SpeedStream Router User Guide Series: 5100, 5200, 5400, 5500 REV 2.1 Part No.
Copyright 2003, Efficient Networks, Inc. All rights reserved. Printed in the U.S.A. Product names mentioned herein may be trademarks and/or registered trademarks of their respective companies. Efficient Networks, Inc. shall not be liable for technical or editorial errors or omissions in this document; nor for incidental or consequential damages resulting from the furnishing, performance, or use of this material. Efficient Networks, Inc.
EFFICIENT will not honor, and will consider the warranty voided, if: (1) the seal or serial number on the Product have been tampered with; (2) the Product’s case has been opened; or (3) there has been any attempted or actual repair or modification of the Product by anyone other than an EFFICIENT authorized service provider. The limited warranty does not cover defects in appearance, cosmetic, decorative or structural items, including framing, and any non-operative parts.
SpeedStream Router User Guide Contents 1: INTRODUCTION ..........................................................................................................................1 About the SpeedStream Router..................................................................................................................................1 Features and Benefits ................................................................................................................................................
SpeedStream Router User Guide Navigating the Web Interface...................................................................................................................................17 Table Navigation.....................................................................................................................................................19 Window Navigation .....................................................................................................................................
SpeedStream Router User Guide Specify Connection Name ..............................................................................................................................33 Finish..............................................................................................................................................................34 Configure RFC-2684 Bridged/IP Protocol..........................................................................................................
SpeedStream Router User Guide Finish..............................................................................................................................................................54 Host .............................................................................................................................................................................55 Specify the Host Configuration Settings .............................................................................................
SpeedStream Router User Guide Reset the Snooze Time interval ..........................................................................................................................67 DMZ Settings ..........................................................................................................................................................67 DMZ Configuration Options...............................................................................................................................
SpeedStream Router User Guide ATM/AAL Status/Statistics ......................................................................................................................................84 DSL Status/Statistics .................................................................................................................................................84 Ethernet Status/Statistics .........................................................................................................................
SpeedStream Router User Guide Port Forwarding ......................................................................................................................................................97 PPP Login ...............................................................................................................................................................97 RIP ........................................................................................................................................
SpeedStream Router User Guide 1: Introduction Congratulations on your purchase of the SpeedStream® Router with SecureRouteTM. Efficient Networks is proud to provide you with a powerful yet simple communication device for connecting your computer or local area network (LAN) to the Internet. Note This manual covers the SpeedStream model series 5100, 5200, 5400 and 5500.
SpeedStream Router User Guide • Stateful Inspection Firewall that provides many security features such as blocking common hacker attacks, including IP Spoofing, Land Attack, Ping of Death, IP with zero length, Smurf Attack, UDP port loopback, Snork Attack, TCP null scan, and TCP SYN flooding. • Network Address Port Translation (NAPT) and a secure firewall to protect your data while your computer is connected to the Internet.
SpeedStream Router User Guide Hardware Description Note The appearance of your router may vary somewhat from the following images.
SpeedStream Router User Guide 2: Installing the Router Minimum System Requirements At a minimum, your computer must be equipped with the following. • For Ethernet port connectivity (5100, 5200, 5400, 5500 series): - • A network interface card (NIC) that supports Ethernet 10/100Base-T full-/half-duplex Operating system that supports TCP/IP Microsoft Internet Explorer or Netscape Navigator versions 5.
SpeedStream Router User Guide Recording System Settings Another important step is to record the current router configuration in the worksheets provided in Appendix A, “Configuration Data Sheets.” Although the router is already configured for your particular network, it is important to record this configuration in case it must be restored for any reason or if you make changes to the default settings and need to restore them at any point. Installing Line Filters Note This section may not apply to you.
SpeedStream Router User Guide Wall-Mount Filter For a wall-mounted telephone, install a wall mount filter: 1. Remove the telephone. 2. Connect the wall mount filter to the wall plate. 3. Reconnect the telephone. Two-to-One Adapter If your DSL router and another device will share the same telephone jack, install a two-to-one adapter: 1. Plug a two-to-one adapter into the telephone jack. 2. Plug a line filter into one of the sockets of the two-to-one adapter.
SpeedStream Router User Guide Note Some models may have a power switch on the router case, as illustrated: Ethernet Installation Method To connect the SpeedStream router via the Ethernet interface, your computer must have an Ethernet adapter (network interface card, or “NIC”) installed. If your computer does not have this adapter, you will need to install it before proceeding further. Refer to the Ethernet adapter documentation for complete installation instructions. 1.
SpeedStream Router User Guide USB Installation Method • Ensure that your computer meets the minimum requirements for USB installation. • Make sure the router is not plugged in to the electrical outlet. • Connect the USB cable to the USB port at the rear of the router. • Connect the other end of the USB cable to the USB port on your computer. • Plug the telephone cable into the DSL port on the router. • Plug the other end of the telephone cable into the telephone jack.
SpeedStream Router User Guide 3: Configuring Computer Network Settings To access the Internet through the SpeedStream router, the TCP/IP protocol must be installed on your computer. If TCP/IP is not already installed on your computer, refer to your system documentation or online help for instructions. The default network settings for the SpeedStream router are: IP Address: Subnet Mask: 192.168.254.254 255.255.255.0 Note These settings may vary depending on your service provider. Windows 95 / 98 / ME 1.
SpeedStream Router User Guide 4. In the TCP/IP Properties dialog box, click the IP Address tab. 5. On the IP Address tab, make sure that Obtain IP address automatically and Detect connection to network media are selected. 6. Click the DNS Configuration tab. 7. On the DNS Configuration tab, make sure that Disable DNS is selected. 8. Click OK twice to save your settings. 9. Reboot your computer if prompted.
