USER’S GUIDE CGN RESIDENTIAL CABLE MODEM VERSION 2.
HITRON CGN USER’S GUIDE ABOUT THIS USER’S GUIDE INTENDED AUDIENCE This manual is intended for people who want to configure the CGN’s features via its Graphical User Interface (GUI). HOW TO USE THIS USER’S GUIDE This manual contains information on each the CGN’s GUI screens, and describes how to use its various features. Use the Introduction (page 12) to see an overview of the topics covered in this manual.
HITRON CGN USER’S GUIDE DOCUMENT CONVENTIONS This User’s Guide uses various typographic conventions and styles to indicate content type: Bulleted paragraphs are used to list items, and to indicate options. 1 Numbered paragraphs indicate procedural steps. NOTE: Notes provide additional information on a subject. Warnings provide information about actions that could harm you or your device. Product labels, field labels, field choices, etc. are in bold type.
HITRON CGN USER’S GUIDE DEFAULT CREDENTIALS The CGN’s default login credentials are as follows. For more information, see Logging into the CGN on page 22. Table 1: Default Credentials Username cusadmin Password password Copyright 2012 Hitron Technologies. All rights reserved. All trademarks and registered trademarks used are the properties of their respective owners. DISCLAIMER: The information in this User’s Guide is accurate at the time of writing.
HITRON CGN USER’S GUIDE COMPLIANCES FCC INTERFERENCE STATEMENT This equipment has been tested and found to comply with the limits for a Class B digital device pursuant to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against radio interference in a commercial environment.
HITRON CGN USER’S GUIDE FCC Radiation Exposure Statement: This equipment complies with FCC radiation exposure limits set forth for an uncontrolled environment. This equipment should be installed and operated with minimum distance 20cm between the radiator & your body. This transmitter must not be co-located or operating in conjunction with any other antenna or transmitter.
HITRON CGN USER’S GUIDE TABLE OF CONTENTS About This User’s Guide ................................................................ 2 Compliances .................................................................................... 5 Table of Contents ............................................................................ 7 List of Figures ............................................................................... 10 List of Tables ....................................................................
HITRON CGN USER’S GUIDE 2.1.6 Routing Mode ........................................................................... 2.1.7 Configuration Files .................................................................... 2.1.8 Downstream and Upstream Transmissions .............................. 2.1.9 Cable Frequencies .................................................................... 2.1.10 Modulation .............................................................................. 2.1.11 TDMA, FDMA and SCDMA ....
HITRON CGN USER’S GUIDE 4.3.1 Adding or Editing an IP Filtering Rule ....................................... 4.4 The Forwarding Screen ..................................................................... 4.4.1 Adding or Editing a Port Forwarding Rule ................................ 4.5 The Port Triggering Screen ............................................................... 4.5.1 Adding or Editing a Port Triggering Rule .................................. 4.6 The DMZ Screen ..............................
HITRON CGN USER’S GUIDE LIST OF FIGURES Figure 1: Application Overview ...........................................................................13 Figure 2: Hardware Connections ........................................................................15 Figure 3: LEDs ....................................................................................................18 Figure 4: Login ....................................................................................................
HITRON CGN USER’S GUIDE LIST OF TABLES Table 1: Default Credentials ................................................................................4 Table 2: Hardware Connections ........................................................................16 Table 3: LEDs ....................................................................................................18 Table 4: GUI Overview .......................................................................................
HITRON CGN USER’S GUIDE 1 INTRODUCTION This chapter intoduces the CGN and its GUI (Graphical User Interface). It contains the following sections: CGN Overview on page 12 Hardware Connections on page 14 LEDs on page 17 IP Address Setup on page 20 Logging into the CGN on page 22 GUI Overview on page 23 Resetting the CGN on page 24 1.
HITRON CGN USER’S GUIDE Figure 1: Application Overview 1.1.1 KEY FEATURES The CGN provides: Internet connection to cable modem service via CABLE port (F-type RF connector) Local Area Network connection via four 10/100/1000 Mbps (megabits per second) Ethernet ports Dynamic Host Configuration Protocol (DHCP) for devices on the LAN LAN troubleshooting tools (Ping and Traceroute) IEEE 802.
HITRON CGN USER’S GUIDE Settings backup and restore Secure configuration interface, accessible by Web browser 1.2 HARDWARE CONNECTIONS This section describes the CGN’s physical ports and buttons. 14 Version Version2.0, 2.0,February February2012. 2012.
HITRON CGN USER’S GUIDE Figure 2: Hardware Connections 15 Version Version2.0, 2.0,February February2012. 2012.
HITRON CGN USER’S GUIDE Table 2: Hardware Connections WPS PBC Press this button to begin the WiFi Protected Setup (WPS) Push-Button Configuration (PBC) procedure. Press the PBC button on your wireless clients in the coverage area within two minutes to enable them to join the wireless network. See WPS on page 85 for more information. Reset Use this button to reboot or reset your CGN. Press the button and hold it for less than five seconds to reboot the CGN.
HITRON CGN USER’S GUIDE Table 2: Hardware Connections CABLE Use this to connect to the Internet via an F-type RF cable. POWER Cable modem is plugged in to an electrical outlet and is and receiving power. 1.3 LEDS This section describes the CGN’s LEDs (lights). 17 Version Version2.0, 2.0,February February2012. 2012.
HITRON CGN USER’S GUIDE Figure 3: LEDs Table 3: LEDs LED STATUS WPS DESCRIPTION Off The WPS is not enabled. Green, steady The WPS is enabled. Red, blinking Error: Some error occurred which was not related to security, such as failed to find any partner or protocol prematurely aborted. Session Overlap Detected: Protocol detected overlapping operation could be a security risk.
