- DL manuals
- 3Com
- Wireless Router
- 3CRWDR300A-73
- User Manual
3Com 3CRWDR300A-73 User Manual
Summary of 3CRWDR300A-73
Page 1
Http://www.3com.Com/ part no. 10016794 rev aa published july 2008 wireless 11n adsl firewall router user guide wl-603 3crwdr300a-73 3crwdr300b-73.
Page 2
3com corporation 350 campus drive, marlborough, ma usa 01752-3064 copyright © 2004, 2005, 2006, 2007, 2008, 3com corporation. All rights reserved. No part of this documentation may be reproduced in any form or by any means or used to make any derivative work (such as translation, transformation, or ...
Page 3: Ontents
C ontents a bout t his g uide naming convention 7 conventions 8 feedback about this user guide 9 related documentation 9 i ntroducing the r outer wireless 11n adsl firewall router 11 router advantages 14 package contents 14 minimum system and component requirements 15 physical features 15 i nstallin...
Page 4
Windows vista 29 windows xp 30 macintosh 30 disabling pppoe and pptp client software 31 disabling web proxy 31 r unning the s etup w izard accessing the router using the 3com detect application 33 running the 3com detect application 33 accessing the setup wizard 35 wizard - change password 38 wizard...
Page 5
Dns 88 clone mac address 89 firewall 90 spi 90 special applications 94 virtual servers 95 dmz 96 pc privileges 97 schedule rule 99 url filter 100 advanced 101 security 101 vlan 104 static routes 106 rip 108 ddns 110 snmp 111 syslog 112 proxy arp 113 qos settings 114 traffic mapping 115 vpn 117 syste...
Page 6: Ip A
Support/feedback 134 support 134 feedback 134 t roubleshooting basic connection checks 135 browsing to the router configuration screens 136 connecting to the internet 136 forgotten password and reset to factory defaults 138 wireless networking 139 recovering from corrupted software 140 power adapter...
Page 7
S afety i nformation e nd u ser s oftware l icense a greement o btaining s upport for y our 3c om p roducts register your product to gain service benefits 160 solve problems online 160 purchase extended warranty and professional services 160 access software downloads 161 contact us 161 telephone tec...
Page 9: Bout
A bout t his g uide this guide describes how to install and configure the 3com wireless 11n adsl firewall router (3crwdr300a-73, 3crwdr300b-73). This guide is intended for use by those responsible for installing and setting up network equipment; consequently, it assumes a basic working knowledge of ...
Page 10
8 a bout t his g uide conventions table 1 and table 2 list conventions that are used throughout this guide. Table 1 notice icons icon notice type description information note information that describes important features or instructions. Caution information that alerts you to potential loss of data ...
Page 11
Feedback about this user guide 9 feedback about this user guide your suggestions are very important to us. They will help make our documentation more useful to you. Please e-mail comments about this document to 3com at: pddtechpubs_comments@3com.Com please include the following information when comm...
Page 12
10 a bout t his g uide.
Page 13: Ntroducing
1 i ntroducing the r outer welcome to the world of networking with 3com ® . In the modern business environment, communication and sharing information is crucial. Computer networks have proved to be one of the fastest modes of communication but, until recently, only large businesses could afford the ...
Page 14
12 c hapter 1: i ntroducing the r outer figure 1 example network without a router when you use the router in your network ( figure 2 and figure 3 ), it becomes your connection to the internet. Connections can be made directly to the router, or to an officeconnect switch or hub, expanding the number ...
Page 15
Wireless 11n adsl firewall router 13 figure 3 example network using a firewall router (without splitter).
Page 16
14 c hapter 1: i ntroducing the r outer router advantages the advantages of the router include: ■ shared internet connection for both wired and wireless computers ■ high speed 802.11n wireless networking ■ no need for a dedicated, “always on” computer serving as your internet connection ■ cross-plat...
Page 17
Minimum system and component requirements 15 minimum system and component requirements your router requires that the computer(s) and components in your network be configured with the following: ■ a computer with an operating system that supports tcp/ip networking protocols (for example windows 2000/...
Page 18
16 c hapter 1: i ntroducing the r outer 1 power led (illuminated logo) white the 3com logo serves as power ok indicator. This led will light if the router is receiving power from the power adapter. If it is not lit check the power adapter connections. Refer to chapter 6 troubleshooting . 2 alert led...
Page 19
Physical features 17 7 wps led blue wifi protected setup (wps) is a standard for easy and secure establishment of a wireless network, allowing wireless clients to connect securely to routers and access points. The wps led shows the status of the wps function. It has a number of modes to help monitor...
Page 20
18 c hapter 1: i ntroducing the r outer the rear panel ( figure 5 ) of the router contains one adsl port, four lan ports, one wifi on/off button, a reset button, one power adapter socket, and one wps button. Figure 5 router - rear panel 1 wireless antennae the antennaes should be placed in a ‘v’ pos...
Page 21
Physical features 19 4 wifi on/off button use this button to turn on/turn off the wireless function. Press the button for 3 seconds. 5 reset button if you want to reset your router to factory default settings, or cannot access the web management interface (for example, due to a lost password), then ...
Page 22
20 c hapter 1: i ntroducing the r outer.
Page 23: Nstalling
2 i nstalling the r outer introduction this chapter will guide you through a basic installation of the router, including: ■ connecting the router to the internet. ■ connecting the router to your network. ■ setting up your computers for networking with the router. Safety information please note the f...
Page 24
22 c hapter 2: i nstalling the r outer when positioning your router, ensure: ■ it is out of direct sunlight and away from sources of heat. ■ cabling is away from power lines, fluorescent lighting fixtures, and sources of electrical noise such as radios, transmitters and broadband amplifiers. ■ water...