SpeedStream Router User Guide Windows NT 4.0 1. On the Windows taskbar, click Start, then point to Settings, and then click Control Panel. The Windows Control Panel displays. 2. In Control Panel, double-click Network. The Network dialog box displays. 3. On the Protocols tab, select TCP/IP Protocol, and then click Properties. The Microsoft TCP/IP Properties dialog box displays. 4.
SpeedStream Router User Guide 5. In the Microsoft TCP/IP Properties dialog box, click the DNS tab. 6. On the DNS tab, delete any IP addresses listed in the DNS Service Search Order box. 7. Click OK twice to save your settings. 8. Reboot your computer if prompted. Windows 2000 1. On the Windows taskbar, click Start, then point to Settings, and then click Control Panel. The Windows Control Panel displays. 2. Double-click Network and Dial-up Connections.
SpeedStream Router User Guide Note Your network adapter may differ from this illustration. 5. In the Internet Protocol (TCP/IP) Properties dialog box, make sure that Obtain IP address automatically and Obtain DNS server address automatically are selected. 6. Click OK twice to save your settings. 7. Reboot your computer if prompted. Windows XP 1. On the Windows taskbar, click Start, then click Control Panel, and then click Network and Internet Connections. 2.
SpeedStream Router User Guide 4: Getting Started By this point, you should have completed the following: • Connected the router. • Verified that the TCP/IP protocol is installed on all computers in your network. (If you need to install TCP/IP, refer to your system documentation or Windows Help.) • Configured the network settings on those computers. You can now easily configure the SpeedStream router from the convenient Web-based management interface.
SpeedStream Router User Guide Important! Username and password fields are case-sensitive. Each may consist of up to 64 alphanumeric characters. Be sure to record your user name and password. You will need to use them when you log on again. 2. You may accept the default user name, admin, or enter a new user name in the User Name box. 3. Before proceeding, you must enter a password in the New Password box; then enter the same password in the Confirm New Password box.
SpeedStream Router User Guide 1. After you have logged on to the Web interface under either of these two conditions, the Enter Network Password window displays. Note Your site IP address may differ from this image. 2. In the Enter Network Password dialog box, enter your user name and password. 3. If you want to circumvent this window in the future (which in effect cancels your previous settings), click Save this password in your password list. 4. Click OK. The System Summary window displays.
SpeedStream Router User Guide To log in using UPnP: Note Your system display may vary somewhat from these screenshots. 1. Click the UPnP icon in the system tray. The Network Places window displays the SpeedStream Router icon. 2. Double-click the router icon. Your default Web browser opens. 3. Log in to the router as instructed above. Logging Off 1. On the Web management interface main menu, click Login. The current user Profile Logout window displays. 2. Click Logout. The Profile Login window displays.
SpeedStream Router User Guide User Profiles User Profile Wizard guides you through steps required to set up and configure individual user profiles, allowing you to establish different permissions for different users. WAN Interface WAN Interface Configuration Wizard guides you through the steps required to set up and configure wide-area network settings. Host Enter host IP address and netmask, default router and host name. DHCP Enable or disable DHCP; specify DHCP parameters.
SpeedStream Router User Guide Diagnostics Perform DSL diagnostics. Tools Access interface tools. Interface Map View current interface configuration. Reboot Reboot router. Update Install updated system firmware. Table Navigation The SpeedStream Web management interface provides you with an additional “shortcut” means of accessing certain configuration windows in the Web Interface Configuration Wizard.
SpeedStream Router User Guide 5: Customizing Router Settings This section provides you with the information and procedures to customize various settings on your SpeedStream router. For ease of reference, each topic presents in the order you see it on the main menu under Setup. The ► line beneath the topic heading indicates that location in the main menu. Important! Many of these procedures require a mid- to advanced-level understanding of networking principles.
SpeedStream Router User Guide Change PPP Settings 1. From the main menu, click Setup; then click PPP. The PPP Setup window displays. 2. On the PPP Setup window, enter the user name and password. 3. Enter/select the optional PPP options if desired. 4. Click Save Settings. The System Summary window displays. User Profiles ►Setup | User Profiles The Profile Wizard directs you through the windows required to add, change or delete a user profile.
SpeedStream Router User Guide Enable Profiling When you enable profiling, all users on your local area network (LAN) must log in with one of the created user profiles before they can “surf,” or access, the Internet. If you do not enable profiling, all computers on your LAN will have complete Internet access without any filtering controls. • On the Current Profiles window, select Force all users to be identified before surfing. The window flickers briefly as it refreshes.
SpeedStream Router User Guide Select Content Filtering 1. On the Profile Content Filtering window, select the filter level: • Disable all URL filtering: Allows the user to have complete access to all Internet addresses. • Allow access to only URLs containing the following: Allows you to specify which Internet addresses this user can access. This setting provides the most control; for example, allowing children to access only specified child-safe sites.
SpeedStream Router User Guide Delete a URL Name or Tag 1. On the Profile Content Filtering window, click Delete in the row of the URL you want to eliminate. The window refreshes to display the updated table. 2. Repeat for any other URL names or tags you wish to delete. 3. To continue to the Profile Configuration Access window, click Next. Assign Permissions From the Profile Configuration Access window, you can assign permissions specific to each user profile.
SpeedStream Router User Guide Enter Constant IP Address The Profile Constant IP Address window allows you to require that the profile login window display for a certain IP address, thereby simplifying surfing and minimizing login prompts. For example, you can set a static IP address on a network computer, and then enter that IP address as the constant IP for a specific user profile. As a result, the router will always assume that the IP address is already logged in with that user profile. 1.
SpeedStream Router User Guide 2. On the Profile User Information window, change the user name and/or password for this profile. • To change the user name for this profile, double-click in the Username text box to select the current name; then type the new name. • To change the password for this profile, double-click in the Password text box to select the string of asterisks (***) and type the new password; then type the same password in the Confirm text box. 3.