HITRON CGN USER’S GUIDE Table 3: LEDs USB Off LAN/ Front LAN/ Back Status US 19 The CGN is not linked up USB. Green, steady The CGN has successfully linked up USB. Off No device is connected to the LAN port. Green, blinking A device is connected to the LAN port via a Ethernet link, and is transmitting or receiving data. Green, steady A device has successfully connected to the LAN port via a Ethernet link. Off No device is connected to the relevant LAN port.
HITRON CGN USER’S GUIDE Table 3: LEDs DS Green, blinking Power The CGN is searching for a downstream frequency on the CABLE connection. Green, steady The CGN has successfully located and locked onto a downstream frequency on the CABLE connection. Blue, steady The CGN is engaged in channel bonding on the downstream connection. Off There is no downstream activity on the CABLE connection.
HITRON CGN USER’S GUIDE If your computer is configured to get an IP address automatically, or if you are not sure, try to log in to the CGN (see Logging into the CGN on page 22). If the login screen displays, your computer is already configured correctly. If the login screen does not display, either the CGN’s DHCP server is not active or your computer is not configured correctly. Follow the procedure in Manual IP Address Setup on page 21 and set your computer to get an IP address automatically.
HITRON CGN USER’S GUIDE 5 You can get an IP address automatically, or specify one manually: If your CGN’s DHCP server is active, select Get an IP address automatically. If your CGN’s DHCP server is active, select Use the following IP address. In the IP address field, enter a value between 192.168.0.2 and 192.168.0.254 (default). In the Subnet mask field, enter 255.255.255.0 (default).
HITRON CGN USER’S GUIDE Figure 4: Login 3 Enter the Username and Password. The default login username is cusadmin, and the default password is password. NOTE: The Username and Password are case-sensitive; “password” is not the same as “Password”. 4 Click Login. The System Info screen displays (see The System Info Screen on page 33). 1.6 GUI OVERVIEW This section describes the CGN’s GUI. 23 Version Version2.0, 2.0,February February2012. 2012.
HITRON CGN USER’S GUIDE Figure 5: GUI Overview Table 4: GUI Overview Primary Use this section to move from one part of the GUI to another. Navigation Bar Secondary Navigation Bar Use this section to move from one related screen to another. Main Window Use this section to read information about your CGN’s configuration, and make configuration changes.
HITRON CGN USER’S GUIDE Click WAN/LAN > Backup. In the screen that displays, click the Factory Reset button. The CGN turns off and on again, using its factory default settings. NOTE: Depending on your CGN’s previous configuration, you may need to reconfigure your computer’s IP settings; see IP Address Setup on page 20. 25 Version Version2.0, 2.0,February February2012. 2012.
HITRON CGN USER’S GUIDE 2 STATUS This chapter describes the screens that display when you click Status in the toolbar. It contains the following sections: Cable Overview on page 26 The System Info Screen on page 33 The Initialization Screen on page 37 The CM Status Screen on page 38 The Password Screen on page 41 The Capability Screen on page 42 2.1 CABLE OVERVIEW This section describes some of the concepts related to the Cable screens. 2.1.
HITRON CGN USER’S GUIDE 2.1.2 IP ADDRESSES AND SUBNETS Every computer on the Internet must have a unique Internet Protocol (IP) address. The IP address works much like a street address, in that it identifies a specific location to which information is transmitted. No two computers on a network can have the same IP address. 2.1.2.1 IP ADDRESS FORMAT IP addresses consist of four octets (8-bit numerical values) and are usually represented in decimal notation, for example 192.168.1.1.
HITRON CGN USER’S GUIDE The private network (in routing mode - see Routing Mode on page 31) is your Local Area Network (LAN) and Wireless Local Area Network (WLAN), if enabled. You are free to assign IP addresses to computers on the LAN and WLAN manually, or to allow the CGN to assign them automatically via DHCP (Dynamic Host Configuration Protocol). IANA has reserved the following blocks of IP addresses to be used for private networks only: Table 5: Private IP Address Ranges FROM... ...TO 10.0.0.0 10.
HITRON CGN USER’S GUIDE The following table shows a subnet mask that “masks” the first twenty-four bits of the IP address, in both its decimal and binary notation. Table 7: Subnet Mask: Decimal and Binary 255 255 255 11111111 11111111 11111111 0 00000000 This shows that in this subnet, the first three octets (192.168.1, in the example IP address) define the main network, and the final octet (1, in the example IP address) defines the computer’s address on the subnet.
HITRON CGN USER’S GUIDE 2.1.4 DHCP LEASE “DHCP lease” refers to the length of time for which a DHCP server allows a DHCP client to use an IP address. Usually, a DHCP client will request a DHCP lease renewal before the lease time is up, and can continue to use the IP address for an additional period. However, if the client does not request a renewal, the DHCP server stops allowing the client to use the IP address.
HITRON CGN USER’S GUIDE 2.1.6 ROUTING MODE When your CGN is in routing mode, it acts as a gateway for computers on the LAN to access the Internet. The service provider assigns an IP address to the CGN on the WAN, and all traffic for LAN computers is sent to that IP address. The CGN assigns private IP addresses to LAN computers (when DHCP is active), and transmits the relevant traffic to each private IP address.