Page 25
Powering up the router 23 mounting instructions for wood walls to wall mount the unit: 1 make two holes 98 mm (3.9 in.) apart. 2 fix two suitable screws directly into the wall, leaving their heads 3 mm (0.12 in.) clear of the wall surface. The screws should be at least 20 mm (0.75 in.) long. 3 remov...
Page 26
24 c hapter 2: i nstalling the r outer figure 6 connecting the router (with splitter) figure 7 connecting the router (without splitter) 1 run the provided telephone cable from the wall jack providing adsl service to the adsl port on your router. When inserting an adsl rj-11(annex a) or rj-45 (annex ...
Page 27
Connecting the router 25 2 then: ■ if you are using a full-rate (g.Dmt) connection, your service provider will attach the outside adsl line to a data/voice splitter. In this case you can connect your phones and computer directly to the splitter as shown below ( figure 8 ): or ■ if you are using a sp...
Page 28
26 c hapter 2: i nstalling the r outer figure 9 installing without a splitter you have now completed the hardware installation of your router. Next you need to set up your computers so that they can make use of the router to communicate with the internet. 3com recommends that you perform the initial...
Page 29: Etting
3 s etting u p y our c omputers the router has the ability to dynamically allocate network addresses to the computers on your network, using dhcp. However, your computers need to be configured correctly for this to take place. To change the configuration of your computers to allow this, follow the i...
Page 30
28 c hapter 3: s etting u p y our c omputers figure 10 local area properties screen 6 ensure that the options obtain an ip address automatically, and obtain dns server address automatically are both selected as shown in figure 11 . Click ok. Figure 11 internet protocol (tcp/ip) properties screen 7 r...
Page 31
Obtaining an ip address automatically 29 windows vista 1 from the windows start menu, select settings > network. 2 click on organize. Select properties. 3 click on manage network > connections. 4 double click local area connection. Select properties and click continue. 5 a screen similar to figure 1...
Page 32
30 c hapter 3: s etting u p y our c omputers windows xp 1 from the windows start menu, select control panel. 2 click on network and internet connections. 3 click on the network connections icon. 4 double click on lan or high speed connection icon. A screen titled local area connection status will ap...
Page 33
Disabling pppoe and pptp client software 31 disabling pppoe and pptp client software if you have pppoe client software installed on your computer, you will need to disable it. To do this: 1 from the windows start menu, select settings > control panel. 2 double click on internet options. 3 select the...
Page 34
32 c hapter 3: s etting u p y our c omputers.
Page 35: Unning
4 r unning the s etup w izard accessing the router using the 3com detect application the 3com detect application works by automatically locating your router, establishing what ip address it is using and then launching your default web browser to connect directly to it. The application will only loca...
Page 36
34 c hapter 4: r unning the s etup w izard figure 15 3com detect application if the computer has multiple network adapters, select the adapter that connects the computer to the network or the router, click next. You will then be offered the choice of searching the same subnet that your pc is on for ...
Page 37
Accessing the setup wizard 35 figure 18 router list screen accessing the setup wizard the router setup program is web-based, which means that it is accessed through your web browser (netscape navigator 4.7 or higher, internet explorer 6.0 or higher, or mozilla 1.2.1 or higher, or apple’s safari). To...
Page 38
36 c hapter 4: r unning the s etup w izard 4 to log in as an administrator, enter the password (the default password is admin) in the system password field and click log in (see figure 20 ). Figure 20 router login screen 5 when you have logged in, ■ if you are logging in for the first time, the coun...
Page 39
Accessing the setup wizard 37 the wizard will then launch automatically (refer to figure 24 ). You will be guided step by step through a basic setup procedure. ■ if the router has been configured previously, the welcome screen will appear ( figure 22 ). There are three tabs: notice board, password a...
Page 40
38 c hapter 4: r unning the s etup w izard figure 23 password screen 1 to change the current password, enter the password in the current password field. 2 enter the new password in the new password field, and enter it again in the confirm new password field. 3 enter the time period in login timeout ...
Page 41
Accessing the setup wizard 39 wizard - time and time zone the time and time zone screen allows you to set up the time for the router. Figure 25 time and time zone screen 1 select the correct base date and time. 2 if you want to automatically synchronize the router with a public time server, check th...
Page 42
40 c hapter 4: r unning the s etup w izard wizard - connection type the connection type screen allows you to set up the router for the type of internet connection you have. Before setting up your connection type, have your account information from your isp ready. Figure 26 connection type screen sel...
Page 43
Accessing the setup wizard 41 pppoe pppoe is often used for dsl connection. To set up the router for use with a pppoe (ppp over ethernet) connection, use the following procedure: figure 27 pppoe screen 1 enter your user name in the username field. 2 enter your password in the password field. 3 re-ty...
Page 44
42 c hapter 4: r unning the s etup w izard pppoa to set up the router for use with a ppp over atm (pppoa) connection, use the following procedure: figure 28 pppoa screen 1 enter your user name in the username field. 2 enter your password in the password field. 3 re-type your password in the retype p...
Page 45
Accessing the setup wizard 43 bridge mode (for a single pc) selecting the bridge mode sets the device into 1483 bridging mode in which the device connects lans and wan together. It operates as a data link layer device that acts to limit the traffic between two network segments by filtering the data ...
Page 46
44 c hapter 4: r unning the s etup w izard routing mode over atm the routing mode over atm uses fixed/static ip addresses, which are provided by your isp, to connect to the internet. Obtain the information on this screen from your isp. Figure 30 routing mode over atm screen 1 enter your internet ip ...
Page 47
Accessing the setup wizard 45 dynamic/fixed ip in 1483 bridge mode (for multiple pcs) for bridge mode to work, you need to assign an ip address to the router. You can either configure the router to obtain an ip address automatically from a dhcp server or assign a fixed or static ip address to it. Fi...