SpeedStream Router User Guide The information you entered displays in the last non-highlighted table row. 3. Continue making any other revisions on this window. - or If no other changes to this user profile, click Finish to display the updated information in the Current Profiles window. - or To continue to the Profile Configuration Access window, click Next. Edit an Existing URL Name or Tag 1. On the Profile Content Filtering window, click Edit in the row of the URL you want to change.
SpeedStream Router User Guide Assign Permissions From the Profile Configuration Access window, you can add, change or delete the specific permissions specific for this user profile. Only permissions available to this user profile will be available. 1. Click to select or deselect each item separately. - or To select all items, click All Items. 2. If no other changes to this user profile, click Finish to display the updated information in the Current Profiles window.
SpeedStream Router User Guide 1. On the Profile Constant IP Address window, enter a new static IP address or change the current address. 2. To finish configuring this user profile, click Next. Finish Now that you have successfully configured the profile for this user, you can return to the Current Profiles window to configure another user; or you can continue with other configuration options. • On the Finished window, click Next.
SpeedStream Router User Guide • Reset/Clear: Some windows may have a Reset or Clear button that deletes any information you entered, allowing you to begin again. Access the WAN Interface Configuration Wizard • On the main menu, click WAN Interface. The WAN Interface Configuration Wizard | Current Configuration window displays. Enable a WAN Connection • On the Current Configuration window, click Enable in the row of the configuration you want to enable.
SpeedStream Router User Guide Add a New Virtual Connection (VC) Table Navigation This feature provides additional navigation via a table at the bottom of the windows. The data in the table acts as a shortcut to the window that allows you to configure that element. Click: To display this window: VC Type Name ATM Settings User Information Connection Name To add a new virtual WAN connection: • At the bottom left corner of the Current Configuration window, click Add a New VC.
SpeedStream Router User Guide • Encapsulation Type - LLC - VCMUX - Traffic Class - Unspecified Bit Rate - Constant Bit Rate - Variable Bit Rate (Non Real Time) - Variable Bit Rate (Real Time) • Traffic Description Information (optional) 2. To continue to the Protocol Selection window, click Next. Select WAN Protocol 1.
SpeedStream Router User Guide • - Bridged Mode: Passes PPPoE traffic through to the LAN; user runs Ethernet or another PPPoE client on the computer to maintain the PPP connection. - 2684 Bridge Mode: Concurrently runs PPPoE with a 2684 Bridge on the same virtual connection. - 2684 Bridge/IP Mode: Concurrently runs PPPoE with 2684 Bridge/IP on the same virtual connection. PPPoA: PPPoA is a PPP connection over ATM cells with encapsulation using either LLC or VCMUX; routes traffic. 2.
SpeedStream Router User Guide Finish • On the VC Wizard window, click Finish. The Current Configuration window displays the new connection information. Configure RFC-2684 Bridged/IP Protocol RFC-2684 Bridged/IP is a bridged connection wherein the router accepts RFC-2684 encapsulated traffic from the WAN. Unlike RFC-2684 Bridged protocol, however, the WAN interface has an IP address and handles the traffic, routing only relevant data on to the appropriate LAN interface(s).
SpeedStream Router User Guide Select Interface Options 1. On the Interface Options window, select the desired options: • Use Firewall: Enable firewall protection. • Use Attack Detection System: Enable WAN attack protection. • Use Universal Plug-n-Play: Enable devices to discover and control each other via UPnP over the network. • RIP: Routing Information Protocol (For more information, see page 83. • - Version 1: Allows RIP version 1 to be transmitted/received on the selected interface.
SpeedStream Router User Guide - NAT & NAPT: Enable concurrent NAT and NAPT Note Depending on your configuration, NAT is sometimes enabled by default. Disable NAT only in advanced situations where your ISP has assigned static IP addresses. 2. To continue to the Connection Name window, click Next. Specify Connection Name 1. On the Connection Name window, enter a name for the new connection. 2. To complete the configuration process for the RFC-2684 Bridged protocol, click Next.
SpeedStream Router User Guide • Use Firewall: Enable firewall protection. • Use Attack Detection System: Enable WAN attack protection. • Use Universal Plug-n-Play: Enable devices to discover and control each other via UPnP over the network. • RIP: Routing Information Protocol (For more information, see page 83.) • - Version 1: Allows RIP version 1 to be transmitted/received on the selected interface. Currently, RIPv1 is seldom used, but supported on the SpeedStream router.
SpeedStream Router User Guide 2. To continue to the Connection Name window, click Next. Specify Connection Name 1. On the Connection Name window, enter a name for the new connection. 2. To complete the configuration process for the RFC-2684 Routed protocol, click Next. The VC Wizard window displays. Finish • On the VC Wizard window, click Finish. The Current Configuration window displays the new connection information.
SpeedStream Router User Guide If you selected: Go to: If you selected: Go to: Client Bridge pg. 38 pg. 41 2684B Connection pg. 43 PPPoE Bridge pg. 47 Configure PPPoE / Client Only This mode terminates the PPP traffic and passes on pure Ethernet to the LAN. • On the PPPoE Type window, select Client only. The PPPoE Session Count window displays Select PPPoE Session Count • On the PPPoE Session Count window, select from 1 to 4 connections; then click Next. The User Information window displays.
SpeedStream Router User Guide • Use Idle Timeout: If the connection sits without transmitting for the specified time, the router will log out the PPP connection. This helps relieve Internet congestion at the ISP level. The SpeedStream router also provides a Connect on Demand feature wherein the router automatically reconnects when you attempt to use the WAN connection. Idle Timeout cannot be used with Autoconnect on Disconnect. 2. To continue to the PPP Static IP window, click Next.
SpeedStream Router User Guide - • Active Mode: In enabled, the router will receive routing updates on the selected interface and will broadcast regular routing updates to other routers. If not enabled (default), the router will receive routing updates on this interface, but will not broadcast routing tables. NAT/NAPT: Enable Network Address Translation (NAT) and/or Network Address Port Translation (NAPT). For more information on using NAT and NAPT, see page 65.