HITRON CGN USER’S GUIDE 2.1.10 MODULATION Transmissions over the cable network are based on a strong, high frequency periodic waveform known as the “carrier wave.” This carrier wave is so called because it “carries” the data signal. The data signal itself is defined by variations in the carrier wave. The process of varying the carrier wave (in order to carry data signal information) is known as “modulation.” The data signal is thus known as the “modulating signal.
HITRON CGN USER’S GUIDE SCDMA allows multiple users to share the same frequency channel by assigning a unique orthogonal code to each user. 2.2 THE SYSTEM INFO SCREEN Use this screen to see general information about your CGN’s hardware, its software, and its connection to the Internet. NOTE: Most of the information that displays in this screen is for troubleshooting purposes only. However, you may need to use the MAC Address information when setting up your network. Click Status > System Info.
HITRON CGN USER’S GUIDE Figure 6: The Status > System Info Screen 34 Version Version2.0, 2.0,February February2012. 2012.
HITRON CGN USER’S GUIDE The following table describes the labels in this screen. Table 8: The Status > System Info Screen Device Information System Time This displays the current date and time. System Uptime This displays the number of days, hours, minutes and seconds since the CGN was last switched on or rebooted. Model Name This displays the device’s model name. SW Version This displays the version number of the software that controls the CGN.
HITRON CGN USER’S GUIDE Table 8: The Status > System Info Screen (continued) WAN Information WAN Address This field displays the CGN’s IP address on the WAN (Wide Area Network) interface. Subnet Mask This field displays the CGN’s WAN subnet mask. Gateway Address This field displays the address of the device on the WAN to which the CGN is connected. DNS Server This field displays the Domain Name Servers that the CGN uses to resolve domain names into IP addresses.
HITRON CGN USER’S GUIDE Table 8: The Status > System Info Screen (continued) Private LAN IP This displays the IP address of the CGN’s Ethernet Address module. This is the IP address you use to connect with the CGN’s admin interface via the LAN ports. Subnet Mask This displays the CGN’s LAN subnet mask. Uptime This displays the number of hours, minutes and seconds that the CGN has been connected to another device over the LAN interface.
HITRON CGN USER’S GUIDE For each step: Process displays when the CGN is attempting to complete a connection step. Success displays when the CGN has completed a connection step. 2.4 THE CM STATUS SCREEN Use this screen to discover information about: The nature of the upstream and downstream connection between the CGN and the device to which it is connected through the CABLE interface. IP details of the CGN’s WAN connection. You can also configure the CGN’s downstream center frequency.
HITRON CGN USER’S GUIDE Figure 8: The Status > CM Status Screen The following table describes the labels in this screen. Table 9: The Status > CM Status Screen CM Configuration File This displays the name of the configuration file that the Name CGN downloaded from your service provider. This file provides the CGN with the service parameter data that it needs to perform its functions correctly.
HITRON CGN USER’S GUIDE Table 9: The Status > CM Status Screen (continued) Downstream Frequency This displays the center frequency in Megahertz (MHz) at which the CGN connects over the CABLE interface. If you want the CGN to use a different center frequency, enter it in the field and click Apply. NOTE: Do not change the frequency unless you have a good reason to do so. Upstream ID This displays the ID number of the channel on which the upstream signal is to be transmitted.
HITRON CGN USER’S GUIDE Table 9: The Status > CM Status Screen (continued) SCDMA Mode This displays the Synchronous Code Division Multiple Access (SCDMA) mode of each channel on which the upstream signal is transmitted. Signal Power (dBmV) This displays the transmitted power of the signal of each upstream data channel to which the CGN is connected, in dBmV (decibels above/below 1 millivolt). Channel ID This displays the ID number of each channel on which the upstream signal is transmitted.
HITRON CGN USER’S GUIDE Figure 9: The Status > Password Screen The following table describes the labels in this screen. Table 10: The Status > Password Screen Enter Current Password Enter the password with which you currently log into the CGN Enter New Password Re-enter New Password Enter and re-enter the password you want to use to log into the CGN. Password Idle Time Enter the number of minutes of inactivity after which you should be automatically logged out of the CGN.
HITRON CGN USER’S GUIDE Click Status > Capability. The following screen displays. Figure 10: The Status > Capability Screen The following table describes the labels in this screen. Table 11: The Status > Capability Screen Residential Gateway Select the checkbox to enable the CGN’s residential function gateway features, or deselect the checkbox to disable them. UPnP Select the checkbox to enable the CGN’s Universal Plug n Play features, or deselect the checkbox to disable them.
HITRON CGN USER’S GUIDE 44 Version Version2.0, 2.0,February February2012. 2012.
HITRON CGN USER’S GUIDE 3 WAN/LAN This chapter describes the screens that display when you click WAN/LAN in the toolbar. It contains the following sections: WAN/LAN Overview on page 45 The IP Screen on page 47 The Shared Media Screen on page 50 The Debug Screen on page 51 The Backup Screen on page 52 3.1 WAN/LAN OVERVIEW This section describes some of the concepts related to the WAN/LAN screens. 3.1.
HITRON CGN USER’S GUIDE 3.1.2 LAN IP ADDRESSES AND SUBNETS IP addresses on the LAN are controlled either by the CGN’s built-in DHCP server (see DHCP on page 29), or by you (when you manually assign IP addresses to your computers). For more information about IP addresses and subnets in general, see IP Addresses and Subnets on page 27. 3.1.3 DNS AND DOMAIN SUFFIX A domain is a location on a network, for instance example.com.
