- DL manuals
- QNO
- Network Router
- 4WAN
- User Manual
QNO 4WAN User Manual
Summary of 4WAN
Page 1
English user’s manual 4wan 12lan medium scale multi-wan qos router load balance, bandwidth management, and network security.
Page 2
4wan 12lan medium scale multi-wan qos router i product manual using permit agreement [product manual (hereafter the "manual") using permit agreement] hereafter the "agreement" is the using permit of the manual, and the relevant rights and obligations between the users and qno technology inc (hereaft...
Page 3
4wan 12lan medium scale multi-wan qos router ii possibly. 【 4】legal liability and exclusion 【 4-1】qno will check the mistake of the texts and diagrams with all strength. However, qno, distributors, and resellers do not bear any liability for direct or indirect economic loss, data loss or other corre...
Page 4
4wan 12lan medium scale multi-wan qos router iii consultation first. If it is not solved by consultation, user agrees that the dissension or dispute is brought to trial in the jurisdiction of the court in the location of qno. In mainland china, the "china international economic and trade arbitration...
Page 5
4wan 12lan medium scale multi-wan qos router iv content i. Introduction.................................................................................................................................................1 ii. Multi- wan qos router installation ..............................................
Page 6
4wan 12lan medium scale multi-wan qos router v 11.1 dmz host/ port range forwarding................................................................................................ 101 11.2 upnp .............................................................................................................
Page 7
4wan 12lan medium scale multi-wan qos router 1 i. Introduction 4wan/ 12lan medium scale multi-wan qos router (referred as router hereby) is a business level qos router that efficiently integrates new generation multiple wan-port firewall devices. It meets the needs of both medium and large-scale ent...
Page 8
4wan 12lan medium scale multi-wan qos router 2 ii. Multi- wan qos router installation in this chapter we are going to introduce hardware installation. Through the understanding of multi- wan setting process, users can easily setup and manage the network,making router functioning and having best perf...
Page 9
4wan 12lan medium scale multi-wan qos router 3 # setting content purpose 1 hardware installation configure the network to meet user’s demand. Install router hardware based on user physical requirements. 2 login login the device with web browser. Login router web- based ui. Verify device specificatio...
Page 10
4wan 12lan medium scale multi-wan qos router 4 7 set firewall: prevent attack and improper access to network resources block attack, set access rule and restrict web access. Administrators can block bt to avoid bandwidth occupation, and enable access rules to restrict employee accessing internet imp...
Page 11
4wan 12lan medium scale multi-wan qos router 5 iii. Hardware installation in this chapter we are going to introduce hardware interface as well as physical installation. 3.1 led signal led signal description led color description power green green led on: power on diag amber amber led on: system self...
Page 12
4wan 12lan medium scale multi-wan qos router 6 be caused. Installing router on a standard 19” rack we suggest to either place router on a desk or install it in a rack with attached brackets. Do not place other heavy objects together with router on a rack. Overloading may cause the rack to fail, thus...
Page 13
4wan 12lan medium scale multi-wan qos router 7 3.2 router network connection wan connection :a wan port can be connected with xdsl modem, fiber modem, switching hub, or through an external router to connect to the internet. Lan connection: the lan port can be connected to a switching hub or directly...
Page 14
4wan 12lan medium scale multi-wan qos router 8 iv. Login router this chapter is mainly introducing web- based ui after conneting router. First, check up router ip address by connecting to dos through the lan pc under router. Go to start run, enter cmd to commend dos, and enter ipconfig for getting d...
Page 15
4wan 12lan medium scale multi-wan qos router 9 then, open webpage browser, ie for example, and key in 192.168.1.1 in the website column. The login window will appear as below: router default username and password are both “admin”. Users can change the login password in the setting later. Attention! ...
Page 16
4wan 12lan medium scale multi-wan qos router 10 v. Device spec verification, status display and login password and time setting this chapter introduces the device specification and status after login as well as change password and system time settings for security. 5.1 home page in the home page, al...
Page 17
4wan 12lan medium scale multi-wan qos router 11 configuration is “off”. Quality of service: indicates how many qos rules are set. Manual connect: when “obtain an ip automatically” is selected, two buttons (release and renew) will appear. If a wan connection, such as pppoe or pptp, is selected, “disc...
Page 18
4wan 12lan medium scale multi-wan qos router 12 the current port setting status information will be shown in the port information table. Examples: type (10base-t/100base-tx/1000base-t), iniferface (wan/ lan/ dmz), link status (up/ down), physical port status (port enabled/ port disabled), priority (...
Page 19
4wan 12lan medium scale multi-wan qos router 13 device ip address/ subnet mask:identifies the current device ip address and subnet mask. The default is 192.168.1.1 and 255.255.255.0 working mode:indicates the current working mode. Can be gateway or router mode. The default is “gateway” mode. System ...
Page 20
4wan 12lan medium scale multi-wan qos router 14 5.1.5 log setting status syslog server: indicates if syslog server is enabled or disabled. E-mail alert: indicates if email alert is enabled or disabled..
Page 21
4wan 12lan medium scale multi-wan qos router 15 5.2 change and set login password and time 5.2.1 password setting when you login router setting window every time, you must enter the password. The default value for router username and password are both “admin”. For security reasons, we strongly recom...
