Reference Manual for the Model RP614 v2 Web Safe Router NETGEAR, Inc. 4500 Great America Parkway Santa Clara, CA 95054 USA SM-RP614NA-2 Version 4.
© 2002 by NETGEAR, Inc. All rights reserved. Trademarks NETGEAR is a trademark of Netgear, Inc. Microsoft, Windows, and Windows NT are registered trademarks of Microsoft Corporation. Other brand and product names are registered trademarks or trademarks of their respective holders. Statement of Conditions In the interest of improving internal design, operational function, and/or reliability, NETGEAR reserves the right to make changes to the products described in this document without notice.
Bestätigung des Herstellers/Importeurs Es wird hiermit bestätigt, daß das Model RP614 v2 Web Safe Router gemäß der im BMPT-AmtsblVfg 243/1991 und Vfg 46/1992 aufgeführten Bestimmungen entstört ist. Das vorschriftsmäßige Betreiben einiger Geräte (z.B. Testsender) kann jedoch gewissen Beschränkungen unterliegen. Lesen Sie dazu bitte die Anmerkungen in der Betriebsanleitung.
iv
Contents Preface About This Manual Chapter 1 Introduction Key Features of the Router ............................................................................................1-1 A Powerful, True Firewall with Content Filtering ......................................................1-2 Security ....................................................................................................................1-2 Autosensing Ethernet Connections with Auto Uplink™ ...........................................
Chapter 3 Content Filtering Content Filtering Overview .............................................................................................3-1 Blocking Access to Internet Sites ...................................................................................3-2 Blocking Access to Internet Services .............................................................................3-3 Configuring a User Defined Service .........................................................................
Using the Router as a DHCP server ........................................................................5-8 Using Address Reservation ......................................................................................5-9 Using a Dynamic DNS Service .......................................................................................5-9 Configuring Static Routes .............................................................................................5-10 Enabling Remote Management Access .........
Domain Name Server ............................................................................................ B-10 IP Configuration by DHCP .....................................................................................B-11 Internet Security and Firewalls .....................................................................................B-11 What is a Firewall? .................................................................................................B-11 Stateful Packet Inspection .........
Preface About This Manual Congratulations on your purchase of the NETGEAR® Model RP614 v2 Web Safe Router. The RP614 v2 router provides connection for multiple personal computers (PCs) to the Internet through an external broadband access device (such as a cable modem or DSL modem) that is normally intended for use by a single PC. Audience This reference manual assumes that the reader has basic to intermediate computer and Internet skills.
Reference Manual for the Model RP614 v2 Web Safe Router Special Message Formats This guide uses the following formats to highlight special messages: Note: This format is used to highlight information of importance or special interest.
Chapter 1 Introduction This chapter describes the features of the NETGEAR Model RP614 v2 Web Safe Router. Key Features of the Router The Model RP614 v2 Web Safe Router with 4-port switch connects your local area network (LAN) to the Internet through an external access device such as a cable modem or DSL modem. The RP614 v2 router provides you with multiple Web content filtering options, plus browsing activity reporting and instant alerts -- both via e-mail.
Reference Manual for the Model RP614 v2 Web Safe Router A Powerful, True Firewall with Content Filtering Unlike simple Internet sharing NAT routers, the Model RP614 v2 is a true firewall, using stateful packet inspection to defend against hacker attacks. Its firewall features include: • Denial of Service (DoS) protection. Automatically detects and thwarts DoS attacks such as Ping of Death, SYN Flood, LAND Attack, and IP Spoofing. • Blocks unwanted traffic from the Internet to your LAN.
Reference Manual for the Model RP614 v2 Web Safe Router Autosensing Ethernet Connections with Auto Uplink™ With its internal 4-port 10/100 switch, the Model RP614 v2 can connect to either a 10 Mbps standard Ethernet network or a 100 Mbps Fast Ethernet network. Both the LAN and WAN interfaces are autosensing and capable of full-duplex or half-duplex operation. The router incorporates Auto UplinkTM technology.
Reference Manual for the Model RP614 v2 Web Safe Router Easy Installation and Management You can install, configure, and operate the Model RP614 v2 Web Safe Router within minutes after connecting it to the network. The following features simplify installation and management tasks: • • • Browser-based management. Browser-based configuration allows you to easily configure your router from almost any type of personal computer, such as Windows, Macintosh, or Linux.
Reference Manual for the Model RP614 v2 Web Safe Router The Router’s Front Panel The front panel of the Model RP614 v2 Web Safe Router (Figure 1-1) contains status LEDs. Figure 1-1: RP614 Front Panel You can use some of the LEDs to verify connections. Viewed from left to right, Table 2 describes the LEDs on the front panel of the router. These LEDs are green when lit. Table 2. Label LED Descriptions Activity Description On Off Power is supplied to the router. Power is not supplied to the router.
Reference Manual for the Model RP614 v2 Web Safe Router The Router’s Rear Panel The rear panel of the Model RP614 router (Figure Figure 1-2:) contains port connections.
Chapter 2 Connecting the Router to the Internet This chapter describes how to set up the router on your local area network (LAN) and connect to the Internet. You find out how to configure your Model RP614 v2 Web Safe Router for Internet access using the Setup Wizard, or how to manually configure your Internet connection. What You Will Need Before You Begin You need to prepare these three things before you begin: 1. Have active Internet service such as that provided by an cable or DSL broadband account.
Reference Manual for the Model RP614 v2 Web Safe Router For the initial connection to the Internet and configuration of your router, you will need to connect a computer to the router which is set to automatically get its TCP/IP configuration from the router via DHCP. Note: For help with DHCP configuration, please refer to Appendix C, “Preparing Your Network”. The cable or DSL modem broadband access device must provide a standard 10 Mbps (10BASE-T) or 100 Mbps (100BASE-TX) Ethernet interface.