Page 48
46 c hapter 4: r unning the s etup w izard wizard - lan settings the lan settings screen allows you to set the default ip address and dhcp client ip range for the router. Figure 32 the lan settings screen 1 to change the router’s default ip address, enter the new ip address in the ip address field, ...
Page 49
Accessing the setup wizard 47 wizard - wireless setting the wireless settings screen allows you to set up the ssid and radio channel used for the wireless connection. Figure 33 wireless setting screen 1 select the channel you want to use from the channel drop-down menu. 2 specify the ssid to be used...
Page 50
48 c hapter 4: r unning the s etup w izard figure 34 security mode screen 64-bit wep wep is the basic mechanism to transmit your data securely over the wireless network. Matching encryption keys must be setup on your router and wireless client devices to use wep. Figure 35 64-bit wep screen to enabl...
Page 51
Accessing the setup wizard 49 2 click next. Note that all four wep keys on each device of the same wireless network must be identical. 128-bit wep wep is the basic mechanism to transmit your data securely over the wireless network. Matching encryption keys must be set up on your router and wireless ...
Page 52
50 c hapter 4: r unning the s etup w izard wpa-psk (no server) wpa (wi-fi protected access) provides dynamic key changes and constitutes the best security solution. If your network does not have a radius server. Select the no server option. Note that in home and very small office deployments, psk is...
Page 53
Accessing the setup wizard 51 wpa with radius server wpa (wi-fi protected access) provides dynamic key changes and constitutes the best security solution. This function requires that a radius server is running on the network. Figure 38 wpa with radius server screen 1 select wpa with radius server fr...
Page 54
52 c hapter 4: r unning the s etup w izard wizard - configuration summary when you have completed the setup wizard, a configuration summary will appear. Verify the configuration information of the router and then click apply to save your settings. 3com recommends that you print out this page for you...
Page 55: Onfiguring
5 c onfiguring the r outer navigating through the router configuration screens this chapter describes all the screens available through the router configuration screens, and is provided as a reference. To get to the configuration screens, enter the router’s default ip in the location bar of your bro...
Page 56
54 c hapter 5: c onfiguring the r outer lan settings your router is equipped with a dhcp server that will automatically assign ip addresses to each computer on your network. The factory default settings for the dhcp server will work with most applications. If you need to make changes to the settings...
Page 57
Lan settings 55 1 enter the router’s ip address and subnet mask in the appropriate fields. The default ip address is 192.168.1.1. 2 if you want to use the router as a dhcp server, check enable in the dhcp server field. 3 enter the ip address range in the ip pool start address and ip pool end address...
Page 58
56 c hapter 5: c onfiguring the r outer ■ host name — the client machine’s host name, if configured. ■ mac address — the media access control (mac) address of the client’s network card. ■ client type — whether the client is connected to the router by wired or wireless connection. ■ check the fix che...
Page 59
Wireless settings 57 wireless settings the wireless settings screens allow you to configure the settings for the wireless connections. You can enable or disable the wireless connection for your lan. When disabled, no wireless pcs can gain access to either the internet or other pcs on your wired or w...
Page 60
58 c hapter 5: c onfiguring the r outer configuration the wireless configuration screen allows you to turn on/ turn off the wireless function, and set up basic wireless settings. You can also enable/disable the wireless function using the wifi on/off button at the back of the router. Figure 44 wirel...
Page 61
Wireless settings 59 6 select whether your router will operate in 11b mode only, 11g mode only, 11n mode only, or mixed mode from the wireless mode drop-down menu. If your network contains 11b, 11g, and 11n clients, select the mixed mode. If your network contains just one type of clients only, selec...
Page 62
60 c hapter 5: c onfiguring the r outer encryption this feature prevents any non-authorized party from reading or changing your data over the wireless network. Figure 45 encryption screen select the wireless security mode that you want to use from the drop-down menu, and click apply. There are five ...
Page 63
Wireless settings 61 64-bit wep wep is the basic mechanism to transmit your data securely over the wireless network. Matching encryption keys must be setup on your router and wireless client devices to use wep. Note that 3com recommends using wpa/wpa2 to secure your wireless connection. Figure 46 64...
Page 64
62 c hapter 5: c onfiguring the r outer 128-bit wep wep is the basic mechanism to transmit your data securely over the wireless network. Matching encryption keys must be set up on your router and wireless client devices to use wep. Note that 3com recommends using wpa/wpa2 to secure your wireless con...
Page 65
Wireless settings 63 wpa-psk (no server) wpa (wi-fi protected access) provides dynamic key changes and constitutes the best security solution. If your network does not have a radius server. Select the no server option. For home network or very small business networking environment, psk is typically ...
Page 66
64 c hapter 5: c onfiguring the r outer wpa (with radius server) wpa (wi-fi protected access) provides dynamic key changes and constitutes the best security solution. This function requires that a radius server is running on the network. Figure 49 wpa (with radius server) screen 1 select wpa with ra...
Page 67
Wireless settings 65 wps wi-fi protected setup (wps) integrates the new wlan clients into your wireless network easily. You can enable this function by entering the pin code via the web ui page or by pressing the wps button on the rear side of the device. Figure 50 wps screen two methods to setup th...
Page 68
66 c hapter 5: c onfiguring the r outer ■ wps-pbc 1 press the wps button located on the rear of the router. Note that this setup process will only be active for 2 minutes. Follow the instruction of your wlan nic to set up the wps. The wps led shows the status of the wps function. It has a number of ...
Page 69
Wireless settings 67 connection control this feature is used to filter the clients based on their mac addresses. Using this function, you can limit the access right of the wireless clients to this router. Check the enable mac address filtering checkbox, the connection control screen will appear. Fig...
Page 70
68 c hapter 5: c onfiguring the r outer client list you can view the list of all wireless clients that are connected to the router. Figure 52 client list screen click refresh to update the list. Wmm wireless multimedia (wmm) mode, which supports devices that meet the 802.11e qbss standard. Wmm uses ...