HITRON CGN USER’S GUIDE 3.2 THE IP SCREEN Use this screen to: View information about the CGN’s connection to the WAN Enable or disable manual DNS assignment Define DNS servers for manual DNS assignment Configure the CGN’s LAN IP address, subnet mask and domain suffix Configure the CGN’s internal DHCP server Define how the CGN assigns IP addresses on the LAN See information about the network devices connected to the CGN on the LAN. Click WAN/LAN > IP. The following screen displays.
HITRON CGN USER’S GUIDE Figure 11: The WAN/LAN > IP Screen The following table describes the labels in this screen. Table 12: The WAN/LAN > IP Screen WAN Information 48 WAN Address This field displays the CGN’s IP address on the WAN (Wide Area Network) interface. Subnet Mask This field displays the CGN’s WAN subnet mask. Gateway Address This field displays the address of the device on the WAN to which the CGN is connected. Version Version2.0, 2.0,February February2012. 2012.
HITRON CGN USER’S GUIDE Table 12: The WAN/LAN > IP Screen (continued) Assign DNS Select the checkbox to enable manual DNS server Manually assignment, and enter the DNS servers that you want to use in the DNS Server fields below. Deslect the checkbox to disable manual DNS server assignment. The CGN uses the DNS servers assigned automatically when it receives an IP address over the WAN. It is strongly recommended that you do not enable manual DNS server assignment unless you have good reason to do so.
HITRON CGN USER’S GUIDE Table 12: The WAN/LAN > IP Screen (continued) DHCP End IP Use this field to specify the IP address at which the CGN stops assigning IP addresses to devices on the LAN (when DHCP is enabled). NOTE: Devices requesting IP addresses once the DHCP pool is exhausted are not assigned an IP address. Connected Computers Host Name This displays the name of each network device connected on the LAN. IP Address This displays the IP address of each network device connected on the LAN.
HITRON CGN USER’S GUIDE Figure 12: The WAN/LAN > Shared Media Screen The following table describes the labels in this screen. Table 13: The WAN/LAN > Shared Media Screen Group ID Specify the name of the Network Neighborhood workgroup whose users may access the shared media on the USB device. No. This field displays the index number of the connected USB device. When no USB device is connected, no number displays in this column. Name This field displays the identifying name of the connected USB device.
HITRON CGN USER’S GUIDE Click WAN/LAN > Debug. The following screen displays. Figure 13: The WAN/LAN > Debug Screen The following table describes the labels in this screen. Table 14: The WAN/LAN > Debug Screen IP/URL Enter the IP address or URL that you want to test. Method Select the type of test that you want to run on the IP/ URL that you specified. Run Click this to perform the test. Help Click this to see information about the fields in this screen. 3.
HITRON CGN USER’S GUIDE Figure 14: The WAN/LAN > Backup Screen The following table describes the labels in this screen. Table 15: The LAN > Backup Screen Backup/Restore Setting Backup Settings Locally Click this to create a backup of all your CGN’s settings on your computer. Restore Settings Locally Use these fields to return your CGN’s settings to those specified in a backup that you created earlier.
HITRON CGN USER’S GUIDE 4 FIREWALL This chapter describes the screens that display when you click Firewall in the toolbar. It contains the following sections: Firewall Overview on page 54 The Firewall Options Screen on page 56 The Filter Setting Screen on page 57 The Forwarding Screen on page 65 The Port Triggering Screen on page 69 The DMZ Screen on page 72 4.1 FIREWALL OVERVIEW This section describes some of the concepts related to the Firewall screens. 4.1.
HITRON CGN USER’S GUIDE 4.1.2 INTRUSION DETECTION SYSTEM An intrusion detection system monitors network activity, looking for policy violations, and malicious or suspicious activity. The CGN’s intrusion detection system logs all such activity to the Firewall > Local Logs screen. 4.1.3 PING The CGN allows you to use the ping utility on the LAN (in the WAN/LAN > Debug screen) and also on the WAN (in the Firewall > Firewall Options screen).
HITRON CGN USER’S GUIDE 4.1.6 PORT FORWARDING Port forwarding allows a computer on your LAN to receive specific communications from the WAN. Typically, this is used to allow certain applications (such as gaming) through the firewall, for a specific computer on the LAN. Port forwarding is also commonly used for running a public HTTP server from a private network. You can set up a port forwarding rule for each application for which you want to open ports in the firewall.
HITRON CGN USER’S GUIDE Figure 15: The Firewall > Firewall Options Screen The following table describes the labels in this screen. Table 16: The Firewall > Firewall Options Screen Firewall Select this to turn the firewall on. Deselect this to turn the firewall off. NOTE: It is strongly recommended that you enable the CGN's firewall unless LAN protection is provided by another device or software. Intrusion Detection System Select this to turn the intrusion detection system off.
HITRON CGN USER’S GUIDE NOTE: To configure MAC address filtering on the wireless network, see The Access Control Screen on page 93. You can set the CGN to allow only certain devices to access the CGN and the network, or to deny certain devices access. NOTE: To see a list of all the computers connected to the CGN on the LAN, click the Connected Computers button in the Firewall > IP Filtering, Forwarding, Port Triggering or Firewall Options screens.
HITRON CGN USER’S GUIDE Figure 16: The Firewall > Filter Setting Screen 59 Version Version2.0, 2.0,February February2012. 2012.
HITRON CGN USER’S GUIDE The following table describes the labels in this screen. Table 17: The Firewall > Filter Setting Screen MAC Filter Options MAC Filter Options Use this field to control whether the CGN performs MAC filtering. Select Allow-All to turn MAC filtering off. All devices may access the CGN and the network. Select Allow to permit only devices with the MAC addresses you set up in the Allow Table to access the CGN and the network. All other devices are denied access.