Reference Manual for the Model RP614 v2 Web Safe Router Worksheet to Record Your Internet Connection Information Print this page. Fill in the configuration parameters from your Internet Service Provider (ISP). ISP Login Name: The login name and password are case sensitive and must be entered exactly as given by your ISP. For AOL customers, the login name is their primary screen name. Some ISPs use your full e-mail address as the login name. The Service Name is not required by all ISPs.
Reference Manual for the Model RP614 v2 Web Safe Router Connecting the Model RP614 v2 Web Safe Router This section provides instructions for connecting the RP614 v2 router. Also, the Model RP614 v2 Resource CD included with your router contains an animated Installation Assistant to help you through this procedure. Procedure: Connecting the Router There are three steps to connecting your router: 1. 2. 3.
Reference Manual for the Model RP614 v2 Web Safe Router c. Connect the Ethernet cable from your cable or DSL modem to the Internet port (A) on the Model RP614 v2. Cable or DSL modem A Cable/DSL Web Safe Router RP614 Figure 2-2: Connect the cable or DSL Modem to the router d. Connect the Ethernet cable which came with the router from a Local port on the router (B) to your computer.
Reference Manual for the Model RP614 v2 Web Safe Router f. Verify the following: When your turn the router on, the power light goes on. The test light turns on within a few seconds, and then goes off after approximately 10 seconds. The router’s local lights are lit for any computers that are connected to it. The router’s Internet light is lit, indicating a link has been established to the cable or DSL modem. 2. Log in to the router.
Reference Manual for the Model RP614 v2 Web Safe Router A login window shown below opens: Figure 2-5: Login window 3. Connect to the Internet Figure 2-6: Setup Wizard a. You are now connected to the router. If you do not see the menu above, click the Setup Wizard link on the upper left of the main menu. b. Click Next and follow the steps in the Setup Wizard for inputting the configuration parameters from your ISP to connect to the Internet.
Reference Manual for the Model RP614 v2 Web Safe Router c. When the router successfully detects an active Internet service, the router’s Internet LED goes on. The Setup Wizard reports which connection type it discovered, and displays the appropriate configuration menu. If the Setup Wizard finds no connection, you will be prompted to check the physical connection between your router and the cable or DSL line. d. The Setup Wizard will report the type of connection it finds.
Reference Manual for the Model RP614 v2 Web Safe Router • • • • To change the login timeout, enter a new value in minutes. This determines how long the router keeps the Internet connection active after there is no Internet activity from the LAN. Entering a timeout value of zero means never log out. Note: You no longer need to run the ISP’s login program on your PC in order to access the Internet. When you start an Internet application, your router will automatically log you in.
Reference Manual for the Model RP614 v2 Web Safe Router • When the Setup Wizard detects an AOL DSL or Cable service, the RP614 v2 router automatically pre-configures itself to work with the AOL service. Note: Services such as AOL which use L2TP tunneling will bypass the firewall feature included with your router. For additional home network security, install the PC-based Freedom Firewall software application included on your Model RP614 v2 Resource CD. • Click OK to continue.
Reference Manual for the Model RP614 v2 Web Safe Router • Next, the router synchronized with the AOL network and displays the message below. Figure 2-10: AOL network synchronization • After the router finishes testing the connection, the window updates with the AOL Connection Established message below.
Reference Manual for the Model RP614 v2 Web Safe Router • From a computer connected to the router, sign on to AOL as illustrated below. Select the correct AOL location Figure 2-12: AOL sign on screen Note: Be sure that the AOL Home Networking updates are installed, and be sure to select the correct AOL location: for AOL DSL, choose Home Networking; for AOL Cable, choose Home - Cable. • This completes the configuration of the RP614 v2 router for connecting to your AOL account.
Reference Manual for the Model RP614 v2 Web Safe Router Telstra Bigpond Cable Wizard-Detected Option If the Setup Wizard discovers Telstra Bigpond Cable is your ISP, you will see this menu: Figure 2-13: Setup Wizard menu for Telstra Bigpond Cable accounts • Enter your Login, Password and Authentication Server. These fields are case sensitive. Note: You will no longer need to launch the ISP’s login program on your PC in order to access the Internet.
Reference Manual for the Model RP614 v2 Web Safe Router • • Click Apply to save your settings. Click Test to test your Internet connection. If the NETGEAR website does not appear within one minute, refer to Chapter 6, “Troubleshooting. Dynamic IP Wizard-Detected Option If the Setup Wizard discovers that your ISP uses Dynamic IP assignment, you will see this menu: Figure 2-14: Setup Wizard menu for Dynamic IP address accounts • • Enter your Account Name (may also be called Host Name) and Domain Name.
Reference Manual for the Model RP614 v2 Web Safe Router Fixed IP Account Wizard-Detected Option If the Setup Wizard discovers that your ISP uses Fixed IP assignment, you will see this menu: Figure 2-15: Setup Wizard menu for Fixed IP address accounts • • Fixed IP is also called Static IP. Enter your assigned IP Address, Subnet Mask, and the IP Address of your ISP’s gateway router. This information should have been provided to you by your ISP.
Reference Manual for the Model RP614 v2 Web Safe Router Manually Configuring Your Internet Connection You can manually configure your router using the menu below, or you can allow the Setup Wizard to determine your configuration as described in the previous section.
Reference Manual for the Model RP614 v2 Web Safe Router Procedure: Configuring the Internet Connection Manually You can manually configure the router using the Basic Settings menu shown in Figure 2-16 using these steps: 1. Click the Basic Settings link on the Setup menu. 2. If your Internet connection does not require a login, click No at the top of the Basic Settings menu and fill in the settings according to the instructions below.