SpeedStream Router User Guide Select Interface Options 1. On the Interface Options window, select the desired options: • Use Firewall: Enable firewall protection. • Use Attack Detection System: Enable WAN attack protection. • Use Universal Plug-n-Play: Enable devices to discover and control each other via UPnP over the network. • RIP: Routing Information Protocol (For more information, see page 83.) • - Version 1: Allows RIP version 1 to be transmitted/received on the selected interface.
SpeedStream Router User Guide Note Depending on your configuration, NAT is sometimes enabled by default. Disable NAT only in advanced situations where your ISP has assigned static IP addresses. 2. To continue to the Connection Name window, click Next. Specify Connection Name 1. On the Connection Name window, enter a name for the new connection. 2. To complete the configuration process for the PPPoE/Bridge Only protocol, click Next. The VC Wizard window displays.
SpeedStream Router User Guide • Use Firewall: Enable firewall protection. • Use Attack Detection System: Enable WAN attack protection. • Use Universal Plug-n-Play: Enable devices to discover and control each other via UPnP over the network. • RIP: Routing Information Protocol (For more information, see page 83.) • - Version 1: Allows RIP version 1 to be transmitted/received on the selected interface. Currently, RIPv1 is seldom used, but supported on the SpeedStream router.
SpeedStream Router User Guide Note Depending on your configuration, NAT is sometimes enabled by default. Disable NAT only in advanced situations where your ISP has assigned static IP addresses. 2. To continue to the Connection Name window, click Next. Specify Connection Name 1. On the Connection Name window, enter a name for the new connection. 2. To continue to the PPPoE Session Count window, click Next. The VC Wizard window displays.
SpeedStream Router User Guide error is resolved. This is like an “always on” WAN connection. • Use Idle Timeout: If the connection sits without transmitting for the specified time, the router will log out the PPP connection. This helps relieve Internet congestion at the ISP level. The SpeedStream router also provides a Connect on Demand feature wherein the router automatically reconnects when you attempt to use the WAN connection. Idle Timeout cannot be used with Autoconnect on Disconnect. 2.
SpeedStream Router User Guide interface. - • Active Mode: In enabled, the router will receive routing updates on the selected interface and will broadcast regular routing updates to other routers. If not enabled (default), the router will receive routing updates on this interface, but will not broadcast routing tables. NAT/NAPT: Enable Network Address Translation (NAT) and/or Network Address Port Translation (NAPT). For more information on using NAT and NAPT, see page 65.
SpeedStream Router User Guide Configure PPPoE / PPPoE Bridge Protocol This mode concurrently runs PPPoE with 2684 Bridge/IP on the same virtual connection. • On the PPPoE Type window, select PPPoE Bridge. The PPPoE with Bridge window displays. Use PPPoE with Bridge 1. On the PPPoE with Bridge window, specify whether the virtual circuit (VC) should also use a 2684 Bridged connection. 2. If you selected No, go to page 50, Select PPPoE Session Count. If you selected Yes, continue to the next step. 3.
SpeedStream Router User Guide • - Version 1: Allows RIP version 1 to be transmitted/received on the selected interface. Currently, RIPv1 is seldom used, but supported on the SpeedStream router. - Version 2: Allows RIP version 2 to be transmitted/received on the selected interface. This would be the most common choice. - Versions 1 & 2: Simultaneously supports RIP versions 1 and 2 on the selected interface.
SpeedStream Router User Guide 2. To continue to the PPPoE Session Count window, click Next. The VC Wizard window displays. Select PPPoE Session Count • On the PPPoE Session Count window, select from 1 to 4 connections; then click Next. The User Information window displays. Note The process will repeat for each session you need to configure. After you have completed the settings for the last session, the VC Wizard window displays. Enter User Information 1.
SpeedStream Router User Guide Enter Static IP Address 1. On the PPP Static IP window, you may enter a static IP address if your service provider has assigned one (not required). 2. To continue to the Interface Options window, click Next. Select Interface Options 1. On the Interface Options window, select the desired options: • Use Firewall: Enable firewall protection. • Use Attack Detection System: Enable WAN attack protection.
SpeedStream Router User Guide - Disabled: Disable both NAT and NAPT (for example, if setting up static routes). - NAT: Enable NAT only and specify the destination IP address for incoming packets on the selected WAN interface. - NAPT: Enable NAPT only to handle multiple addresses based on port forwarding rules. - NAT & NAPT: Enable concurrent NAT and NAPT Note Depending on your configuration, NAT is sometimes enabled by default.
SpeedStream Router User Guide Select PPP Options 1. On the PPP Options window, select one or multiple setting(s): • Dial-up Only: Only active when you manually connect. • Autoconnect on Disconnect: If the connection gets dropped (line error, router reboot, DSL line drop, etc.), the PPP client automatically attempts to reconnect as soon as the error is resolved. This is like an “always on” WAN connection.
SpeedStream Router User Guide • - Version 1: Allows RIP version 1 to be transmitted/received on the selected interface. Currently, RIPv1 is seldom used, but supported on the SpeedStream router. - Version 2: Allows RIP version 2 to be transmitted/received on the selected interface. This would be the most common choice. - Versions 1 & 2: Simultaneously supports RIP versions 1 and 2 on the selected interface.
SpeedStream Router User Guide Host ►Setup | Host The Host Configuration window allows you to change the host IP address, netmask, default router and host name. The information in this section is auto-generated and should not be changed unless your ISP directs you to do so; for example, if you have been assigned a static IP address. Specify the Host Configuration Settings 1. If your ISP has assigned a static IP address for this machine, enter that IP address and subnet mask. 2.
