SMC Networks SMCWBR11S-3GN, User Manual

Page 1: ...BarricadeTM N 150Mbps Wireless N Mini 3G Broadband Router SMCWBR11S 3GN USER GUIDE ...

Page 2: ...CA 92618 Phone 949 679 8000 SMC Networks Europe C Fructuós Gelabert 6 8 2º 2ª Edificio Conata II 08970 Sant Joan Despí Barcelona Spain Phone 34 93 477 4920 BarricadeTM SMCWBR11S 3GN User Guide March 2010 Pub 149100000057W E032010 CS R01 ...

Page 3: ...d by implication or otherwise under any patent or patent rights of SMC SMC reserves the right to change specifications at any time without notice Copyright 2010 by SMC Networks Inc 20 Mason Irvine CA 92618 All rights reserved Trademarks SMC is a registered trademark and Barricade EZ Switch TigerStack TigerSwitch and TigerAccess are trademarks of SMC Networks Inc Other product and company names are...

Page 4: ... 4 WARRANTY AND PRODUCT REGISTRATION To register SMC products and to review the detailed warranty statement please refer to the Support Section of the SMC Website at http www smc com ...

Page 5: ...ence by one of the following measures Reorient or relocate the receiving antenna Increase the separation between the equipment and receiver Connect the equipment into an outlet on a circuit different from that to which the receiver is connected Consult the dealer or an experienced radio TV technician for help This device complies with Part 15 of the FCC Rules Operation is subject to the following ...

Page 6: ...5 dBi Antennas having a higher gain are strictly prohibited per regulations of Industry Canada The required antenna impedance is 50 ohms To reduce potential radio interference to other users the antenna type and its gain should be so chosen that the EIRP is not more than required for successful communication IMPORTANT NOTE IC RADIATION EXPOSURE STATEMENT This equipment complies with IC RSS 102 rad...

Page 7: ...1 2007 Class B ITE EMC EN 55024 1998 A1 2001 A2 2003 ITE EMC EN 300 328 V1 7 1 2006 10 Technical requirements for 2 4 GHz radio equipment EN 301 489 1 V1 8 1 2008 04 EMC requirements for radio equipment EN 301 489 17 V1 3 2 2008 04 EMC requirements for radio equipment 50385 2002 Country specific SAR requirements This device is intended for use in the following European Community and EFTA countries...

Page 8: ... Härmed intygar Manufacturer att denna Radio LAN device står I överensstämmelse med de väsentliga egenskapskrav och övriga relevanta bestämmelser som framgår av direktiv 1999 5 EG Danish Dansk Undertegnede Manufacturer erklærer herved at følgende udstyr Radio LAN device overholder de væsentlige krav og øvrige relevante krav i direktiv 1999 5 EF German Deutsch Hiermit erklärt Manufacturer dass sich...

Page 9: ... declara que este Radio LAN device está conforme com os requisitos essenciais e outras disposições da Directiva 1999 5 CE Slovak Slovensky Manufacturer týmto vyhlasuje že Radio LAN device spĺňa základné požiadavky a všetky príslušné ustanovenia Smernice 1999 5 ES Slovenian Slovensko Manufacturer izjavlja da je ta radio LAN device v skladu z bistvenimi zahtevami in ostalimi relevantnimi določili di...

Page 10: ...wing conventions are used throughout this guide to show information NOTE Emphasizes important information or calls your attention to related features or instructions CAUTION Alerts you to a potential hazard that could cause loss of data or damage the system or equipment WARNING Alerts you to a potential hazard that could cause personal injury RELATED PUBLICATIONS As part of the Mini 3G Broadband R...

Page 11: ...y Hardware Features 20 Description of Capabilities 20 Applications 21 Package Contents 22 Hardware Description 22 LED Indicators 24 Ethernet WAN Port 25 Ethernet LAN Port 25 3G Modem USB Port 25 Power Connector 25 WPS Button 25 Reset Button 25 2 NETWORK PLANNING 26 Internet Gateway Router 26 LAN Access Point 27 Wireless Bridge 28 3 INSTALLING THE MINI 3G ROUTER 29 ...

Page 12: ...ommon Web Page Buttons 36 Setup Wizard 36 Step 1 Language Selection 36 Step 2 Time Settings 37 Step 3 WAN Settings DHCP 37 Step 3 WAN Settings Static IP 39 Step 3 WAN Settings PPPoE 40 Step 3 WAN Settings PPTP 41 Step 3 WAN Settings L2TP 43 Step 3 WAN Settings 3G 45 Step 4 Wireless Security 47 Completion 48 SECTION II WEB CONFIGURATION 49 5 OPERATION MODE 50 Logging In 51 Operation Mode 53 6 NETWO...

Page 13: ...rity 82 Wired Equivalent Privacy WEP 83 WPA Pre Shared Key 84 WPA Enterprise Mode 85 IEEE 802 1X and RADIUS 87 Access Policy 89 Wireless Distribution System WDS 89 Wi Fi Protected Setup WPS 92 Station List 95 8 FIREWALL CONFIGURATION 96 MAC IP Port Filtering 96 Current Filter Rules 98 Virtual Server Settings Port Forwarding 99 Current Virtual Servers in system 100 DMZ 101 System Security 102 Conte...

Page 14: ...LESHOOTING 120 Diagnosing LED Indicators 120 If You Cannot Connect to the Internet 120 Before Contacting Technical Support 121 B HARDWARE SPECIFICATIONS 122 C CABLES AND PINOUTS 124 Twisted Pair Cable Assignments 124 10 100BASE TX Pin Assignments 125 Straight Through Wiring 125 Crossover Wiring 126 D LICENSE INFORMATION 127 The GNU General Public License 127 GLOSSARY 131 INDEX 135 ...

Page 15: ...ection 36 Figure 15 Wizard Step 2 Time and SNTP Settings 37 Figure 16 Wizard Step 3 WAN Settings DHCP 38 Figure 17 Wizard Step 3 WAN Settings Static IP 39 Figure 18 Wizard Step 3 WAN Settings PPPoE 40 Figure 19 Wizard Step 3 WAN Settings PPTP 41 Figure 20 Wizard Step 3 WAN Settings L2TP 43 Figure 21 Wizard Step 3 WAN Settings 3G 45 Figure 22 Wizard Step 4 Wireless Security 47 Figure 23 Logging On ...