Reference Manual for the Model RP614 v2 Web Safe Router 3. If your Internet connection does require a login, fill in the settings according to the instructions below. Select Yes if you normally must launch a login program such as Enternet or WinPOET in order to access the Internet. Note: After you finish setting up your router, you will no longer need to launch the ISP’s login program on your PC in order to access the Internet.
Chapter 3 Content Filtering This chapter describes how to use the content filtering features of the Model RP614 v2 Web Safe Router to protect your network. These features can be found by clicking on the Content Filtering heading in the Main Menu of the browser interface. Content Filtering Overview The Model RP614 v2 Web Safe Router provides you with Web content filtering options, plus browsing activity reporting and instant alerts via e-mail.
Reference Manual for the Model RP614 v2 Web Safe Router Blocking Access to Internet Sites The RP614 v2 router allows you to restrict access based on web addresses and web address keywords. Up to 255 entries are supported in the Keyword list. The Block Sites menu is shown in Figure 3-1 below: Figure 3-1: Block Sites menu To enable keyword blocking, select either “Per Schedule” or “Always”, then click Apply. If you want to block by schedule, be sure that a time period is specified in the Schedule menu.
Reference Manual for the Model RP614 v2 Web Safe Router • If the keyword “.com” is specified, only websites with other domain suffixes (such as .edu or .gov) can be viewed. • If you wish to block all Internet browsing access during a scheduled period, enter the keyword “.” and set the schedule in the Schedule menu. To specify a Trusted User, enter that PC’s IP address in the Trusted User box and click Apply. You may specify one Trusted User, which is a PC that will be exempt from blocking and logging.
Reference Manual for the Model RP614 v2 Web Safe Router To specify a service for blocking, click Add. The Add Services menu will appear, as shown below: Figure 3-3: Add Services menu From the Service Type list, select the application or service to be allowed or blocked. The list already displays several common services, but you are not limited to these choices. To add any additional services or applications that do not already appear, select User Defined.
Reference Manual for the Model RP614 v2 Web Safe Router Configuring Services Blocking by IP Address Range Under “Filter Services For”, you can block the specified service for a single PC, a range of PCs (having consecutive IP addresses), or all PCs on your network. Scheduling When Blocking Will Be Enforced The RP614 v2 router allows you to specify when blocking will be enforced. The Schedule menu is shown below: Figure 3-4: Schedule menu • Use this schedule for blocking content.
Reference Manual for the Model RP614 v2 Web Safe Router Stateful Packet Inspection (SPI), Java, ActiveX, and Cookies Blocking Options The WAN Setup options let you enable SPI and blocking of Java, ActiveX, and Cookies. These options are discussed below. Using SPI Stateful inspection technology tracks each packet traversing the router and makes sure that they are legitimate.
Reference Manual for the Model RP614 v2 Web Safe Router Using Java, ActiveX, and cookies Filtering. What are these items and what can I do about them? • • ActiveX and Java programs can be embedded in websites, and will be executed by your computer. These programs may sometimes include malicious content. Cookies are small files that a website can store on your computer to track your activity. Some cookies can be helpful, but some may compromise your privacy. To block these items, follow these steps: 1. 2.
Reference Manual for the Model RP614 v2 Web Safe Router Log entries are described in Table 3-1 Table 3-1. Log entry descriptions Field Description Number The index number of the content filter log entries. 128 entries are available numbered from 0 to 127. The log will keep the record of the latest 128 entries. Date and Time The date and time the log entry was recorded. Source IP The IP address of the initiating device for this log entry.
Reference Manual for the Model RP614 v2 Web Safe Router Configuring E-Mail Alert and Web Access Log Notifications In order to receive logs and alerts by email, you must provide your email information in the E-Mail menu, shown below: Figure 3-7: Email menu • Turn e-mail notification on Check this box if you wish to receive e-mail logs and alerts from the router. • Your outgoing mail server Enter the name of your ISP’s outgoing (SMTP) mail server (such as mail.myISP.com).
Reference Manual for the Model RP614 v2 Web Safe Router • Send to this e-mail address Enter the e-mail address to which logs and alerts are sent. This e-mail address will also be used as the From address. If you leave this box blank, log and alert messages will not be sent via e-mail. You can specify that logs are automatically sent to the specified e-mail address with these options: • Send alert immediately Check this box if you would like immediate notification of attempted access to a blocked site.
Chapter 4 Maintenance This chapter describes how to use the maintenance features of your Model RP614 v2 Web Safe Router. These features can be found by clicking on the Maintenance heading in the Main Menu of the browser interface. Viewing Router Status Information The Router Status menu provides a limited amount of status and usage information. From the Main Menu of the browser interface, click on Maintenance, then select System Status to view the System Status screen, shown below. Figure 4-1.
Reference Manual for the Model RP614 v2 Web Safe Router This screen shows the following parameters: Table 4-1. Menu 3.2 - Router Status Fields Field Description Account Name This field displays the Host Name assigned to the router. Firmware Version This field displays the router firmware version. Internet Port These parameters apply to the Internet (WAN) port of the router. MAC Address This field displays the Media Access Control address being used by the Internet (WAN) port of the router.
Reference Manual for the Model RP614 v2 Web Safe Router Click on the “Connection Status” button to display the connection status, as shown below. Figure 4-2. Connection Status screen This screen shows the following statistics:. Table 4-1. Connection Status Fields Field Description IP Address The WAN (Internet) IP Address assigned to the router. Subnet Mask The WAN (Internet) Subnet Mask assigned to the router. Default Gateway The WAN (Internet) default gateway the router communicates with.
