D-Link DIR-859 Router Manual PDF (Setup & Configuration Guide)

Home

Manuals

D-Link

DIR-859

Page 56 / 120 Scroll up to view Page 51 - 55

D-Link DIR-859 User Manual

Section 3 - Conﬁguration

Advanced

QoS Engine

Under

Connected Clients

, you will see client cards representing each device. If some

client cards are oﬀ-screen, you can use the

and

buttons to scroll left and right.

A maximum of

one

device can be assigned

Highest

priority.

A maximum of

two

devices can be assigned

High

priority.

A maximum of

eight

devices can be assigned

Medium

priority.

If connected clients are not assigned a priority, all devices will be treated with equal

priority. If some devices are assigned a priority and others are not, the unassigned

devices will be treated with the lowest priority.

Quality of Service (QoS) improves data ﬂow. It allows you to prioritize clients, so that high-priority clients receive higher bandwidth. For example, if

one client is streaming a movie and another is downloading a non-urgent ﬁle, you might wish to assign the former client a higher priority, so that

the movie streaming is not disrupted by the traﬃc of the other devices on the network.

From the

Advanced

menu on the bar on the top of the page, click

QoS Engine

To assign a priority level to a device, drag the device card from the

Connected Clients

list over an empty slot and release the mouse button. The card will remain in the

slot. If you want to remove a priority assignment from a device and return it to the

Connected Clients

list, click the cross icon in the top right corner of the device card.

Click

Save

when you are done.

Page 57 / 120

D-Link DIR-859 User Manual

Section 3 - Conﬁguration

Firewall Settings

Enable or disable Demilitarized Zone (DMZ). Enabling this feature

creates a subnetwork that can be used to expose a single computer

to the Internet for applications that do not run well behind the router.

This may expose the computer to

a variety of security risks and is

not recommended.

If you enabled DMZ, enter the

IP Address

of the client you wish to

expose, or select a

Computer Name

from the drop-down menu.

Click to enable Stateful Packet Inspection (SPI) to help prevent cyber

attacks. This technique validates that the traﬃc passing through the

session conforms to the protocol.

Click to enable

Anti-Spoof Checking

, which will protect your

network from certain kinds of “spooﬁng” attacks.

Click to enable

IPv6 Simple Security

, which will provide simple

security capabilities for a local-area IPv6 network.

Click to enable

IPv6 Ingress Filtering

, which is a technique used to

make sure incoming packets originate from the networks they claim

to be from (prevents source address spooﬁng).

Enable DMZ:

DMZ IP

Address:

Enable SPI IPv4:

Enable

Anti-Spoof

Checking:

IPv6 Simple

Security:

IPv6 Ingress

Filtering:

A ﬁrewall protects your network from malicious attacks over the Internet. The DIR-859 oﬀers a high-performance ﬁrewall features like SPI (Stateful

Packet Inspection).

From the

Advanced

menu, click

Firewall

Click

Advanced Settings...

to expand the list and view more options.

Page 58 / 120

D-Link DIR-859 User Manual

Section 3 - Conﬁguration

Click to enable

PPTP

, which will allow multiple machines on the

LAN to connect to their corporate network using the PPTP protocol.

Enable to allow multiple VPN clients to connect to their corporate

network using IPSec. Some VPN clients support traversal of IPSec

through NAT. This Application Level Gateway (ALG) may interfere

with the operation of such VPN clients. If you are having trouble

connecting with your corporate network, try turning this ALG oﬀ.

Check with the system administrator of your corporate network to

ﬁnd out whether your VPN client supports NAT traversal.

Enable to allow applications that use Real Time Streaming Protocol

(RTSP) to receive streaming media from the Internet.

Enable to allow devices and applications using VoIP (Voice over IP)

to communicate across NAT. Some VoIP applications and devices

have the ability to discover NAT devices and work around them. This

Application Level Gateway (ALG) may interfere with the operation of

such devices. If you are having trouble making VoIP calls, try turning

this ALG oﬀ.

Click

Save

when you are done.

PPTP:

IPSec (VPN):

RTSP:

SIP:

Page 59 / 120

D-Link DIR-859 User Manual

Section 3 - Conﬁguration

IPv4/IPv6 Rules

Enter a

Name

for the new rule.

Enter the

Source IP Address Range

that the rule applies to.

Using

the drop-down menu, specify whether it is a

WAN

LAN

IP address.

Enter the

Destination IP Address Range

that the rule applies to.

Using the drop-down menu, specify whether it is a

WAN

LAN

address.

Select the protocol of the traﬃc to allow or deny (

Any

TCP

, or

UDP

)

and then enter the range of ports that the rule will apply to.

Use the drop-down menu to select a

Schedule

when the rule will

be enabled. The schedule may be set to

Always Enable

, or you can

create a schedule from the

Schedules

section (refer to page 64).

Click

Apply

when you are done.

The IPv4/IPv6 Rules section allows you to specify the kind of traﬃc that is allowed to pass through the network.

Name:

Source IP

Address Range:

Destination IP

Address Range:

Port Range:

Schedule:

Use the drop-down menu to select whether you want to

Turn IPv4 Filtering ON

and

ALLOW

DENY

the rules you create. Or you may choose to

Turn IPv4 Fltering OFF

If you wish to remove a rule, click on its

trash

can icon in the

Delete

column. If you

wish to edit a rule, click on its

pencil

icon in the

Edit

column. If you wish to create a

new rule, click

Add Rule

Click

Save

when you are done.

When you click on

Add Rule

, the

Create New Rule

window will open. Enter the required

information into the ﬁelds described below:

For IPv4 rules, from the

Firewall Settings

page click

IPv4 Rules

For IPv6 rules, from the

Firewall Settings

page click

IPv6

Rules

Page 60 / 120

D-Link DIR-859 User Manual

Section 3 - Conﬁguration

Port Forwarding

Enter a

Name

for the new rule.

Enter the IP address of the computer on your local network that

you want to allow the incoming service to. Or, select the

Computer

Name

from the drop-down menu.

Enter a

TCP Port

(or a range of TCP ports) you want to open. Separate

ports with a comma (for example: 24,1009,3000-4000).

Enter a

UDP Port

(or a range of UDP ports) you want to open.

Separate ports with a comma (for example: 24,1009,3000-4000).

Use the drop-down menu to select a

Schedule

when the rule will

be enabled. The schedule may be set to

Always Enable

, or you can

create a schedules from the

Schedules

section (refer to page 64).

Click

Apply

when you are done.

Name:

Local IP:

TCP Port:

UDP Port:

Schedule:

If you wish to remove a rule, click on its

trash

can icon in the

Delete

column. If you

wish to edit a rule, click on its

pencil

icon in the

Edit

column. If you wish to create a

new rule, click

Add Rule

Click

Save

when you are done.

When you click on

Add Rule

, the

Create New Rule

window will open. Enter the required

information into the ﬁelds described below:

Port forwarding allows you to specify a single port or a range of ports to open for speciﬁc devices on the network. It allows traﬃc requests from a

speciﬁc application to be directed to a speciﬁc client.

From the

Advanced

menu, click

Port Forwarding

Rate

Popular D-Link Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share