Page 16: ... WEP 83 Figure 46 Security Mode WPA PSK 84 Figure 47 Security Mode WPA 86 Figure 48 Security Mode 802 1X 88 Figure 49 Access Policy 89 Figure 50 Manual WDS MAC Address Configuration 90 Figure 51 WDS Configuration Example 90 Figure 52 WDS Configuration 91 Figure 53 Enabling WPS 93 Figure 54 WPS Configuration 93 Figure 55 Station List 95 Figure 56 MAC IP Port Filtering 97 Figure 57 Virtual Server 99...

Page 17: ...FIGURES 17 Figure 68 Statistics 114 Figure 69 System Log 115 Figure 70 3G Budget Status 116 Figure 71 RJ 45 Connector 124 Figure 72 Straight through Wiring 126 Figure 73 Crossover Wiring 126 ...

Page 18: ... 18 TABLES Table 1 Key Hardware Features 20 Table 2 LED Behavior 24 Table 3 WMM Access Categories 79 Table 4 LED Indicators 120 Table 5 10 100BASE TX MDI and MDI X Port Pinouts 125 ...

Page 19: ...ibes how to install and mount the unit It also describes the basic settings required to access the management interface and run the setup Wizard This section includes these chapters Introduction on page 20 Network Planning on page 26 Installing the Mini 3G Router on page 29 Initial Configuration on page 34 ...

Page 20: ...ent privileges and NAT NAT also enables multi user Internet access via a single user account and virtual server functionality providing protected access to Internet services such as Web FTP e mail and Telnet VPN passthrough IPsec PPTP or L2TP Table 1 Key Hardware Features Feature Description WAN Port One 100BASE TX RJ 45 port for connecting to the Internet LAN Port One 100BASE TX RJ 45 port for lo...

Page 21: ...ress translation Remote users access various services at your site using a static IP address Then depending on the requested service or port number the Mini 3G Broadband Router can route the request to the appropriate server at another internal IP address This secures your network from direct attack by hackers and provides more flexible management by allowing you to change internal IP addresses wi...

Page 22: ...50Mbps Wireless N Mini 3G Broadband Router package includes Barricade Mini 3G Broadband Router SMCWBR11S 3GN RJ 45 Category 5 network cable AC power adapter SMC Warranty Information Card Quick Installation Guide EZ Installation Documentation CD Inform your dealer if there are any incorrect missing or damaged parts If possible retain the carton including the original packing materials Use them agai...

Page 23: ...CHAPTER 1 Introduction Hardware Description 23 Figure 1 Top Panel Figure 2 Rear Panel LED Indicators WPS Button 3G USB Port RJ 45 WAN Port RJ 45 LAN Port DC Power Socket ...

Page 24: ...ring an IP address Blinking The Ethernet WAN port is connected and is transmitting receiving data Off The Ethernet WAN port is disconnected or has malfunctioned LAN On Blue The Ethernet LAN port is connected to a PC or server Blinking The Ethernet port is connected and is transmitting or receiving data Off The Ethernet port is disconnected or has malfunctioned 3G USB On Blue A 3G connection has be...

Page 25: ... access POWER CONNECTOR The Mini 3G Broadband Router must be powered with its supplied power adapter Failure to do so results in voiding of any warrantly supplied with the product The power adapter automatically adjusts to any voltage between 100 240 volts at 50 or 60 Hz and supplies 12 volts DC power to the unit No voltage range settings are required WPS BUTTON Press the WPS button to automatical...

Page 26: ...through a single service provider account Users connect to the Mini 3G Broadband Router either through a wired connection to a LAN port or though the device s own wireless network The Mini 3G Broadband Router functions as an Internet gateway when set to Router Mode An Internet gateway employs several functions that essentially create two separate Internet Protocol IP subnetworks a private internal...

Page 27: ...DSL modem The 3G Modem link can provide a backup Internet connection with automatic failover and fallback to the primary WAN connection LAN ACCESS POINT The Mini 3G Broadband Router can provide an access point service for an existing wired LAN creating a wireless extension to the local network The Mini 3G Broadband Router functions as purely an access point when set to Bridge Mode When used in thi...

Page 28: ...ables two basic functions to be configured in the wireless network Either a repeater function that extends the range of the wireless network or a bridge function that connects a remote LAN segment to an Internet connection Figure 7 Operating as a Wireless Bridge Figure 8 Operating as a Wireless Repeater Desktop PC Cable DSL Modem Mini Router Bridge Mode WDS Link Internet Service Provider Mini Rout...

Page 29: ...ts In addition to these basic operating modes the wireless interface supports Wireless Distribution System WDS links to other Mini 3G Broadband Routers These advanced configurations are not described in this section See Network Planning on page 26 for more information In a basic configuration how the Mini 3G Broadband Router is connected depends on the operating mode The sections in this chapter d...

Page 30: ...oles on the wall For concrete or brick walls you will need to drill holes and insert wall plugs for the screws 2 Insert two 20 mm M4 tap screws not included into the holes leaving about 2 3 mm 0 08 0 12 inches clearance from the wall 3 Line up the two mounting points on the unit with the screws in the wall then slide the unit down onto the screws until it is in a secured position MOUNTING ON A HOR...

Page 31: ...up switch to support more wired users The Mini 3G Broadband Router can support up to 253 wired and wireless users 3 Power on the Mini 3G Broadband Router by connecting the AC power adapter and plugging it into a power source CAUTION Use ONLY the power adapter supplied with the Mini 3G Broadband Router Otherwise the product may be damaged When you power on the Mini 3G Broadband Router verify that t...

Page 32: ... be manually set using the web management interface Figure 11 Bridge Mode Connection To connect the Mini 3G Broadband Router for use as an access point follow these steps 1 Using Ethernet cable connect the Mini 3G Broadband Router s LAN and WAN ports to PCs Alternatively you can connect to a workgroup switch to support more wired users 2 Power on the Mini 3G Broadband Router by connecting the AC p...

