1. Home
    2. /
  2. Manuals
    3. /
  3. Siemens
    4. /
  4. SpeedStream-5200
    5. /
  5. 24
Page 116 / 129 Scroll up to view Page 111 - 115
SpeedStream Router User Guide
SSDP
Simple Service Discovery Protocols
Tx Cells
(ATM) Number of cells transmitted through the ATM layer to the wire.
Tx Errors
(ATM) Number of SDUs that could not be transmitted due to errors.
Tx Packets
(DSL, Ethernet, USB) Count of all encoded blocks transmitted on this channel
since router reset.
Tx PDUs
(ATM) Number of PDUs transmitted on connection.
Unicast
Communication between a single sender and a single receiver across a network
VC
Virtual Channels
VCI
Virtual Channel Identifiers
VCMux
Virtual Channel Multiplexor
VPI
Virtual Path Identifiers
Technical Concepts
This section provides very brief descriptions of some of the features available on the SpeedStream Router.
AAL5 (ATM Adaption Layer 5)
AAL5 is a network layer for adapting data traffic into the format of ATM fixed-length packet
networks.
ATM (Asynchronous Transfer Mode)
ATM is a fast, cell-based technology defined by the ITU-T. It works by taking an ordinary, variable-
length data packet and segmenting it into 53-byte cells prior to transmission. The data is transmitted
over
virtual channels
that are designated by specific unique identifiers (virtual channel identifiers or
VCIs). There can be multiple VCIs in one
virtual path
. The virtual path also has a unique virtual path
identifier (VPI). Data transmitted over ATM VCs is routed by ATM switches. At the destination
node, the cells are reassembled into packets. Only one virtual path is supported on the device. In
router mode, only one virtual channel is supported. However, in bridge mode, up to 16 virtual
channels can be configured to be used as individual bridge ports.
Cloning IP Filter Rules
Defining a complete set of firewall IP filter rules can be a tedious process. To aide our SpeedStream
router users, Efficient Networks includes the capability to “clone” an existing set of rules as a starting
point in the process.
There are four preconfigured firewall levels: Low, Medium, High and ICSA-compliant. Each of these
levels has its own set of predefined firewall rules. If you want to create a set of Custom rules that are
similar to one of the preconfigured levels, you can do this through cloning. When you clone one of
the preconfigured levels, the new set of custom rules is an exact replica of the cloned level; only the
rule numbers have been changed.
When you clone a set of rules, any existing Custom rules are deleted and a new set of Custom rules (a
replica of the cloned level) is created. When you click
Clone Rule Set
on the
Firewall – Custom IP
106
Page 117 / 129
SpeedStream Router User Guide
Filter Configuration
window, the Current IP Filter Rules table refreshes with the new rules set. You
can edit, add or delete this new set of rules.
Rule Numbering
If you select a specific Firewall Level (e.g., Low) and then examine the list of rules displayed in the
Current IP Filter Rules table, you will notice that the numbers start at xx20; e.g., Low starts at 120,
not 100. The numbers preceding xx20 (1-19) are skipped to allow you extra space at the front of the
list to add new rules. Additionally, the preconfigured rules are not consecutively numbered - Low, for
example, is numbered as 120, 122, 124 – allowing you to easily interject new rules between the
existing ones.
Important!
The rule numbers represent the priority with which the rules will be applied in filtering IP
packets. Consequently, rule number 120 would be applied before rule number 122. If, for example,
rule 120 denies all inbound traffic, it would render all other inbound rules useless – no inbound traffic
allowed!
This numbering/priority scheme applies independently to the two categories of rules,
inbound
and
outbound.
Inbound rules are applied only to inbound packets; outbound rules are applied only to
outbound packets.
The display of rules in the table is ordered by the Direction category. Inbound rules are displayed
first; outbound rules display second.
DHCP (Dynamic Host Configuration Protocol)
The router provides two user-configurable Dynamic Host Configuration Protocol (DHCP) modes:
DHCP server (enabled by default from the factory) and DHCP relay agent.
DHCP Relay
The router can be configured to operate as a DHCP relay agent. This allows local machines on the
LAN to acquire their IP addresses via DHCP requests and replies that are forwarded through the
