myGuard 7500GL 802.11g Security ADSL Router User’s Manual Version Release 1.
Table of Contents CHAPTER 1: INTRODUCTION .......................... 1 INTRODUCTION TO YOUR MYGUARD 7500GL.......................................................................... 1 FEATURES ........................................................................................................................... 1 MYGUARD 7500GL APPLICATION ......................................................................................... 4 CHAPTER 2: INSTALLING THE ROUTER .......
Permanent Table ..............................................................................................22 PPTP Status .....................................................................................................23 IPSec Status.....................................................................................................24 L2TP Status......................................................................................................25 Email Status .....................................
Virtual Server (“Port Forwarding”)...................................................................106 Advanced .......................................................................................................109 Static Routing..................................................................................................109 Dynamic DNS .................................................................................................110 Check Emails .................................................
myGuard 7500GL 802.11g Security ADSL Router Chapter 1: Introduction Introduction to your myGuard 7500GL In light of emerging threats of Viruses and growing demands for URL filtering from home users, Billion designs myGuardTM 7500GL 802.11g ADSL Security Router, with central control and central guarding, to help identify vulnerabilities and protect PCs and networks while constant connected to the Internet.
myGuard 7500GL 802.11g Security ADSL Router Fast Ethernet Switch A 4-port 10/100Mbps fast Ethernet switch is built in with automatic switching between MDI and MDI-X for 10Base-T and 100Base-TX ports. An Ethernet straight or cross-over cable can be used directly for auto detection.
myGuard 7500GL 802.11g Security ADSL Router Allows user to make a tunnel with a remote site directly to secure the data transmission among the connection. User can use embedded PPTP and L2TP client/server, IKE and IPSec which are supported by this router to make a VPN connection or users can run the PPTP client in PC and the router already provides IPSec and PPTP pass through function to establish a VPN connection if the user likes to run the PPTP client in his local computer.
myGuard 7500GL 802.11g Security ADSL Router myGuard 7500GL Application myGuard 7500GL 802.11g Security ADSL Router Figure 1.1 Application Diagram of myGuard 7500GL 802.
myGuard 7500GL 802.11g Security ADSL Router Chapter 2: Installing the Router Important note for using the myGuard 7500GL Do not use the myGuard 7500GL in high humidity or high temperatures. Do not use the same power source for the myGuard 7500GL as other equipment. Warning Do not open or repair the case yourself. If the myGuard 7500GL is too hot, turn off the power immediately and have it repaired at a qualified service center. Avoid using this product and all accessories outdoors.
myGuard 7500GL 802.11g Security ADSL Router The Front LEDs LED Meaning 1 PWR Lit when power is ON. 2 SYS Lit when the system is ready. 3 LAN port 1 Lit when connected to an Ethernet device. Green for 100Mbps; Orange for 10Mbps Blinking when data is transmitted/received. 4 LAN port 2 Lit when connected to an Ethernet device. Green for 100Mbps; Orange for 10Mbps Blinking when data is transmitted/received. 5 LAN port 3 Lit when connected to an Ethernet device.
myGuard 7500GL 802.11g Security ADSL Router The Rear Ports 2 4 3 5 1 6 Port 1 Meaning LINE Connect the supplied RJ-11 (“telephone”) cable to this port when connecting to the ADSL/telephone network. CONSOLE Connect a PS2/RS-232 cable to this port when connecting to a PC’s RS-232 port (9-pin serial port). 2 3 LAN 1X Connect a UTP Ethernet cable (Cat-5 or Cat-5e) to one of the 4X four LAN ports when connecting to a PC or an office/home (RJ-45 connector) network of 10Mbps or 100Mbps.
myGuard 7500GL 802.11g Security ADSL Router Cabling One of the most common causes of problems is bad cabling or ADSL line(s). Make sure that all connected devices are turned on. On the front of the product is a bank of LEDs. Verify that the LAN Link and ADSL line LEDs are lit. If they are not, verify that you are using the proper cables. Ensure that all other devices connected to the same telephone line as your Billion router (e.g.
myGuard 7500GL 802.11g Security ADSL Router Chapter 3: Basic Installation The router can be configured with your web browser. A web browser is included as a standard application in the following operating systems: Linux, Mac OS, Windows 98/NT/2000/XP/Me, etc. The product provides a very easy and user-friendly interface for configuration.
myGuard 7500GL 802.11g Security ADSL Router Configuring PCs in Windows For Windows XP 1. Go to Start / Control Panel (in Classic View). In the Control Panel, double-click Network Connections. 2. Double-click Local Area Connection. (See Figure 3.1) 3. In the LAN Area Connection Status window, click Properties. (See Figure 3.2) 4. Select Internet Protocol Properties. (See Figure 3.3) (TCP/IP) and Figure 3.1: LAN Area Connection click 5.
myGuard 7500GL 802.11g Security ADSL Router For Windows 2000 1. Go to Start / Settings / Control Panel. In the Control Panel, double-click Network and Dial-up Connections. 2. Double-click Local Area (“LAN”) Connection. (See Figure 3.5) 3. In the LAN Area Connection Status window, click Properties. (See Figure 3.6) 4. Select Internet Protocol Properties. (See Figure 3.7) (TCP/IP) and Figure 3.5: LAN Area Connection click Figure 3.6: LAN Connection Status 5.
myGuard 7500GL 802.11g Security ADSL Router For Windows 98 / ME 1. Go to Start / Settings / Control Panel. In the Control Panel, double-click Network and choose the Configuration tab. 2. Select TCP / IP -> NE2000 Compatible, or the name of any Network Interface Card (NIC) in your PC. (See Figure 3.9) 3. Click Properties. Figure 3.9: TCP / IP 4. Select the IP Address tab. In this page, click the Obtain an IP address automatically radio button. (See Figure 3.10) Figure 3.10: IP Address 5.
myGuard 7500GL 802.11g Security ADSL Router For Windows NT4.0 1. Go to Start / Settings / Control Panel. In the Control Panel, double-click Network and choose the Protocols tab. 2. Select TCP/IP Protocol and click Properties. (See Figure 3.12) Figure 3.12: TCP / IP 3. Select the Obtain an IP address from a DHCP server radio button and click OK. (See Figure 3.13) Figure 3.