Page 33: ...outer Bridge Mode Connections 33 3 Set up wireless devices by pressing the WPS button on the Mini 3G Broadband Router or by using the web interface See Initial Configuration on page 34 for more information on accessing the web interface ...

Page 34: ...t is recommended to make initial configuration changes by connecting a PC directly to the Mini 3G Broadband Router s LAN port The Mini 3G Broadband Router has a default IP address of 192 168 2 1 and a subnet mask of 255 255 255 0 You must set your PC IP address to be on the same subnet as the Mini 3G Broadband Router that is the PC and Mini 3G Broadband Router addresses must both start 192 168 2 x...

Page 35: ...on Home Page and Main Menu 35 Figure 12 Login Page HOME PAGE AND MAIN MENU After logging in to the web interface the Home page displays The Home page shows the main menu and the method to access the Setup Wizard Figure 13 Home Page ...

Page 36: ... the previous screen SETUP WIZARD The Wizard is designed to help you configure the basic settings required to get the the Mini 3G Broadband Router up and running There are only a few basic steps you need to set up the the Mini 3G Broadband Router and provide a connection Follow these steps STEP 1 LANGUAGE SELECTION Select between English Traditional Chinese and Simplified Chinese Click Next to pro...

Page 37: ...e zone that is applicable to your region SNTP Server Enter the address of an SNTP server to receive time updates SNTP synchronization hours Specify the interval between SNTP server updates STEP 3 WAN SETTINGS DHCP The Step 3 page of the Wizard specifies the Internet connection parameters for the Mini 3G Broadband Router s WAN port Click Next after completing the setup By default the WAN port is co...

Page 38: ...it in the box provided Otherwise connect only the PC with the registered MAC address to the Mini 3G Broadband Router then click the Clone your PC s MAC Address Default Disabled NOTE If you are unsure of the PC MAC address originally registered by your ISP call your ISP and request to register a new MAC address for your account Register the MAC address of the Mini 3G Broadband Router USB Port Enabl...

Page 39: ...tting allows you to manually change the MAC address of the Mini 3G Broadband Router s WAN interface to match the PC s MAC address provided to your ISP for registration You can enter the registered MAC address manually by typing it in the boxes provided Otherwise connect only the PC with the registered MAC address to the Mini 3G Broadband Router then click the Clone your PC s MAC Address Default Di...

Page 40: ...ini 3G Broadband Router IP address to be assigned automatically from an Internet service provider ISP through a DSL modem using Point to Point Protocol over Ethernet PPPoE Figure 18 Wizard Step 3 WAN Settings PPPoE The following items are displayed on this page Ethernet Port Select PPPoE ADSL for the WAN port connection from the drop down list Enable MAC Clone Some ISPs limit Internet connections ...

Page 41: ...mpts you to re enter your chosen password Operation Mode Enables and configures the keep alive time and configures the on demand idle time STEP 3 WAN SETTINGS PPTP Enables the Point to Point Tunneling Protocol PPTP for implementing virtual private networks The service is provided in many European countries Figure 19 Wizard Step 3 WAN Settings PPTP The following items are displayed on this page Eth...

Page 42: ...ort Default pptp_password Range 1 32 characters Verify Password Prompts you to re enter your chosen password Address Mode Sets a PPTP network mode Default Dynamic IP Address Sets the static IP address Default 0 0 0 0 available when PPTP Network Mode is set to static IP Subnet Mask Sets the static IP subnet mask Default 255 255 255 0 available when PPTP Network Mode is set to static IP Default Gate...

Page 43: ... 3G Broadband Router s WAN interface to match the PC s MAC address provided to your ISP for registration You can enter the registered MAC address manually by typing it in the boxes provided Otherwise connect only the PC with the registered MAC address to the Mini 3G Broadband Router then click the Clone your PC s MAC Address Default Disable USB Port Enables support for a WAN connection using a USB...

Page 44: ...static IP Default Gateway The IP address of a router that is used when the requested destination IP address is not on the local subnet Operation Mode Enables and configures the keep alive time Primary DNS Server The IP address of the Primary Domain Name Server A DNS maps numerical IP addresses to domain names and can be used to identify network hosts by familiar names instead of the IP addresses T...

Page 45: ...n disable the Ethernet WAN port connection and just use the USB 3G modem connection Enable MAC Clone Some ISPs limit Internet connections to a specified MAC address This setting allows you to manually change the MAC address of the Mini 3G Broadband Router s WAN interface to match the PC s MAC address provided to your ISP for registration You can enter the registered MAC address manually by typing ...

Page 46: ...k is re established the WAN connection automatically switches back to the Master from the Backup WAN connection Disable The Master WAN connection is used first Whenever this connection is lost the device automatically switches to the Backup WAN The device will only switch back to the Master WAN if the Backup connection is lost Detect IP Address of Master WAN An IP address to which a ping packet is...

Page 47: ...er Default SMCWBR11S 3GN_AP Security Mode Specifies the security mode for the SSID Select the security method and then configure the required parameters For more information see WLAN Security on page 82 Options Disabled Open Shared WEP AUTO WPA PSK WPA2 PSK WPA PSK_WPA2 PSK WPA WPA2 WPA1_WPA2 802 1X Default Disabled NOTE To keep your wireless network protected and secure you should implement the h...

Page 48: ...t may not be able to support the configured security mode Add a station MAC Enter the MAC address of the station that you want to filter MAC addresses must be entered in the format xx xx xx xx xx xx COMPLETION After completion of the Wizard the screen returns to the Home Page ...

Page 49: ...configuring the Mini 3G Broadband Router using the web browser interface This section includes these chapters Operation Mode on page 50 Network Settings on page 54 Wireless Configuration on page 72 Firewall Configuration on page 96 Administration Settings on page 105 ...