SpeedStream Router User Guide as the Default Router IP address, Primary or Secondary DNS IP addresses, and Primary or Secondary Relay IP addresses. • Commonly used non-Internet routed IP address ranges include: 10.0.0.0 - 10.255.255.255 172.16.0.0 - 172.31.255.255 192.168.0.0 - 192.168.255.255 DHCP Configuration Options • DHCP Server: When Enabled, the router will operate as a DHCP server to handle DHCP requests received from connected LAN-side hosts (DHCP clients).
SpeedStream Router User Guide the end of the lease period, the DHCP client will transmit a request to the server to extend the lease, at which time the server will extend the lease period of the IP address assigned to the client.
SpeedStream Router User Guide Admin User (System Login) ►Setup | Admin User After you have initially set your user name and password, the System Status window will display the next time you log on to the Web interface. To change the system user name and/or password, you must open the Administrative User Setup window from the main menu. Change the User Name or Password 1. From the main menu, click Setup; then click Admin User. The Administrative User Setup window displays. 2.
SpeedStream Router User Guide Time Client Configuration Options • Primary Server IP Address: Specifies the primary IP address of a “well-known” Network Time Protocol Server (NTPS). • Secondary Server IP Address: Specifies the secondary IP address of a “well-known” NTPS. If the router does not receive a response from the primary NTPS, it will switch to the secondary. Configure the Time Client 1. On the main menu, click Setup, and then click Time Client. The Time Client Configuration window displays. 2.
SpeedStream Router User Guide 6. To create the static route from your settings, click Set Route. NAT/NAPT ►Setup | NAT/NAPT The SpeedStream router provides you with several options for using Network Address Translation (NAT) and Network Address Port Translation (NAPT): • • • • Use NAT and specify the destination IP address for incoming packets on the selected WAN interface. Use NAPT only to handle multiple addresses based on port forwarding rules. Enable concurrent NAT/NAPT.
SpeedStream Router User Guide Disable Both NAT and NAPT 1. In the WAN interface row under NAT and NAPT Disabled, select yes. 2. To save the setting, click Apply. - or To clear your selection, click Reset. Enable NAT Only and Specify a Destination IP Address 1. In the WAN interface row under NAT Only Enabled Private (LAN) IP Address, select yes. 2. Enter the IP address for incoming packets on the selected WAN interface. 3. To save the setting, click Apply. - or – To clear your changes, click Reset.
SpeedStream Router User Guide The Current Public/Private IP Address Map table allows you to define the mapping of public IP addresses, supplied by your service provider, to the private IP addresses used on your local LAN. Note If you enable concurrent NAT/NAPT, you must define at least one entry in the Current Public/Private IP Address Map table. 1. In the WAN interface row under NAT & NAPT Enabled (*concurrent), select yes. 2. To save the setting, click Apply. - or To clear your changes, click Reset.
SpeedStream Router User Guide • Cancel: Discards any changes, maintaining the current configuration, and changes the Edit #n label back to Add. • Reset: Discards your changes and returns to the previous settings. • Delete: * Removes the corresponding entry from the table. • Delete All: * Removes all entries from the table.
SpeedStream Router User Guide Edit an Existing Port Forwarding Configuration 1. On the main menu, click Setup, and then click Port Forwarding. The Port Forwarding Configuration window displays. 2. In the Current Port Forwarding Configuration table, click Edit in the row that you wish to reconfigure. The Add/Edit Entry data refreshes and displays the current configuration for the selected protocol. 3. Enter your changes (see Port Forwarding Configuration Options). 4. To save your settings, click Apply.
SpeedStream Router User Guide Manage Network Address Port Mappings through UPnP If you have enabled UPnP on the SpeedStream router, you can use UPnP to manipulate the NAPT port mappings. This is effectively the same as if you had logged into the router’s Web management interface through your Internet browser. For more information on port mappings, refer to page 65, NAT/NAPT. For more information about UPnP, refer to page 16, Logging In with UPnP or page 82, UPnP (Universal Plug and Play).
SpeedStream Router User Guide Firewall Security Levels The SpeedStream router is shipped with a set of preconfigured firewall database rules grouped into levels, allowing you to easily configure the firewall. The default set of levels include: • Off: No restrictions are applied to either inbound or outbound traffic. In addition, all Network Address Port Translation (NAPT) functionality is disabled - there is no address/port translation.
SpeedStream Router User Guide Firewall Snooze Control The firewall supports a Snooze feature by which , the firewall can be made to temporarily “sleep,” or go into an Off state, for a specified period. The firewall will restore itself to its previous state after the specified time period elapses. Disable Snooze To disable the firewall Snooze Control and allow the firewall to become active: 1. Select Disable Snooze. 2. Click Apply.
SpeedStream Router User Guide In order for this feature to work effectively, you need to set the host name of each of the hosts running DHCP. In Windows, this is called “Computer Name” and is set in a variety of places, depending on the operating system you are running. (Please refer to your Windows documentation or Windows online Help for specific instructions on designating the computer name.
SpeedStream Router User Guide machine that will be accessible to inbound traffic. - or Select Enable DMZ with this Host name; then select the host name from the drop-down list. 3. Select how long you want the settings to remain permanently, until the next reboot, or for a specified number of minutes. 4. To accept the settings, click Apply. Custom IP Filter Rules You can configure the SpeedStream Router firewall to perform IP filtering and stateful inspection of packets.
SpeedStream Router User Guide 70
SpeedStream Router User Guide Clone a Rule Definition You can create a new set of custom IP filter rules from one of the existing preconfigured firewall levels.) 1. In the Clone Rules Definitions box, select the firewall level to copy. 2. Click Clone Rule Set. The Rules table refreshes to display the new rules for that level. 3.