myGuard 7500GL 802.11g Security ADSL Router Activating Trend Micro Security Services Before you can take full advantage of Trend Micro Security Services, you need to activate them. Available Services Security Scan Before Activation After Activation 60-day evaluation version Unlimited use. Not available. 60-day evaluation version with option to purchase for one-year use.
myGuard 7500GL 802.11g Security ADSL Router Factory Default Settings Before configuring your, you need to know the following default settings. Web Interface: Username: admin Password: admin LAN Device IP Settings: IP Address: 192.168.1.254 Subnet Mask: 255.255.255.0 ISP setting in WAN site: PPPoE DHCP server: DHCP server is enabled. Start IP Address: 192.168.1.100 IP pool counts: 100 Username and Password The default username and password are “admin” and “admin” respectively.
myGuard 7500GL 802.11g Security ADSL Router Information from your ISP Before configuring this device, you have to check with your ISP (Internet Service Provider) what kind of service is provided such as PPPoE, PPPoA, RFC1483, or IPoA. Gather the information as illustrated in the following table and keep it for reference.
myGuard 7500GL 802.11g Security ADSL Router Configuring with your Web Browser Open your web browser, enter the IP address of your router, which by default is 192.168.1.254, and click “Go”, a user name and password window prompt will appear. The default username and password are “admin” and “admin”. (See Figure 3.14) Figure 3.
myGuard 7500GL 802.
myGuard 7500GL 802.11g Security ADSL Router Status ARP Table This section displays the router’s ARP (Address Resolution Protocol) Table, which shows the mapping of Internet (IP) addresses to Ethernet (MAC) addresses. This is useful as a quick way of determining the MAC address of the network interface of your PCs to use with the router’s Firewall – MAC Address Filter function. See the Firewall section of this manual for more information on this feature.
myGuard 7500GL 802.11g Security ADSL Router Wireless Association IP Address: It is IP address of wireless client that joins this network. MAC: The MAC address of wireless client.
myGuard 7500GL 802.11g Security ADSL Router Routing Table Routing Table: Valid: It indicates a successful routing status. Destination: The IP address of the destination network. Netmask: The destination netmask address. Gateway/Interface: The IP address of the gateway or existing interface that this route will use. Cost: The number of hops counted as the cost of the route. RIP Routing Table: Destination: The IP address of the destination network. Netmask: The destination netmask address.
myGuard 7500GL 802.11g Security ADSL Router DHCP Table Leased: The DHCP assigned IP addresses information. IP Address: A list of IP addresses of devices on your LAN (Local Area Network). Expired: The expired IP addresses information. Permanent: The fixed host mapping information Leased Table IP Address: The IP address that assigned to client. Client UID/hw addr: The MAC address of client. Client Host Name: The Host Name (Computer Name) of client. Expiry: The current lease time of client.
myGuard 7500GL 802.11g Security ADSL Router PPTP Status This shows details of your configured PPTP VPN Connections. Name: The name you assigned to the particular PPTP connection in your VPN configuration. Type: The type of connection (dial-in/dial-out). Enable: Whether the connection is currently enabled. Active: Whether the connection is currently active. Tunnel Connected: Whether the VPN Tunnel is currently connected. Call Connected: If the Call for this VPN entry is currently connected.
myGuard 7500GL 802.11g Security ADSL Router IPSec Status This shows details of your configured IPSec VPN Connections. Name: The name you assigned to the particular VPN entry. Active: Whether the VPN Connection is currently Active. Connection State: Whether the VPN is Connected or Disconnected. Statistics: Statistics for this VPN Connection. Local Subnet: The local IP Address or Subnet used. Remote Subnet: The Subnet of the remote site. Remote Gateway: The Remote Gateway IP address.
myGuard 7500GL 802.11g Security ADSL Router L2TP Status This shows details of your configured L2TP VPN Connections. Name: The name you assigned to the particular L2TP connection in your VPN configuration. Type: The type of connection (dial-in/dial-out). Enable: Whether the connection is currently enabled. Active: Whether the connection is currently active. Tunnel Connected: Whether the VPN Tunnel is currently connected. Call Connected: If the Call for this VPN entry is currently connected.
myGuard 7500GL 802.11g Security ADSL Router Event Log This page displays the router’s Event Log entries. Major events are logged to this window, such as when the router’s ADSL connection is disconnected, as well as Firewall events when you have enabled Intrusion or Blocking Logging in the Configuration – Firewall section of the interface. Please see the Firewall section of this manual for more details on how to enable Firewall logging. Error Logging Any errors encountered by the router (e.g.
myGuard 7500GL 802.11g Security ADSL Router NAT Sessions This section lists all current NAT sessions between interface of types external (WAN) and internal (LAN). UPnP Portmap The section lists all port-mapping established using UPnP (Universal Plug and Play). Please see the Advanced section of this manual for more details on UPnP and the router’s UPnP configuration options.
myGuard 7500GL 802.11g Security ADSL Router Quick Start For detailed instructions on configuring your WAN settings, please see the WAN section of this manual. Usually, the only details you will need for the Quick Start wizard to get you online are your login (often in the form of username@ispname), your password and the encapsulation type.
myGuard 7500GL 802.11g Security ADSL Router Click Start to begin scanning for encapsulation types offered by your ISP. If the scan is successful you will then be presented with a list of supported options: Select the desired option from the list and click Apply to return to the Quick Start interface to continue configuring your ISP connection. Please note that the contents of this list will vary, depending on what is supported by your ISP.
myGuard 7500GL 802.11g Security ADSL Router Configuration When you click this item, you get following sub-items to configure the ADSL router. LAN, WAN, System, Firewall, VPN, QoS, Virtual Server and Advanced These functions are described below in the following sections. LAN (Local Area Network) There are four items within the LAN section: Ethernet, Wireless, Wireless Security, Port Setting and DHCP Server.
myGuard 7500GL 802.11g Security ADSL Router Wireless WLAN Service: Default setting is set to Enable. Mode: 802.11b + g (Mixed mode), 802.11b and 802.11g. The factory default is 802.11b + g. ESSID: Enter the unique ID given to the Access Point (AP), which is already built-in to the router’s wireless interface. To connect to this device, your wireless clients must have the same ESSID as the device.
myGuard 7500GL 802.11g Security ADSL Router Wireless Security You can disable or enable with WPA or WEP for protecting wireless network. The default mode of wireless security is disabled. WPA Pre-Shared Key WPA Algorithms: TKIP (Temporal Key Integrity Protocol) utilizes a stronger encryption method and incorporates Message Integrity Code (MIC) to provide protection against hackers. WPA Shared Key: The key for network authentication.