Page 71
Wireless settings 69 access categories – wmm defines four access categories (acs): voice, video, best effort, and background. These categories correspond to traffic priority levels and are mapped to ieee 802.1d priority tags. The direct mapping of the four acs to 802.1d priorities is specifically in...
Page 72
70 c hapter 5: c onfiguring the r outer cwmin (minimum contention window) – the initial upper limit of the random backoff wait time before wireless medium access can be attempted. The initial wait time is a random value between zero and the cwmin value. Specify the cwmin value in the range 0-15 micr...
Page 73
Wireless settings 71 wds the router supports wds (wireless distribution system). Wds enables one or more access points to rebroadcast received signals to extend range and reach, though this can affect the overall throughput of data. Note that wds implementation can vary from product to product. Henc...
Page 74
72 c hapter 5: c onfiguring the r outer figure 55 add wds screen on the add wds screen, enter the mac address of the access point, up to 4 aps can be added to the ap mac address table, and click apply. Here is an example of how to setup two units of 3com router over wds. Note that when setting up tw...
Page 75
Wireless settings 73 figure 56 first router add wds screen access the web ui of the second router, repeat the above steps to add the first router to the wds table (see figure 57 ). Figure 57 second router add wds screen.
Page 76
74 c hapter 5: c onfiguring the r outer advanced the advanced screen allows you to configure detailed settings for your wireless connection. Please note that you should not change this settings unless you are an expert user. There are six parameters that you can configure: figure 58 wireless advance...
Page 77
Wireless settings 75 ■ ap isolation mode: ap isolation is a function to prevent wireless clients connected with the device from communicating with one another. When enabled, this creates a separate virtual network for your wireless network, each of your wireless client will be in its own virtual net...
Page 78
76 c hapter 5: c onfiguring the r outer internet settings you can configure the settings for your wan port connection. Atm pvc this feature is used to configure the parameters for your internet connection. The information necessary to complete these screens should be obtained from your isp. Check wi...
Page 79
Internet settings 77 disable selecting this option means that you do not want your router to connect to the internet. Figure 60 disable internet connection screen pppoe ppp over ethernet, provides routing for multiple pcs, this mode is often used for the dsl connection. To configure this function co...
Page 80
78 c hapter 5: c onfiguring the r outer 1 select pppoe from the protocol drop-down menu. 2 enter the ip address and subnet mask information. 3 enter the user name assigned to you by your isp in the username field. And enter the password assigned to you by your isp in the password field. Re-enter you...
Page 81
Internet settings 79 12 qos class: select cbr, ubr or vbr. ■ cbr (constant bit rate): the cbr service class is intended for real-time applications, for example, those requiring tightly constrained delay and delay variation, such as voice and video applications. The consistent availability of a fixed...
Page 82
80 c hapter 5: c onfiguring the r outer pppoa ppp over atm, this is a popular choice among european dsl providers. To configure this function correctly, you should obtain the information from your isp. Figure 62 pppoa settings screen 1 select pppoa from the protocol drop-down menu. 2 ip assigned by ...
Page 83
Internet settings 81 7 ipcp is used by ppp protocol to get one ip address from the ppp server. Ipcp subnet function allows you to obtain a subnet (ip address and netmask), rather than an ip address. Check this box to enable the function. 8 ipcp subnet populate dhcp server: enable this function to al...
Page 84
82 c hapter 5: c onfiguring the r outer bridge mode if your isp limits access to the internet to specific computers, this means that traffic to/from these computers only will be forwarded. In this case, bridge mode is used to connect to the isp. The isp will generally give one internet account and l...
Page 85
Internet settings 83 ■ vbr (variable bit rate): qos class defined by the atm forum for atm networks. Vbr is subdivided into a real time (rt) class and non-real time (nrt) class. Vbr (rt) is used for connections in which there is a fixed timing relationship between samples. Vbr (nrt) is used for conn...
Page 86
84 c hapter 5: c onfiguring the r outer routing mode over atm rfc1483/2684 routed encapsulation in routing mode, it carries ip datagrams directly over atm. Dhcp client function can also be enabled to obtain an ip address dynamically. Figure 64 routing mode over atm screen 1 select routing mode over ...
Page 87
Internet settings 85 9 qos class: select cbr, ubr or vbr. ■ cbr (constant bit rate): the cbr service class is intended for real-time applications, for example, those requiring tightly constrained delay and delay variation, such as voice and video applications. The consistent availability of a fixed ...
Page 88
86 c hapter 5: c onfiguring the r outer dynamic/fixed ip in 1483 bridge mode dynamic/fixed ip in 1483 bridge mode uses the same encapsulation as 1483 bridging but with bridging function disabled. Dhcp client function can also be enabled to obtain an ip address dynamically. Figure 65 dynamic/fixed ip...
Page 89
Internet settings 87 6 if your isp uses dhcp to automatically assign ip addresses, check the dhcp client checkbox. 7 check the add default route checkbox to set this pvc as the default route, this is used when you configure more than one pvc for the router. 8 enter the vpi/vci values. Or you can cli...
Page 90
88 c hapter 5: c onfiguring the r outer dns domain name service (or server) is an internet service that translates domain names into ip addresses. Because domain names are alphabetic, they're easier to remember. The internet however, is really based on ip addresses. Every time you use a domain name,...
Page 91
Internet settings 89 clone mac address to configure the hostname and clone mac address information for your router, select internet settings, then go to the clone mac address tab. The hostname and mac address screen displays. Figure 67 hostname and clone mac address screen 1 some isps require a host...
Page 92
90 c hapter 5: c onfiguring the r outer firewall this section is for configuration settings of the router’s firewall function. Your router is equipped with a firewall that will protect your network from a wide array of common hacker attacks including ping of death (pod) and denial of service (dos) a...