Page 50: ...terface for the configuration of all the unit s features Any PC directly attached to the unit can access the management interface using a web browser such as Internet Explorer version 6 0 or above The following sections are contained in this chapter Logging In on page 51 Operation Mode on page 53 ...

Page 51: ... on the same subnet as the Mini 3G Broadband Router that is the PC and Mini 3G Broadband Router addresses must both start 192 168 2 x To access the configuration menu follow these steps 1 Use your web browser to connect to the management interface using the default IP address of 192 168 2 1 2 Log into the Mini 3G Broadband Router management interface by entering the default user name admin and pas...

Page 52: ...splays the main menu items at the top of the screen and the Setup Wizard See Setup Wizard on page 36 Figure 24 Home Page NOTE The displayed pages and settings may differ depending on whether the unit is in Router or Bridge Mode See Operation Mode on page 53 ...

Page 53: ...twork environment Figure 25 Operation Mode The following items are displayed on this page Bridge Mode An access point mode that extends a wired LAN to wireless clients Router Mode The Internet gateway mode that connects a wired LAN and wireless clients to an Internet access device such as a cable or DSL modem This is the factory set default mode ...

Page 54: ... page 55 DHCP on page 56 Static IP on page 57 PPPoE on page 58 PPTP on page 59 L2TP on page 61 3G on page 62 LAN Setting on page 66 DHCP Clients on page 68 Advanced Routing on page 69 NOTE In Bridge mode the Mini 3G Broadband Router s Network Settings options are significantly reduced with only LAN Settings and the Client List being available to the user ...

Page 55: ...a WAN connection on the WAN port A single WAN connection can still be provided using the 3G USB port see 3G on page 62 Enable MAC Clone Some ISPs limit Internet connections to a specified MAC address of one PC which is registered with the ISP This setting allows you to manually change the MAC address of the Mini 3G Broadband Router s WAN port to match the PC MAC address provided to your ISP for re...

Page 56: ...iguration The following items are displayed on this page Hostname Optional The hostname of the DHCP client Primary DNS Server The IP address of the Primary Domain Name Server A DNS maps numerical IP addresses to domain names and can be used to identify network hosts by familiar names instead of the IP addresses To specify a DNS server type the IP addresses in the text field provided Otherwise leav...

Page 57: ...y The IP address of the gateway router for the Mini 3G Broadband Router which is used if the requested destination address is not on the local subnet Primary DNS Server The IP address of the Primary Domain Name Server on the network A DNS maps numerical IP addresses to domain names and can be used to identify network hosts by familiar names instead of the IP addresses If you have one or more DNS s...

Page 58: ...1 32 characters PPPoE Password Sets a PPPoE password for the WAN port Default pppoe_password Range 1 32 characters Verify Password Prompts you to re enter your chosen password Operation Mode Selects the operation mode as Keep Alive On Demand or Manual Default Keep Alive Keep Alive Mode The Mini 3G Broadband Router will periodically check your Internet connection and automatically re establish your...

Page 59: ...ge Server IP Sets a PPTP server IP Address Default pptp_server User Name Sets the PPTP user name for the WAN port Default pptp_user Range 1 32 characters Password Sets a PPTP password for the WAN port Default pptp_password Range 1 32 characters Verify Password Prompts you to re enter your chosen password Address Mode Sets a PPTP network mode Default Dynamic IP Address Sets the static IP address De...

Page 60: ...e Mini 3G Broadband Router will periodically check your Internet connection and automatically re establish your connection when disconnected Default 60 seconds Manual Mode The unit will remain connected to the Internet without disconnecting Primary DNS Server The IP address of the Primary Domain Name Server A DNS maps numerical IP addresses to domain names and can be used to identify network hosts...

Page 61: ... User Name Sets the L2TP user name for the WAN port Default l2tp_user Range 1 32 characters Password Sets a L2TP password for the WAN port Default l2tp_password Range 1 32 characters Verify Password Prompts you to re enter your chosen password Address Mode Sets a L2TP network mode Default Dynamic IP Address Sets the static IP address Default 0 0 0 0 available when L2TP Network Mode is set to stati...

Page 62: ...to domain names and can be used to identify network hosts by familiar names instead of the IP addresses To specify a DNS server type the IP addresses in the text field provided Otherwise leave the text field blank Secondary DNS Server The IP address of the Secondary Domain Name Server 3G Enables support for a USB 3G modem as a WAN connection either as a primary Master link or as a backup to the WA...

Page 63: ...o the Master from the Backup WAN connection Disable The Master WAN connection is used first Whenever this connection is lost the device automatically switches to the Backup WAN The device will only switch back to the Master WAN if the Backup connection is lost Detect IP Address of Master WAN An IP address to which a ping packet is sent to detect if the Master WAN connection is valid Default 199 7 ...

Page 64: ...with the 3G or 3 5G service provider Figure 33 3G Configuration Budget Control The following items are displayed in this section on this page Budget Control Enables a monthly limit on time or total data Default Disabled Budget Criterion Specifies budget limits set by time or data Time Budget Specify the amount of time in hours that can be used for the 3G connection per month Range 1 999 hours Defa...

Page 65: ...s disabled recurring every 10 minutes Budget Counter Select the day of the month on which to reset the time data budget counters Default 1st day per month Figure 34 3G Configuration E mail Settings The following items are displayed in this section on this page E mail Settings The unit can use SMTP Simple Mail Transfer Protocol to send E mail messages when triggered by the specified budget policy l...

Page 66: ...t has a default IP address of 192 168 2 1 You can use this IP address or assign another address that is compatible with your existing local network Click on Network Settings followed by LAN Figure 35 LAN Configuration The following items are displayed on this page MAC Address The physical layer address for the Mini 3G Broadband Router s LAN port IP Address Valid IP addresses consist of four decima...

Page 67: ...se Time Select a time limit for the use of an IP address from the IP pool When the time limit expires the client has to request a new IP address The lease time is expressed in seconds Options Forever Two weeks One week Two days One day Half day Two hours One hour Half hour Default One day LLTD Link Layer Topology Discovery LLTD is a Microsoft proprietary discovery protocol which can be used for bo...