Page 22
4wan 12lan medium scale multi-wan qos router 16 cancel: click “cancel" to leave without making any change. This action will be effective before ”apply” to save the configuration. 5.2.2 time router can adjust time setting. Users can know the exact time of event occurrences that are recorded in the sy...
Page 23
4wan 12lan medium scale multi-wan qos router 17 external ntp server: if you have your own preferred time server, input the server ip address. Apply: after the changes are completed, click “apply” to save the configuration. Cancel: click “cancel" to leave without making any change. This action will b...
Page 24
4wan 12lan medium scale multi-wan qos router 18 vi. Network this network page contains the basic settings. For most users, completing this general setting is enough for connecting with the internet. However, some users need advanced information from their isp. Please refer to the following descripti...
Page 25
4wan 12lan medium scale multi-wan qos router 19 6.1.1 host name and domain name device name and domain name can be input in the two boxes. Though this configuration is not necessary in most environments, some isps in some countries may require it. 6.1.2 lan setting this is configuration information ...
Page 26
4wan 12lan medium scale multi-wan qos router 20 this function enables users to input ip segments that differ from the router network segment to the multi-net segment configuration; the internet will then be directly accessible. In other words, if there are already different ip segment groups in the ...
Page 27
4wan 12lan medium scale multi-wan qos router 21 interface: an indication of which port is connected. Connection type: obtain an ip automatically, static ip connection, pppoe (point-to-point protocol over ethernet), pptp (point-to-point tunneling protocol) or transparent bridge. Config.: a modificati...
Page 28
4wan 12lan medium scale multi-wan qos router 22 enable line-dropped scheduling: the wan disconnection schedule will be activated by checking this option. In some areas, there is a time limitation for wan connection service. For example: the optical fiber service will be disconnected from 0:00 am to ...
Page 29
4wan 12lan medium scale multi-wan qos router 23 wan ip address: input the available static ip address issued by isp. Subnet mask: input the subnet mask of the static ip address issued by isp, such as: issued eight static ip addresses: 255.255.255.248 issued 16 static ip addresses: 255.255.255.240 de...
Page 30
4wan 12lan medium scale multi-wan qos router 24 enable line-dropped scheduling: the wan disconnection schedule will be activated by checking this option. In some areas, there is a time limitation for wan connection service. For example: the optical fiber service will be disconnected from 0:00 am to ...
Page 31
4wan 12lan medium scale multi-wan qos router 25 software provided by isp, remove it. This software will no longer be used for network connection. User name: input the user name issued by isp. Password input the password issued by isp. Connect on demand: this function enables the auto-dialing functio...
Page 32
4wan 12lan medium scale multi-wan qos router 26 enable line-dropped scheduling the wan disconnection schedule will be activated by checking this option. In some areas, there is a time limitation for wan connection service. For example: the optical fiber service will be disconnected from 0:00 am to 6...
Page 33
4wan 12lan medium scale multi-wan qos router 27 password issued by isp, and use the built-in pptp software to connect with the internet. Wan ip address: this option is to configure a static ip address. The ip address to be configured could be one issued by isp. (the ip address is usually provided by...
Page 34
4wan 12lan medium scale multi-wan qos router 28 connect on demand: this function enables the auto-dialing function to be used for a pptp dial connection. When the client port attempts to connect with the internet, the device will automatically connect with the default isp auto dial connection; when ...
Page 35
4wan 12lan medium scale multi-wan qos router 29 shared- circuit wan environment if your wan connects to a switch, select “enabled” to filter broadcast packets. The default is “disabled”. Mtu: : : : mtu is abbreviation of maximum transmission unit. “auto” and “manual” can be chosen. The default value...
Page 36
4wan 12lan medium scale multi-wan qos router 30 wan ip address: input one of the static ip addresses issued by isp. Subnet mask: input the subnet mask of the static ip address issued by isp, such as: 255.255.255.240 default gateway address: input the default gateway of the static ip address issued b...
Page 37
4wan 12lan medium scale multi-wan qos router 31 enable line-dropped scheduling: the wan disconnection schedule will be activated by checking this option. In some areas, there is a time limitation for wan connection service. For example: the optical fiber service will be disconnected from 0:00 am to ...
Page 38
4wan 12lan medium scale multi-wan qos router 32 externally connected servers such as web and mail servers. Therefore, the device supports one configurable dmz port for users to set up connections for servers with real ip addresses. The dmz port acts as bridges between the internet and lans. Ip addre...
Page 39
4wan 12lan medium scale multi-wan qos router 33 ip range: input the ip range located at the dmz port. After the changes are completed, click “apply” to save the configuration, or click “cancel" to leave without making any changes..
Page 40
4wan 12lan medium scale multi-wan qos router 34 6.2 multi- wan setting 6.2.1 load balance mode auto load balance mode when auto load balance mode is selected, the device will use sessions or ip and the wan bandwidth automatically allocate connections to achieve load balancing for external connection...
Page 41
4wan 12lan medium scale multi-wan qos router 35 for example, if users want to assign ip 192.168.1.100 to go through wan 1 when connecting with the internet, or assign all intranet ip to go through wan 2 when connecting with servers with port 80, or assign all intranet ip to go through wan 1 when con...