Reference Manual for the Model RP614 v2 Web Safe Router Log action buttons are described in Table 4-2 Table 4-2. Connection Status action buttons Field Description Release Renew Click the Release button to release the DHCP lease. Click the Renew button to renew the DHCP lease. Click this button to close the window. Close Window Click on the “Show Statistics” button to display router usage statistics, as shown below. Figure 4-3. Router Statistics screen This screen shows the following statistics:.
Reference Manual for the Model RP614 v2 Web Safe Router Table 4-1. Router Statistics Fields (continued) Field Up Time Poll Interval Description The time elapsed since this port acquired the link. Specifies the intervals at which the statistics are updated in this window. Click on Stop to freeze the display. Viewing a List of Attached Devices The Attached Devices menu contains a table of all IP devices that the router has discovered on the local network.
Reference Manual for the Model RP614 v2 Web Safe Router From the Main Menu of the browser interface, under the Maintenance heading, select the Router Upgrade heading to display the menu shown below. Figure 4-5. Router Upgrade menu To upload new firmware: 1. Download and unzip the new software file from NETGEAR. 2. In the Router Upgrade menu, click the Browse button and browse to the location of the binary (.BIN) upgrade file 3. Click Upload.
Reference Manual for the Model RP614 v2 Web Safe Router From the Main Menu of the browser interface, under the Maintenance heading, select the Settings Backup heading to bring up the menu shown below. Figure 4-6. Settings Backup menu Three options are available, and are described in the following sections. Restoring and Backing Up the Configuration The Restore and Backup options in the Settings Backup menu allow you to save and retrieve a file containing your router’s configuration settings.
Reference Manual for the Model RP614 v2 Web Safe Router Erasing the Configuration It is sometimes desirable to restore the router to a known blank condition. This can be done by using the Erase function, which will restore all factory settings. After an erase, the router's password will be password, the LAN IP address will be 192.168.0.1, and the router's DHCP client will be enabled. To erase the configuration, click the Erase button.
Chapter 5 Advanced Configuration of the Router This chapter describes how to configure the advanced features of your Model RP614 v2 Web Safe Router. These features can be found under the Advanced heading in the Main Menu of the browser interface. Configuring for Port Forwarding to Local Servers Although the router causes your entire local network to appear as a single machine to the Internet, you can make a local server (for example, a web server or game server) visible and available to the Internet.
Reference Manual for the Model RP614 v2 Web Safe Router . Note: If you are unfamiliar with networking and routing, refer to Appendix B, “Networks, Routing, and Firewall Basics,” to become more familiar with the terms and procedures used in this manual. Use the Port Forwarding menu to configure the router to forward incoming protocols to computers on your local network.
Reference Manual for the Model RP614 v2 Web Safe Router Editing or Deleting a Port Forwarding Entry To edit or delete a Port Forwarding entry, follow these steps. 1. In the table, select the button next to the service name. 2. Click Edit or Delete. Local Web and FTP Server Example If a local PC with a private IP address of 192.168.0.33 acts as a Web and FTP server, configure the Ports menu to forward HTTP (port 80) and FTP (port 21) to local address 192.168.0.
Reference Manual for the Model RP614 v2 Web Safe Router 4. Type the same port number in the End Port box that you typed in the Start Port box. 5. Type the IP address of the additional computer in the Server IP Address box. 6. Click Apply. Some online games and videoconferencing applications are incompatible with NAT. The RP614 v2 router is programmed to recognize some of these applications and to work properly with them, but there are other applications that may not function well.
Reference Manual for the Model RP614 v2 Web Safe Router The WAN Setup menu, shown below lets you configure a Default DMZ Server. Figure 5-2: WAN Setup menu. To assign a computer or server to be a Default DMZ server, follow these steps: Click WAN Setup link on the Advanced section of the main menu. Type the IP address for that server. To remove the default DMZ server, replace the IP address numbers with all zeros. 3. Click Apply. 1. 2.
Reference Manual for the Model RP614 v2 Web Safe Router Setting the MTU Size The default MTU size is usually fine. The normal MTU (Maximum Transmit Unit) value for most Ethernet networks is 1500 Bytes. For some ISPs, particularly some using PPPoE, you may need to reduce the MTU. This should not be done unless you are sure it is necessary by your ISP. Any packets sent through the router that are larger than the configured MTU size will be repackaged into smaller packets to meet the MTU requirement.
Reference Manual for the Model RP614 v2 Web Safe Router Configuring LAN TCP/IP Setup Parameters The router is shipped preconfigured to use private IP addresses on the LAN side, and to act.as a DHCP server. The router’s default LAN IP configuration is: • • LAN IP addresses—192.168.0.1 Subnet mask—255.255.255.0 These addresses are part of the IETF-designated private address range for use in private networks, and should be suitable in most applications.
Reference Manual for the Model RP614 v2 Web Safe Router Note: If you change the LAN IP address of the router while connected through the browser, you will be disconnected. You must then open a new connection to the new IP address and log in again. Using the Router as a DHCP server By default, the router will function as a DHCP (Dynamic Host Configuration Protocol) server, allowing it to assign IP, DNS server, and default gateway addresses to all computers connected to the router's LAN.
Reference Manual for the Model RP614 v2 Web Safe Router Using Address Reservation When you specify a reserved IP address for a PC on the LAN, that PC will always receive the same IP address each time it access the router’s DHCP server. Reserved IP addresses should be assigned to servers that require permanent IP settings. To reserve an IP address: 1. Click the Add button. 2. In the IP Address box, type the IP address to assign to the PC or server.