myGuard 7500GL 802.11g Security ADSL Router WEP WEP Encryption: To prevent unauthorized wireless stations from accessing data transmitted over the network, the router offers highly secure data encryption, known as WEP. If you require high security for transmissions, there are two alternatives to select from: WEP 64 and WEP 128. WEP 128 will offer increased security over WEP 64.
myGuard 7500GL 802.11g Security ADSL Router Port Setting This section allows you to configure the settings for the router’s Ethernet ports to solve some of the compatibility problems that may be encountered while connecting to the Internet, as well allowing users to tweak the performance of their network. Port # Connection Type: Five options to choose from: Auto, 10M half-duplex, 10M fullduplex, 100M half-duplex or 100M full-duplex.
myGuard 7500GL 802.11g Security ADSL Router DHCP Server You can disable or enable the DHCP (Dynamic Host Configuration Protocol) server or enable the router’s DHCP relay functions. The DHCP protocol allows your router to dynamically assign IP addresses to PCs on your network if they are configured to obtain IP addresses automatically. To disable the router’s DHCP Server, check Disabled and click Next, then click Apply.
myGuard 7500GL 802.11g Security ADSL Router If you check DHCP Relay Agent and click Next, then you will have to enter the IP address of the DHCP server which will assign an IP address back to the DHCP client in the LAN. Use this function only if advised to do so by your network administrator or ISP. Click Apply to enable this function.
myGuard 7500GL 802.11g Security ADSL Router WAN (Wide Area Network) WAN refers to your Wide Area Network connection, i.e. your router’s connection to your ISP and the Internet. There are two items within the WAN section: ISP, DNS and ADSL. ISP The factory default is PPPoE. If your ISP uses this access protocol, click Edit to input other parameters as below. If your ISP does not use PPPoE, you can change the default WAN connection entry by clicking Change.
myGuard 7500GL 802.11g Security ADSL Router RFC 1483 Routed Connections Description: Your description of this connection. VPI and VCI: Enter the information provided by your ISP. ATM Class: The Quality of Service for ATM layer. NAT: The NAT (Network Address Translation) feature allows multiple users to access the Internet through a single IP account, sharing the single IP address. If users on your LAN have public IP addresses and can access the Internet directly, the NAT function can be disabled.
myGuard 7500GL 802.11g Security ADSL Router PPPoE Connections Description: A user-definable name for this connection. VPI/VCI: Enter the information provided by your ISP. ATM Class: The Quality of Service for ATM layer. NAT: The NAT (Network Address Translation) feature allows multiple users to access the Internet through a single ISP account, sharing a single IP address. If users on your LAN have public IP addresses and can access the Internet directly, the NAT function can be disabled.
myGuard 7500GL 802.11g Security ADSL Router DHCP client function, and specify the IP address manually. The setting of this item is specified by your ISP. Authentication Protocol: Default is Chap(Auto). Your ISP will advise you whether to use Chap or Pap. Connection: Always on: If you want the router to establish a PPPoE session when starting up and to automatically re-establish the PPPoE session when disconnected by the ISP.
myGuard 7500GL 802.11g Security ADSL Router Give DNSto Relay: Controls whether the PPP Internet Protocol Control Protocol (IPCP) can request the DNS server IP address for a remote PPP peer. Once IPCP has discovered the DNS server IP address, it automatically gives the address to the local DNS relay so that a connection can be established. Give DNSto Client: Controls whether the PPP Internet Protocol Control Protocol (IPCP) can request a DNS server IP address for a remote PPP peer.
myGuard 7500GL 802.11g Security ADSL Router RFC 1483 Bridged Connections VPI and VCI: Enter the information provided by your ISP. ATM Class: The Quality of Service for ATM layer. Encapsulation method: Select the encapsulation format, this is provided by your ISP. Ether Filter Type: Specify the type of ethernet filtering performed by the named bridge interface. All Allows all types of ethernet packets through the port. Ip Allows only IP/ARP types of ethernet packets through the port.
myGuard 7500GL 802.11g Security ADSL Router PPPoA Routed Connections Description: User-definable name for the connection. VPI/VCI: Enter the information provided by your ISP. ATM Class: The Quality of Service for ATM layer. NAT: The NAT (Network Address Translation) feature allows multiple users to access the Internet through a single IP account, sharing a single IP address. If users on your LAN have public IP addresses and can access the Internet directly, the NAT function can be disabled.
myGuard 7500GL 802.11g Security ADSL Router Connection: Always on: If you want the router to establish a PPPoA session when starting up and to automatically re-establish the PPPoA session when disconnected by the ISP. Connect to Demand: If you want to establish a PPPoA session only when there is a packet requesting access to the Internet (i.e. when a program on your computer attempts to access the Internet).
myGuard 7500GL 802.11g Security ADSL Router Give DNSto Client: Controls whether the PPP Internet Protocol Control Protocol (IPCP) can request a DNS server IP address for a remote PPP peer. Once IPCP has discovered the DNS server IP address, it automatically gives the address to the local DNS client so that a connection can be established. Give DNSto DHCP Server: Similar to the above, but gives the DNS server address to the DHCP server.
myGuard 7500GL 802.11g Security ADSL Router IPoA Routed Connections Description: User-definable name for the connection. VPI/VCI: Enter the information provided by your ISP. ATM Class: The Quality of Service for ATM layer. NAT: The NAT (Network Address Translation) feature allows multiple users to access the Internet through a single IP account, sharing a single IP address. If users on your LAN have public IP addresses and can access the Internet directly, the NAT function can be disabled.
myGuard 7500GL 802.11g Security ADSL Router DNS A Domain Name System (DNS) contains a mapping table for domain name and IP addresses. On the Internet, every host has a unique and user-friendly name (domain name) such as www.billion.com and an IP address. An IP address is a 32-bit number in the form of xxx.xxx.xxx.xxx, for example 192.168.1.254.
myGuard 7500GL 802.11g Security ADSL Router ADSL Connect Mode: The default is Multimode; it will detect the ADSL line code, G.dmt, G.lite, and T1.413 automatically. But in some area, it cannot detect the ADSL line code well. At this time, please adjust the ADSL line code to G.dmt or T1.413 first. If it still fails, please try the other values such as ALCTL, ADI, etc. Activate Line: Aborting (false) your ADSL line and making it active (true) again for taking effect with setting of Connect Mode.