Page 42
4wan 12lan medium scale multi-wan qos router 36 binding configuration. Attention: when assigning mode is selected, as in the above example, the ip(s) or service provider(s) configured in the connection rule will follow the rule for external connections, but those which are not configured in the rule...
Page 43
4wan 12lan medium scale multi-wan qos router 37 name: to define a name for the wan grouping in the box, such as “education” etc. The name is for recognizing different wan groups. Interface: check the boxes for the wans to be added into this combination. Add to list: to add a wan group to the groupin...
Page 44
4wan 12lan medium scale multi-wan qos router 38 the wan or wan group (ex. Wan 1) to be assigned and click the “import ip range” button; the dialogue box for document importation will be displayed accordingly. A policy document is an editable text document. It may contain a destination ip users desig...
Page 45
4wan 12lan medium scale multi-wan qos router 39 ip is assigned by both china netcom strategy and self-defined strategy, china netcom strategy will take priority. In other words, traffic to that destination ip will be transmitted through the wan (or wan group) under china netcom strategy. 6.2.2 netwo...
Page 46
4wan 12lan medium scale multi-wan qos router 40 when fail: (1) generate the error condition in the system log: if an isp connection failure is detected, an error message will be recorded in the system log. This line will not be removed; therefore, the some of the users on this line will not have nor...
Page 47
4wan 12lan medium scale multi-wan qos router 41 default gateway: the local default communication gateway location, such as the ip address of an adsl router, will be input automatically by the device. Therefore, users just need to check the option if this function is needed. Attention! Some gateways ...
Page 48
4wan 12lan medium scale multi-wan qos router 42 6.2.3 protocol binding bandwidth configuration when auto load balance mode is selected, the device will select sessions or ip and the wan bandwidth will automatically allocate connections to achieve load balancing for external connections. The network ...
Page 49
4wan 12lan medium scale multi-wan qos router 43 service: this is to select the binding service port to be activated. The default (such as all-tcp&udp 0~65535, www 80~80, ftp 21 to 21, etc.) can be selected from the pull-down option list. The default service is all 0~65535. Option list for service ma...
Page 50
4wan 12lan medium scale multi-wan qos router 44 destination ip: in the boxes, input an external static ip address. For example, if connections to destination ip address 210.11.1.1 are to be restricted to wan1, the external static ip address 210.1.1.1 ~ 210.1.1.1 should be input. If a range of destin...
Page 51
4wan 12lan medium scale multi-wan qos router 45 add or remove service port if the service port users want to activate is not in the list, users can add or remove service ports from “service port management” to arrange the list, as described in the following: service name: in this box, input the name...
Page 52
4wan 12lan medium scale multi-wan qos router 46 port range: in the boxes, input the range of service ports users want to add. Add to list: click the button to add the configuration into the services list. Users can add up to 100 services into the list. Delete selected service: to remove the selected...
Page 53
4wan 12lan medium scale multi-wan qos router 47 as in the figure below, select “all traffic” from the pull-down option list “service”, and then in the boxes of “source ip” input the source ip address “192.168.1.100” to “100”. Retain the original numbers “0.0.0.0” in the boxes of “destination ip” (wh...
Page 54
4wan 12lan medium scale multi-wan qos router 48 example 3:how do i set up auto load balance mode to keep all intranet ip addresses from going through wan2 when the destination port is port 80 and keep all other services from going through wan1? As in the figure below, there are two rules to be confi...
Page 55
4wan 12lan medium scale multi-wan qos router 49 internet ip addresses). Select wan1 from the pull-down option list “interface”, and then click “enable”. Finally, click “add new” and the rule will be added to the mode. The device will transmit packets that are not going to port 80 to the internet thr...
Page 56
4wan 12lan medium scale multi-wan qos router 50 through wan1? As in the figure below, select “http[tcp/80~80]” from the pull-down option list “service”, and then in the boxes of “source ip” input “192.168.1.0 ~ 0” (which means to include all intranet ip addresses). Retain the original numbers “0.0.0...
Page 57
4wan 12lan medium scale multi-wan qos router 51 port [tcp&udp/1~65535]” from the pull-down option list “service”, and then in the boxes of “source ip” input “192.168.1.0 ~ 0” (which means to include all intranet ip addresses). In the boxes for “destination ip” input “211.1.1.1 ~ 211.254.254.254”. Se...
Page 58
4wan 12lan medium scale multi-wan qos router 52 vii. Port management this chapter introduces how to configure ports and understand how to configure intranet ip addresses. 7.1 setup through the device, users can easily manage the setup for wan ports, lan ports and the dmz port by choosing the number ...
Page 59
4wan 12lan medium scale multi-wan qos router 53 mirror port:users can configure lan 1 as mirror port by choosing “enable port 1 as mirror port”. All the traffic from lan to wan will be copied to mirror port. Administrator can control or filter the traffic through mirror port. Once this function is e...
Page 60
4wan 12lan medium scale multi-wan qos router 54 vlan: this feature allows administrators to set the lan port to be one or more disconnected network sessions. All of them will be able to log on to the internet through the device. Members in the same network session (within the same vlan) can see and ...
Page 61
4wan 12lan medium scale multi-wan qos router 55 7.2 port status summary: there are network connection type, interface, link status (up/down), port activity (port enabled), priority setting (high or normal), speed status (10mbps or 100mbps), duplex status (half duplex or full duplex), auto neg. (enab...