Page 68: ...l Figure 36 DHCP Clients The following items are displayed on this page Host name The name of the connected client station MAC Address The MAC address of the connected client station IP Address The IP address assigned to the client from the IP pool Expires in The time limit for the use of the IP address from the IP pool When the time limit expires the client has to request a new IP address ...

Page 69: ... routes by entering routes directly into the routing table Static routing has the advantage of being predictable and easy to configure ADVANCED ROUTING SETTINGS This screen is used to manually configure static routes to other IP networks subnetworks or hosts Click Network Settings followed by Advanced Routing Maximum 32 entries are allowed Figure 37 Advanced Routing Router Mode ...

Page 70: ...xamines the packet and matches it to the routing table entry providing the best match for its destination The table then provides the device with instructions for sending the packet to the next hop on its route across the network NOTE The Routing Table is only available when the Mini 3G Broadband Router is set to Router Mode Destination Displays all destination networks or specific hosts to which ...

Page 71: ...RIP is the most widely used method for dynamically maintaining routing tables RIP uses a distance vector based approach to routing Routes are chosen to minimize the distance vector or hop count which serves as a rough estimate of transmission cost Each router broadcasts its advertisement every 30 seconds together with any updates to its routing table This allows all routers on the network to build...

Page 72: ...e that 802 11g is backward compatible with 802 11b and 802 11n is backward compatible with 802 11b g at slower data transmit rates The Mini 3G Broadband Router supports two virtual access point VAP interfaces One VAP is the primary Network Name SSID and the other one is referred to as Multiple SSID1 Each VAP functions as a separate access point and can be configured with its own Service Set Identi...

Page 73: ... data transmission rates may be slowed to compensate for 802 11b clients Any 802 11n clients will also be able to communicate with the Mini 3G Broadband Router but they will be limited to 802 11g protocols and data transmission rates 11b only All 802 11b 802 11g and 802 11n clients will be able to communicate with the Mini 3G Broadband Router but the 802 11g and 802 11n clients will be limited to ...

Page 74: ...D broadcast increases security of the network because wireless clients need to already know the SSID before attempting to connect When set to disable the Network Name SSID and SSID1 are automatically set to Hide Default Enabled AP Isolation The Mini 3G Broadband Router will isolate communincation between all clients in order to protect them Normally for users who are at hotspots Default Disabled M...

Page 75: ...pliance for slower 802 11b devices Default 20MHz Guard Interval The guard interval between symbols helps receivers overcome the effects of multipath delays When you add a guard time the back portion of useful signal time is copied and appended to the front Default Auto MCS The Modulation and Coding Scheme MCS is a value that determines the modulation coding and number of spatial channels Options v...

Page 76: ...sabled Auto Block ACK Select to block ACK Acknowledge Number or not during data transferring Default Enabled Decline BA Request Select to reject peer BA Request or not Default Disabled HT Disallow TKIP Prevents the use of TKIP data encryption when using 802 11n high througput data rates Default Enabled ADVANCED SETTINGS The Advanced Settings page includes additional parameters concerning the wirel...

Page 77: ...e network or not Note that enabling b g Protection can slow throughput for 802 11g n clients by as much as 50 Off Forces the unit to never use protection for 802 11b clients This prevents 802 11b clients from connecting to the network Beacon Interval The rate at which beacon signals are transmitted from the access point The beacon signals allow wireless clients to maintain contact with the access ...

Page 78: ...ing station prior to the sending station starting communications The access point sends RTS frames to a receiving station to negotiate the sending of a data frame After receiving an RTS frame the station sends a CTS clear to send frame to notify the sending station that it can start sending data If the RTS threshold is set to 0 the access point always sends RTS signals If set to 2347 the access po...

Page 79: ...ed to IEEE 802 1D priority tags see Table 3 The direct mapping of the four ACs to 802 1D priorities is specifically intended to facilitate interoperability with other wired network QoS policies While the four ACs are specified for specific types of traffic WMM allows the priority levels to be configured to match any network wide QoS policy WMM also specifies a protocol that access points can use t...

Page 80: ... power management method that enables client devices sending WMM packets to enter a low power sleep state between receiving and transmitting data Default Disabled WMM Parameters Click the WMM Configuration button to set detailed WMM parameters Figure 42 WMM Configuration The following items are displayed in the WMM Configuration window AIFSN Arbitration Inter Frame Space The minimum amount of wait...

Page 81: ...are blocked from using the access category Default Disabled AckPolicy By default all wireless data transmissions require the sender to wait for an acknowledgement from the receiver WMM allows the acknowledgement wait time to be turned off for each Access Category AC 0 3 Although this increases data throughput it can also result in a high number of errors when traffic levels are heavy Default Ackno...

Page 82: ...lowing functions Authentication It must be verified that clients attempting to connect to the network are authorized users Traffic Encryption Data passing between the unit and clients must be protected from interception and eavesdropping The Mini 3G Broadband Router supports supports ten different security mechanisms that provide various levels of authentication and encryption depending on the req...

Page 83: ...are manually distributed to all clients that want to use the network When you select to use WEP be sure to define at least one static WEP key for user authentication or data encryption Also be sure that the WEP shared keys are the same for each client in the wireless network Figure 45 Security Mode WEP The following items are displayed in this section on this page Security Mode Configures the WEP ...

Page 84: ...eset value WPA PRE SHARED KEY Wi Fi Protected Access WPA was introduced as an interim solution for the vulnerability of WEP pending the adoption of a more robust wireless security standard WPA2 includes the complete wireless security standard but also offers backward compatibility with WPA Both WPA and WPA2 provide an enterprise and personal mode of operation For small home or office networks WPA ...

Page 85: ...ment for WPA2 Before implementing WPA2 in the network be sure client devices are upgraded to WPA2 compliant hardware TKIP AES Uses either TKIP or AES keys for encryption WPA and WPA2 mixed modes allow both WPA and WPA2 clients to associate to a common SSID In mixed mode the unicast encryption type TKIP or AES is negotiated for each client Pass Phrase The WPA Preshared Key can be input as an ASCII ...

