Page 56 / 120 Scroll up to view Page 51 - 55
52
D-Link DIR-859 User Manual
Section 3 - Configuration
Advanced
QoS Engine
Under
Connected Clients
, you will see client cards representing each device. If some
client cards are off-screen, you can use the
<
and
>
buttons to scroll left and right.
A maximum of
one
device can be assigned
Highest
priority.
A maximum of
two
devices can be assigned
High
priority.
A maximum of
eight
devices can be assigned
Medium
priority.
If connected clients are not assigned a priority, all devices will be treated with equal
priority. If some devices are assigned a priority and others are not, the unassigned
devices will be treated with the lowest priority.
Quality of Service (QoS) improves data flow. It allows you to prioritize clients, so that high-priority clients receive higher bandwidth. For example, if
one client is streaming a movie and another is downloading a non-urgent file, you might wish to assign the former client a higher priority, so that
the movie streaming is not disrupted by the traffic of the other devices on the network.
From the
Advanced
menu on the bar on the top of the page, click
QoS Engine
.
To assign a priority level to a device, drag the device card from the
Connected Clients
list over an empty slot and release the mouse button. The card will remain in the
slot. If you want to remove a priority assignment from a device and return it to the
Connected Clients
list, click the cross icon in the top right corner of the device card.
Click
Save
when you are done.
Page 57 / 120
53
D-Link DIR-859 User Manual
Section 3 - Configuration
Firewall Settings
Enable or disable Demilitarized Zone (DMZ). Enabling this feature
creates a subnetwork that can be used to expose a single computer
to the Internet for applications that do not run well behind the router.
This may expose the computer to
a variety of security risks and is
not recommended.
If you enabled DMZ, enter the
IP Address
of the client you wish to
expose, or select a
Computer Name
from the drop-down menu.
Click to enable Stateful Packet Inspection (SPI) to help prevent cyber
attacks. This technique validates that the traffic passing through the
session conforms to the protocol.
Click to enable
Anti-Spoof Checking
, which will protect your
network from certain kinds of “spoofing” attacks.
Click to enable
IPv6 Simple Security
, which will provide simple
security capabilities for a local-area IPv6 network.
Click to enable
IPv6 Ingress Filtering
, which is a technique used to
make sure incoming packets originate from the networks they claim
to be from (prevents source address spoofing).
Enable DMZ:
DMZ IP
Address:
Enable SPI IPv4:
Enable
Anti-Spoof
Checking:
IPv6 Simple
Security:
IPv6 Ingress
Filtering:
A firewall protects your network from malicious attacks over the Internet. The DIR-859 offers a high-performance firewall features like SPI (Stateful
Packet Inspection).
From the
Advanced
menu, click
Firewall
.
Click
Advanced Settings...
to expand the list and view more options.
Page 58 / 120
54
D-Link DIR-859 User Manual
Section 3 - Configuration
Click to enable
PPTP
, which will allow multiple machines on the
LAN to connect to their corporate network using the PPTP protocol.
Enable to allow multiple VPN clients to connect to their corporate
network using IPSec. Some VPN clients support traversal of IPSec
through NAT. This Application Level Gateway (ALG) may interfere
with the operation of such VPN clients. If you are having trouble
connecting with your corporate network, try turning this ALG off.
Check with the system administrator of your corporate network to
find out whether your VPN client supports NAT traversal.
Enable to allow applications that use Real Time Streaming Protocol
(RTSP) to receive streaming media from the Internet.
Enable to allow devices and applications using VoIP (Voice over IP)
to communicate across NAT. Some VoIP applications and devices
have the ability to discover NAT devices and work around them. This
Application Level Gateway (ALG) may interfere with the operation of
such devices. If you are having trouble making VoIP calls, try turning
this ALG off.
Click
Save
when you are done.
PPTP:
IPSec (VPN):
RTSP:
SIP:
Page 59 / 120
55
D-Link DIR-859 User Manual
Section 3 - Configuration
IPv4/IPv6 Rules
Enter a
Name
for the new rule.
Enter the
Source IP Address Range
that the rule applies to.
Using
the drop-down menu, specify whether it is a
WAN
or
LAN
IP address.
Enter the
Destination IP Address Range
that the rule applies to.
Using the drop-down menu, specify whether it is a
WAN
or
LAN
IP
address.
Select the protocol of the traffic to allow or deny (
Any
,
TCP
, or
UDP
)
and then enter the range of ports that the rule will apply to.
Use the drop-down menu to select a
Schedule
when the rule will
be enabled. The schedule may be set to
Always Enable
, or you can
create a schedule from the
Schedules
section (refer to page 64).
Click
Apply
when you are done.
The IPv4/IPv6 Rules section allows you to specify the kind of traffic that is allowed to pass through the network.
Name:
Source IP
Address Range:
Destination IP
Address Range:
Port Range:
Schedule:
Use the drop-down menu to select whether you want to
Turn IPv4 Filtering ON
and
ALLOW
or
DENY
the rules you create. Or you may choose to
Turn IPv4 Fltering OFF
.
If you wish to remove a rule, click on its
trash
can icon in the
Delete
column. If you
wish to edit a rule, click on its
pencil
icon in the
Edit
column. If you wish to create a
new rule, click
Add Rule
.
Click
Save
when you are done.
When you click on
Add Rule
, the
Create New Rule
window will open. Enter the required
information into the fields described below:
For IPv4 rules, from the
Firewall Settings
page click
IPv4 Rules
.
For IPv6 rules, from the
Firewall Settings
page click
IPv6
Rules
.
Page 60 / 120
56
D-Link DIR-859 User Manual
Section 3 - Configuration
Port Forwarding
Enter a
Name
for the new rule.
Enter the IP address of the computer on your local network that
you want to allow the incoming service to. Or, select the
Computer
Name
from the drop-down menu.
Enter a
TCP Port
(or a range of TCP ports) you want to open. Separate
ports with a comma (for example: 24,1009,3000-4000).
Enter a
UDP Port
(or a range of UDP ports) you want to open.
Separate ports with a comma (for example: 24,1009,3000-4000).
Use the drop-down menu to select a
Schedule
when the rule will
be enabled. The schedule may be set to
Always Enable
, or you can
create a schedules from the
Schedules
section (refer to page 64).
Click
Apply
when you are done.
Name:
Local IP:
TCP Port:
UDP Port:
Schedule:
If you wish to remove a rule, click on its
trash
can icon in the
Delete
column. If you
wish to edit a rule, click on its
pencil
icon in the
Edit
column. If you wish to create a
new rule, click
Add Rule
.
Click
Save
when you are done.
When you click on
Add Rule
, the
Create New Rule
window will open. Enter the required
information into the fields described below:
Port forwarding allows you to specify a single port or a range of ports to open for specific devices on the network. It allows traffic requests from a
specific application to be directed to a specific client.
From the
Advanced
menu, click
Port Forwarding
.

Rate

3.5 / 5 based on 2 votes.

Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top