Page 62
4wan 12lan medium scale multi-wan qos router 56 statistics: the packet data of this specific port will be displayed. Data include receive/ transmit packet count, receive/ transmit packet byte count and error packet count. Users may press the refresh button to update all real-time messages..
Page 63
4wan 12lan medium scale multi-wan qos router 57 7.3 ip/ dhcp with an embedded dhcp server, it supports automatic ip assignation for lan computers. (this function is similar to the dhcp service in nt servers.) it benefits users by freeing them from the inconvenience of recording and configuring ip ad...
Page 64
4wan 12lan medium scale multi-wan qos router 58 dynamic ip: client lease time: check the option to activate the dhcp server automatic ip lease function. If the function is activated, all pcs will be able to acquire ip automatically. Otherwise, users should configure static virtual ip for each pc ind...
Page 65
4wan 12lan medium scale multi-wan qos router 59 7.4 dhcp status this is an indication list of the current status and setup record of the dhcp server. The indications are for the administrator’s reference when a network modification is needed. Dhcp server: this is the current dhcp ip. Dynamic ip used...
Page 66
4wan 12lan medium scale multi-wan qos router 60 client lease time: the lease time of the ip released by dhcp. Delete: remove a record of an ip lease..
Page 67
4wan 12lan medium scale multi-wan qos router 61 7.5 ip & mac binding administrators can apply ip & mac binding function to make sure that users can not add extra pcs for internet access or change private ip addresses. There are two methods for setting up this function:.
Page 68
4wan 12lan medium scale multi-wan qos router 62 block mac address not on the list this method only allows mac addresses on the list to receive ip addresses from dhcp and have internet access. When this method is applied, please fill out static ip with 0.0.0.0, as the figure below:.
Page 69
4wan 12lan medium scale multi-wan qos router 63 ip & mac binding static ip: there are two ways to input static ip: 1. If users want to set up a mac address to acquire ip from dhcp, but the ip need not be a specific assigned ip, input 0.0.0.0 in the boxes. The boxes cannot be left empty. 2. If users ...
Page 70
4wan 12lan medium scale multi-wan qos router 64 mac address: input the static real mac (the address on the network card) for the server or pc which is to be bound. Name: for distinguishing clients, input the name or address of the client that is to be bound. The maximum acceptable characters are 12....
Page 71
4wan 12lan medium scale multi-wan qos router 65 7.6 ip grouping the function enables users to make the same configuration for a range of continuous ip addresses in the network. For example, if an ip range (192.168.1.100~192.168.1.110) has been assigned to a department of a company, we can bind all t...
Page 72
4wan 12lan medium scale multi-wan qos router 66 viii. Qos (quality of service) qos is an abbreviation for quality of service. The main function is to restrict bandwidth usage for some services and ip addresses to save bandwidth or provide priority to specific applications or services, and also to en...
Page 73
4wan 12lan medium scale multi-wan qos router 67 8.1 bandwidth management 8.1.1 the maximum bandwidth provided by isp in the boxes for wan1 and wan2 bandwidth, input the upstream and downstream bandwidth which users applied for from bandwidth supplier. The bandwidth qos will make calculations accordi...
Page 74
4wan 12lan medium scale multi-wan qos router 68 rate of upstream and downstream for each ip and service port based on the total actual bandwidth of wan1 and wan2. For example, if the upstream bandwidths of both wan1 and wan2 are 512kbit/sec, the total upstream bandwidth will be: wan1 + wan2 = 1024kb...
Page 75
4wan 12lan medium scale multi-wan qos router 69 interface: select on which wan the qos rule should be executed. It can be a single selection or multiple selections. Service port: select what bandwidth control is to be configured in the qos rule. If the bandwidth for all services of each ip is to be ...
Page 76
4wan 12lan medium scale multi-wan qos router 70 ip address: this is to select which user is to be controlled. If only a single ip is to be restricted, input this ip address, such as “192.168.1.100 to 100”. The rule will control only the ip 192.168.1.100. If an ip range is to be controlled, input the...
Page 77
4wan 12lan medium scale multi-wan qos router 71 bandwidth assign type: sharing total bandwidth with all ip addresses: if this option is selected, all ip addresses or service ports will share the bandwidth range (from minimum to maximum bandwidth). Assign bandwidth for each ip address: if this option...
Page 78
4wan 12lan medium scale multi-wan qos router 72 show table: priority control: the router will distribute the bandwidth as 60% (the highest) and 10% (the lowest). If you set the service port 80 as “high” priority, the router will give 60% bandwidth to the port 80. In the other hand, if you give the p...
Page 79
4wan 12lan medium scale multi-wan qos router 73 service port: select what bandwidth control is to be configured in the qos rule. If ftp uploads or downloads need to be controlled, select “ftp port 21~21”. Refer to the default service port number list. Direction: upstream: means the upload bandwidth ...
Page 80
4wan 12lan medium scale multi-wan qos router 74 8.2 session control session management controls the acceptable maximum simultaneous sessions of intranet pcs. This function is very useful for managing connection quantity when p2p software such as bt, thunder, or emule is used in the intranet causing ...
Page 81
4wan 12lan medium scale multi-wan qos router 75 when single ip exceed __: if this function is selected, when the user’s port session reach the limit, this user will not be able to make a new session for five minutes. Even if the previous session has been closed, new sessions cannot be made until the...