myGuard 7500GL 802.11g Security ADSL Router System There are six items within the System section: Time Zone, Remote Access, Firmware Upgrade, Backup/Restore, Restart and User Management. Time Zone The router does not have a real time clock on board; instead, it uses the Simple Network Time Protocol (SNTP) to get the current time from an SNTP server outside your network. Choose your local time zone, click Enable and click the Apply button.
myGuard 7500GL 802.11g Security ADSL Router Remote Access To temporarily permit remote administration of the router (i.e. from outside your LAN), select a time period the router will permit remote access for and click Enable. You may change other configuration options for the web administration interface using Device Management options in the Advanced section of the GUI. If you wish to permanently enable remote access, choose a time period of 0 minutes.
myGuard 7500GL 802.11g Security ADSL Router Firmware Upgrade Your router’s “firmware” is the software that allows it to operate and provides all its functionality. Think of your router as a dedicated computer, and the firmware as the software it runs. Over time this software may be improved and modified, and your Billion router allows you to upgrade the software it runs to take advantage of these changes.
myGuard 7500GL 802.11g Security ADSL Router Backup / Restore These functions allow you to save and backup your router’s current settings to a file on your PC, or to restore a previously saved backup. This is useful if you wish to experiment with different settings, knowing that you have a backup handy in the case of any mistakes. It is advisable to backup your router’s settings before making any significant changes to your router’s configuration.
myGuard 7500GL 802.11g Security ADSL Router Restart Router Click Restart with option Current Settings to reboot your router (and restore your last saved configuration). If you wish to restart the router using the factory default settings (for example, after a firmware upgrade or if you have saved an incorrect configuration), select Factory Default Settings to reset to factory default settings.
myGuard 7500GL 802.11g Security ADSL Router User Management In order to prevent unauthorized access to your router’s configuration interface, it requires all users to login with a password. You can set up multiple user accounts, each with their own password. You are able to Edit existing users and Create new users who are able to access the device’s configuration interface.
myGuard 7500GL 802.11g Security ADSL Router Firewall and Access Control Your router includes a full SPI (Stateful Packet Inspection) firewall for controlling Internet access from your LAN, as well as helping to prevent attacks from hackers. In addition to this, when using NAT (Network Address Translation.
myGuard 7500GL 802.11g Security ADSL Router Firewall Security and Policy (General Settings): Outbound direction of Packet Filter rules to prevent unauthorized computers or applications accessing the Internet. MAC Filter rules: To prevent unauthorized computers accessing the Internet. URL Filter: To block PCs on your local network from unwanted websites. You can find six items under the Firewall section: General Settings, Packet Filter, Intrusion Detection, MAC Address Filter, URL Filter and Firewall Log.
myGuard 7500GL 802.11g Security ADSL Router Any remote user who is attempting to perform this action may result in blocking all the accesses to configure and manage of the device from the Internet.
myGuard 7500GL 802.11g Security ADSL Router Port Filters The pre-defined port filter rules for High, Medium and Low security levels are listed. See Table 1.
myGuard 7500GL 802.11g Security ADSL Router Address Filters Address Filters are used to block traffic to/from particular IP addresses. They can be used to block IP addresses either on the Internet or on your local network. There are no predefined address filter rules; you can add the filter rules to meet your requirements. There are two kinds of address filters, one is inbound, and the other is outbound.
myGuard 7500GL 802.11g Security ADSL Router Example: Configuring your firewall to allow for a publicly accessible web server on your LAN The pre-defined port filter rule for HTTP (TCP port 80) is the same no matter whether the firewall is set to a high, medium or low security level. To setup a web server located on the local network when the firewall is enabled, you have to configure the Port Filters setting for HTTP.
myGuard 7500GL 802.11g Security ADSL Router 2. Click Port Filters. You will then be presented with the pre-defined port filter rules screen (in this case for the low security level), shown below: Click Delete 3. Click Delete to delete the existing HTTP rule. 4. Click Add TCP Filter. Click Add TCP Filter 5. Input the port number (80) and set both Inbound & Outbound to Allow. Input HTTP port number Select “Allow” 6.
myGuard 7500GL 802.11g Security ADSL Router HTTP inbound & outbound application 7. Configure your Virtual Server (“port forwarding”) settings so that incoming HTTP requests on port 80 will be forwarded to the PC running your web server: To enable the HTTP service in Virtual Server settings, input the web server PC’s IP address. Tip: If you wish to setup permanent remote management of your router, you may enter the router’s IP instead.
myGuard 7500GL 802.11g Security ADSL Router Intrusion Detection The router’s Intrusion Detection System (IDS) is used to detect hacker attacks and intrusion attempts from the Internet. If the IDS function of the firewall is enabled, inbound packets are filtered and blocked depending on whether they are detected as possible hacker attacks, intrusion attempts or other connections that the router determines to be suspicious.
myGuard 7500GL 802.11g Security ADSL Router Max PING Count: This is a threshold value to decide whether an ICMP Echo Storm is occurring or not. Default value is 15 ICMP Echo Requests (PING) per second. Max ICMP Count: This is a threshold to decide whether an ICMP flood is occurring or not. Default value is 100 ICMP packets per seconds except ICMP Echo Requests (PING). For SYN Flood, ICMP Echo Storm and ICMP flood, IDS will just warn the user in the Event Log. It cannot protect against such attacks.
myGuard 7500GL 802.11g Security ADSL Router MAC Address Filter A MAC (Media Access Control) address is the unique network hardware identifier for each PC on your network’s interface (i.e. its Network Interface Card or Ethernet card). Using your router’s MAC Address Filter function, you can configure the switch to only accept traffic from specified machines, or else to block specific machines from accessing your LAN.
myGuard 7500GL 802.11g Security ADSL Router URL Content Filtering URL (Uniform Resource Locator – e.g. an address in the form of http://www.abcde.com or http://www.example.com) filter rules allow you to prevent users on your network from accessing particular websites by their URL. There are no pre-defined URL filter rules; you can add filter rules to meet your requirements. Enable/Disable: To enable or disable URL Filter feature. Always Block: Select to always check the URL filter rules (i.e.