Reference Manual for the Model RP614 v2 Web Safe Router The router contains a client that can connect to many popular dynamic DNS services. You can select one of these services and obtain an account with them. Then, whenever your ISP-assigned IP address changes, your router will automatically contact your dynamic DNS service provider, log in to your account, and register your new IP address. From the Main Menu of the browser interface, under Advanced, click on Dynamic DNS. To configure Dynamic DNS: 1.
Reference Manual for the Model RP614 v2 Web Safe Router From the Main Menu of the browser interface, under Advanced, click on Static Routes to view the Static Route menu, shown below. Figure 5-4. Static Route Summary Table To add or edit a Static Route: 1. Click the Add button to open the Add/Edit Menu, shown below. Figure 5-5. Static Route Entry and Edit Menu 2. Type a route name for this static route in the Route Name box under the table. (This is for identification purpose only.) 3.
Reference Manual for the Model RP614 v2 Web Safe Router 6. Type the IP Subnet Mask for this destination. If the destination is a single host, type 255.255.255.255. 7. Type the Gateway IP Address, which must be a router on the same LAN segment as the router. 8. Type a number between 1 and 15 as the Metric value. This represents the number of routers between your network and the destination. Usually, a setting of 2 or 3 works, but if this is a direct connection, set it to 1. 9.
Reference Manual for the Model RP614 v2 Web Safe Router Enabling Remote Management Access Using the Remote Management page, you can allow a user or users on the Internet to configure, upgrade and check the status of your RP614 v2 router. Note: Be sure to change the router's default configuration password to a very secure password. The ideal password should contain no dictionary words from any language, and should be a mixture of letters (both upper and lower case), numbers, and symbols.
Reference Manual for the Model RP614 v2 Web Safe Router Using Universal Plug and Play (UPnP) Universal Plug and Play (UPnP) helps devices, such as Internet appliances and computers, access the network and connect to other devices as needed. UPnP devices can automatically discover the services from other registered UPnP devices on the network. Figure 5-6. UPnP Menu From the Main Menu of the browser interface, under Advanced, click on UPnP. Set up UPnP according to the guidelines below.
Reference Manual for the Model RP614 v2 Web Safe Router Advertisement Time To Live: The time to live for the advertisement is measured in hops (steps) for each UPnP packet sent. The time to live hop count is the number of steps a broadcast packet is allowed to propagate for each UPnP advertisement before it disappears. The number of hops can range from 1 to 255. The default value for the advertisement time to live is 4 hops, which should be fine for most home networks.
Reference Manual for the Model RP614 v2 Web Safe Router 5-16 Advanced Configuration of the Router
Chapter 6 Troubleshooting This chapter gives information about troubleshooting your Model RP614 v2 Web Safe Router. After each problem description, instructions are provided to help you diagnose and solve the problem. Basic Operation After you turn on power to the router, the following sequence of events should occur: 1. When power is first applied, verify that the Power LED 2. Verify that the Test LED procedure is running. 3. After approximately 10 seconds, verify that: is on.
Reference Manual for the Model RP614 v2 Web Safe Router • Make sure that the power cord is properly connected to your router and that the power supply adapter is properly connected to a functioning power outlet. • Check that you are using the 7.5 V DC power adapter supplied by NETGEAR for this product. If the error persists, you have a hardware problem and should contact technical support.
Reference Manual for the Model RP614 v2 Web Safe Router Troubleshooting the Web Configuration Interface If you are unable to access the router’s Web Configuration interface from a PC on your local network, check the following: • Check the Ethernet connection between the PC and the router as described in the previous section. • Make sure your PC’s IP address is on the same subnet as the router. If you are using the recommended addressing scheme, your PC’s address should be in the range of 192.168.0.
Reference Manual for the Model RP614 v2 Web Safe Router Troubleshooting the ISP Connection If your router is unable to access the Internet, you should first determine whether the router is able to obtain a WAN IP address from the ISP. Unless you have been assigned a static IP address, your router must request an IP address from the ISP. You can determine whether the request was successful using the Web Configuration Manager. To check the WAN IP address: 1.
Reference Manual for the Model RP614 v2 Web Safe Router OR Configure your router to spoof your PC’s MAC address. This can be done in the Basic Settings menu. Refer to “Manually Configuring Your Internet Connection” on page 2-16. If your router can obtain an IP address, but your PC is unable to load any web pages from the Internet: • Your PC may not recognize any DNS server addresses. A DNS server is a host on the Internet that translates Internet names (such as www addresses) to numeric IP addresses.
Reference Manual for the Model RP614 v2 Web Safe Router If the path is working, you see this message: Reply from < IP address >: bytes=32 time=NN ms TTL=xxx If the path is not working, you see this message: Request timed out If the path is not functioning correctly, you could have one of the following problems: • Wrong physical connections — Make sure the LAN port LED is on. If the LED is off, follow the instructions in “LAN or WAN Port LEDs Not On” on page 6-2.
Reference Manual for the Model RP614 v2 Web Safe Router — If your ISP assigned a host name to your PC, enter that host name as the Account Name in the Basic Settings menu. — Your ISP could be rejecting the Ethernet MAC addresses of all but one of your PCs. Many broadband ISPs restrict access by only allowing traffic from the MAC address of your broadband modem, but some ISPs additionally restrict access to the MAC address of a single PC connected to that modem.
Reference Manual for the Model RP614 v2 Web Safe Router 6-8 Troubleshooting
Appendix A Technical Specifications This appendix provides technical specifications for the Model RP614 v2 Web Safe Router. Specifications for the Model RP614 v2 The table below lists the technical specifications for the Model RP614 v2.
Reference Manual for the Model RP614 v2 Web Safe Router Dimensions: 28 x 175 x 118 mm (1.1 x 6.89 x 4.65 in.) Weight: 0.3 kg (0.