Page 82
4wan 12lan medium scale multi-wan qos router 76 service port: choose the service port. Ip address: input the ip address range or ip group. Enabled: activate the rule. Add to list: add this rule to the list. Delete seleted item: remove the rules selected from the service list. Apply: click “apply” to...
Page 83
4wan 12lan medium scale multi-wan qos router 77 8.3 smart qos enabled qos: choose to apply qos function. When the usage of any wan’s bandwidth is over___%, enable snart qos input the required rate value into the column. The default is 60%. Each ip’s upstream bandwidth threshold (for all wan): input ...
Page 84
4wan 12lan medium scale multi-wan qos router 78 enabled penalty mechanism: after choosing “enabled penalty mechanism”, the device will enable the penalty conditions internally. When the ip still uses more upstream or downstream bandwidth than the setting, the device will excute the penalty condition...
Page 85
4wan 12lan medium scale multi-wan qos router 79 ix. Firewall this chapter introduces firewall general policy, access rule, and content filter settings to ensure network security. 9.1 general policy the firewall is enabled by default. If the firewall is set as disabled, features such as spi, dos, and...
Page 86
4wan 12lan medium scale multi-wan qos router 80 spi (stateful packet inspection): this enables the packet automatic authentication detection technology. The firewall operates mainly at the network layer. By executing the dynamic authentication for each connection, it will also perform an alarming fu...
Page 87
4wan 12lan medium scale multi-wan qos router 81 advanced setting 封 packet type: this device provides three types of data packet transmission: tcp-syn-flood, udp-flood and icmp-flood. Wan threshold: when all packet values from external attack or from single external ip attack reach the maximum amount...
Page 88
4wan 12lan medium scale multi-wan qos router 82 exempted source ip: input the exempted source ip. Exempted dest. Ip: input the exempted destination ip addresses. Show blocked ip: show the blocked ip list and the remained blocked time. Restricted web features: it supports the block that is connected ...
Page 89
4wan 12lan medium scale multi-wan qos router 83 9.2 restrict application users can check msn/ skype/ qq/ bt and the device will block the service users checked. However, to provide this service for certain ip address in the intranet, users may check the following item and then enter the specific ip ...
Page 90
4wan 12lan medium scale multi-wan qos router 84 user name: input the information of the qq number, etc. Exempted qq number: input the number. Add to list: add the number to the list. Delete selected item: delete the selected rule in the list..
Page 91
4wan 12lan medium scale multi-wan qos router 85 9.3 access rule users may turn on/off the setting to permit or forbid any packet to access internet. Users may select to set different network access rules: from internal to external or from external to internal. Users may set different packets for ip ...
Page 92
4wan 12lan medium scale multi-wan qos router 86 in addition to the default rules, all the network access rules will be displayed as illustrated above. Users may follow or self- define the priority of each network access rule. The device will follow the rule priorities one by one, so please make sure...
Page 93
4wan 12lan medium scale multi-wan qos router 87 9.3.2 add new access rule action: allow: permits the pass of packets compliant with this control rule deny: prevents the pass of packets not compliant with this control rule service port: from the drop-down menu, select the service that users grant or ...
Page 94
4wan 12lan medium scale multi-wan qos router 88 source ip: select the source ip range (for example: any, single, range, or preset ip group name). If single or range is selected, please enter a single ip address or an ip address within a session. Dest. Ip: select the destination ip range (such as any...
Page 95
4wan 12lan medium scale multi-wan qos router 89 9.4 content filter the device supports two webpage restriction modes: one is to block certain forbidden domains, and the other is to give access to certain web pages. Only one of these two modes can be selected. Block forbidden domain fill in the compl...
Page 96
4wan 12lan medium scale multi-wan qos router 90 domain name: enter the websites to be controlled such as www.Playboy.Com add to list: click ”add to list” to create a new website to be controlled. Delete selected item: click to select one or more controlled websites and click this option to delete. W...
Page 97
4wan 12lan medium scale multi-wan qos router 91 accept allowed domains in some companies or schools, employees and students are only allowed to access some specific websites. This is the purpose of the function. Enabled: activate the function. The default setting is “disabled.” domain name: input th...
Page 98
4wan 12lan medium scale multi-wan qos router 92 always: select “always” to apply the rule on a round-the-clock basis. Select “from”, and the operation will run according to the defined time. …to…: select "always" to apply the rule on a round-the-clock basis. If “from” is selected, the activation tim...
Page 99
4wan 12lan medium scale multi-wan qos router 93 x. Virtual route virtual route enables the branch only to have single isp service to enjoy two different broadband networks. The branch can access another isp network with connecting to headquarter server with dual-bradband connection. As the result, t...
Page 100
4wan 12lan medium scale multi-wan qos router 94 café a can enable virtual route function and link to café b’s device. They can access another isp service through café b’s network. It seems that café a employs dual isp service, too. If users in café a want to access to another isp network, the link s...
Page 101
4wan 12lan medium scale multi-wan qos router 95 10.1 virtue route server (pptp server) the chapter introduces how to configure a virtue route server. Virtue route builds pptp tunnels on the basis of ppp (point-to-point protocol), which strengthens the ppp security. Virtue route enables encryption tr...