Page 86: ...s using WPA2 with an 802 1X authentication method are accepted for authentication The default data encryption type for WPA is AES WPA1_WPA2 Clients using WPA or WPA2 with an 802 1X authentication method are accepted for authentication The default data encryption type is TKIP AES WPA Algorithms Selects the data encryption type to use Default is determined by the Security Mode selected TKIP Uses Tem...

Page 87: ...forming full 802 1X authentication Default Disabled IEEE 802 1X AND RADIUS IEEE 802 1X is a standard framework for network access control that uses a central RADIUS server for user authentication This control feature prevents unauthorized access to the network by requiring an 802 1X client application to submit user credentials for authentication The 802 1X standard uses the Extensible Authenticat...

Page 88: ... and distributed to all connected clients Default Disabled RADIUS Server Configures RADIUS server settings IP Address Specifies the IP address of the RADIUS server Port The User Datagram Protocol UDP port number used by the RADIUS server for authentication messages Range 1024 65535 Default 1812 Shared Secret A shared text string used to encrypt messages between the access point and the RADIUS serv...

Page 89: ...to operate in a mode that allows it to forward traffic directly to other Mini 3G Broadband Router units This feature can be used to extend the range of the wireless network to reach remote clients or to link disconnected network segments to an Internet connection To set up links between units you must configure the Wireless Distribution System WDS forwarding table by specifying the wireless MAC ad...

Page 90: ...gured with a different LAN IP address Internet Service Provider MAC 00 22 2D 62 EA 11 WDS MAC List 00 22 2D 62 EA 22 00 22 2D 62 EA 33 00 22 2D 62 EA 44 MAC 00 22 2D 62 EA 22 WDS MAC List 00 22 2D 62 EA 11 Cable DSL Modem WDS Link MAC 00 22 2D 62 EA 33 WDS MAC List 00 22 2D 62 EA 11 MAC 00 22 2D 62 EA 44 WDS MAC List 00 22 2D 62 EA 11 WDS Link WDS Link Internet Service Provider Operation Mode Rout...

Page 91: ...Repeater mode Figure 52 WDS Configuration The WDS settings configure WDS related parameters Up to four MAC addresses can be specified for each unit in the WDS network WDS links may either be manually configured Bridge and Repeater modes or auto discovered Lazy mode The following items are displayed on this page WDS Mode Selects the WDS mode of the SSID Options Disable Lazy Bridge Repeater Default ...

Page 92: ... that both ends of a WDS link are configured with the same encryption type and key Options None WEP TKIP AES Default None Encryption Key The encryption key for the WDS link The key type and length varies depending on the encryption type selected For WEP enter 5 alphanumeric characters or 10 hexadecimal digits for 64 bit keys or 13 alphanumeric characters or 26 hexadecimal digits for 128 bit keys F...

Page 93: ...ion Wi Fi Protected Setup WPS 93 Figure 53 Enabling WPS The following items are displayed on this page WPS Enables WPS locks security settings and refreshes WPS configuration information Default Disabled Figure 54 WPS Configuration ...

Page 94: ...ult is exclusive for each unit Default 64824901 Reset WPS to Default Resets the WPS settings to factory default values WPS Config Configures WPS settings for the Mini 3G Broadband Router WPS Mode Selects between methods of broadcasting the WPS beacon to network clients wanting to join the network PIN The Mini 3G Broadband Router along with other WPS devices such as notebook PCs cameras or phones a...

Page 95: ...CHAPTER 7 Wireless Configuration Station List 95 STATION LIST Displays the station information which associated to this Mini 3G Broadband Router Figure 55 Station List ...

Page 96: ...LTERING MAC IP Port filtering restricts connection parameters to limit the risk of intrusion and defends against a wide array of common hacker attacks MAC IP Port filtering allows the unit to permit deny or proxy traffic through its MAC addresses IP addresses and ports The Mini 3G Broadband Router allows you define a sequential list of permit or deny filtering rules up to 32 This device tests ingr...

Page 97: ...ltering Default Disable Default Policy When MAC IP Port Filtering is enabled the default policy will be enabled If you set the default policy to Dropped all incoming packets that don t match the rules will be dropped If the policy is set to Accepted all incoming packets that don t match the rules are accepted Default Dropped MAC Address Specifies the MAC address to block or allow traffic from ...

Page 98: ... Specifies if traffic should be accepted or dropped Default Accept Comment Enter a useful comment to help identify the filtering rules CURRENT FILTER RULES The Current Filter Table displays the configured IP addresses and ports that are permitted or denied access to and from the Mini 3G Broadband Router Select Selects a table entry MAC Address Displays a MAC address to filter Destination IP Addres...

Page 99: ... reach a port on a private IP address inside a LAN from the outside through a NAT enabled router Maximum 32 entries are allowed Figure 57 Virtual Server The following items are displayed on this page Virtual Server Selects between enabling or disabling port forwarding the virtual server Default Disable IP Address Specifies the IP address of a server on the local network to allow external access Pr...

Page 100: ...S IN SYSTEM The Current Port Forwarding Table displays the entries that are allowed to forward packets through the Mini 3G Broadband Router s firewall No The table entry number IP Address The IP address of a server on the local network to allow external access Port Mapping Displays the port mapping for the server Protocol Displays the protocol used for forwarding this port Comment Displays a usefu...

Page 101: ... firewall By specifying a Demilitarized Zone DMZ host the PC s TCP ports are completely exposed to the Internet allowing open two way communication The host PC should be assigned a static IP address which is mapped to its MAC address and this must be configured as the DMZ IP address Figure 58 DMZ The following items are displayed on this page DMZ Settings Sets the DMZ status Default Disable DMZ IP...

Page 102: ...Denies or allows management access to the Mini 3G Broadband Router through the WAN interface Default Deny Ping from WAN Filter When enabled the Mini 3G Broadband Router does not respond to ping packets received on the WAN port Default Allow Stateful Packet Inspection SPI The Stateful Packet Inspection SPI firewall protects your network and computers against attacks and intrusions A stateful packet...