Appendix B Networks, Routing, and Firewall Basics This appendix provides an overview of IP networks, routing, and firewalls. Related Publications As you read this document, you may be directed to various RFC documents for further information. An RFC is a Request For Comment (RFC) published by the Internet Engineering Task Force (IETF), an open organization that defines the architecture and operation of the Internet.
Reference Manual for the Model RP614 v2 Web Safe Router What is a Router? A router is a device that forwards traffic between networks based on network layer information in the data and on routing tables maintained by the router. In these routing tables, a router builds up a logical picture of the overall network by gathering and exchanging information with other routers in the network. Using this information, the router chooses the best path for forwarding network traffic.
Reference Manual for the Model RP614 v2 Web Safe Router The latter version is easier to remember and easier to enter into your computer. In addition, the 32 bits of the address are subdivided into two parts. The first part of the address identifies the network, and the second part identifies the host node or station on the network. The dividing point may vary depending on the address range and the application. There are five standard classes of IP addresses.
Reference Manual for the Model RP614 v2 Web Safe Router • Class C Class C addresses can have 254 hosts on a network. Class C addresses use 24 bits for the network address and eight bits for the node. They are in this range: 192.0.1.x to 223.255.254.x. • Class D Class D addresses are used for multicasts (messages sent to many hosts). Class D addresses are in this range: 224.0.0.0 to 239.255.255.255. • Class E Class E addresses are for experimental use.
Reference Manual for the Model RP614 v2 Web Safe Router As a shorter alternative to dotted-decimal notation, the netmask may also be expressed in terms of the number of ones from the left. This number is appended to the IP address, following a backward slash ( / ), as “/n.” In the example, the address could be written as 192.168.170.237/24, indicating that the netmask is 24 ones followed by 8 zeros.
Reference Manual for the Model RP614 v2 Web Safe Router Although the preceding example uses the entire third octet for a subnet address, note that you are not restricted to octet boundaries in subnetting. To create more network numbers, you need only shift some bits from the host address to the network address. For instance, to partition a Class C network number (192.68.135.0) into two, you shift one bit from the host address to the network address. The new netmask (or subnet mask) is 255.255.255.128.
Reference Manual for the Model RP614 v2 Web Safe Router The following table displays several common netmask values in both the dotted-decimal and the masklength formats. Table 6-2. Netmask Formats Dotted-Decimal Masklength 255.0.0.0 /8 255.255.0.0 /16 255.255.255.0 /24 255.255.255.128 /25 255.255.255.192 /26 255.255.255.224 /27 255.255.255.240 /28 255.255.255.248 /29 255.255.255.252 /30 255.255.255.254 /31 255.255.255.
Reference Manual for the Model RP614 v2 Web Safe Router NETGEAR recommends that you choose your private network number from this range. The DHCP server of the RP614 v2 router is preconfigured to automatically assign private addresses. Regardless of your particular situation, do not create an arbitrary IP address; always follow the guidelines explained here.
Reference Manual for the Model RP614 v2 Web Safe Router Private IP addresses assigned by user IP addresses assigned by ISP 192.168.0.2 192.168.0.3 192.168.0.1 172.21.15.105 Internet 192.168.0.4 192.168.0.5 Figure 6-3: Single IP Address Operation Using NAT This scheme offers the additional benefit of firewall-like protection because the internal LAN addresses are not available to the Internet through the translated connection. All incoming inquiries are filtered out by the router.
Reference Manual for the Model RP614 v2 Web Safe Router If a device sends data to another station on the network and the destination MAC address is not yet recorded, ARP is used. An ARP request is broadcast onto the network. All stations on the network receive and read the request. The destination IP address for the chosen station is included as part of the message so that only the station with this IP address responds to the ARP request. All other stations discard the request.
Reference Manual for the Model RP614 v2 Web Safe Router IP Configuration by DHCP When an IP-based local area network is installed, each PC must be configured with an IP address. If the PCs need to access the Internet, they should also be configured with a gateway address and one or more DNS server addresses. As an alternative to manual configuration, there is a method by which each PC on the network can automatically obtain this configuration information.
Reference Manual for the Model RP614 v2 Web Safe Router Stateful Packet Inspection Unlike simple Internet sharing routers, a firewall uses a process called stateful packet inspection to ensure secure firewall filtering to protect your network from attacks and intrusions. Since user-level applications such as FTP and Web browsers can create complex patterns of network traffic, it is necessary for the firewall to analyze groups of network connection states.
Reference Manual for the Model RP614 v2 Web Safe Router Ethernet Cabling Although Ethernet networks originally used thick or thin coaxial cable, most installations currently use unshielded twisted pair (UTP) cabling. The UTP cable contains eight conductors, arranged in four twisted pairs, and terminated with an RJ45 type connector. A normal straight-through UTP Ethernet cable follows the EIA568B standard wiring as described in Table 6-1. Table 6-1.
Reference Manual for the Model RP614 v2 Web Safe Router The RP614 v2 router incorporates Auto UplinkTM technology (also called MDI/MDIX). Each LOCAL Ethernet port will automatically sense whether the Ethernet cable plugged into the port should have a normal connection (e.g. connecting to a PC) or an uplink connection (e.g. connecting to a router, switch, or hub). That port will then configure itself to the correct configuration.
Appendix C Preparing Your Network This appendix describes how to prepare your network to connect to the Internet through the Model RP614 v2 Web Safe Router and how to verify the readiness of broadband Internet service from an Internet service provider (ISP).