Page 93
Firewall 91 to enable the firewall function: 1 select the level of protection (high, medium, or low) that you desire from the firewall level drop-down menu. 2 click apply. ■ for low and medium levels of firewall protection, refer to figure 69 . For low level of firewall protection, the dos and spi f...
Page 94
92 c hapter 5: c onfiguring the r outer figure 70 high level firewall protection screen if you select high level of protection, you would have an option to configure additional parameters for the firewall. ■ fragmentation half-open wait - configures the number of seconds that a packet state structur...
Page 95
Firewall 93 ■ total incomplete tcp/udp sessions high - defines the rate of new unestablished sessions that will cause the software to start deleting half-open sessions. ■ total incomplete tcp/udp sessions low - defines the rate of new unestablished sessions that will cause the software to stop delet...
Page 96
94 c hapter 5: c onfiguring the r outer special applications special applications (port triggering) let you choose specific ports to be open for specific applications to work properly with the network address translation (nat) feature of the router. Figure 71 special applications screen a list of po...
Page 97
Firewall 95 virtual servers the virtual servers feature allows you to route external (internet) calls for services such as a web server (port 80), ftp server (port 21), or other applications through your router to your internal network. Since your internal computers are protected by a firewall, mach...
Page 98
96 c hapter 5: c onfiguring the r outer 3 specify the public port that will be seen by clients on the internet, and the lan port which the traffic will be routed to. 4 you can enable or disable each virtual server entry by checking or unchecking the appropriate enabled checkbox. 5 click apply to sav...
Page 99
Firewall 97 address is not known, or if more than one pc on the internet will need to access the dmz pc, then set the public ip address to 0.0.0.0. In the default setting, (line 1) refer to figure 73 , public ip address is set to 0.0.0.0 and it is automatically transformed by default wan ip. We only...
Page 100
98 c hapter 5: c onfiguring the r outer to edit or delete specific existing filtering rules, click on edit or delete for the appropriate filtering rule. Figure 75 pc privileges add pc screen 1 enter a description in the client pc description field, and the ip address or ip address range into the cli...
Page 101
Firewall 99 schedule rule the router can be configured to restrict access to the internet, email or other network services at specific days and times. Define the time in this screen, and define the rules in the pc privileges screen (see page 97 ). Figure 76 schedule rule screen 1 click add rule to a...
Page 102
100 c hapter 5: c onfiguring the r outer url filter to configure the url filter feature, use the table on the url filter screen to specify the web sites (www.Somesite.Com) and/or keywords you want to filter on your network. For example, entering a keyword of xxx would block/allow access to any url t...
Page 103
Advanced 101 advanced the advanced section allows you to set additional parameter details for the router. You can configure: ■ security ■ vlan ■ static routes ■ rip ■ ddns ■ snmp ■ syslog ■ proxy arp ■ qos settings security use the security screen to set the advanced security settings for the router...
Page 104
102 c hapter 5: c onfiguring the r outer ■ nat — (network address translation), nat is the method by which the router shares the single ip address assigned by your isp with the computers on your network. This function should only be disabled by advanced users, and if your isp assigns you multiple ip...
Page 105
Advanced 103 ■ mss clamping — you might not be able to browse some web sites or to send email messages that contain attachments from an internet connection sharing client computer if your outbound connection is through a windows xp-based internet connection sharing host computer that uses point-to-p...
Page 106
104 c hapter 5: c onfiguring the r outer vlan a vlan is a flexible group of devices that can be located anywhere in a network, but they communicate as if they are on the same physical segment. With vlans, you can segment your network without being restricted by physical connections - a drawback of t...
Page 107
Advanced 105 figure 80 vlan screen click add vlan to create a new entry (see figure 81 ). Figure 81 vlan profile screen ■ enter a description for your vlan in the description field. ■ enter the ip address and subnet mask in the corresponding fields. ■ select to set the nat domain as public or privat...
Page 108
106 c hapter 5: c onfiguring the r outer static routes you can configure static routes in this screen. You can setup a static route that will get all traffic with destination to business network to go through vpn tunnel and the rest outside of the vpn tunnel. Figure 82 static routes screen to add a ...
Page 109
Advanced 107 ■ gateway — the router used to route data to the network specified by the network address. ■ interface — select the interface. Note that you should only configure either the gateway information or select the interface. After you have finished making changes to the table, click apply. He...
Page 110
108 c hapter 5: c onfiguring the r outer rip rip (routing information protocol) - rip allows the network administrator to set up routing information on one rip-enabled device (this router), and send that information to all rip-enabled devices on the network. Figure 85 rip parameter screen you can se...
Page 111
Advanced 109 5 use the poison reverse drop-down menu to enable or disable poison reverse on the router. Enabling poison reverse on your router allows it to indicate to other rip-enabled devices that they have both routes that point to each other, preventing data loops. 6 use the authentication requi...
Page 112
110 c hapter 5: c onfiguring the r outer ddns the router provides a list of dynamic dns providers for you to choose from. Dynamic domain name server (ddns) enables you to map a static domain name to a dynamic ip address. This function allows you to create a hostname that points to your dynamic ip or...
Page 113
Advanced 111 snmp snmp (simple network management protocol) allows remote management of your router by a pc that has an snmp management agent installed. Check the enable snmp box, the table will appear. Figure 87 snmp screen enter the system contact, system name, and system location information. To ...
Page 114
112 c hapter 5: c onfiguring the r outer you can configure the router to send status messages to the snmp management agent if a problem occurs on the network. To configure snmp traps: 1 in the ip address field, enter the ip address of the pc to which you want your router to send status messages. 2 i...