myGuard 7500GL 802.11g Security ADSL Router Domains Filtering: This function checks the domain name in URLs accessed against your list of domains to block or allow. If it is matched, the URL request will be sent (Trusted) or dropped (Forbidden). The checking procedure is: 1. Check the domain in the URL to determine if it is in the trusted list. If yes, the connection attempt is sent to the remote web server. 2.
myGuard 7500GL 802.11g Security ADSL Router Firewall Log Firewall Log display log information of any unexpected action with your firewall settings. Check the Enable box to activate the logs. Log information can be seen in the Status – Event Log after enabling.
myGuard 7500GL 802.11g Security ADSL Router VPN (Virtual Private Networks) Your router support three main types of VPN (Virtual Private Network), PPTP, IPSec and L2TP, and these are the two major section choices from the menu on the left. PPTP There are two types of PPTP VPN supported; Remote Access and LAN-to-LAN (please refer below for more information.). Click Create to configure a new VPN connection.
myGuard 7500GL 802.11g Security ADSL Router Remote Access PPTP Connection Connection Name: This allows you to identify this particular connection, e.g. “Connection to office”. Type: Check Dial Out if you want your router to operate as a client (connecting to a remote VPN server, e.g. your office server), check Dial In operates as a VPN server. When configuring your router as a Client, enter the remote Server IP Address (or Hostname) you wish to connection to.
myGuard 7500GL 802.11g Security ADSL Router Mode: You may select Stateful or Stateless mode. The key will be changed every 256 packets when you select Stateful mode. If you select Stateless mode, the key will be changed in each packet. Idle Time: Auto-disconnect the VPN connection when there is no activity on the connection for a predetermined period of time. 0 means this connection is always on. Click Apply after changing settings.
myGuard 7500GL 802.11g Security ADSL Router LAN to LAN PPTP Connection Connection Name: A user-define description of the connection. Type: Check Dial Out if you want your router to operate as a client (connecting to a remote VPN server, e.g. your office server), check Dial In operates as a VPN server. When configuring your router establish the connection to a remote LAN, enter the remote Server IP Address (or Hostname) you wish to connection to.
myGuard 7500GL 802.11g Security ADSL Router Key Length: The data can be encrypted by MPPE algorithm with 40 bits or 128 bits. Default is Auto, it is negotiated when establishing a connection. 128 bit keys provide stronger encryption than 40 bit keys. Mode: You may select Stateful or Stateless mode. The key will be changed every 256 packets when you select Stateful mode. If you select Stateless mode, the key will be changed in each packet.
myGuard 7500GL 802.11g Security ADSL Router IPSec Click Create to configure a new IPSec VPN connection.
myGuard 7500GL 802.11g Security ADSL Router Configure a new VPN Connection Connection Name: A user-defined name for the connection (e.g. “connection to office”). Local: Local Network: Set the IP address, subnet or address range of the local network. Single Address: The IP address of the local host. Subnet: The subnet of the local network. For example, IP: 192.168.1.0 with netmask 255.255.255.0 specifies one class C subnet starting from 192.168.1.1 (i.e. 192.168.1.1 through to 192.168.1.254).
myGuard 7500GL 802.11g Security ADSL Router Authentication: Authentication establishes the integrity of the datagram and ensures it is not tampered with in transmit. There are three options, Message Digest 5 (MD5), Secure Hash Algorithm (SHA-1) or NONE. SHA-1 is more resistant to brute-force attacks than MD5, however it is slower. MD5: A one-way hashing algorithm that produces a 128−bit hash. SHA-1: A one-way hashing algorithm that produces a 160−bit hash.
myGuard 7500GL 802.11g Security ADSL Router Advanced Option Click Advanced Option to change the following settings: IKE Mode: Select IKE mode to Main mode or Aggressive mode. Local ID: Type: Specify local ID type. Content: Input ID’s information, like domain name www.ipsectest.com. Remote ID: Type: Specify Remote ID type. Identifier: Input remote ID’s information, like domain name www.ipsectest.com.
myGuard 7500GL 802.11g Security ADSL Router L2TP There are two types of L2TP VPN supported, Remote Access and LAN-to-LAN (please refer below for more information.). Click Create to configure a new VPN connection.
myGuard 7500GL 802.11g Security ADSL Router Remote Access L2TP Connection Connection Name: This allows you to identify this particular connection, e.g. “Connection to office”. Type: Check Dial Out if you want your router to operate as a client (connecting to a remote VPN server, e.g. your office server), check Dial In operates as a VPN server. When configuring your router as a Client, enter the remote Server IP Address (or Hostname) you wish to connection to.
myGuard 7500GL 802.11g Security ADSL Router Authentication: Authentication establishes the integrity of the datagram and ensures it is not tampered with in transmit. There are three options, Message Digest 5 (MD5), Secure Hash Algorithm (SHA-1) or NONE. SHA-1 is more resistant to brute-force attacks than MD5, however it is slower. MD5: A one-way hashing algorithm that produces a 128−bit hash. SHA-1: A one-way hashing algorithm that produces a 160−bit hash.
myGuard 7500GL 802.11g Security ADSL Router LAN to LAN L2TP Connection Connection Name: A user-define description of the connection. Type: Check Dial Out if you want your router to operate as a client (connecting to a remote VPN server, e.g. your office server), check Dial In operates as a VPN server. When configuring your router establish the connection to a remote LAN, enter the remote Server IP Address (or Hostname) you wish to connection to.
myGuard 7500GL 802.11g Security ADSL Router Idle Time: Auto-disconnect the VPN connection when there is no activity on the connection for a predetermined period of time. 0 means this connection is always on. Click Apply after changing settings. IPSec: Enable for enhancing your LT2P VPN security. Authentication: Authentication establishes the integrity of the datagram and ensures it is not tampered with in transmit. There are three options, Message Digest 5 (MD5), Secure Hash Algorithm (SHA-1) or NONE.
myGuard 7500GL 802.11g Security ADSL Router Example: Configuring a Remote Access PPTP VPN Dial-in Connection A remote worker establishes a PPTP VPN connection with the head office using Microsoft's VPN Adapter (included with Windows 2000/ME, etc.). The router is installed in the head office, connected to a couple of PCs and Servers.
myGuard 7500GL 802.11g Security ADSL Router Configuring PPTP VPN in the Office The input IP address 192.168.1.200 will be assigned to the remote worker. Please make sure this IP is not used in the Office LAN. 1 2 3 4 5 Item 1 2 3 4 5 Function Description Connection Name Dial in Private IP Address Assigned to Dialing User Username Password Auth.Type Data Encryption Key Length VPN_PPTP Given a name of PPTP connection Check Dial in 192.168.1.