SpeedStream Router User Guide Step 3: Select a protocol to filter. 1. In the Select by Name list box, select the protocol name. - or In the Select by Number text box, enter the protocol number. 2. Depending on the protocol, select the applicable rule options: • • • For TCP/UDP, go to Step 4a. For ICMP, go to Step 4b. For any other protocol, go to Step 5. Step 4a: If TCP/UDP chosen in Step 3, select the desired rule options. 1. Specify Source Port Operator options: • • • Select the source port operator.
SpeedStream Router User Guide Firewall Log When the Attack Detection System (ADS) is enabled, various checks are performed, according to the criteria you designate. For example: 1. If an attack is detected, that information can be displayed in the Firewall Log. 2. Any denials of access by the firewall can be logged with a reason code and a description string. 3. Syslog-formatted messages can be sent to another node on the LAN.
SpeedStream Router User Guide • Packets with spoofed source addresses are commonly sent to smaller hosts, not with the intent of bringing down a particular computer, but rather to take down a large host through a mechanism called Distributed Denial of Service (DDoS). In this situation, when a huge number of computers are used to request services, those services are rendered unavailable because of the traffic load.
SpeedStream Router User Guide enough data to flood a large Internet host’s connection, a would-be attacker instead “convinces” hundreds or thousands of other hosts to do it for him. This is called a Distributed Denial of Service (DDoS). Several viruses can turn a host into a remote-controlled “zombie,” although some attacks can simply use a host’s network stack to do the job if it is too trusting. The SpeedStream ADS monitors this behavior.
SpeedStream Router User Guide • TCP Xmas Flags: The TCP Xmas flag configuration is an invalid combination of the FIN, URG and PUSH flags. This packet can cause some hosts to crash. • Fragmented TCP Packet: As discussed in the Invalid IP Packet Fragment description, packets may be fragmented in transit. While it is entirely valid to fragment a TCP packet, this is rarely done because of a process called “MTU discovery” that occurs when two hosts begin communicating.
SpeedStream Router User Guide Globally Enable ADS To globally enable ADS without losing any of the individual packet types: • Select Enable Attack Detection. Filter a Packet Type To filter, or drop, a packet type: • Select Filter to the right of the desired option. Log a Packet Type to the Firewall Event Log • Select Log to the right of the desired function. Note Filtering and logging are independent operations. You can select either, neither or both. Save New Settings • Click Apply.
SpeedStream Router User Guide • Read-only mode: Restricts the kind of access a UPnP client can have into the router. Only requests in the UPnP protocol that query the status of the router are allowed. Any requests that could potentially modify the router’s behavior are blocked. Configure UPnP Settings 1. Select the UPnP mode. 2. Enable any options. 3. Click Apply.
SpeedStream Router User Guide to decide which interface will carry the outbound IP packet. If all routes in the routing table fail, the router will forward the IP packet to its default route. When the router boots up, it will broadcast its routing table on configured interfaces; i.e., it shares its routing table with other routers that support RIP. This broadcast occurs about every 30 seconds. A router can also “ask” another RIP router for its routing table.
SpeedStream Router User Guide Note New port values that may be specified for these LAN servers are restricted. The new port value must be in the range 1024-59999. Port values below 1024 are reserved for well-known port values, and values above 60000 are used for port forwarding. To specify server port numbers: 1. From the main menu, click Setup, and then click Server Ports. 2. Enter the port number next to the server type. 3. Click Apply. The window refreshes to display the new port numbers.
SpeedStream Router User Guide Configure Dynamic DNS 1. From the main menu, click Setup, and then click Dynamic DNS. The Dynamic DNS Configuration window displays. 2. Click Enable. 3. Enter the Service Username, Service Password, and Host Name(s). 4. Click Apply. The router will save your configuration and automatically contact the Dynamic DNS Service with updates.
SpeedStream Router User Guide 6: Viewing Status and Statistics The SpeedStream router Web management interface provides several windows from which you can monitor various system status and statistics: • The System Summary displays router and PPP connection(s) information. • The System Log displays system activity • The Interface Map displays a graphical depiction of system connections.
SpeedStream Router User Guide To display the System Summary window: • From the main menu, click Status and Statistics, and then click System Summary. The System Summary window displays. System Log The System Log records all system activity, including what actions were performed, what packets were dropped and what packets were forwarded. This information allows you to make informed decisions about the need to add new filter rules.
SpeedStream Router User Guide Select the Capture Level • Select the log capture level; then click Set. The window refreshes with the current data. ATM/AAL Status/Statistics Note The following screenshot is an example only and will differ from your actual window display. • From the main menu, click Status and Statistics, and then click ATM/AAL. The ATM/AAL Status/Statistics window displays.
SpeedStream Router User Guide Ethernet Status/Statistics Note The following screenshot is an example only and will differ from your actual window display. • From the main menu, click Status and Statistics, and then click Ethernet. The Ethernet Status/Statistics window displays. USB Status/Statistics Note The following screenshot is an example only and will differ from your actual window display. • From the main menu, click Status and Statistics, and then click USB.
SpeedStream Router User Guide 7: Using System Tools The SpeedStream router provides tools within the firmware to assist you in troubleshooting connection and configuration issues: • The Diagnostics window allows you to test your DSL service. • The Interface Map provides a graphical representation of the current LAN and WAN configurations. • The Reboot window allows you to shut down and then restart router without losing your current configuration settings.
SpeedStream Router User Guide above, if no change in status occurs after running the diagnostics a second time, contact your Service Provider for further assistance. Interface Map Note This option may not be available on your router configuration. The Interface Map window provides a graphical representation of the current LAN and WAN configurations of your SpeedStream router.
SpeedStream Router User Guide To reset the router: 1. If your router is equipped with a power switch, press the switch to reset the router. - or Using the tip of a ballpoint pen or unfolded paperclip, press and hold the Reset button located on the bottom of the router. The pwr LED will blink red once, indicating that the reset has begun. 2. Continue depressing the Reset button for four seconds. or until the pwr LED begins to blink alternating red-to-green. 3. Release the Reset button.