HITRON CGN USER’S GUIDE Table 17: The Firewall > Filter Setting Screen (continued) Device Name This displays the name of each network device that has connected to the CGN on the LAN. To change the name assigned to a device, edit it in the relevant field. MAC Address This displays the MAC address of each network device that has connected to the CGN on the LAN. Type Use this field to specify the list to which you want to add the device. Select Allow to add the device to the Allow Table.
HITRON CGN USER’S GUIDE Table 17: The Firewall > Filter Setting Screen (continued) All IP Filtering Rules Use this to turn IP filtering on or off. Deselect the checkbox to enable IP filtering. Select the checkbox to disable IP filtering (default). NOTE: You can add, edit or delete IP filtering rules only when this checkbox is deselected. Select Select an IP filtering rule’s radio button ( clicking Edit or Delete.
HITRON CGN USER’S GUIDE Table 17: The Firewall > Filter Setting Screen (continued) Delete Select an IP filtering rule’s radio button ( ) and click this to remove the rule. The deleted rule’s information cannot be retrieved. Apply Click this to save your changes to the fields in the IP Filtering Options section. Cancel Click this to return the fields in the IP Filtering Options section to their last-saved values without saving your changes.
HITRON CGN USER’S GUIDE The following table describes the labels in this screen. Table 18: The Firewall > Filter Settings > Add/Edit Screen Application Name Enter a name for the application that you want to block. NOTE: This name is arbitrary, and does not affect functionality in any way. Port Range Use these fields to specify the target port range to which communication should be blocked. Enter the start port number in the first field, and the end port number in the second field.
HITRON CGN USER’S GUIDE 4.4 THE FORWARDING SCREEN Use this screen to configure port forwarding between computers on the WAN and computers on the LAN. You can turn port forwarding on or off and configure new and existing port forwarding rules. Click Firewall > Forwarding. The following screen displays. Figure 18: The Firewall > Forwarding Screen The following table describes the labels in this screen.
HITRON CGN USER’S GUIDE Table 19: The Firewall > Forwarding Screen (continued) Port Range These fields display the ports to which the rule applies: The Public field displays the incoming port range. These are the ports on which the CGN received traffic from the originating host on the WAN. The Private field displays the port range to which the CGN forwards traffic to the device on the LAN.
HITRON CGN USER’S GUIDE Table 19: The Firewall > Forwarding Screen (continued) Cancel Click this to return the fields in this screen to their lastsaved values without saving your changes. Help Click this to see information about the fields in this screen. 4.4.1 ADDING OR EDITING A PORT FORWARDING RULE To add a new port forwarding rule, click Add in the Firewall > Forwarding screen.
HITRON CGN USER’S GUIDE The following table describes the labels in this screen. Table 20: The Firewall > Forwarding > Add/Edit Screen Application Name Enter a name for the application for which you want to create the rule. NOTE: This name is arbitrary, and does not affect functionality in any way. Public Port Range Use these fields to specify the incoming port range. These are the ports on which the CGN received traffic from the originating host on the WAN.
HITRON CGN USER’S GUIDE Table 20: The Firewall > Forwarding > Add/Edit Screen Apply Click this to save your changes to the fields in this screen. Cancel Click this to return the fields in this screen to their lastsaved values without saving your changes. Help Click this to see information about the fields in this screen. 4.5 THE PORT TRIGGERING SCREEN Use this screen to configure port triggering. You can turn port triggering on or off and configure new and existing port triggering rules.
HITRON CGN USER’S GUIDE Table 21: The Firewall > Port Triggering Screen Application Name This displays the arbitrary name you assigned to the rule when you created it. Port Range These fields display the ports to which the rule applies: The Trigger field displays the range of outgoing ports. When the CGN detects activity (outgoing traffic) on these ports from computers on the LAN, it automatically opens the Target ports. The Target field displays the range of triggered ports.
HITRON CGN USER’S GUIDE 4.5.1 ADDING OR EDITING A PORT TRIGGERING RULE To add a new port triggering rule, click Add in the Firewall > Port Triggering screen. To edit an existing port triggering rule, select the rule’s radio button ( ) in the Firewall > Port Triggering screen and click the Edit button. The following screen displays. Figure 21: The Firewall > Port Triggering > Add/Edit Screen The following table describes the labels in this screen.
HITRON CGN USER’S GUIDE Table 22: The Firewall > Port Triggering > Add/Edit Screen Target Port Range Use these fields to specify the target ports. The CGN opens these ports in expectation of incoming traffic whenever it detects activity on any of the Trigger ports. The incoming traffic is forwarded to these ports on the computer connected to the LAN. Enter the start port number in the first field, and the end port number in the second field. To specify only a single port, enter its number in both fields.
HITRON CGN USER’S GUIDE Click Firewall > DMZ. The following screen displays. Figure 22: The Firewall > DMZ Screen The following table describes the labels in this screen. Table 23: The Firewall > DMZ Screen Enable DMZ Host Use this field to turn the DMZ on or off. Select the checkbox to enable the DMZ. Deselect the checkbox to disable the DMZ. Computers that were previously in the DMZ are now on the LAN.
HITRON CGN USER’S GUIDE 5 PARENTAL CONTROL This chapter describes the screens that display when you click Parent Control in the toolbar. It contains the following sections: Parental Control Overview on page 74 The Website Blocking Screen on page 75 The Scheduling Screen on page 77 The Email / Syslog Alert Screen on page 79 5.1 PARENTAL CONTROL OVERVIEW This section describes some of the concepts related to the Parental Control screens. 5.1.
