SnapGear SG565 Router Manual PDF (Setup & Configuration Guide)

Page 56 / 249 Scroll up to view Page 51 - 55

Network Connections

51

Warning

We strongly recommend leaving network switch

A

as a LAN connection, as this is the

interface through which the CyberGuard SG appliance will attempt to network load a

recovery firmware image in the unlikely event that it fails to boot.

Recovery booting from

an untrusted network poses a security hazard.

SG560, SG565, SG580: Multifunction Ports

The CyberGuard SG560, SG565 and SG580 appliances have generically named

Ethernet ports (ports

A1

,

A2

,

A3

,

A4

and

B

).

By default, switch

A

functions as a regular

LAN switch, with network traffic passing freely between its ports.

Typically, port

B

will be

used as your primary Internet connection.

However, switch

A

’s ports can be configured individually to perform separate functions,

e.g. port

A2

can be a configured as a bridge to a second LAN, port

A3

can be configured

as a DMZ port, and port

A4

can be configured as a failover or load balancing Internet

connection.

These per-port configuration scenarios are accomplished using

VLANs

(virtual local area

networks).

For documentation concerning the advanced use of the VLAN capability of

your CyberGuard SG appliance, refer to the sections entitled

VLANs

and

Port based

VLANs towards

the end of this chapter.

All Other SG Models: Fixed-function Ports

All other CyberGuard SG appliances have specifically labeled ports for specific functions.

The port labeled

LAN

may only perform the functions described in the section entitled

LAN Connection

, the port labeled

Internet

or

WAN

may only perform the functions

described in the section entitled

Internet Connection

.

Note

On SG570 and SG575 models, the

DMZ

port is special in that it may be configured to

connect to a LAN (

LAN Connection

),

a DMZ (

DMZ Connection

)

or as a failover or load-

balancing

Internet link (

Internet Connection

).

Page 57 / 249

Network Connections

52

LAN Connection

Network settings for a LAN connection may be assigned statically, or dynamically by a

DHCP server; this is discussed in

Direct LAN

below.

Alternatively, you may choose to bridge between a LAN connection and another

connection; this is discussed in

Bridging

later in this chapter.

Direct LAN

To assign network settings statically, enter an

IP Address

and

Netmask

for the network

port through which you will be connecting to your LAN.

If you are using the CyberGuard

SG appliance in its default, network address translation mode, (see

Network address

translation

in the

Advanced

section of this chapter), this will typically be part of a private

IP range, such as

192.168.0.1

/

255.255.255.0

.

Ensure

DHCP assigned

is unchecked.

If you wish to have your CyberGuard SG appliance obtain its LAN

network settings from

an active DHCP server on your local network, check

DHCP assigned

then

Apply

.

Note

that anything in the

IP Address

and

Netmask

fields will be ignored.

You may also enter one or more

DNS servers

.

Multiple servers may be entered

separated by commas.

Figure 3-2

Bridged LAN

Refer to the section entitled

Bridging

later in this chapter.

Page 58 / 249

Network Connections

53

Internet Connection

The CyberGuard SG appliance can connect to the Internet using an external dialup

analog modem, an ISDN modem, a permanent analog modem, a cable modem or DSL

link.

Figure 3-3

CyberGuard SG PCI appliances can also connect to the Internet in this manner, but

generally will be connecting directly to a LAN by selecting either

Direct Internet

or

Bridged Internet

.

Physically connect modem device

The first step in connecting your office network to the Internet is to physically attach your

CyberGuard SG appliance to the modem device.

Note

If you are configuring an analog modem or ISDN connection as your primary Internet

connection, proceed to the section entitled

COM/Modem

.

Connect the CyberGuard SG appliance‘s port that you will be using to connect to the

Internet to the modem device using a straight through Ethernet cable.

Apply power to the

modem device and give it some time to power up.

If fitted, ensure the Ethernet link LEDs

are illuminated on both the CyberGuard SG appliance and modem device.

Page 59 / 249

Network Connections

54

Primary Internet Connection

Select your Internet connection type from the

Configuration

pull down menu.

Cable

Select your cable ISP from the list and click

If your provider does not appear,

select

Generic Cable Modem Provider

.

For cable modem providers other than

Generic

, enter your user name and password and click

Finish

.

You are now ready to

connect.

Click the

Reboot

button to save your configuration and reboot your

CyberGuard SG appliance.

ADSL

If you are connecting to the Internet using ADSL, you may select the connection method

PPPoE

,

PPTP

,

DHCP

, or

Manually Assign Settings

.

If you are unsure, you may let the

CyberGuard SG appliance attempt to

Auto detect ADSL connection type.

Click

Apply

to continue.

Note

Use

PPPoE

if your ISP uses username and password authentication to access the

Internet.

Use

PPTP

if your ISP has instructed you to make a dial-up VPN connection to

the Internet.

Use

DHCP

if your ISP does not require a username and password, or your

ISP instructed you to obtain an IP address dynamically.

If your ISP has given you an IP

address or address range, you must

Manually Assign Settings

.

For

PPPoE

, enter the user name and password for your ISP account.

By default, your

CyberGuard SG appliance maintains the ADSL connection continuously.

Alternatively

you may choose to only bring the connection up when PCs on the LAN are trying to

reach the Internet by checking the

Connect on Demand

box.

If you are connecting on

demand, enter an

Idle Disconnect Time

.

This is the time (in minutes) that the

CyberGuard SG appliance will wait before disconnecting when the connection is idle.

For

PPTP

, enter the

PPTP Server IP Address

and a

Local IP Address

and

Netmask

for the CyberGuard SG network port through which you are connecting to the Internet;

this IP address will be used to connect to the PPTP server and generally will not be your

real Internet IP address.

DHCP

connections may require a

Hostname

to be specified, but otherwise all settings

are assigned automatically by your ISP.

Page 60 / 249

Network Connections

55

For

Manually Assign Settings

connections, enter the

IP Address

,

Netmask

and

optionally the

Gateway

and the

DNS Address

if provided by your ISP.

Multiple DNS

addresses may be entered separated by commas.

Reboot

the CyberGuard SG appliance for the new configuration to take effect.

If you are unsure of the ADSL connection method, select

Auto detect ADSL connection

type

and your CyberGuard SG appliance will attempt to automatically determine the

connection method.

Direct Internet

If you have a direct connection to the Internet, select this option.

Typically your ISP will

have provided you with network settings (possibly a range of IP addresses), or asked you

to auto-configure using DHCP.

To use DHCP, check the

DHCP Assigned

check box.

You may also enter one or more

DNS Server(s)

, however any DNS server addresses allocated by your ISP will take

precedence over these.

Figure 3-4

Rate

Popular SnapGear Models

Famous Router IPs

Famous Router Companies

Bookmark Our Site

Share