D-Link DI-784 Router Manual PDF (Setup & Configuration Guide)

Page 81 / 100 Scroll up to view Page 76 - 80

81

Frequently Asked Questions (continued)

What is DMZ?

Demilitarized Zone:

In computer networks, a DMZ (demilitarized zone) is a computer host or small

network inserted as a neutral zone between a company´s private network and the

outside public network. It prevents outside users from getting direct access to a

server that has company data. (The term comes from the geographic buffer zone that

was set up between North Korea and South Korea following the UN police action in

the early 1950s.) A DMZ is an optional and more secure approach to a firewall and

effectively acts as a proxy server as well.

In a typical DMZ configuration for a small company, a separate computer (or host in

network terms) receives requests from users within the private network for access to

Web sites or other companies accessible on the public network. The DMZ host then

initiates sessions for these requests on the public network. However, the DMZ host is

not able to initiate a session back into the private network. It can only forward packets

that have already been requested.

Users of the public network outside the company can access only the DMZ host. The

DMZ may typically also have the company´s Web pages so these could be served to

the outside world. However, the DMZ provides access to no other company data. In

the event that an outside user penetrated the DMZ hosts security, the Web pages

might be corrupted but no other company information would be exposed. D-Link, a

leading maker of routers, is one company that sells products designed for setting up

a DMZ

How do I configure the DMZ Host?

The DMZ feature allows you to forward all incoming ports to one computer on the local

network. The DMZ, or Demilitarized Zone, will allow the specified computer to be

exposed to the Internet. DMZ is useful when a certain application or game does not

work through the firewall. The computer that is configured for DMZ will be completely

vulnerable on the Internet, so it is suggested that you try opening ports from the

Virtual Server or Firewall settings before using DMZ.

Step 1

Find the IP address of the computer you want to use as the DMZ host.

To find out how to locate the IP Address of the computer in Windows XP/2000/ME/9x

or Macintosh operating systems please refer to Step 4 of the first question in this

section (Frequently Asked Questions).

Page 82 / 100

82

Frequently Asked Questions (continued)

Step 2

Log into the web based

configuration of the router by typing in the IP

Address of the router (default:192.168.0.1) in

your web browser. The username is

admin

(all lowercase) and the password is

blank

(nothing)

How do I configure the DMZ Host? (continued)

Step 3

Click the

Advanced

tab and then

click on the

DMZ

button. Select

Enable

and

type in the IP Address you found in step 1.

Step 4

Click

Apply

and then

Continue

to save the changes.

Note:

When DMZ is

enabled, Virtual

Server settings will

still be effective.

Remember, you

cannot forward the

same port to multiple

IP Addresses, so the

Virtual Server

settings will take

priority over DMZ

settings.

DI-784

admin

Page 83 / 100

83

Frequently Asked Questions (continued)

How do I open a range of ports on my router using Firewall rules?

Step 1

Access the router’s web configuration by entering the router’s IP Address in

your web browser. The default IP Address is

192.168.0.1

. Login using your password.

The default username is

“admin”

and the password is blank.

If you are having difficulty accessing web management, please see the first question

in this section.

Step 2

From the web management Home page, click the

Advanced

tab then click

the

Firewall

button.

Step 3

Click on

Enabled

and type in

a name for the new

rule.

Step 4

Choose

WAN

as the

Source

and

enter a range of IP

Addresses out on the

internet that you

would like this rule

applied to. If you

would like this rule to

allow all internet

users to be able to

access these ports,

then put an

Asterisk

in the first box and

leave the second box

empty.

Step 5

Select

LAN

as the

Destination

and enter the IP Address of the computer on

your local network that you want to allow the incoming service to. This will not work

with a range of IP Addresses

.

Step 6

Enter the port or range of ports that are required to be open for the incoming

service.

Step 7

Click

Apply

and then click

Continue

.

Because our routers use NAT (Network Address Translation), you can only open a

specific port to one computer at a time. For example: If you have 2 web servers on

your network, you cannot open port 80 to both computers. You will need to configure

1 of the web servers to use port 81. Now you can open port 80 to the first computer

and then open port 81 to the other computer.

Note:

Make sure DMZ host is disabled.

Page 84 / 100

84

Frequently Asked Questions (continued)

What are virtual servers?

A Virtual Server is defined as a service port, and all requests to this port will be

redirected to the computer specified by the server IP. For example, if you have an FTP

Server (port 21) at 192.168.0.5, a Web server (port 80) at 192.168.0.6, and a VPN

server at 192.168.0.7, then you need to specify the following virtual server mapping

table:

Server Port

Server IP

Enable

21

192.168.0.5

X

80

192.168.0.6

X

1723

192.168.0.7

X

How do I use

PC Anywhere

with my router?

You will need to open 3 ports in the Virtual Server section of your D-Link router.

Step 1

Open your web browser and enter the IP Address of the router (192.168.0.1).

Step 2

Click on

Advanced

at the top and then click

Virtual Server

on the left side.

Step 3

Enter the

information as seen

below. The

Private IP

is

the IP Address of the

computer on your local

network that you want to

connect to.

Step 4

The first entry

will read as shown here:

Step 5

Click

Apply

and then click

Continue

.

Page 85 / 100

85

How do I use

PC Anywhere

with my router? (continued)

Frequently Asked Questions (continued)

Step 6

Create

a second entry

as shown here:

Step 7

Click

Apply

and then

click

Continue

.

Step 8

Create

a third and final

entry as shown

here:

Step 9

Click

Apply

and then click

Continue

.

Step 10

Run

PCAnywhere

from the remote site and use the WAN IP Address of the

router, not your computer´s IP Address.

Rate

Popular D-Link Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share