SpeedStream Router User Guide 6. Click OK to proceed. The file is sent to the router. If a valid update file, the router writes the update to its internal flash memory. The System Reboot window displays a countdown during the Flash Write process. When the update is completed, the Login window displays.
SpeedStream Router User Guide 8: Troubleshooting Connection problems usually occur when the router’s software configuration contains incomplete or incorrect information. The router’s diagnostic tools can help you identify and solve many of these problems. Basic Troubleshooting Steps Before contacting Technical Support, you should attempt to resolve the issue by following these steps: 1. 2. 3. 4. Check the LEDs on the front panel to diagnose the possible problem.
SpeedStream Router User Guide LED Blinking Red/Green Red Power DSL USB Ethernet* (pwr, Power) (dsl, T-DSL, Activity, Sync) (usb) (enet, Ethernet, LAN) Flash Write in progress - POST tests in progress (first 30 sec. after powering on or rebooting) N/A N/A N/A N/A N/A N/A - POST error occurred *Note The 5100 and 5400 series SpeedStream routers have one Ethernet LED; the 5200 and 5500 series have four Ethernet LEDs, one for each Ethernet port.
SpeedStream Router User Guide POST Failure (red pwr LED) POST is the router’s “power-on self-test.” When you power on or reboot the router, the pwr LED goes to a solid red until one of two things occurs: it either fails its initial POST tests, or it comes fully up and is ready to run. • If POST passes, the router continues through the rest of its initialization, and the pwr LED changes to solid green.
SpeedStream Router User Guide Appendix A: Configuration Data Sheets Your router is preconfigured with settings specific to your network. We strongly suggest that you record these settings in case you need to reestablish your original configuration.
SpeedStream Router User Guide Parameter Default Value Your Value Direction Protocol Source Interface Source Address Source Mask Destination Port Operator Enable/Disable Rule # Status Access Direction Protocol Source Interface Source Address Source Mask Destination Port Operator Enable/Disable Rule # Status Access Direction Protocol Source Interface Source Address Source Mask Destination Port Operator Enable/Disable Rule # Status Access Direction Protocol Source Interface Source Address Source Mask Desti
SpeedStream Router User Guide Parameter Default Value Your Value Default Value Your Value Default Value Your Value Rule # Status Access Direction Protocol Source Interface Source Address Source Mask Destination Port Operator Enable/Disable Rule # Status Access Direction Protocol Source Interface Source Address Source Mask Destination Port Operator Enable/Disable Rule # Status Access Direction Protocol Source Interface Source Address Source Mask Destination Port Operator Enable/Disable Firewall - DM
SpeedStream Router User Guide Parameter Default Value Your Value Default Value Your Value Default Value Your Value Default Value Your Value Reset Time Interval To Host Parameter IP Address IP Netmask Default Router Host Name LAN IP Parameter IP Address Subnet Mask NAT/NAPT Parameter Interface 1 NAT/NAPT Disabled NAT Enabled Internal (LAN) IP Address NAPT Enabled Interface 2 NAT/NAPT Disabled NAT Enabled Internal (LAN) IP Address NAPT Enabled Interface 3 NAT/NAPT Disabled NAT Enabled Internal
SpeedStream Router User Guide Parameter Default Value Your Value Default Value Your Value Default Value Your Value Internal (LAN) IP Address NAPT Enabled Interface 8 NAT/NAPT Disabled NAT Enabled Internal (LAN) IP Address NAPT Enabled Concurrent NAT/NAPT Interface 1 Public (WAN) IP Address Private (LAN) IP Address Interface 2 Public (WAN) IP Address Private (LAN) IP Address Interface 3 Public (WAN) IP Address Private (LAN) IP Address Interface 4 Public (WAN) IP Address Private (LAN) IP Address Inte
SpeedStream Router User Guide Parameter Default Value Your Value Default Value Your Value Default Value Your Value Default Value Your Value Use Idle Time-Out Connection 2 User Name Password Access Connection Service Name Auto-Connect On Disconnect Use Idle Time-Out Connection 3 User Name Password Access Connection Service Name Auto-Connect On Disconnect Use Idle Time-Out Connection 4 User Name Password Access Connection Service Name Auto-Connect On Disconnect Use Idle Time-Out RIP Parameter Stat
SpeedStream Router User Guide Time Client Parameter Default Value Your Value Default Value Your Value Disabled Primary Server IP Address Secondary Server IP Address UPnP Parameter Disabled Discovery and Advertisement Only Full IGD-Supported Enable Access Logging Read-Only Mode 99
SpeedStream Router User Guide Appendix B: Technical Specifications AAL and ATM Support: VCI 0-65535 address range VPI 0-255 address range AAL5 support Bridging: IEEE 802.1.
SpeedStream Router User Guide Appendix C: Firewall Security Levels The following table shows the security of each mode of the firewall for specific applications and protocols. Note All applications and protocols are conditionally allowed IN if the outbound session was initiated locally and allowed OUT. Security Application/ Protocol High In Abuse.Net Age of Empires AOL AOL IM Asherons Call Baldur’s Gate II BattleNet Buddy Telephone Bungie.
SpeedStream Router User Guide Security Application/ Protocol High In Medium Out ICU II IGMP IPSec multi-session IPSec single-session IRC Kali L2TP MechWarrior 4 Mplayer MS Netmeeting MSN Gaming Zone MSN Messenger Myth Napster In Out √ √ √ √ √ √ √ √ √ Need for Speed √ Net2telephone Netshow Client NNTP NTP PCAnywhere Ping POP3 PPPoE PPTP multi-session PPTP single-session Quake Arena Quake II Quicktime 4 Rainbow Six Real Audio Real Video Red Alert II Rogue Spear RTSP SIP SMTP Soldier of Fortune SSH
SpeedStream Router User Guide Security Application/ Protocol High In Traceroute Ultima Online Unreal Tournament VNC Warcraft Windows Media Player XDM Yahoo Messenger Medium Out √ In Out √ √ √ √ √ √ 103 Low In NAPT Off Out √ √ In Out √ √ √ √ √ √ √ √ √ √ √ √ √ √ ICSACompliant In Out
SpeedStream Router User Guide Appendix D: Acronyms and Technical Concepts Acronyms AAL5 ATM Adaption Layer 5 ADS Attack Detection System ATM Asynchronous Transfer Mode ATU ADSL Termination Unit ATU-C ADSL Termination Unit - Central Office; refers to location at the CO aggregation point.
