming service. Additional software may be required to set up your L2TP incoming service. 94[...]

  • Page 99

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Example: Configuring LAN-to-LAN L2TP VPN Connection The branch office establishes a L2TP VPN tunnel with head office to connect two private networks over the Internet. The routers are installed in the head office and branch office accordingly. A ttention Both off[...]

  • Page 100

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Configuring L2TP VPN in the Head Office The IP address 192.168.1.200 will be assigned to the rout er located in the branch office. Please make sure this IP is not used in the head office LAN. 1 2 3 4 7 6 5 Item Function Description 1 Connection Name HeadOffice Gi[...]

  • Page 101

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Configuring L2TP VPN in the Branch Office The IP address 69.1.121.30 is the Public IP address of the router loca ted in head office. If you registered the DDNS (please refer to the DDNS section of this manual ), you can also use the domain name instead of the IP [...]

  • Page 102

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration QoS (Quality of Service) QoS function helps you to control your network traffic for each application from LAN (Ethernet and/or Wireless) to WAN (Internet). It facilitates you to control the different quality and speed of through put for each application when the [...]

  • Page 103

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Prioritization There are three priority settings to be provided in the modem: High Normal (The default is normal priority for all of traffic without setting). Low The trigger of check can base on IP protocol, port number and address. And the balance of utilizatio[...]

  • Page 104

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration IP Throttling IP Throttling allows you to limit the speed of IP traffic. The val ue entered will limit the speed of the application that you set to t he specified value’s multiple of 32kbps. The trigger of check can base on IP pr otocol, port number and address[...]

  • Page 105

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Virtual Server (“Port Forwarding”) In TCP/IP and UDP networks a port is a 16-bi t number used to identify which application program (usually a server) incoming connecti ons should be delivered to. Some ports have numbers that are pre-assigned to them by the I[...]

  • Page 106

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration 80 TCP World Wide Web HTTP 110 TCP POP3 (Post Office Protocol Version 3) 119 TCP NEWS (Network News Transfer Protocol) 123 UDP NTP (Network Time Protocol) 161 TCP SNMP 443 TCP & UDP HTTPS 1503 TCP T.120 1720 TCP H.323 4000 TCP ICQ 7070 UDP RealAudio Because N[...]

  • Page 107

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration For example, if you set the port number 80 (Web/HTTP) to be mapped to the IP Address 192.168.1.2, then all incoming HTTP requests fr om outside users will be forwarded to the local server (PC) with the IP address of 192.168.1.2. If the port is not listed as a pre[...]

  • Page 108

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Advanced Configuration options within the Advanced section are for users who wish to take advantage of the more advanced features of the router. User s who do not understand the features should not attempt to reconfigure their router, unl ess advised to do so by [...]

  • Page 109

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Dynamic DNS The Dynamic DNS function allows you to alias a dynamic IP address to a static hostname, allowing users whose ISP does not assign them a static IP address to use a domain name. This is especially useful for hosting server s via your SHDSL connection, s[...]

  • Page 110

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Check Emails This function allows you to have the router check your POP3 mailbox for new Email messages. The Mail LED on your router will light when it detects new messages waiting for download. You may also view the status of this function using the Status – E[...]

  • Page 111

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Device Management The Device Management advanced configuration settings allow you to control your router’s security options and device monitoring features. Embedded Web Server: HTTP Port: This is the port number the router’s embedded web server (for web-based[...]

  • Page 112

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration http:// 192.168.1.254:100 in their web browser. After 100 seconds, the device will automatically logout User A. Universal Plug and Play (UPnP): UPnP offers peer-to-peer network connectivi ty for PCs and other network devices, along with control and data transfer [...]

  • Page 113

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration SNMP Version: SNMPv2c and SNMPv3 SNMPv2c is the combination of the enhanced pr otocol features of SNMPv2 without the SNMPv2 security. The "c" comes from the fact that SNMPv2c uses the SNMPv1 community string paradigm for "security", but is wid[...]

  • Page 114

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration  pppLink group  pppLqr group  From RFC 1472 (PPP/Security MIB):  PPP Security Group)  From RFC 1473 (PPP/IP MIB):  PPP IP Group  From RFC 1474 (PPP/Bridge MIB):  PPP Bridge Group  From RFC1573 (IfMIB):  ifMIBObjects Group  From RF[...]

  • Page 115

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Save Configuration to Flash After changing the router’s configuration settings , you must save all of the configuration parameters to FLASH to avoid them being lost a fter turning off or rese tting your router. Click Save to write your new configuration to FLAS[...]

  • Page 116

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 4: Configuration Logout To exit the router’s web interface, choose Logout . Please ensure that you have saved the configuration settings before you logout. Be aware that the router is restricted to only one PC accessing the configuration web pages at a time. Once a PC has logge[...]

  • Page 117

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 5: Troubleshooting Chapter 5: Troubleshooting If the router is not functioning pr operly, first check this chapter for simple troubleshooting before contacting your service provider or Billion support. Problems starting up the router Problem Corrective Action None of the LEDs are[...]

  • Page 118

    Billion BIPAC-8500 / 8520 SHDSL VPN Firew all Bridge / Router Chapter 5: Troubleshooting Frequent loss of SHDSL linesync (disconnections). Ensure that all other devices connected to the same telephone line as your Billion router (e.g. telephones, fax machines, analogue modems) have a line filter connected between them and the wall socket (unless yo[...]

  • Page 119

    Appendix A: APPENDIX A: Product Support and Contact Information Most problems can be solved by referring to the Troubleshooting section in the User’s Manual . If you cannot resolve the problem with the Troubleshooting chapter, please contact the dealer where you purchased this product. Contact Billion WORLDWIDE http://www.billion.com/ Mac OS is a[...]