Page 102
4wan 12lan medium scale multi-wan qos router 96 enabled pptp server: when this option is selected, the point-to-point tunnel protocol pptp server can be enabled. Pptp client ip range: please enter pptp ip address range so as to provide the remote users with an entrance ip into the local network. Ent...
Page 103
4wan 12lan medium scale multi-wan qos router 97 add to list: add a new account and password. Delete selected item: delete selected item. All pptp status:displays all successfully connected users, including username, remote ip address, and pptp address..
Page 104
4wan 12lan medium scale multi-wan qos router 98 10.2 virtue route client enabled to activate the function. Binding interface to select which wan port is binded: wan1~wan4 binding network to select the binding network: netcome or self-defined. Import ip range click “browse” to import binding ip range...
Page 105
4wan 12lan medium scale multi-wan qos router 99 remote host ip address input the ip of virtual route server. User name input the user name. Password input the password. Status show the link status: connect or disconnect. Self-defined ip to build a self-defined ip, users can use a text-based editor, ...
Page 106
4wan 12lan medium scale multi-wan qos router 100
Page 107
4wan 12lan medium scale multi-wan qos router 101 xi. Advanced function 11.1 dmz host/ port range forwarding 11.1.1 dmz host when the nat mode is activated, sometimes users may need to use applications that do not support virtual ip addresses such as network games. We recommend that users map the dev...
Page 108
4wan 12lan medium scale multi-wan qos router 102 11.1.2 port range forwarding setting up a port forwarding virtual host: if the server function (which means the server for an external service such as www, ftp, mail, etc) is contained in the network, we recommend that users use the firewall function ...
Page 109
4wan 12lan medium scale multi-wan qos router 103 service port: to select from this option the default list of service ports of the virtual host that users want to activate. Such as: all (tcp&udp) 0~65535, 80 (80~80) for www, and 21~21 for ftp. Please refer to the list of default service ports. Inter...
Page 110
4wan 12lan medium scale multi-wan qos router 104 service name: input the name of the service port users want to activate on the list, such as e-donkey, etc. Protocol: to select whether a service port is tcp or udp. Port range: to activate this function, input the range of the service port locations ...
Page 111
4wan 12lan medium scale multi-wan qos router 105 cancel: click the “cancel” button to cancel the modification. This only works before “apply” is clicked. Close: quit this configuration window. 11.1.3 port triggering for some special application software, the internet accessing port numbers are unsym...
Page 112
4wan 12lan medium scale multi-wan qos router 106 add to list: add the service to the active service list. Delete selected item: remove selected services. Show table: click to show all the setting in the list. Apply: click the “apply” button to save the modification. Cancel: click the “cancel” button...
Page 113
4wan 12lan medium scale multi-wan qos router 107 11.2 upnp upnp (universal plug and play) is a protocol set by microsoft. If the virtual host supports upnp system (such as windows xp), users could also activate the pc upnp function to work with the device. Service port: select the upnp service numbe...
Page 114
4wan 12lan medium scale multi-wan qos router 108 delete selected item: remove selected services. Show table: this is a list which displays the current active upnp functions. Apply: click “apply” to save the network configuration modification. Cancel: click “cancel" to leave without making any change...
Page 115
4wan 12lan medium scale multi-wan qos router 109 11.3 routing in this chapter we introduce the dynamic routing information protocol and static routing information protocol. 11.3.1dynamic routing the abbreviation of routing information protocol is rip. There are two kinds of rip in the ip environment...
Page 116
4wan 12lan medium scale multi-wan qos router 110 rip is a very simple routing protocol, in which distance vector is used. Distance vector determines transmission distance in accordance with the number of routers, rather than based on actual session speed. Therefore, sometimes it will select a path t...
Page 117
4wan 12lan medium scale multi-wan qos router 111 dest. Ip: subnet mask: input the remote network ip locations and subnet that is to be routed. For example, the ip/subnet is 192.168.2.0/255.255.255.0. Gateway: the default gateway location of the network node which is to be routed. Hop count: this is ...
Page 118
4wan 12lan medium scale multi-wan qos router 112 11.4 one to one nat as both the device and atu-r need only one actual ip, if isp issued more than one actual ip (such as eight adsl static ip addresses or more), users can map the remaining real ip addresses to the intranet pc virtual ip addresses. Th...
Page 119
4wan 12lan medium scale multi-wan qos router 113 enabled one to one nat: to activate or close the one-to-one nat function. (check to activate the function). Private ip range begin: input the private ip address for the intranet one-to-one nat function. Public ip range begin: input the public ip addre...
Page 120
4wan 12lan medium scale multi-wan qos router 114 set up, the internet ip server or pc which is mapped with a lan port will be exposed on the internet. To prevent internet users from actively connecting with the one-on-one nat server or pc, please set up a proper denial rule for access, as described ...
Page 121
4wan 12lan medium scale multi-wan qos router 115 interface this is an indication of the wan port the user has selected. Ddns check either of the boxes before dyndns.Org, 3322.Org, dtdns.Com and qnoddns.Org.Cn to select one of the four ddns website address transfer functions. Username the name which ...
Page 122
4wan 12lan medium scale multi-wan qos router 116 register for qnoddns 1. please go to qno website and register the product at http://www.Qno.Com.Tw . 2. input the e-mail address which users used to register this product and the serial number of the product to log in to the qnoddns service system. Be...