router to/from a DHCP server on the WAN. In this case, the DHCP requests are forwarded to a
specific DHCP server on the WAN network and the DHCP reply is forwarded back to the LAN
network.
The DHCP relay agent can be configured with a Primary and a Secondary DHCP Server IP address.
The Secondary address is only used if the Primary is unreachable. Any DHCP requests that are
received by the router are relayed to the Primary DHCP server at the specified IP address.
This DHCP server is then responsible for assigning the DHCP information to the DHCP client.
Typically, this DHCP server will exist in the WAN space.
DHCP Server
When operating as a DHCP server, the router will dynamically assign IP addresses to LAN nodes.
The DHCP server verifies a device’s identity, leases it an IP address for a predetermined period, and
reclaims the address for reassignment at the end of the lease period. The DHCP server supports
DHCP client hosts on the LAN side only. The router will ignore all DHCP requests that arrive from
the WAN interface.
Note
You
have the option to change the router’s Ethernet IP address without rebooting the router. If
107
Page 118 / 129
SpeedStream Router User Guide
you have configured a specific set of IP addresses for the DHCP server, then you change the Ethernet
IP address to something that is on a different subnet than your DHCP server’s addresses, and you do
not reboot, the router will not recognize the change. The DHCP server will not be able to hand out
addresses. Be sure to reboot the router when you change the Ethernet IP address in this manner.
DNS (Domain Name Service)
The router supports Domain Name Service (DNS) that provides hostname-to-IP address resolution for
LAN-side clients. There are two distinct DNS functions provided by the router: the
DNS resolver and
the DNS server.
DNS Resolver
The DNS resolver is the entity that creates a DNS request for transmission to a DNS server (which
may be co-located in the router or be an external DNS server). The DNS resolver is only used by
certain user interface commands that allow a hostname argument as well as an IP address argument.
The DNS resolver requires the user to configure a single DNS server IP address to which to direct
DNS requests. This IP address may be the router itself in the situation where the DNS server is
enabled on the router or it may be any reachable IP address at which a DNS server is available.
DNS Server
The DNS server is the entity that responds to DNS requests. The DNS server provides IP address-to-
hostname resolution and hostname-to-IP address resolution for LAN clients via DNS requests. The
DNS server also supports hostname-to-IP address resolution for user interface commands where
appropriate in response to requests submitted by the DNS resolver.
The DNS server is enabled by default from the factory and provides the router with the default
hostname “
ENI-Router”.
DSL (Digital Subscriber Line)
DSL describes a family of digital services provided by local telephone companies to local subscribers.
There are many forms of DSL: Asymmetric DSL (DSL), Symmetric (or single pair) DSL (SDSL),
and many others. The router supports DSL, which provides rates of up to 6 Mbps downstream from
the customer and up to 640 Kbps upstream from the customer. DSL can carry voice and data signals
at the same time in both directions.
Encapsulation Methods: PPP and RFC 1483
The 5600 series router transmits data via ATM Virtual Channels (VCs). The data is encapsulated
using methods Point-to-Point Protocol (PPP) or RFC 1483 encapsulation. A brief explanation of these
two encapsulation methods follows.
ICSA 3.0a-compliancy
ICSA Labs, a division of TruSecure Corporation, tests and defines firewall security criteria, providing
certification to products that meet their exacting standards. For more information, go to
108
Page 119 / 129
SpeedStream Router User Guide
PPP (Point-to-Point Protocol)
PPP is a single or multi-link interface between two packet switching devices, such as a bridge or
router. PPP has built-in negotiation for addresses and connection parameters and can route multiple
protocols over a single link. One benefit of using PPP is it offers interoperability of multi-vendor
equipment as well as support for dynamic configuration between the connecting devices.
Public and Private Networks and the Use of NAPT
An IP address must be unique among all networks reachable from a given host using the IP protocols.
The