Page 115
Advanced 113 proxy arp proxy arp is the technique in which one host, usually a router, answers arp requests intended for another machine. By “faking” its identity, the router accepts responsibility for routing packets to the “real” or intended destination. This heightens the security for your networ...
Page 116
114 c hapter 5: c onfiguring the r outer qos settings the qos (quality of service) function allows you to differentiate your network traffic and provide it with high-priority forwarding service. The bandwidth gap between lan and wan may significantly degrade the performance of critical network appli...
Page 117
Advanced 115 traffic mapping up to 16 rules can be defined to classify your network traffic into diffserv forwarding groups and outgoing connections. Figure 91 traffic mapping screen click add, the edit traffic class screen will appear. Figure 92 edit traffic class screen 1 define the rule name. 2 s...
Page 118
116 c hapter 5: c onfiguring the r outer figure 93 detailed edit traffic class screen enter the information, then click apply to make the settings to take effect..
Page 119
Vpn 117 vpn the router has a virtual private network (vpn) feature that provides a secure link between remote users and the corporate network by establishing an authenticated and encrypted tunnel for passing secure data over the internet. The router supports three modes of vpn operation: ■ ipsec (ip...
Page 120
118 c hapter 5: c onfiguring the r outer figure 94 vpn screen 1 check the enable ipsec box, configuration details screen appears. Figure 95 enable ipsec screen 2 enter the local id name of your vpn. (the default is 3comvpn) 3 click add to create a new entry, see figure 96 ..
Page 121
Vpn 119 figure 96 add new vpn tunnel configuration screen on the vpn tunnel parameter screen, 1 set the vpn tunnel type to ipsec. 2 enter a descriptive name for the tunnel in the tunnel name field. 3 remote vpn gateway - select ip address, and then enter the ip address in the ip address/host name fi...
Page 122
120 c hapter 5: c onfiguring the r outer 5 select the local party id, and then enter the id, network address and subnet mask of the local secure group. The network address of the local secure group is usually the network address of the local network. 6 from the key management drop-down menu, select ...
Page 123
Vpn 121 check the enable l2tp box, configuration details screen appears, see figure 97 . Figure 97 enable l2tp screen 1 enter the pre-shared key for l2tp server over ipsec setting. 2 define the ip address pool for l2tp clients, enter the start/end address. 3 click add to create a new entry, see figu...
Page 124
122 c hapter 5: c onfiguring the r outer 1 set the tunnel type to l2tp over ipsec. 2 enter a descriptive name for the tunnel in the tunnel name field. 3 enter the user name and password. 4 enter the idle timeout value. 5 set the l2tp type setting to l2tp server, or l2tp client. ■ if you set the type...
Page 125
Vpn 123 figure 100 add new pptp vpn tunnel screen 1 set the tunnel type to pptp. 2 enter a descriptive name for the tunnel in the tunnel name field. 3 enter the user name and password. 4 enter the idle timeout value. 5 set the pptp type setting to pptp server, or pptp client. ■ if you set the type a...
Page 126
124 c hapter 5: c onfiguring the r outer system tools these screens allow you to manage different parameters of the router and perform certain administrative functions. Restart router sometimes it may be necessary to restart (or reboot) the router. Restarting the router from this screen will not del...
Page 127
System tools 125 ■ backup configuration — you can save your current configuration by clicking the backup button. Saving your configuration will allow you to restore it later if your settings are lost or changed. It is recommended that you backup your current configuration before performing a firmwar...
Page 128
126 c hapter 5: c onfiguring the r outer time zone you can set the time settings for the router on this screen. Figure 104 time zone screen the router keeps time by connecting to a network time protocol (ntp) server. This allows the router to synchronize the system clock to the internet. The synchro...
Page 129
System tools 127 ping the ping tool is used to test if the network is working properly. Figure 105 ping screen 1 enter the ip address or domain name in the ip address or domain name field, and click ping. 2 select from the number of times to ping drop-down menu. 3 the router keeps a log of the ping ...
Page 130
128 c hapter 5: c onfiguring the r outer traceroute traceroute is the program that shows you the route over the network between two systems, listing all the intermediate routers a connection must pass through to get to its destination. It can help you determine why your connections to a given server...
Page 131
System tools 129 dns lookup dns lookup is the process of resolving an ip address (i.E. 192.168.11.137) to a host name (i.E. Xxxcompany.Net). Figure 107 dns lookup screen 1 enter the ip address or domain name in the ip address or domain name field, and click dns lookup. 2 the router keeps a log of th...
Page 132
130 c hapter 5: c onfiguring the r outer status and logs you can use the status screen to view version numbers for your router’s software and hardware and check the status of connections to internet, lan and wlan interfaces. Status this screen shows router status and statistics. ■ release - use this...
Page 133
Status and logs 131 adsl status this screen shows adsl modem status and statistics. Figure 110 adsl status screen atm pvc status this screen shows atm pvc status and statistics. ■ click disconnect to disconnect from your isp. ■ click connect to make a connection with your isp. Figure 111 atm pvc sta...
Page 134
132 c hapter 5: c onfiguring the r outer routing table this screen displays details for the default routing used by your router and any routing created using static routing or rip. Figure 112 routing table screen logs this screen shows any attempts that have been made to gain access to your network ...
Page 135
Status and logs 133 traffic statistics this screen shows the traffic statistics. Use the refresh button to update the information. Note that the current implementation only shows traffic statistics per forwarding group. Hence if qos is not enabled, this screen will always show zero values. Figure 11...
Page 136
134 c hapter 5: c onfiguring the r outer support/feedback you can use the support/feedback screen to obtain support and help, and also provide feedback to 3com. Support figure 115 support screen this screen shows support information. Feedback to provide feedback to 3com, please click provide feedbac...
Page 137: Roubleshooting
6 t roubleshooting basic connection checks the router has been designed to aid you when detecting and solving possible problems with your network. These problems are rarely serious; the cause is usually a disconnected or damaged cable, or incorrect configuration. If this section does not solve your ...