HITRON CGN USER’S GUIDE 5.2 THE WEBSITE BLOCKING SCREEN Use this screen to block access from the LAN to certain websites. You can also specify trusted computers, which are not subject to the blocking filter. NOTE: To apply the blocking filter only at certain times, use the Parental Control > Scheduling screen. Click Parental Control > Web Site Blocking. The following screen displays. Figure 23: The Parental Control > Web Site Blocking Screen 75 Version Version2.0, 2.0,February February2012. 2012.
HITRON CGN USER’S GUIDE The following table describes the labels in this screen. Table 24: The Parental Control > Web Site Blocking Screen Web Site Blocking Options Enable Web Site Blocking Use this field to turn web site blocking on or off. Select the checkbox to enable web site blocking. Deselect the checkbox to disable web site blocking. New Key Word/URL Blocking Use these fields to configure the websites to which users on the LAN are denied access: Enter a URL (for example, “www.example.
HITRON CGN USER’S GUIDE Table 24: The Parental Control > Web Site Blocking Screen (continued) Clear List Click this to delete all the computers’ MAC addresses from the list. Apply Click this to save your changes to the fields in this screen. Cancel Click this to return the fields in this screen to their lastsaved values without saving your changes. Help Click this to see information about the fields in this screen. 5.
HITRON CGN USER’S GUIDE Figure 24: The Parental Control > Scheduling Screen The following table describes the labels in this screen. Table 25: The Parental Control > Scheduling Screen Days of the Week Select the days of the week on which you want the website blocking filter to be in effect. Time of Day Use these fields to control the time that the website blocking filter should be in effect: Select All Day to apply the website blocking filter at all times.
HITRON CGN USER’S GUIDE Table 25: The Parental Control > Scheduling Screen (continued) Cancel Click this to return the fields in this screen to their lastsaved values without saving your changes. Help Click this to see information about the fields in this screen. 5.4 THE EMAIL / SYSLOG ALERT SCREEN Use this screen to forward information to a target email address or system log each time the firewall alert is triggered, and to define the time at which emails should be sent and/or log entries created.
HITRON CGN USER’S GUIDE The following table describes the labels in this screen. Table 26: The Parental Control > Email / Syslog Alert Screen Mail Server Configuration Use this section to define the location of the transmitting email server, and the email address from which admin emails appear to originate. SMTP Server Address Enter the address of the email server from which admin emails should be sent. Sender’s Email Address Enter the email address from which admin emails should appear to originate.
HITRON CGN USER’S GUIDE Table 26: The Parental Control > Email / Syslog Alert Screen (continued) Recipient List (up to 4 Use this section to define up to four target email address items) to which admin emails will be sent. To enter a new target email address, click Add. Enter the target email address’s Name and Recipient’s Address in the fields that display, then click Apply to save your changes. Alternatively, click Cancel to return to the previous screen without saving your changes.
HITRON CGN USER’S GUIDE Table 26: The Parental Control > Email / Syslog Alert Screen (continued) Cancel Click this to return the fields in this screen to their lastsaved values without saving your changes. Help 82 Click this to see information about the fields in this screen. Version Version2.0, 2.0,February February2012. 2012.
HITRON CGN USER’S GUIDE 6 WIRELESS This chapter describes the screens that display when you click Wireless in the toolbar. It contains the following sections: Wireless Overview on page 83 The Setup Screen on page 86 The Access Control Screen on page 93 The Advanced Screen on page 95 6.1 WIRELESS OVERVIEW This section describes some of the concepts related to the Wireless screens. 6.1.
HITRON CGN USER’S GUIDE The wireless clients connect to the access point in order to receive a wireless connection to the WAN and the wired LAN. The CGN is the access point, and the computers you connect to the CGN are the wireless clients. 6.1.3 WIRELESS STANDARDS The way in which wireless devices communicate with one another is standardized by the Institute of Electrical and Electronics Engineers (IEEE). The IEEE standards pertaining to wireless LANs are identified by their 802.11 designation.
HITRON CGN USER’S GUIDE 6.1.5 WIRELESS SECURITY Radio is inherently an insecure medium, since it can be intercepted by anybody in the coverage area with a radio receiver. Therefore, a variety of techniques exist to control authentication (identifying who should be allowed to join the network) and encryption (signal scrambling so that only authenticated users can decode the transmitted data). The sophistication of each security method varies, as does its effectiveness.
HITRON CGN USER’S GUIDE Push-Button Configuration (PBC): when the user presses the PBC button on the AP (either a physical button, or a virtual button in the GUI), any user of a wireless client that supports WPS can press the corresponding PBC button on the client within two minutes to join the network. Personal Identification Number (PIN) Configuration: all WPS-capable devices possess a PIN (usually to be found printed on a sticker on the device’s housing).
HITRON CGN USER’S GUIDE Click Wireless > Setup. The following screen displays. Figure 27: The Wireless > Setup Screen The following table describes the labels in this screen. Table 27: The Wireless > Setup Screen Wireless Basic Settings Wireless ON/OFF Use this field to turn the wireless network on or off. Select ENABLE to turn the wireless network on. Deselect DISABLE to turn the wireless network off. 87 Version Version2.0, 2.0,February February2012. 2012.
HITRON CGN USER’S GUIDE Table 27: The Wireless > Setup Screen (continued) Wireless Mode Select the type of wireless network that you want to use: 11B/G Mixed: use IEEE 802.11b and 802.11n 11B Only: use IEEE 802.11b 11G Only: use IEEE 802.11g 11N Only: use IEEE 802.11n 11G/N Mixed: use IEEE 802.11g and 802.11N 11B/G/N Mixed: use IEEE 802.11b, 802.11g and 802.11N NOTE: Only wireless clients that support the network protocol you select can connect to the wireless network.