Page 123
4wan 12lan medium scale multi-wan qos router 117 3. rules for applying a domain name: ● the domain should have at least 4 letters and no more than 63 letters. ● the domain name should only consist of a-z (lowercase letter) and 0-9 (numerals) and the first character should be an english letter. ● for...
Page 124
4wan 12lan medium scale multi-wan qos router 118.
Page 125
4wan 12lan medium scale multi-wan qos router 119 11.6 mac clone some isp will request for a fixed mac address (network card physical address) for distributing ip address, which is mostly suitable for cable mode users. Users can input the network card physical address (mac address: 00-xx-xx-xx-xx-xx)...
Page 126
4wan 12lan medium scale multi-wan qos router 120 xii. System tool this chapter introduces the management tool for controlling the device and testing network connection. For security consideration, we strongly suggest to change the password. Password and time setting is in chapter 5.2. 12.1 diagnosti...
Page 127
4wan 12lan medium scale multi-wan qos router 121 ping this item informs users of the status quo of the outbound session and allows the user to know the existence of computers online. On this test screen, please enter the host ip that users want to test such as 192.168.5.20. Press "go" to start the t...
Page 128
4wan 12lan medium scale multi-wan qos router 122 12.2 firmware upgrade users may directly upgrade the device firmware on the firmware upgrade page. Please confirm all information about the software version in advance. Select and browse the software file, click "firmware upgrade right now" to complet...
Page 129
4wan 12lan medium scale multi-wan qos router 123 12.3 setting backup import configuration file: this feature allows users to integrate all backup content of parameter settings into the device. Before upgrade, confirm all information about the software version. Select and browse the backup parameter ...
Page 130
4wan 12lan medium scale multi-wan qos router 124 12.4 snmp simple network management protocol (snmp) refers to network management communications protocol and it is also an important network management item. Through this snmp communications protocol, programs with network management (i.E. Snmp tools-...
Page 131
4wan 12lan medium scale multi-wan qos router 125 system name: set the name of the device such as qvm1000. System contact: set the name of the person who manages the device (i.E. John). System location: define the location of the device (i.E. Taipei). Get community name: set the name of the group or ...
Page 132
4wan 12lan medium scale multi-wan qos router 126 12.5 system recover users can restart the device with system recover button. Restart as the figure below, if clicking “restart router” button, the dialog block will pop out, confirming if users would like to restart the device..
Page 133
4wan 12lan medium scale multi-wan qos router 127 return to factory default setting if clicking “return to factory default setting, the dialog block will pop out, if the device will return to factory default..
Page 134
4wan 12lan medium scale multi-wan qos router 128 xiii. Log from the log management and look up, we can see the relevant operation status, which is convenient for us to facilitate the setup and operation. 13.1 system log its system log offers three options: system log, e-mail alert, and log setting..
Page 135
4wan 12lan medium scale multi-wan qos router 129 system log enabled: if this option is selected, the system log feature will be enabled..
Page 136
4wan 12lan medium scale multi-wan qos router 130 host name: the device provides external system log servers with log collection feature. System log is an industrial standard communications protocol. It is designed to dynamically capture related system message from the network. The system log provide...
Page 137
4wan 12lan medium scale multi-wan qos router 131 log time threshold: set the interval of sending the log, and the default is set to 10 minutes. Reaching this defined number, it will automatically send out the mail log. The device will detect which parameter (either entries or intervals) reaches the ...
Page 138
4wan 12lan medium scale multi-wan qos router 132 win nuke: servers are attacked or trapped by the trojan program. Ping of death: the system fails because the sent data exceeds the maximum packet that can be handled by the ip protocol. Unauthorized login: if intruders into the device are identified, ...
Page 139
4wan 12lan medium scale multi-wan qos router 133 outgoing packet log: view system packet log which is sent out from the internal pc to the internet. This log includes lan ip, destination ip, and service port that is applied. It is illustrated as below. Incoming packet log: view system packet log of ...
Page 140
4wan 12lan medium scale multi-wan qos router 134 clear log now: this feature clears all the current information on the log..
Page 141
4wan 12lan medium scale multi-wan qos router 135 13.2 system statistic the device has the real-time surveillance management feature that provides system current operation information such as port location, device name, current wan link status, ip address, mac address, subnet mask, default gateway, d...
Page 142
4wan 12lan medium scale multi-wan qos router 136.
Page 143
4wan 12lan medium scale multi-wan qos router 137 13.3 traffic statistic six messages will be displayed on the traffic statistic page to provide better traffic management and control. By inbound ip address: the figure displays the source ip address, bytes per second, and percentage. By outbound ip ad...
Page 144
4wan 12lan medium scale multi-wan qos router 138 by outbound port: the figure displays the network protocol type, destination ip address, bytes per second, and percentage. By inbound port: the figure displays the network protocol type, destination ip address, bytes per second, and percentage..
Page 145
4wan 12lan medium scale multi-wan qos router 139 by outbound session: the figure displays the source ip address, network protocol type, source port, destination ip address, destination port, bytes per second and percentage. By inbound session: the figure displays the source ip address, network proto...