Page 103: ...y filtering inbound Uniform Resource Locators URLs the risk of compromising the network can be reduced URLs are commonly used to point to websites By specifying a URL or a keyword contained in a URL traffic from that site may be blocked Current URL Filters Displays current URL filter Add a URL Filter Adds a URL filter to the settings For example myhost example com Web Host Filter Settings The Mini...

Page 104: ...s A domain name is the name of a particular web site For example for the address www FUNGAMES com the domain name is FUNGAMES com Enter the Keyword then click Add Current Host Filters Displays current Host filter Add a Host Filter Enters the keyword for a host filtering ...

Page 105: ...d set the system time upgrade the system software display the system status and statistics Administration Settings contains the following sections System Management on page 106 Time Zone Settings on page 107 Green AP Settings on page 108 DDNS Settings on page 109 Firmware Upgrade on page 110 Configuration Settings on page 111 System Status on page 112 Statistics on page 114 System Log on page 115 ...

Page 106: ...k Apply Options English Traditional Chinese or Simplified Chinese Default English Web Interface Settings To protect access to the management interface you need to configure a new Administrator s password as soon as possible If a new password is not configured then anyone having access to the Mini 3G Broadband Router may be able to compromise the unit s security by entering the default value User N...

Page 107: ...Settings The following items are displayed in this section on this page Current Time Displays the current system time on the unit Sync with host Updates the unit s time from the web management PC s system time Time Zone Specifies the time zone in relation to Greenwich Mean Time GMT SNTP Server The IP address or URL of the NTP server to be used Default time nist gov SNTP synchronization Sets the SN...

Page 108: ... router will only cover a shorter range For example the Green AP feature can be used to set the transmit power to 25 during sleeping hours or powered off while you are away Up to four Green AP periods can be configured Figure 63 Green AP Settings The following items are displayed in this section on this page Duration Sets the start and stop times during which the Green AP action will be implemente...

Page 109: ...to three DDNS service providers DynDns org Non IP com and ZoneEdit com To set up an DDNS account visit the websites of these service providers at www dyndns org www non ip com or www zoneedit com Figure 64 DDNS Settings Router Mode The following items are displayed in this section on this page Dynamic DNS Provider Specifies the DDNS service provider DynDns org Freedns afraid org ZoneEdit com or No...

Page 110: ... on this page Firmware Upgrade Allows you to upload new firmware manually by specifying a file path Make sure the firmware you want to use is on the local computer by clicking Browse to search for the firmware to be used for the update Software Version The current version number of the firmware Browse Opens a directory on the local hard drive for specifying the path of the file to upload Apply Sta...

Page 111: ...t configuration or restore a previously saved configuration back to the device Figure 66 Configuration Settings The following items are displayed on this page Export Settings Saves the current configuration to a file locally Import Settings Allows the user to load previously saved configuration files from a local source Load Factory Defaults Restores the factory defaults ...

Page 112: ...layed on this page System Info Displays the basic system information in both Bridge and Router Modes Firmware Version The version number of the current Mini 3G Broadband Router software System Time Length of time the management agent has been up specified in hours and minutes Operation Mode Displays the mode setting of the unit Internet Configurations Displays the basic WAN information Connected T...

Page 113: ... IP address of Domain Name Servers A DNS maps numerical IP addresses to domain names and can be used to identify network hosts by familiar names instead of the IP addresses MAC Address The shared physical layer address for the Mini 3G Broadband Router s LAN ports Local Network Displays the basic LAN information LAN IP Address The IP address configured on the Mini 3G Broadband Router LAN Netmask Th...

Page 114: ...68 Statistics The following items are displayed on this page Memory total The total memory of this Mini 3G Broadband Router Memory left The available memory of this Mini 3G Broadband Router WAN LAN All Interfaces Displays the interface on which traffic is being monitored Rx packets Displays the total number of packets received by the specified interface Rx bytes Displays the total number of bytes ...

Page 115: ...rver The logged messages serve as a valuable tool for isolating Mini 3G Broadband Router and network problems The System Log page displays the latest messages logged in chronological order from the newest to the oldest Log messages saved in the Mini 3G Broadband Router s memory are erased when the device is rebooted Figure 69 System Log The following items are displayed on this page System Log Dis...

Page 116: ...m Log Table 3G BUDGET STATUS The 3G Budget Status page displays the current 3G budget status information The displayed settings are for information only and are not configurable on this page Parameters on this page are only visible when budget control has been set for the 3G WAN connection Figure 70 3G Budget Status ...

Page 117: ...rts are triggered if enabled Drop Current Connection When Over Budget Displays the status of this over budget action Disallow New Connection When Over Budget Displays the status of this over budget action Billing Starting Date Displays the day of the month on which the time data budget counters are reset Data Budget Status The current data budget status SAFE REACH Pre Limit Over Time Budget Status...

Page 118: ...CHAPTER 9 Administration Settings 3G Budget Status 118 RCV MB The total current download data TX MB The total current upload data ...

Page 119: ... 119 SECTION III APPENDICES This section provides additional information and includes these items Troubleshooting on page 120 Hardware Specifications on page 122 Cables and Pinouts on page 124 ...

Page 120: ...pter may be disconnected Check connections between the Mini 3G Broadband Router the power adapter and the wall outlet WLAN LED is off The Mini 3G Broadband Router radio has been disabled through it s web management interface Access the management interface using a web browser to enable the radio LAN LED is off when port connected Verify that the Mini 3G Broadband Router is powered on Be sure cable...

Page 121: ...the Mini 3G Broadband Router through the wired Ethernet interface check the network cabling between the management station and the Mini 3G Broadband Router If you are connecting to Mini 3G Broadband Router from a wireless client ensure that you have a valid connection 2 If you forgot or lost the password Set the Mini 3G Broadband Router to its default configuration by pressing the reset button on ...