HITRON CGN USER’S GUIDE Table 27: The Wireless > Setup Screen (continued) Run WPS Use these buttons to run Wifi Protected Setup (WPS): Click the PBC button to begin the Push-Button Configuration process. You must then press the PBC button on your client wireless devices within two minutes in order to register them on your wireless network. Click the PIN button to begin the PIN configuration process.
HITRON CGN USER’S GUIDE Table 27: The Wireless > Setup Screen (continued) Hidden Use this field to make your network visible or invisible to other wireless devices. Select the checkbox if you do not want the CGN to broadcast the network name (SSID) to all wireless devices in the coverage area. Anyone who wants to connect to the network must know the SSID. Deselect the checkbox if you want your network name (SSID) to be public.
HITRON CGN USER’S GUIDE Table 27: The Wireless > Setup Screen (continued) WEP Key Length Use this field to specify the length of the security key used to allow wireless devices to join the network. The longer the key, the more secure it is. Select 64-bit to use a ten-digit security key. Select 128-bit to use a twenty-six-digit security key. WEP Key 1~4 Use these fields to define the security keys that all wireless devices on the network must use to join the network.
HITRON CGN USER’S GUIDE Table 27: The Wireless > Setup Screen (continued) WPA_Personal NOTE: These fields display only when you select WPA-Personal from the Security Mode list. WPA Mode Select the type of WPA security that you want to use: Select WPA-PSK to use Wifi Protected Access (PreShared Key) mode Select WPA2-PSK to use Wifi Protected Access 2 (Pre-Shared Key) mode Select Auto (WPA-PSK or WPA2-PSK) to allow clients operating in either mode to connect to the CGN.
HITRON CGN USER’S GUIDE Table 27: The Wireless > Setup Screen (continued) Cancel Click this to return the fields in this screen to their lastsaved values without saving your changes. Help Click this to see information about the fields in this screen. 6.3 THE ACCESS CONTROL SCREEN Use this screen to configure Media Access Control (MAC) address filtering on the wireless network. NOTE: To configure MAC address filtering on the wired LAN, see The Filter Setting Screen on page 57.
HITRON CGN USER’S GUIDE The following table describes the labels in this screen. Table 28: The Wireless > Access Control Screen MAC Filtering SSID Select the SSID for which you want to configure wireless access control. NOTE: At the time of writing, the CGN supports a single SSID. MAC Filtering Mode Use this field to control whether the CGN performs MAC filtering on the wireless network. Select Allow-All to turn MAC filtering off. All devices may access the CGN and the network wirelessly.
HITRON CGN USER’S GUIDE Table 28: The Wireless > Access Control Screen (continued) MAC Address This displays the MAC address of each network device that has connected to the CGN on the wireless network. Add Select a device’s checkbox and click Add to add the device to the Wireless Control List. Manually-Added Wireless Devices Device Name Enter the name to associate with a network device that you want to permit or deny access to the CGN and the network wirelessly.
HITRON CGN USER’S GUIDE Figure 30: The Wireless > Advanced Screen 96 Version Version2.0, 2.0,February February2012. 2012.
HITRON CGN USER’S GUIDE The following table describes the labels in this screen. Table 29: The Wireless > Advanced Screen Wireless Advanced Settings BG Protection Mode Use this field to configure IEEE 802.11b/g protection. Both 802.11b and 802.11g wireless communications occur at the same radio frequencies. When the CGN is wirelessly connected to 802.11b clients and 802.11g clients simultaneously, the performance of the link to 802.11g clients can deteriorate due to the presence of the 802.11b clients.
HITRON CGN USER’S GUIDE Table 29: The Wireless > Advanced Screen (continued) IGMP Snooping Use this field to turn Internet Group Management Protocol (IGMP) snooping on or off. IGMP is used to manage multicast groups. In multicast groups, data is transmitted to numerous IP addresses simultaneously. This is the most efficient method of providing the same data to many different recipients at the same time, since each data packet needs to be sent only once.
HITRON CGN USER’S GUIDE Table 29: The Wireless > Advanced Screen (continued) Operating Mode Use this field to configure how the CGN transmits in IEEE 802.11n mode. Mixed mode, on the other hand, allows 802.11a/b/g stations to tell when 802.11n transmissions are occurring, by transmitting RTS, CTS and CTS-to-Self messages in a format the legacy stations can understand. You should select this option if you have 802.11a/b/g stations in your networks, or if there are other 802.11a/b/g networks in your area.
HITRON CGN USER’S GUIDE Table 29: The Wireless > Advanced Screen (continued) Guard Interval In 802.11n networks, the guard interval is the amount of time that elapses between the transmission of symbols. This is to prevent Inter-Symbol Interference, or ISI, caused by echoes. NOTE: In modulated signals, each distinct modulated character (for example, each audible tone produced by a modem for transmission over telephone lines) is known as a symbol.
HITRON CGN USER’S GUIDE Table 29: The Wireless > Advanced Screen (continued) Reverse Direction Use this field to configure Reverse Direction Grant in Grant (RDG) IEEE 802.11n transmissions. Each data transfer requires that the wireless station initiating the transfer acquires permission from the access point to perform the transfer. This is known as a transmission opportunity, or TXOP. Each TXOP is timelimited; the initiating station may transmit for only a certain length of time, and then must cease.
