Page 31 / 270
Scroll up to view Page 26 - 30
Unified Services Router
User Manual
29
Figure 12: DMZ configuratio n
In order
to configure a DMZ port, the router’s configurable port must be set to
DMZ in the
Setup > Internet Settings > Configurable Port
page.
2.4
Universal Plug and Play (UPnP)
Advanced > Advanced Network > UPnP
Universal Plug and Play (UPnP) is a feature that allows the router to discovery
devices on the network that can communicate with the router and allow for auto
configuration. If a network device is detected by UPnP, the router can open internal
or external ports for the traffic protocol required by that network device.
Once UPnP is enabled, you can configure the router to detect UPnP -supporting
devices on the LAN (or a configured VLAN). If disabled, the router will not allow for
automatic device configuration.
Configure the following settings to use UPnP:
Page 32 / 270
Unified Services Router
User Manual
30
Advertisement Period: This is the frequency that the router broadcasts UPnP
information over the network. A large value will minimize network traffic but
cause delays in identifying new UPnP devices to the network.
Advertisement Time to Live: This is expressed in hops for each UPnP packet. This
is the number of steps a packet is allowed to propagate before being discarded.
Small values will limit the UPnP broadcast range. A default of 4 is typical for
networks with few switches.
Figure 13: UPnP Configuratio n
UPnP Port map Table
The UPnP Port map Table
has the details of UPnP devices that respond to the router’s
advertisements. The following information is displayed for each detected device:
Active: A yes/no indicating whether the port of the UPnP device that established a
connection is currently active
Protocol: The network protocol (i.e. HTTP, FTP, etc.) used by the DSR
Int. Port (Internal Port): The internal ports opened by UPnP (if any)
Ext. Port (External Port): The external ports opened by UPnP (if any)
IP Address: The IP address of the UPnP device detected by this router
Click Refresh to refresh the portmap table and search for any new UPnP devices.
Page 33 / 270
Unified Services Router
User Manual
31
2.5 Captive Portal
DSR-150/150N/250/250N does not have support for the Captive Portal feature.
LAN users can gain internet access via web portal authentication with the DSR.
Also referred to as Run-Time Authentication, a Captive Portal is ideal for a web
café scenario where users initiate HTTP c onnection requests for web access but are
not interested in accessing any LAN services.
Firewall policies underneath will
define which users require authentication for HTTP access, and when a matching
user request is made the DSR will intercept the reques t and prompt for a username /
password.
The login credentials are compared against the RunTimeAuth users in
user database prior to granting HTTP access.
Captive Portal is available for LAN users only and not for DMZ hosts.
Advanced > Captive Portal >Captive Portal Sessions
The Active Runtime internet sessions through
the router’s firewall are listed in the
below table.
These users are present in the local or external user database and have
had their login credentials approved for internet access.
A
‘Disconnect’ button
allows the DSR admin to selectively drop an authenticated user.
Page 34 / 270
Unified Services Router
User Manual
32
Figure 14: Active Runtime se ssions
2.6
Captive portal setup
Advanced > Captive Portal >Captive Portal Setup
Captive Portal is a security mechanism to selectively provide authentication on
certain interfaces . This page allows to manage the Policies and Profiles of
CaptivePortal.
Page 35 / 270
Unified Services Router
User Manual
33
Figure 15: Captive Portal Se tup
Captive Portal Policies : The List of Available CaptivePortal Policies are shown in
this table.
Authentication Type: This allows in choosing the authentication mode, type and
redirection type.
List of Available Profiles: Any one of these profiles can be used for Captive Portal
Login page while enabling Captive Portal.