Internet Registry
in the United States that ensures the uniqueness of the IP addresses on the
Internet. The Internet Registry assigns an entire IP network number to each site connected to the
Internet. Each IP address at a site is unique as long as the site assigns a different host number to each
host on its network. Thus, each host is ensured a globally unique IP address that is known as a
public
IP address.
However, there has been concern over the eventual exhaustion of the public address space. This has
LED the Registry to set aside IP network numbers for
private
addressing. These numbers are not
assigned to anyone by the Internet Registry and are open for use by any site. IP addresses are unique
within the private address space, but two private address spaces are not guaranteed unique.
Use of private address spaces has some disadvantages including the need to re-address any host that
must change from a private address to a public address. Moreover, the privately addressed hosts are
unable to communicate with all hosts in an internet. These problems can be handled by the use of
Network Address Port Translation
(NAPT).
NAPT is an extension to
Network Address Translation
(NAT). With NAT, a network address
translator (the router, in this case) sits between an organization’s network and the Internet, or between
two organization’s networks and translates IP addresses from private internal addresses to globally
unique external addresses. NAPT, however, allows many network addresses and their TCP/UDP ports
to be translated to a single network address and its TCP/UDP ports. With NAPT, a few of your
internal hosts can share a single public address. When a host needs to access the Internet, the router
will translate an address for it. When packets from the host are sent to the Internet, the router replaces
the internal address with the external address. When packets come back for that address, the router
reverses the substitution.
RFC 2684
Request for Comment (RFC) 2684, which supplants RFC 1483, is an interoperability specification set
by the Internet Engineering Task Force (IETF) that outlines methods for multiprotocol encapsulation
over ATM. RFC 2684 describes two encapsulation methods for carrying network interconnect traffic
over ATM Adaptation Layer 5 (AAL5): Logical Link Control (LLC)/SNAP encapsulation and VC
multiplexing.
By default, the router uses the first method, LLC Encapsulation, which allows multiplexing of
multiple protocols over a single ATM virtual circuit. The second method, VC multiplexing, uses a
separate VC for each carried protocol.
109
Page 120 / 129
SpeedStream Router User Guide
Appendix E:
Step-by-Step Virtual WAN Configuration
There are several steps to configuring a virtual WAN connection. To make it easier to follow, this section
presents the steps that are detailed in
5: Customizing Router Settings | WAN Interface Configuration
Wizard | Add a New Virtual Connection (VC)
on page 31.
Shaded rows indicate that these steps are repeated if you select multiple PPPoE sessions to configure in
the
PPPoE Session Count
window.
Step
On this window:
Do this:
1
Web Management
Interface
On the main menu, click
Setup
, then click
WAN Interface
.
2
Current Configuration
At the bottom left corner of the window, click
Add a new VC
.
Note
If the ATM Settings window displays next, click
Next
to continue to
the
Protocol Selection
window.
3
Protocol Selection
Select protocol: RFC-2684 Bridged, Bridged with IP, or Routed; PPPoA;
PPPoE.
4
a
This step is dependent on your choice of protocol. Click the protocol type to jump to the specific
configuration procedures.
4a
RFC-2684 Bridged protocol
4b
RFC-2684 Bridged/IP protocol
4c
RFC-2684 Routed protocol
4d
PPPoE protocol
4e
PPPoA protocol
4a. If you selected the
RFC-2684 Bridged
protocol:
Step
On this window:
Do this:
4a
Connection Name
Enter connection name
5
VC Wizard
Finish
4b. If you selected the
RFC-2684 Bridged/IP
protocol:
Step
On this window:
Do this:
4b
2684 Bridged
Enter Internet Protocol information as provided by your service provider.
5
2684 PPPoE
Specify if connection will also use PPPoE.
6
Interface Options
Select interface options: firewall, attack detection system, universal plug
and play; RIP; NAT/NAPT.
7
Connection Name
Enter name to use for this connection.
110

Rate

4.5 / 5 based on 2 votes.

Popular Siemens Models

Famous Router IPs
Famous Router Companies
Bookmark Our Site

Press Ctrl + D to add this site to your favorites!

Share
Top