HITRON CGN USER’S GUIDE Table 29: The Wireless > Advanced Screen (continued) Auto Block ACK Use this field to control how the CGN sends acknowledgement (ACK) requests in IEEE 802.11n transmissions. Normally, an ACK request is sent after every data or management frame in order to ensure that it has been received correctly. However, when you enable Auto Block ACK the CGN sends a burst of multiple frames together, and follows it with a single, block ACK request. Select Disable to not use block ACKs.
HITRON CGN USER’S GUIDE 6.4.1 CONFIGURING WMM PARAMETERS To set up your CGN’s Wifi MultiMedia (WMM) Quality of Service (QoS) settings, click the Configuration button in the Wireless > Advanced screen. The following screen displays. Figure 31: The Wireless > Advanced > WMM Configuration Screen NOTE: It is strongly recommended that you do not change the default values in this screen unless you have a good reason to do so. The following table describes the labels in this screen.
HITRON CGN USER’S GUIDE Table 30: The Wireless > Advanced > WMM Configuration Screen AC_BK This row controls the Background (BK) Access Category (AC) AC_VI This row controls the Video (VI) Access Category (AC) AC_VO This row controls the Voice (VO) Access Category (AC) AIFSN This column controls the Arbitration Inter-Frame Space Number for each Access Category. WMM gives the highest priority to the AC with the lowest AIFSN.
HITRON CGN USER’S GUIDE Table 30: The Wireless > Advanced > WMM Configuration Screen AckPolicy WMM defines two ACK policies: NormalAck and NoAck. NormalAck: the recipient of a transmission acknowledges each received packet. NoAck: the recipient of a transmission does not acknowledge received packets. This can improve data throughput in situations where signal quality is excellent, but in other situations can cause a significant increase in lost packets. Select the checkbox to use the NoAck policy.
HITRON CGN USER’S GUIDE Table 30: The Wireless > Advanced > WMM Configuration Screen TXOP This field defines the Transmission Opportunity (TXOP) length for each Access Category. This is the length of time during which the wireless device may to transmit over the wireless network, once it receives a transmission opportunity. ACM 106 This field specifies whether Admission Control is Mandatory (ACM) for each Access Category. Select the checkbox to have the wireless client control ACM. Version Version2.
HITRON CGN USER’S GUIDE 7 TROUBLESHOOTING Use this section to solve common problems with the CGN and your network. Problem: None of the LEDs Turn On The CGN is not receiving power, or there is a fault with the device. 1 Ensure that you are using the correct power adaptor. Using a power adaptor other than the one that came with your CGN can damage the CGN. 2 Ensure that the power adaptor is connected to the CGN and the wall socket (or other power source) correctly.
HITRON CGN USER’S GUIDE Problem: I Forgot the CGN’s IP Address 1 The CGN’s default LAN IP address is 192.168.0.1. 2 You can locate the CGN’s GUI by entering the LAN domain suffix into your browser’s address bar (on a computer connected to the LAN). The default LAN domain suffix is displayed in the WAN/LAN > IP screen’s Domain Suffix field. See The IP Screen on page 47 for more information.
HITRON CGN USER’S GUIDE 4 If you are attempting to connect over the wireless network, there may be a problem with the wireless connection. Connect via a LAN port instead. 5 If the above steps do not work, you need to reset the CGN. See Resetting the CGN on page 24. All user-configured data is lost, and the CGN is returned to its default settings. If you previously backed-up a more recent version your CGN’s settings, you can now upload them to the CGN; see The Backup Screen on page 52.
HITRON CGN USER’S GUIDE FCC STATEMENT Federal Communication Commission Interference Statement This equipment has been tested and found to comply with the limits for a Class B digital device, pursuant to Part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference in a residential installation.
HITRON CGN USER’S GUIDE IMPORTANT NOTE: FCC Radiation Exposure Statement: This equipment complies with FCC radiation exposure limits set forth for an uncontrolled environment. This equipment should be installed and operated with minimum distance 20cm between the radiator & your body. 111 Version Version2.0, 2.0,February February2012. 2012.
HITRON CGN USER’S GUIDE INDEX Numbers 802.
HITRON CGN USER’S GUIDE E I ETH 19 Ethernet 13 Ethernet cables 16 Ethernet port 21 event logging 13 IANA 27 ICMP 56, 72 IEEE 802.
HITRON CGN USER’S GUIDE M MAC address 30 MAC address filtering 93 MAC filtering 13, 55, 57 main window 24 Media Access Control address 30 MIMO 13 modem 12 modulation 32 Multiple-In, Multiple-Out 13 PIN configuration 13, 85 ping 13, 46, 50, 51, 55, 56, 72 port forwarding 13, 56, 65 port triggering 13, 69 port, Ethernet 21 ports 14 pre-authentication 92 pre-shared key 92 private IP address 28 push-button configuration 13 Q N QAM 32 QAM TCM 32 QoS 86 QPSK 32 navigation 24 navigation bar 24 network devices
HITRON CGN USER’S GUIDE TCP/IP 21 TDMA 32 traceroute 13, 46, 50, 51 triggering, port 13, 69 trusted computers 74 website blocking 74, 75, 79 website blocking, scheduled 13 WEP 13, 85 Wide Area Network 12 Wifi MultiMedia 86 Wifi Protected Setup 13, 85 window, main 24 Windows XP 21 wired security 13 wireless 83 wireless access point 12 wireless clients 83 wireless connection 109 Wireless Local Area Network 12 wireless networking standards 84 wireless security 13, 85, 90 wireless settings, basic 86 WLAN 12,