Page 138
136 c hapter 6: t roubleshooting browsing to the router configuration screens if you have connected your router and computers together but cannot browse to the router configuration screens, check the following: ■ confirm that the physical connection between your computer and the router is ok, and th...
Page 139
Connecting to the internet 137 ■ if the adsl sync led is off or flashes but does not go to a steady on state, please go through the following steps before contacting 3com support. 1 your isp may have upgraded their dslam equipment: verify your 3com router has the latest software/firmware available i...
Page 140
138 c hapter 6: t roubleshooting ■ ensure that you have entered the correct information into the router configuration screens as required by your internet service provider. Use the internet settings screen to verify this. ■ verify the connection type is the type required by your service provider ■ a...
Page 141
Wireless networking 139 wireless networking ■ ensure that you have an 802.11b or 802.11g or 802.11n wireless adapter for each wireless computer, and that it is correctly installed and configured. Verify that each wireless computer has either windows 98 or higher or mac os 8.5 or higher. ■ verify tha...
Page 142
140 c hapter 6: t roubleshooting unsure try relocating both the wireless computers and the router to establish whether this problem exists. ■ most wireless computer adapters will scan the channels for the wireless router. If a wireless computer has not located the router then try initiating a search...
Page 143
Power adapter 141 4 using the web browser on the computer, enter the following url in the location bar: http://192.168.1.1 . This will connect you to the recovery utility in the router. 5 follow the on-screen instructions. Enter the path and file name of the software image file. 6 when the upload ha...
Page 144
142 c hapter 6: t roubleshooting for reference, the part number for the power adapter supplied for your region is: 3com number region 3c15vhus us and canada 3c15vhuk uk 3c15vhme europe and middle east 3c15vhaa australasia (except japan and korea) 3c15vhsa south africa 3c15vhra argentina.
Page 145
Frequently asked questions 143 frequently asked questions how do i reset the router to factory defaults? See forgotten password and reset to factory defaults on page 138 . How many computers on the lan does the router support? Up to a maximum number of 253 total users on the lan are supported. Pleas...
Page 146
144 c hapter 6: t roubleshooting.
Page 147: Ip A
A ip a ddressing the internet protocol suite the internet protocol suite consists of a well-defined set of communications protocols and several standard application protocols. Transmission control protocol/internet protocol (tcp/ip) is probably the most widely known and is a combination of two of th...
Page 148
146 a ppendix a: ip a ddressing for your network to work correctly, all devices on the network must have: ■ the same sub-network address. ■ the same subnet mask. The only value that will be different is the specific host device number. This value must always be unique. An example ip address is ‘192....
Page 149
How does a device obtain an ip address and subnet mask? 147 this type of ip address operates on a subnet mask of ‘255.255.0.0’. See table 4 for an example about how a network (only four computers represented) and a router might be configured. Table 4 ip addressing and subnet masking how does a devic...
Page 150
148 a ppendix a: ip a ddressing auto-ip addressing network devices use automatic ip addressing if they are configured to acquire an address using dhcp but are unable to contact a dhcp server. Automatic ip addressing is a scheme where devices allocate themselves an ip address at random from the indus...
Page 151: Echnical
B t echnical s pecifications this section lists the technical specifications for the 3com wireless 11n adsl firewall router. 3com wireless 11n cable/dsl firewall router interfaces adsl connection lan connection — four 10 mbps/100 mbps dual speed ethernet ports (10base-t/100base-tx) antenna two exter...
Page 152
150 a ppendix b: t echnical s pecifications standard ieee 802.11g, direct sequence spread spectrum (dsss) transmission rate: 54 mbps, automatic fallback to 48, 36, 24, 18, 12, or 6 mbps maximum channels: 13 range up to 304.8 m (1000 ft) sensitivity: 6, 12, 18, 24, 36, 48 mbps: -85 dbm; 54 mbps -66 d...
Page 153
3com wireless 11n cable/dsl firewall router 151 standards functional: iso 8802/3 ieee 802.3 ieee 802.11b, 802.11g safety: en 60950-1: 2001 ul 60950-1 iec 60950-1: 2001 emc: fcc part15 b en 55022 en 55024 en 61000 en 301 489-1 ices-003 radio fcc part 15 c rss-210 en 300 328 environmental: en 60068 (i...
Page 154
152 a ppendix b: t echnical s pecifications ethernet performance the router complies to the ieee 802.3i, u and x specifications. Cable specifications the router supports the following cable types and maximum lengths: ■ category 5 (fast ethernet or dual speed ethernet) twisted pair — shielded and uns...
Page 155: Afety
C s afety i nformation important safety information warning: warnings contain directions that you must follow for your personal safety. Follow all directions carefully. You must read the following safety information carefully before you install or remove the unit: warning: the router generates and u...
Page 156
154 a ppendix c: s afety i nformation warning: rj-45 ports. These are shielded rj-45 data sockets. They cannot be used as telephone sockets. Only connect rj-45 data connectors to these sockets. Wichtige sicherheitshinweise vorsicht: warnhinweise enthalten anweisungen, die sie zu ihrer eigenen sicher...
Page 157
155 vorsicht: es sind keine von dem benutzer zu ersetzende oder zu wartende teile in dem gerät vorhanden. Wenn sie ein problem mit dem router haben, das nicht mittels der fehleranalyse in dieser anleitung behoben werden kann, setzen sie sich mit ihrem lieferanten in verbindung. Vorsicht: vor dem aus...
Page 158
156 a ppendix c: s afety i nformation conditions ne sont maintenues que si l'équipement auquel il est raccordé fonctionne dans les mêmes conditions. Avertissement: il n’y a pas de parties remplaceables par les utilisateurs ou entretenues par les utilisateurs à l’intérieur du moyeu. Si vous avez un p...