Reference Manual for the Model RP614 v2 Web Safe Router • All versions of UNIX or Linux include TCP/IP components. Follow the instructions provided with your operating system or networking software to install TCP/IP on your computer. In your IP network, each PC and the firewall must be assigned a unique IP addresses. Each PC must also have certain other IP configuration information such as a subnet mask (netmask), a domain name server (DNS) address, and a default gateway address.
Reference Manual for the Model RP614 v2 Web Safe Router You must have an Ethernet adapter, the TCP/IP protocol, and Client for Microsoft Networks. Note: It is not necessary to remove any other network components shown in the Network window in order to install the adapter, TCP/IP, or Client for Microsoft Networks. If you need to install a new adapter, follow these steps: a. Click the Add button. b. Select Adapter, and then click Add. c.
Reference Manual for the Model RP614 v2 Web Safe Router If you need Client for Microsoft Networks: 3. a. Click the Add button. b. Select Client, and then click Add. c. Select Microsoft. d. Select Client for Microsoft Networks, and then click OK. Restart your PC for the changes to take effect.
Reference Manual for the Model RP614 v2 Web Safe Router • • Verify the following settings as shown: – Client for Microsoft Network exists – Ethernet adapter is present – TCP/IP is present – Primary Network Logon is set to Windows logon Click on the Properties button. The following TCP/IP Properties window will display.
Reference Manual for the Model RP614 v2 Web Safe Router • By default, the IP Address tab is open on this window. • Verify the following: Obtain an IP address automatically is selected. If not selected, click in the radio button to the left of it to select it. This setting is required to enable the DHCP server to automatically assign an IP address. • Click OK to continue. • Restart the PC. Repeat these steps for each PC with this version of Windows on your network.
Reference Manual for the Model RP614 v2 Web Safe Router 2. Type winipcfg, and then click OK. The IP Configuration window opens, which lists (among other things), your IP address, subnet mask, and default gateway. 3. From the drop-down box, select your Ethernet adapter. The window is updated to show your settings, which should match the values below if you are using the default TCP/IP settings that NETGEAR recommends for connecting through a router or gateway: • The IP address is between 192.168.0.
Reference Manual for the Model RP614 v2 Web Safe Router DHCP Configuration of TCP/IP in Windows XP, 2000, or NT4 You will find there are many similarities in the procedures for different Windows systems when using DHCP to configure TCP/IP. The following steps will walk you through the configuration process for each of these versions of Windows. DHCP Configuration of TCP/IP in Windows XP Open your Network Connections window. • Select Network from the Windows XP new Start Menu.
Reference Manual for the Model RP614 v2 Web Safe Router • Now you should be at the Local Area Network Connection Status window. This box displays the connection status, duration, speed, and activity statistics. Administrator logon access rights are needed to use this window. • Click the Properties button to view details about the connection. • The TCP/IP details are presented on the Support tab page. • Select Internet Protocol, and click the Properties button to view the configuration information.
Reference Manual for the Model RP614 v2 Web Safe Router • Verify that the Obtain an IP address automatically radio button is selected. • Verify that Obtain DNS server address automatically radio button is selected. • Click the OK button. This completes the DHCP configuration of TCP/IP in Windows XP. Repeat these steps for each PC with this version of Windows on your network.
Reference Manual for the Model RP614 v2 Web Safe Router • Click on the My Network Places icon on the Windows desktop. This will bring up a window called Network and Dial-up Connections. • Right click on Local Area Connection and select Properties. • The Local Area Connection Properties dialog box appears. • Verify that you have the correct Ethernet card selected in the Connect using: box.
Reference Manual for the Model RP614 v2 Web Safe Router • • With Internet Protocol (TCP/IP) selected, click on Properties button to open the Internet Protocol (TCP/IP) Properties dialogue box. • Verify that – Obtain an IP address automatically is selected. – Obtain DNS server address automatically is selected. • Click OK to return to Local Area Connection Properties. • Click OK again to complete the configuration process for Windows 2000. • Restart the PC.
Reference Manual for the Model RP614 v2 Web Safe Router DHCP Configuration of TCP/IP in Windows NT4 Once you have installed the network card, you need to configure the TCP/IP environment for Windows NT 4.0. Follow this procedure to configure TCP/IP with DHCP in Windows NT 4.0. • Choose Settings from the Start Menu, and then select Control Panel. This will display Control Panel window. • Double-click the Network icon in the Control Panel window. The Network panel will display.
Reference Manual for the Model RP614 v2 Web Safe Router • Highlight the TCP/IP Protocol in the Network Protocols box, and click on the Properties button. • The TCP/IP Properties dialog box now displays. • Click the IP Address tab. • Select the radio button marked Obtain an IP address from a DHCP server. • Click OK. This completes the configuration of TCP/IP in Windows NT. • Restart the PC. Repeat these steps for each PC with this version of Windows on your network.
Reference Manual for the Model RP614 v2 Web Safe Router 1. On the Windows taskbar, click the Start button, and then click Run. The Run window opens. 2. Type cmd and then click OK. A command window opens 3. Type ipconfig /all Your IP Configuration information will be listed, and should match the values below if you are using the default TCP/IP settings that NETGEAR recommends for connecting through a router or gateway: 4. • The IP address is between 192.168.0.2 and 192.168.0.
Reference Manual for the Model RP614 v2 Web Safe Router The TCP/IP Control Panel opens: 2. From the “Connect via” box, select your Macintosh’s Ethernet interface. 3. From the “Configure” box, select Using DHCP Server. You can leave the DHCP Client ID box empty. 4. Close the TCP/IP Control Panel. 5. Repeat this for each Macintosh on your network. MacOS X 1. From the Apple menu, choose System Preferences, then Network. 2. If not already selected, select Built-in Ethernet in the Configure list.
