NetComm NB5Plus4W Router Manual PDF (Setup & Configuration Guide)

Home

Manuals

NetComm

NB5Plus4W

Page 51 / 112 Scroll up to view Page 46 - 50

YML754 Rev1

NB5Plus4/W User Guide

www.netcomm.com.au

getting direct access to LAN computers while still being able to access services

hosted on the designated DMZ Computer.

When using NAPT to share your internet connection, LAN computers will still be able

to access the Internet when the DMZ host is enabled. Any direct communication

to the WAN port of your Modem that is not a reply to the original NAPT request is

forwarded to the DMZ host.

Option

Description

Select your WAN

Co°°ectio°:

Select the connection to which your

DMZ client is connected to.

Select LAN ±roup:

Select the LAN group in which you want

to place the DMZ client.

Select a LAN IP

Address:

Select the LAN IP address of the DMZ

client.

LAN Clie°ts:

Click the LAN clients hyperlink to manu-

ally add a LAN client.

Click the Apply button to save the settings.To remove a rule from the Applied Rules

box, select the Rule and click on the Remove Button.

To save changes, click on Apply.

Advanced Port Forwarding: Creating Custom Rules

Click the Custom Port Forwarding link to setup a custom rule.

If there is no pre-deﬁned Port Forwarding Rule for a particular application, a User

Rule can be created which deﬁnes the required Port(s), Protocol(s) and Internal Port

forwarding rules.

To create a custom rule you will need to know the speciﬁc port number(s) and port

type [UDP or TCP] that the application requires. These will be the outside port num

Page 52 / 112

NB5Plus4/W User Guide

YML754Rev1

5±

www.netcomm.com.au

bers. Some applications specify a range of ports in which case you will need to know

both the starting and ending port numbers in the range, which are mapped by the

start port and end port ﬁelds.

The Destination Port Map ﬁeld speciﬁes the internal port that the data will be

directed to on the LAN Client. When dealing with port ranges, the Internal Port (des-

ignated by the Port Map ﬁeld) will be the same as the ﬁrst port in the range. When

you simply want to forward a single port from outside (i.e. WAN side) to inside (i.e.

LAN side), then all three ﬁelds (Port Start, Port End and Port Map) will have the

same port number.

Option

Description

Co°°ectio°:

Choose the connection to which the rule

is to be applied to.

Applicatio°:

Provide a name for the application (e.g.

Azureus).

The name must be unique,

must not contain spaces and cannot

begin with a number.

Protocol:

Can be either TCP or UDP, or both.

Option

Description

Source IP Address:

The client on the Internet sending the

data (e.g. 202.44.55.66). Note, if you

do not know the IP address of the client

use 0.0.0.0 for any client on the Inter-

net.

Source Netmask:

The subnet mask

of the client connect-

ing to you. Note, if you do not know the

Netmask use 0.0.0.0.

Desti°atio° IP Address:

The LAN IP address of the device on

your network to which packets of data

will be forwarded to (e.g. 192.168.1.2).

Desti°atio° Netmask:

The subnet mask of the LAN device.

Page 53 / 112

YML754 Rev1

NB5Plus4/W User Guide

www.netcomm.com.au

5²

Destination Port Start

& Desti°atio° Port E°d.

The ports on the remote client from

which data is being sent to your mo-

dem’s corresponding ports. These will

be the same if you are forwarding only

a single port.

If there is a range, then

port start is the ﬁrst number in the

range, and port end will be the last

number.

Desti°atio° Port Map:

This is the port number that the data

should be forwarded to on the speci-

ﬁed LAN IP (i.e. the inside port).

This

is usually the same as the port start

ﬁgure.

TIP:

It is possible to map outside port numbers, or ranges [i.e. port start…port

end] to a different inside port numbers [port map] for reasons of security

or convenience.

Click ‘Apply’.

The Port Rule settings deﬁned by this process will then be displayed in a table at the

bottom of the Rule Management panel.

If you wish to add more ports to this rule, leave the text name in the Rule Name

ﬁeld and enter the new port settings. Click ‘Apply’ and the new settings will be

added to the list.

Adding Custom Rules to Applied Rules List

When you have assigned all necessary ports to the Rule and they appear in the

Page 54 / 112

NB5Plus4/W User Guide

YML754Rev1

www.netcomm.com.au

table, click on the Port Forwarding menu item to return to the main Port Forwarding

screen.

User-created rules will be shown in the Available Rules list when the User Category

radio button is selected. You can now apply the rule(s) by selecting it and clicking

Add. This will add the rule to list of applied rules.

Advanced > IP Filters

The IP ﬁlters page allows you to specify Normal Port Forwards,

Block ALL trafﬁc

to speciﬁc LAN Clients or specify Custom IP ﬁlters that will control the ﬂow of data

across the router.

Custom IP Filters (often also referred to as ‘Access Control Lists’ ) allow you to

specify individual rules that will deny trafﬁc by deﬁning the following:

•

Source IP address or IP Subnet

•

Destination IP address or Subnet

•

Port or Port range

•

Protocol

Custom IP ﬁlters are different from Port forwards, or Block All trafﬁc because they

allow greater scopes of IP addresses to be included in the block.

Note:

You must have at least one LAN Client in your LAN clients table before IP

ﬁlters can be created. To create a LAN Client, see the section below on LAN

Clients under the Advanced Menu.

Advanced > Access Control

Use Access Control to conﬁgure advanced security functions by customising the

Page 55 / 112

YML754 Rev1

NB5Plus4/W User Guide

www.netcomm.com.au

Modem Firewall.

The default ‘Firewall On’ setting blocks all anonymous Internet

trafﬁc.

Access control enables the user to selectively direct such trafﬁc, for example

to a Web Host in the DMZ or to speciﬁc ports opened for such applications as Web,

Telnet or FTP.

CAUTION: This dialog box indicates that you should not disable LAN Web Access

or else you might not be able to connect to the device. If you become

locked out of the device

perform a Restore Factory Default as detailed

earlier in this manual.

To conﬁgure Access Control, click on Advanced>Access Control.

This will reveal the

Enable Access Control screen.

The default conﬁguration enables Telnet, Web, FTP

and SSH access FROM the LAN TO the WAN.

Access FROM the WAN to the LAN is

not available in the default conﬁguration.

Enable Access Control: check this box to enable selective access from the WAN to

your LAN for applications of the class indicated by the relevant check boxes. If Ac-

cess Control is not enabled, the individual check boxes cannot be checked.

If Access Control is enabled, and an Enable WAN checkbox is selected, then WAN

access to the matching service is enabled.

In other words, for example, if your

were to enable Telnet access on the WAN you could then manage and conﬁgure

your modem from anywhere on the Internet via Telnet.

Caution:

Enabling WAN access to your modem reduces security.

IP Access List: This enables you to specify which LAN/WAN IP addresses are allowed

access to the modem conﬁguration services speciﬁed.

Tools

The Tools section allows you to save the conﬁguration, restart the gateway, update

the gateway ﬁrmware, setup user and remote log information and run Ping and

Modem tests.

Tools>System Commands

System commands allow you to carry out basic system actions. Press the button to

execute a command.

Here you will ﬁnd the following functions:

•

Save All

•

Restart

•

Restore Defaults (same as pressing and holding the button on the back to clear

and reset to factory default.

Note:

If you Restore Defaults you will need to reconﬁgure your internet connec

tion settings, ISP Username & Password etc.

Tools>User Management

User Management is used to change your NB5Plus4/W’s User Name or Password.

Option

Description

User Name:

Default is ‘admin’.

Password:

Default is ‘admin’.

Rate

Popular NetComm Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share