SpeedStream Router User Guide LOS Loss of Signal MAC address Media Access Control address; a network device’s unique identifier MTU Maximum Transmission Unit NAP Network Access Provider NAPT Network Address Port Translation NAT Network Address Translation NCP Network-layer Control Protocol NSP Network Service Provider OCD Out-of-cell Delineation (ATM error condition) octet 8 bytes PAP Password Authentication Protocol POST Power-On Self Test PDU Protocol Data Unit PPP Point-to-Poi
SpeedStream Router User Guide SSDP Simple Service Discovery Protocols Tx Cells (ATM) Number of cells transmitted through the ATM layer to the wire. Tx Errors (ATM) Number of SDUs that could not be transmitted due to errors. Tx Packets (DSL, Ethernet, USB) Count of all encoded blocks transmitted on this channel since router reset. Tx PDUs (ATM) Number of PDUs transmitted on connection.
SpeedStream Router User Guide Filter Configuration window, the Current IP Filter Rules table refreshes with the new rules set. You can edit, add or delete this new set of rules. Rule Numbering If you select a specific Firewall Level (e.g., Low) and then examine the list of rules displayed in the Current IP Filter Rules table, you will notice that the numbers start at xx20; e.g., Low starts at 120, not 100.
SpeedStream Router User Guide you have configured a specific set of IP addresses for the DHCP server, then you change the Ethernet IP address to something that is on a different subnet than your DHCP server’s addresses, and you do not reboot, the router will not recognize the change. The DHCP server will not be able to hand out addresses. Be sure to reboot the router when you change the Ethernet IP address in this manner.
SpeedStream Router User Guide PPP (Point-to-Point Protocol) PPP is a single or multi-link interface between two packet switching devices, such as a bridge or router. PPP has built-in negotiation for addresses and connection parameters and can route multiple protocols over a single link. One benefit of using PPP is it offers interoperability of multi-vendor equipment as well as support for dynamic configuration between the connecting devices.
SpeedStream Router User Guide Appendix E: Step-by-Step Virtual WAN Configuration There are several steps to configuring a virtual WAN connection. To make it easier to follow, this section presents the steps that are detailed in 5: Customizing Router Settings | WAN Interface Configuration Wizard | Add a New Virtual Connection (VC) on page 31. Shaded rows indicate that these steps are repeated if you select multiple PPPoE sessions to configure in the PPPoE Session Count window.
SpeedStream Router User Guide Step On this window: Do this: 8 VC Wizard Finish. 4c. If you selected the RFC-2684 Routed protocol: Step On this window: Do this: 4c 2684 Routed Enter Internet Protocol information as provided by your service provider. 5 Interface Options Select interface options: firewall, attack detection system, universal plug and play; RIP; NAT/NAPT. 6 Connection Name Enter name to use for this connection. 7 VC Wizard Finish. 4d.
SpeedStream Router User Guide 5b. If you selected the PPPoE protocol and PPPoE / Bridged type: Step On this window: Do this: 5b Interface Options Select interface options: firewall, attack detection system, universal plug and play; RIP; NAT/NAPT. 6 Connection Name Enter name to use for this connection. 7 VC Wizard Finish. 5c.
SpeedStream Router User Guide Step On this window: Do this: session, steps 7-11 will repeat. 10 User Information Enter user name and password (both are optional). 11 PPP Options Select PPP options for this connection: dial-up mode, auto-connect on disconnect, idle timeout. 12 PPP Static IP Enter static IP address (optional). 13 Interface Options Select interface options: firewall, attack detection system, universal plug and play; RIP; NAT/NAPT.
SpeedStream Router User Guide Index 2684 Bridge Mode PPPoE ..................................................................33 2684 Bridge/IP Mode PPPoE ..................................................................33 AAL5 (ATM Adaption Layer 5) ...........................106 Access Concentrator ................................................20 Access the WAN Interface Configuration Wizard ..30 Adapter ....................................................................11 Add a New User Profile......
SpeedStream Router User Guide commonly used non-Internet ...............................56 IP Address Restrictions ...........................................55 IP Address tab..........................................................10 IP Filter Rules command description ...........................................18 IP header..................................................................74 IP Netmask ..............................................................56 IP packet filtering ...................
SpeedStream Router User Guide enabling................................................................22 Protocols tab ............................................................11 Public (WAN) IP Address .......................................60 Public and Private Networks and the Use of NAPT ...........................................................................109 Reboot command description ...........................................19 Rebooting the router ..........................................
SpeedStream Router User Guide Troubleshooting.......................................................90 TruSecure Corporation ..........................................108 UDP port..................................................................63 Universal Plug and Plan (UPnP)..............................16 Unspecified Bit Rate................................................32 Update command description ...........................................19 UPnP command description ...............................
SpeedStream Router User Guide Window Navigation.................................................19 Windows 2000 configure network settings...................................12 Windows 95 configure network settings.....................................9 Windows 98 XP Professional Edition.....................................16, 65 configure network settings.....................................9 Windows ME.................................................1, 16, 65 configure network settings....................
Efficient Networks 4849 Alpha Road Dallas, TX 75244 USA +1 (972) 852-1000 Tel +1 (972) 852-1001 Fax support@efficient.com http://www.support.efficient.