myGuard 7500GL 802.11g Security ADSL Router Example: Configuring a Remote Access PPTP VPN Dial-out Connection A company’s office establishes a PPTP VPN connection with a file server located at a separate location. The router is installed in the office, connected to a couple of PCs and Servers.
myGuard 7500GL 802.11g Security ADSL Router Configuring the PPTP VPN in the Office You can either input the IP address (69.1.121.33 in this case) or hostname to reach the server. 1 2 3 4 5 Item 1 2 3 4 5 Connection Name Dial out Server IP Address (or Hostname) Username Password Auth.Type Data Encryption Key Length Function VPN_PPTP 69.121.1.
myGuard 7500GL 802.11g Security ADSL Router Example: Configuring a LAN-to-LAN PPTP VPN Connection The branch office establishes a PPTP VPN tunnel with head office to connect two private networks over the Internet.. The routers are installed in the head office and branch office accordingly. Both office LAN networks MUST in different subnet with LAN to LAN application.
myGuard 7500GL 802.11g Security ADSL Router Configuring PPTP VPN in the Head Office The IP address 192.168.1.201 will be assigned to the router located in the branch office. Please make sure this IP is not used in the head office LAN. 1 2 3 4 5 6 Item 1 2 3 4 5 6 Function Connection Name Dial in Private IP Address Assigned to Dialing User Peer Network IP Netmask Username Password Auth.
myGuard 7500GL 802.11g Security ADSL Router Configuring PPTP VPN in the Branch Office The IP address 69.1.121.30 is the Public IP address of the router located in head office. If you registered the DDNS (please refer to the DDNS section of this manual), you can also use the domain name instead of the IP address to reach the router. 1 2 3 4 5 6 Item 1 2 3 4 5 6 Function Connection Name Dial out Server IP Address (or Hostname) Peer Network IP Netmask Username Password Auth.
myGuard 7500GL 802.11g Security ADSL Router Example: Configuring a IPSec LAN-to-LAN VPN Connection Table 3: Network Configuration and Security Plan Local Network ID Local Router IP Remote Network ID Remote Router IP IKE Pre-shared Key VPN Connection Type Security Algorithm Branch Office 192.168.0.0/24 69.1.121.30 192.168.1.0/24 69.1.121.3 12345678 Tunnel mode ESP:MD5 with AES Head Office 192.168.1.0/24 69.1.121.3 192.168.0.0/24 69.1.121.
myGuard 7500GL 802.11g Security ADSL Router Configuring IPSec VPN in the Head Office 1 2 3 4 5 Item 1 2 3 4 5 Function Connection Name Subnet IP Address Netmask Secure Gateway Address (or Hostname) Subnet IP Address Netmask ESP Authentication Encryption Prefer Forward Security Pre-shared Key Encryption Prefer Forward Security Pre-shared Key Description IPSec_HeadOffice Given a name of IPSec connection Check Subnet radio button 192.168.1.0 255.255.255.0 Head office network 69.121.1.
myGuard 7500GL 802.11g Security ADSL Router Configuring IPSec VPN in the Branch Office 1 2 3 4 5 Item 1 2 3 4 5 Function Connection Name Subnet IP Address Netmask Secure Gateway Address (or Hostname) Subnet IP Address Netmask ESP Authentication Encryption Prefer Forward Security Pre-shared Key Description IPSec_Branch Given a name of IPSec connection Office Check Subnet radio button 192.168.0.0 Branch office network 255.255.255.0 69.121.1.
myGuard 7500GL 802.
myGuard 7500GL 802.11g Security ADSL Router Configuring IPSec VPN in the Office 1 2 3 4 5 Item 1 2 3 4 5 Function Connection Name Subnet IP Address Netmask Secure Gateway Address (or Hostname) Single Address IP Address ESP Authentication Encryption Prefer Forward Security Pre-shared Key Description IPSec Given a name of IPSec connection Check Subnet radio button 192.168.1.0 255.255.255.0 Head office network 69.121.1.30 IP address of the head office router (in WAN side) 69.121.1.
myGuard 7500GL 802.11g Security ADSL Router Example: Configuring a Remote Access L2TP VPN Dial-in Connection A remote worker establishes a L2TP VPN connection with the head office using Microsoft's VPN Adapter (included with Windows XP/2000/ME, etc.). The router is installed in the head office, connected to a couple of PCs and Servers.
myGuard 7500GL 802.11g Security ADSL Router Configuring L2TP VPN in the Office The input IP address 192.168.1.200 will be assigned to the remote worker. Please make sure this IP is not used in the Office LAN. 1 2 3 4 5 6 Item Function Description VPN_L2TP Given a name of L2TP connection Check Dial in 192.168.1.
myGuard 7500GL 802.11g Security ADSL Router Example: Configuring a Remote Access L2TP VPN Dial-out Connection A company’s office establishes a L2TP VPN connection with a file server located at a separate location. The router is installed in the office, connected to a couple of PCs and Servers.
myGuard 7500GL 802.11g Security ADSL Router Configuring the L2TP VPN in the Office 1 2 3 4 5 6 Item 1 4 Connection Name Dial out Server IP Address (or Hostname) Username Password Auth.Type 5 Idle Timeout 6 IPSec Authentication Encryption Perfect Forward Secrecy Pre-shared Key 2 3 Function VPN_L2TP 69.121.1.33 username 123456 Chap(Auto) 0 Description Given name of L2TP connection Check Dial out An Dialed server IP A given username & password Keep as default value in most of the cases.
myGuard 7500GL 802.11g Security ADSL Router Example: Configuring your Router to Dial-in to the Server Currently, Microsoft Windows operation system does not support L2TP incoming service. Additional software may be required to set up your L2TP incoming service.
myGuard 7500GL 802.11g Security ADSL Router Example: Configuring LAN-to-LAN L2TP VPN Connection The branch office establishes a L2TP VPN tunnel with head office to connect two private networks over the Internet. The routers are installed in the head office and branch office accordingly. Both office LAN networks MUST in different subnet with LAN to LAN application. Attention Functions of Pre-shared Key, VPN Connection Type and Security Algorithm MUST BE identically set up on both sides.