Reference Manual for the Model RP614 v2 Web Safe Router Verifying TCP/IP Properties for Macintosh Computers After your Macintosh is configured and has rebooted, you can check the TCP/IP configuration by returning to the TCP/IP Control Panel. From the Apple menu, select Control Panels, then TCP/IP. The panel is updated to show your settings, which should match the values below if you are using the default TCP/IP settings that NETGEAR recommends: • The IP Address is between 192.168.0.2 and 192.168.0.
Reference Manual for the Model RP614 v2 Web Safe Router Verifying the Readiness of Your Internet Account For broadband access to the Internet, you need to contract with an Internet service provider (ISP) for a single-user Internet access account using a cable modem or DSL modem. This modem must be a separate physical box (not a card) and must provide an Ethernet port intended for connection to a Network Interface Card (NIC) in a computer. Your firewall does not support a USB-connected broadband modem.
Reference Manual for the Model RP614 v2 Web Safe Router • An IP address and subnet mask • A gateway IP address, which is the address of the ISP’s router • One or more domain name server (DNS) IP addresses • Host name and domain suffix For example, your account’s full server names may look like this: mail.xxx.yyy.com In this example, the domain suffix is xxx.yyy.com. If any of these items are dynamically supplied by the ISP, your firewall automatically acquires them.
Reference Manual for the Model RP614 v2 Web Safe Router If an IP address appears under Installed Gateways, write down the address. This is the ISP’s gateway address. Select the address and then click Remove to remove the gateway address. 6. Select the DNS Configuration tab. If any DNS server addresses are shown, write down the addresses. If any information appears in the Host or Domain information box, write it down. Click Disable DNS. 7.
Reference Manual for the Model RP614 v2 Web Safe Router Restarting the Network Once you’ve set up your computers to work with the firewall, you must reset the network for the devices to be able to communicate correctly. Restart any computer that is connected to the firewall. After configuring all of your computers for TCP/IP networking and restarting them, and connecting them to the local network of your RP614 v2 router, you are ready to access and configure the firewall.
Reference Manual for the Model RP614 v2 Web Safe Router C-22 Preparing Your Network
Glossary 10BASE-T IEEE 802.3 specification for 10 Mbps Ethernet over twisted pair wiring. 100BASE-Tx IEEE 802.3 specification for 100 Mbps Ethernet over twisted pair wiring. 802.11b IEEE specification for wireless networking at 11 Mbps using direct-sequence spread-spectrum (DSSS) technology and operating in the unlicensed radio spectrum at 2.5GHz. Denial of Service attack DoS. A hacker attack designed to prevent your computer or network from operating or communicating.
Reference Manual for the Model RP614 v2 Web Safe Router 2 IP Address A four-byte number uniquely defining each host on the Internet. Ranges of addresses are assigned by Internic, an organization formed for this purpose. Usually written in dotted-decimal notation with periods separating the bytes (for example, 134.177.244.57). IPSec Internet Protocol Security. IPSec is a series of guidelines for securing private information transmitted over public networks.
Reference Manual for the Model RP614 v2 Web Safe Router Network Address Translation A technique by which several hosts share a single IP address for access to the Internet. packet A block of information sent over a network. A packet typically contains a source and destination network address, some protocol and length information, a block of data, and a checksum. PPP See Point-to-Point Protocol. PPP over Ethernet PPPoE.
Reference Manual for the Model RP614 v2 Web Safe Router 4 WAN See wide area network. wide area network WAN. A long distance link used to extend or connect remotely located local area networks. The Internet is a large WAN. Windows Internet Naming Service WINS. Windows Internet Naming Service is a server process for resolving Windows-based computer names to IP addresses. If a remote network contains a WINS server, your Windows PCs can gather information from that WINS server about its local hosts.
Index Numerics 100BASE-TX 2-2 10BASE-T 2-2 Daylight Savings Time 6-7 daylight savings time 3-10 Default DMZ Server 5-4 Denial of Service (DoS) protection 1-2 A Account Name 2-14, 2-17, 4-2 ActiveX 3-7 Address Resolution Protocol B-9 Authentication Server 2-13 Auto Uplink 1-3 B backup configuration 4-7 denial of service attack B-12 DHCP 1-3, B-11 DHCP Client ID C-16 DMZ 1-2, 5-2, 5-5 DMZ Server 5-4 DNS Proxy 1-3 DNS server 2-13, 2-14, 2-17, C-20 DNS, dynamic 5-9 domain C-20 Domain Name 2-14, 2-17 domain
G gateway address C-20 description 1-5 troubleshooting 6-2 log sending 3-9 H log entries 3-7 Half Life 5-3 Login 2-13 host name 2-14, 2-17 M I IANA contacting B-2 IETF B-1 Web site address B-8 installation 1-4 Internet account address information C-18 establishing C-18 MAC address 6-7, B-9 spoofing 2-13, 2-17, 6-5 Macintosh C-19 configuring for IP networking C-15 DHCP Client ID C-16 Obtaining ISP Configuration Information C-20 masquerading C-18 metric 5-12 Internet Service Provider 2-1 N IP addre
PPPoE 1-3, C-18 stateful packet inspection 1-2, B-12 Primary DNS Server 2-9, 2-14, 2-15, 2-17 Static Routes 5-9 protocols Address Resolution B-9 DHCP 1-3, B-11 Routing Information 1-3, B-2 support 1-1 subnet addressing B-5 publications, related B-1 TCP/IP configuring C-1 network, troubleshooting 6-5 Q subnet mask B-6, C-19, C-20 T Quake 5-3 TCP/IP properties verifying for Macintosh C-17 verifying for Windows C-6, C-14 R time of day 6-7 range, port forwarding 5-2 time zone 3-10 rear panel 1-