Page 146
4wan 12lan medium scale multi-wan qos router 140 specific ip status: enter the ip address that users want to inquire, and then the entire destination ip connected to remote devices as well as the number of ports will be displayed. Specific port status: enter the service port number in the field and ...
Page 147
4wan 12lan medium scale multi-wan qos router 141.
Page 148
4wan 12lan medium scale multi-wan qos router 142 xiv. Log out on the top right corner of the web- based ui, there is alogout button. Click on it to log out of the web- based ui. To enter next time, open the web browser and enter the ip address, user name and password to log in..
Page 149
4wan 12lan medium scale multi-wan qos router 143 appendix i: user interface and user manual chapter cross reference this appendix is to show the corresponding index for each chapter and user interface. Users can find how to setup quickly and understand the router capability at the same time. Router ...
Page 150
4wan 12lan medium scale multi-wan qos router 144 bandwidth management 8.1 (qos) 8.3 bandwidth management session control 8.2 session limit ip/dhcp vii. Port management setup 7.3 dhcp/ ip status 7.4 dhcp status ip & mac binding 7.5 ip & mac binding ip grouping 7.6 ip grouping firewall ix. Firewall ge...
Page 151
4wan 12lan medium scale multi-wan qos router 145 setup 7.1 setup status 7.2 status log xiii. Log system log 13.1 system log system status 13.2 system status traffic statistic 13.3 traffic statistic ip/port statistic 13.4 ip/port statistic.
Page 152
4wan 12lan medium scale multi-wan qos router 146 appendix ii:troubleshooting ( ) 1 block bt download to block bt and prevent downloading by users, go to the “firewall -> content filter" and select "enable website block by keywords," followed by the input of "torrent." this will prevent the users fro...
Page 153
4wan 12lan medium scale multi-wan qos router 147 ( 2)shock wave and worm virus prevention since many users have been attacked by shock wave and worm viruses recently, the internet transmission speed was brought down and the session bulky increase result in the massive processing load of the device. ...
Page 154
4wan 12lan medium scale multi-wan qos router 148 use the same method to add udp [udp135~139] and tcp [445~445] ports. C. Enhance the priority level of these three to the highest..
Page 155
4wan 12lan medium scale multi-wan qos router 149 ( 3)block qqlive video broadcast setting qqlive video broadcast software is a stream media broadcast software. Many clients are bothered by the same problem: when several users apply qqlive video broadcast software, a greater share of the bandwidth is...
Page 156
4wan 12lan medium scale multi-wan qos router 150 qqlive server. Repeated addition may be needed). Lastly, select "always" under the scheduling setting so that the qqlive login time can be set. (if necessary, specific time setting may be undertaken). Click "apply" to move to the next step. C). Input ...
Page 157
4wan 12lan medium scale multi-wan qos router 151 ( 4)arp virus attack prevention 1. Arp issue and information recently, many cyber cafes in china experienced disconnection (partially or totally) for a short period of time, but connection is resumed quickly. This is caused by the clash with mac addre...
Page 158
4wan 12lan medium scale multi-wan qos router 152 address is known. Simply fill in the mac address for transmission. If no corresponding ip address is found in arp cache, host a will send a broadcast. The mac address is “ff.Ff.Ff.Ff.Ff.Ff,” which is to inquire all the host devices in the same network...
Page 159
4wan 12lan medium scale multi-wan qos router 153 take appropriate measures. The following is experience shared by qno technical engineers with regard to the arp prevention. Through the arp working principle, it is known that if the arp cache is changed and the device is constantly notified with the ...
Page 160
4wan 12lan medium scale multi-wan qos router 154 enter ”firewall-> general” and find the option "prevent arp virus attack" to the right of the page. Click on the option to activate it and click "apply" at the bottom of the page (see illustrated). B) bind the gateway ip and mac address for each pc th...
Page 161
4wan 12lan medium scale multi-wan qos router 155 arp -d arp -s router lan ip router lan mac for those internal network attacked by arp, the source must be identified. Method: if the pc fails to go online or there is packet loss of ping, in the dos screen, input arp –a command to check if the mac add...
Page 162
4wan 12lan medium scale multi-wan qos router 156 after an item is added to the list, the corresponding message will be displayed in the white block on the bottom. However, such method is not recommended because the inquiry of ip/mac addresses of all hosts creates heavy workload. Another method to bi...
Page 163
4wan 12lan medium scale multi-wan qos router 157 click to display ip and mac binding list dialog box. In this box, the unbinding ip and mac address corresponding to the pc are displayed. Enter the "name" of the computer and click on "enabled" with the display of the “√” icon and push the option on t...
Page 164
4wan 12lan medium scale multi-wan qos router 158 though these basic operations can help solve the problem but qno's technical engineers suggest that further measures should be taken to prevent the arp attack. 1. Deal with virus source as well as the source device affected by virus through virus kill...
Page 165
4wan 12lan medium scale multi-wan qos router 159 5. Frequently update anti-virus software (virus data base), and set the daily upgrade that allows regular and automatic update. Install and use the network firewall software. Network firewall is important for the process of anti-virus. It can effectiv...
Page 166
4wan 12lan medium scale multi-wan qos router 160 appendix iii:qno technical support information for more information about the qno's product and technology, please log onto the qno's bandwidth forum, refer to the examples of the ftp server, or contact the technical department of qno's dealers as wel...