myGuard 7500GL 802.11g Security ADSL Router Configuring L2TP VPN in the Head Office The IP address 192.168.1.200 will be assigned to the router located in the branch office. Please make sure this IP is not used in the head office LAN. 1 2 3 4 5 6 7 Item Function 5 Connection Name Dial in Private IP Address Assigned to Dialing User Peer Network IP Netmask Username Password Auth.
myGuard 7500GL 802.11g Security ADSL Router Configuring L2TP VPN in the Branch Office The IP address 69.1.121.30 is the Public IP address of the router located in head office. If you registered the DDNS (please refer to the DDNS section of this manual), you can also use the domain name instead of the IP address to reach the router. 1 2 3 4 5 6 7 Item Function 5 Connection Name Dial out Server IP Address (or Hostname) Peer Network IP Netmask Username Password Auth.
myGuard 7500GL 802.11g Security ADSL Router QoS (Quality of Service) QoS function helps you to control your network traffic for each application from LAN (Ethernet and/or Wireless) to WAN (Internet). It facilitates you to control the different quality and speed of through put for each application when the system is running with full loading of upstream. You can find two items under the QoS section: Prioritization and IP Throttling (bandwidth management).
myGuard 7500GL 802.11g Security ADSL Router Prioritization There are three priority settings to be provided in the modem: High Normal (The default is normal priority for all of traffic without setting). Low The trigger of check can base on IP protocol, port number and address. And the balance of utilization of each priorities are High(60%), Normal(30%) and Low(10%). Enable: Select it to activate the function. Application: A name that identifies an existing rule.
myGuard 7500GL 802.11g Security ADSL Router IP Throttling IP Throttling allows you to limit the speed of IP traffic. The value entered will limit the speed of the application that you set to the specified value’s multiple of 32kbps. The trigger of check can base on IP protocol, port number and address as well. Enable: Select it to activate the function. Application: A name that identifies an existing rule. Protocol: The name of supported protocol. Source Port: The source port of packets to be monitored.
myGuard 7500GL 802.11g Security ADSL Router Virtual Server (“Port Forwarding”) In TCP/IP and UDP networks a port is a 16-bit number used to identify which application program (usually a server) incoming connections should be delivered to. Some ports have numbers that are pre-assigned to them by the IANA (the Internet Assigned Numbers Authority), and these are referred to as “well-known ports”. Servers follow the well-known port assignments so clients can locate them.
myGuard 7500GL 802.11g Security ADSL Router 161 443 1503 1720 4000 7070 TCP TCP & UDP TCP TCP TCP UDP SNMP HTTPS T.120 H.323 ICQ RealAudio Because NAT can act as a “natural” Internet firewall, your router protects your network from being accessed by outside users when using NAT, as all incoming connection attempts will point to your router unless you specifically create Virtual Server entries to forward those ports to a PC on your network.
myGuard 7500GL 802.11g Security ADSL Router TCP or UDP, however you can specify other protocols using the drop-down Protocol menu. Setting the protocol to “all” will cause all incoming connection attempts using all protocols on all port numbers to be forwarded to the specified IP address. DMZ: The DMZ Host is a local computer exposed to the Internet.
myGuard 7500GL 802.11g Security ADSL Router Advanced Configuration options within the Advanced section are for users who wish to take advantage of the more advanced features of the router. Users who do not understand the features should not attempt to reconfigure their router, unless advised to do so by support staff. There are four items within the Advanced section: Static Route, Dynamic DNS, Checking Email and Device Management.
myGuard 7500GL 802.11g Security ADSL Router Dynamic DNS The Dynamic DNS function allows you to alias a dynamic IP address to a static hostname, allowing users whose ISP does not assign them a static IP address to use a domain name. This is especially useful for hosting servers via your ADSL connection, so that anyone wishing to connect to you may use your domain name, rather than having to use your dynamic IP address, which changes from time to time.
myGuard 7500GL 802.11g Security ADSL Router Check Emails This function allows you to have the router check your POP3 mailbox for new Email messages. The Mail LED on your router will light when it detects new messages waiting for download. You may also view the status of this function using the Status – Email Checking section of the web interface, which also provides details on the number of new messages waiting. See the Status section of this manual for more information.
myGuard 7500GL 802.11g Security ADSL Router Device Management The Device Management advanced configuration settings allow you to control your router’s security options and device monitoring features. Embedded Web Server: HTTP Port: This is the port number the router’s embedded web server (for web-based configuration) will use. The default value is the standard HTTP port, 80. Users may specify an alternative if, for example, they are running a web server on a PC within their LAN.
myGuard 7500GL 802.11g Security ADSL Router Universal Plug and Play (UPnP): UPnP offers peer-to-peer network connectivity for PCs and other network devices, along with control and data transfer between devices. UPnP offers many advantages for users running NAT routers through UPnP NAT Traversal, and on supported systems makes tasks such as port forwarding much easier by letting the application control the required settings, removing the need for the user to control advanced configuration of their device.
myGuard 7500GL 802.11g Security ADSL Router SNMP Version: SNMPv2c and SNMPv3 SNMPv2c is the combination of the enhanced protocol features of SNMPv2 without the SNMPv2 security. The "c" comes from the fact that SNMPv2c uses the SNMPv1 community string paradigm for "security", but is widely accepted as the SNMPv2 standard. SNMPv3 is a strong authentication mechanism, authorization with fine granularity for remote monitoring. Traps supported: Cold Start, Authentication Failure.
myGuard 7500GL 802.
myGuard 7500GL 802.11g Security ADSL Router TMSS Security Services Security Surveying Configuration The period value allows changing for checking latest Scan Engine and Virus Pattern of PC-cillin. Also it can be customized to specify the display interval value (1 day, 3 days, 1 week, 2 weeks, and 1 month) to invoke TMSS Security Services during surfing Internet. Select Enable to exclude the IP address of user on your LAN from Security Surveying policy.
myGuard 7500GL 802.11g Security ADSL Router Parental Controls General Settings Parental Controls intercept requests to view Web sites from a user’s Internet browser and based on specified restricted categories, determines whether to allow or block the requested Web site content. Parental Controls are included when you install the evaluation version of Trend Micro Internet Security. It is free subscription to updated content filter lists for a limited period, with 60-day FREE evaluation.
myGuard 7500GL 802.11g Security ADSL Router Exception List Select Enable to exclude the IP address of user on your LAN from Parental Controls policy. Statistics In addition to blocking Web sites, Parental Controls provide summary information that lets you know how many times users on your network.