Page 159: Ser
D e nd u ser s oftware l icense a greement 3com corporation end user software license agreement you should carefully read the following terms and conditions before downloading, installing and using this product, the use of which is licensed by 3com corporation ("3com") to its customers for their use...
Page 160
158 a ppendix d: e nd u ser s oftware l icense a greement trade secrets; title: you acknowledge and agree that the structure, sequence and organization of the software are the valuable trade secrets of 3com and its suppliers. You agree to hold such trade secrets in confidence. You further acknowledg...
Page 161
159.
Page 162: Btaining
E o btaining s upport for y our 3c om p roducts 3com offers product registration, case management, and repair services through esupport.3com.Com. You must have a user name and password to access these services, which are described in this appendix. Register your product to gain service benefits to t...
Page 163
Access software downloads 161 contact your authorized 3com reseller or 3com for additional product and support information. See the table of access numbers later in this appendix. Access software downloads you are entitled to bug fix / maintenance releases for the version of software that you initia...
Page 164
162 a ppendix e: o btaining s upport for y our 3c om p roducts to send a product directly to 3com for repair, you must first obtain a return materials authorization number (rma). Products sent to 3com without authorization numbers clearly marked on the outside of the package will be returned to the ...
Page 165
Contact us 163 you can also obtain support in this region using this url: http://emea.3com.Com/support/email.Html you can also obtain non-urgent support in this region at these email addresses: technical support and general requests: customer_support@3com.Com return material authorization: warranty_...
Page 166
164 a ppendix e: o btaining s upport for y our 3c om p roducts.
Page 167: Lossary
G lossary 802.11b the ieee specification for wireless ethernet which allows speeds of up to 11 mbps. The standard provides for 1, 2, 5.5 and 11 mbps data rates. The rates will switch automatically depending on range and environment. 802.11g the ieee specification for wireless ethernet which allows s...
Page 168
166 g lossary ad hoc mode ad hoc mode is a configuration supported by most wireless clients. It is used to connect a peer to peer network together without the use of an access point. It offers lower performance than infrastructure mode, which is the mode the router uses. (see infrastructure mode.) a...
Page 169
G lossary 167 dhcp dynamic host configuration protocol. This protocol automatically assigns an ip address for every computer on your network. Windows 95, windows 98, windows nt 4.0, windows 2000, windows xp, and windows vista contain software that assigns ip addresses to workstations on a network. T...
Page 170
168 g lossary full duplex a system that allows packets to be transmitted and received at the same time and, in effect, doubles the potential throughput of a link. Half duplex a system that allows packets to transmitted and received, but not at the same time. Contrast with full duplex. Hub a device t...
Page 171
G lossary 169 ipsec ip security. Provides ip network-layer encryption. Ipsec can support large encryption networks (such as the internet) by using digital certificates for device authentication. When setting up an ipsec connection between two devices, make sure that they support the same encryption ...
Page 172
170 g lossary pppoe point-to-point protocol over ethernet. Point-to-point protocol is a method of data transmission originally created for dial-up connections; pppoe is for ethernet connections. Pptp point-to-point tunneling protocol is a method of secure data transmission between two remote sites o...
Page 173
G lossary 171 tcp/ip transmission control protocol/internet protocol. This is the name for two of the most well-known protocols developed for the interconnection of networks. Originally a unix standard, tcp/ip is now supported on almost all platforms, and is the protocol of the internet. Tcp relates...
Page 174
172 g lossary wireless client the term used to describe a desktop or mobile pc that is wirelessly connected to your wireless network. Wireless lan service area another term for essid (extended service set identifier). Wizard a windows application that automates a procedure such as installation or co...
Page 175
173 r egulatory n otices for 3com wireless 11n adsl firewall router g eneral s tatements the 3com wireless 11n adsl firewall router (wl-603) must be installed and used in strict accordance with the manufacturer's instructions as described in the user documentation that comes with the product. This p...
Page 176
174 the correction of interference caused by such unauthorized modification, substitution or attachment will be the responsibility of the user. Changes or modifications not expressly approved by 3com could void the user's authority to operate this equipment. Fcc p art 68 s tatement this equipment co...
Page 177
175 i ndustry c anada - rf c ompliance this device complies with rss-210 of the industry canada rules. Operation is subject to the following two conditions: 1) this device may not cause interference and, 2) this device must accept any interference, including interference that may cause undesired ope...
Page 178
176 Česky [czech] 3com coporation tímto prohlašuje, ze tento rlan device je ve shodě se základními pozadavky a dalšími příslušnými ustanoveními směrnice 1999/5/es. Dansk [danish] undertegnede 3com corporation erklærer herved, at følgende udstyr rlan device overholder de væsentlige krav og øvrige rel...
Page 179
177 a copy of the signed declaration of conformity can be downloaded from the product support web page for the 3com wireless 11n adsl firewall router at http://www.3com.Com. Also available at http://support.3com.Com/doc/wl-603_eu_doc.Pdf. Eu - r estrictions for u se in the 2.4gh z band this device m...
Page 180
178.
Page 181: Ndex
I ndex numbers 128-bit wep 46 128-bit wep screen 46 1483 bridge mode 55 64-bit wep screen 47 a access control screen 62 add pc screen 63 add schedule rule screen 65 addresses ip 85 admin password screen 75 adsl status screen 77 advanced screen 68 automatic addressing 87 b backup/restore settings scr...
Page 182
180 i ndex configuring 56 mac address filtering screen 66 mode 30 n nat (network address translation) 68 nat-t (nat traversal) 68 network addresses 85 networking wireless 81 nic wireless 14 p password 27, 75 poison reverse 58 pppoa 31 pppoa screen 31 pppoa settings screen 52 pppoe 26, 30, 31 pppoe s...