myGuard 7500GL 802.11g Security ADSL Router Getting Started with Trend Micro Security Services To activate your Trend Micro Security Service, you must have IE 5.5 or above installed After finish the WAN connection setting, the following window will be popped up when opening Internet Explorer to surf Internet via myGuard 7500GL first time. Click Continue >> to next step.
myGuard 7500GL 802.11g Security ADSL Router The service will ask to download the Trend Micro Security Services ActiveX control.
myGuard 7500GL 802.11g Security ADSL Router Depending on your security settings, you may be asked to accept this tool. Click Yes to continue.
myGuard 7500GL 802.11g Security ADSL Router The Trend Micro Security Services dashboard will be shown up, after downloading. You now get 60-day evaluation Security Scan service. Just feeling myGuard Security Services by clicking Scan Now! And it is free of charge for activating Trend Micro Security Scan service. By clicking Scan Now! You will be guided to Security Scan tab and security scan will be progressing automatically to scan your computer.
myGuard 7500GL 802.
myGuard 7500GL 802.11g Security ADSL Router Vulnerability report for computer The detail report is generated and shown up to you. Please click Step 2 for seeing detail information of entire Network, for example as following figure.
myGuard 7500GL 802.11g Security ADSL Router Vulnerability reports for entire Network If you do not like to do security scan now, the Trend Micro Security Services dashboard can be opened by following methods any time when dashboard is closed. • Click the Trend Micro icon button on your Internet Explorer Web browser toolbar. • Click the security Services link on your Windows Start Menu. You may activate Trend Micro Security Services for getting unlimited use by clicking button Activate My Services.
myGuard 7500GL 802.11g Security ADSL Router To activate Trend Micro Security Services, perform the following: Step 1: Registering your Trend Micro account Step 2: Validating the Registration Email Step 3: Installing Trend Micro Internet Security (named TIS 11.35 Package). *Important: you may download it through the Internet or CD folder named Trend Micro Internet Security Software. All steps must be completed to fully activate Trend Micro Security Services.
myGuard 7500GL 802.
myGuard 7500GL 802.11g Security ADSL Router Step 1 Do the following: • In the appropriate fields on the Register Web page, type your name and email address and other required information. Registration involves sending an email to the typed address to verify the email address is correct. • Returning users can use their existing Customer Care Center IDs and click Login Now to quickly update their account to include Trend Micro Security Services. Choose the subscriptions to receive.
myGuard 7500GL 802.11g Security ADSL Router Verify the email address and other information is correct. Trend Micro sends a verification email to this address that you must reply to before your services are activated. Click << Back to make any modifications. Click Submit. A validation email is sent to the mail address you entered as your user ID.
myGuard 7500GL 802.11g Security ADSL Router Step 2 Validating the Registration Email After submitting your Trend Micro account registration information, Trend Micro will send a validation email to confirm that the email address is correct. To validate your email address: 1. Open your email client (for example, Microsoft Outlook, Outlook Express) and click the validation link in the Trend Micro email to verify your email address. 2.
myGuard 7500GL 802.11g Security ADSL Router Step 3 Installing Trend Micro Internet Security After validating the email to confirm your Trend Micro account, the final step involves downloading and installing Trend Micro Internet Security. To download and install Trend Micro Internet Security: 1. 2. 3. 4. Click Start Download. Another Web page appears. Click Install Now. Click Next. Click I accept the terms in the license agreement to accept and continue installing Trend Micro Internet Security.
myGuard 7500GL 802.11g Security ADSL Router View Service Summary To view Service Summary: 1. Open the Trend Micro Security Services dashboard. 2. On the dashboard main menu, click Service Summary.
myGuard 7500GL 802.11g Security ADSL Router Using Parental Controls (Subscription base, with 60-day FREE evaluation)Note Parental Controls intercept requests to view Web sites from a user’s Internet browser and based on specified restricted categories, determines whether to allow or block the requested Web site content. Parental Controls are included when you install the evaluation version of Trend Micro Internet Security.
myGuard 7500GL 802.11g Security ADSL Router Statistics of Parental Controls In addition to blocking Web sites, Parental Controls provide summary information that lets you know how many times users on your network. To view statistics of Parental Controls: 1. Open the myGurard 7500GL Web GUI. 2. Open the Trend Micro Security Services dashboard, click Parental Controls.
myGuard 7500GL 802.
myGuard 7500GL 802.11g Security ADSL Router Save Configuration to Flash After changing the router’s configuration settings, you must save all of the configuration parameters to FLASH to avoid them being lost after turning off or resetting your router. Click Save to write your new configuration to FLASH.
myGuard 7500GL 802.11g Security ADSL Router Logout To exit the router’s web interface, choose Logout. Please ensure that you have saved the configuration settings before you logout. Be aware that the router is restricted to only one PC accessing the configuration web pages at a time. Once a PC has logged into the web interface, other PCs cannot get access until the current PC has logged out of the web interface.
myGuard 7500GL 802.11g Security ADSL Router Chapter 5: Troubleshooting If the router is not functioning properly, first check this chapter for simple troubleshooting before contacting your service provider or Billion support. If you are a registered TMSS user, please provide your Trend Micro User ID and MAC ID to Billion Support Center when returning your unit. You may also go to www.trendmicro.com/support/tmss/ to get assistance on updating your account with the new MAC ID.
myGuard 7500GL 802.11g Security ADSL Router Frequent loss of Ensure that all other devices connected to the same telephone line as your ADSL linesync Billion router (e.g. telephones, fax machines, analogue modems) have a (disconnections). line filter connected between them and the wall socket (unless you are using a Central Splitter or Central Filter installed by a qualified and licensed electrician), and ensure that all line filters are correctly installed and the right way around.
myGuard 7500GL 802.11g Security ADSL Router My Parent’s Control Check your DNS setting. Your router needs the DNS setting to query ASP does not work. server for URL rating.
myGuard 7500GL 802.11g Security ADSL Router APPENDIX A: Product Support and Contact Information Most problems can be solved by referring to the Troubleshooting section in the User’s Manual. If you cannot resolve the problem with the Troubleshooting chapter, please contact the dealer where you purchased this product. Contact Billion AUSTRALIA http://www.billion.com.au/ ©2004 Billion Electric Co., Ltd. PC Range P/L. All Rights Reserved. WORLDWIDE http://www.billion.