Page 122: ...381 1212 W2E SYS1381 1212 W3U SYS1381 1212 W2 Input 100 240 VAC 50 60 Hz Output 12 VDC 1 A LED INDICATORS Power WLAN Wireless Local Area Network WAN Wide Area Network LAN Local Area Network NETWORK MANAGEMENT Web browser TEMPERATURE Operating 0 to 40 C 32 to 104 F Storage 20 to 70 C 32 to 158 F HUMIDITY 20 to 85 non condensing PHYSICAL SIZE 93 x 70 x 26 mm WEIGHT 78 g 2 75 oz FREQUENCY RANGE FCC I...

Page 123: ...14 4 7 2 Mbps Draft 802 11n 40MHz 400ns GI 150 135 120 90 60 45 30 15 Mbps RF OUTPUT POWER 22 5 2dBm RADIO FCC Part 15C Section 15 247 EN 301 489 1 V1 8 1 2008 04 EN 301 489 17 V1 3 2 2008 04 LP0002 RSS 210 AS NZS 4268 EMC FCC Part 15B ICES 003 EN 55022 2006 A1 2007 EN 55024 1998 A1 2001 A2 2003 SAR FCC IEEE C95 1 EN 50385 2002 SAFETY EN 60950 1 2006 NRTL TUV cUL ENVIRONMENTAL ETSI EN 300 019 2 1 ...

Page 124: ... with white stripes Also an RJ 45 connector must be attached to both ends of the cable NOTE Each wire pair must be attached to the RJ 45 connectors in a specific orientation CAUTION DO NOT plug a phone jack connector into the RJ 45 port Use only twisted pair cables with RJ 45 connectors that conform with FCC standards The following figure illustrates how the pins on the RJ 45 connector are numbere...

Page 125: ...at the other end of the cable STRAIGHT THROUGH WIRING If the twisted pair cable is to join two ports and only one of the ports has an internal crossover MDI X the two pairs of wires must be straight through When auto negotiation is enabled for any RJ 45 port on this switch you can use either straight through or crossover cable to connect to any device type You must connect all four wire pairs as s...

Page 126: ...er cable to connect to any device type You must connect all four wire pairs as shown in the following diagram to support Gigabit Ethernet connections Figure 73 Crossover Wiring White Orange Stripe Orange White Green Stripe Green 1 2 3 4 5 6 7 8 1 2 3 4 5 6 7 8 EIA TIA 568B RJ 45 Wiring Standard 10 100BASE TX Straight through Cable End A End B Blue White Blue Stripe Brown White Brown Stripe White O...

Page 127: ... of free software and charge for this service if you wish that you receive source code or can get it if you want it that you can change the software or use pieces of it in new free programs and that you know you can do these things To protect your rights we need to make restrictions that forbid anyone to deny you these rights or to ask you to surrender the rights These restrictions translate to ce...

Page 128: ... notices stating that you changed the files and the date of any change b You must cause any work that you distribute or publish that in whole or in part contains or is derived from the Program or any part thereof to be licensed as a whole at no charge to all third parties under the terms of this License c If the modified program normally reads commands interactively when run you must cause it when...

Page 129: ...ired to accept this License since you have not signed it However nothing else grants you permission to modify or distribute the Program or its derivative works These actions are prohibited by law if you do not accept this License Therefore by modifying or distributing the Program or any work based on the Program you indicate your acceptance of this License to do so and all its terms and conditions...

Page 130: ...ibution conditions are different write to the author to ask for permission For software which is copyrighted by the Free Software Foundation write to the Free Software Foundation we sometimes make exceptions for this Our decision will be guided by the two goals of preserving the free status of all derivatives of our free software and of promoting the sharing and reuse of software generally NO WARR...

Page 131: ...ferent ciphering algorithm to TKIP and WEP AUTHENTICATION The process to verify the identity of a client requesting network access IEEE 802 11 specifies two forms of authentication open system and shared key BACKBONE The core infrastructure of a network The portion of the network that transports information from one central location to another central location where it is unloaded onto a local sys...

Page 132: ...hat supports wireless communications in the 2 4 GHz band using Orthogonal Frequency Division Multiplexing OFDM The standard provides for data rates of 6 9 12 18 24 36 48 54 Mbps IEEE 802 11g is also backward compatible with IEEE 802 11b INFRASTRUCTURE An integrated wireless and wired LAN is called an infrastructure configuration LAN Local Area Network A group of interconnected computers and suppor...

Page 133: ...eived via broadcasts sent by NTP servers TKIP Temporal Key Integrity Protocol A data encryption method designed as a replacement for WEP TKIP avoids the problems of WEP static keys by dynamically changing data encryption keys TFTP Trivial File Transfer Protocol A TCP IP protocol commonly used for software downloads VAP Virtual Access Point Virtual AP technology multiplies the number of Access Poin...

Page 134: ...red Key WPA PSK can be used for small office networks with a limited number of users that may not need a high level of security WPA PSK provides a simple security implementation that uses just a pre shared password for network access ...

Page 135: ...epeater 28 Router Mode 31 wireless bridge 28 contents of package 22 crossover cables 126 D data beacon rate 77 DC power socket 23 default IP address 34 51 default Key WEP 84 default settings reset 25 deployment options 26 desktop mounting 30 destination routing 70 DHCP address pool 67 DHCP clients list 68 DHCP server settings 67 DHCP WAN setting 56 dimensions physical 122 DMZ setting 101 DNS Serve...

Page 136: ...on a wall 30 multicast to unicast convertion 81 multiple SSID 74 N network applications 21 network name wireless 72 74 network statistics 114 O open system 82 operation mode setting 53 P package contents 22 password default 34 lost 121 setting 106 PBC mode WPS 94 physical size 122 ping filter 102 pinouts cable 124 planning network 26 PMK cache period 87 port filtering IP MAC 96 power adapter detai...

Page 137: ...leshooting 120 127 twisted pair cable assignments 124 U upgrading software 110 UPNP 67 URL filters 103 USB port 25 user interface login 51 username setting 106 username default 34 UTP cable pinouts 125 V VAP interfaces 72 VPN Passthrough 21 W wall mounting 30 WAN ping filter 102 WAN port 23 WAN settings 55 WDS operation 28 WDS settings 89 web browser requirements 29 web IP address 34 51 web login ...

Page 138: ...SMCWBR11S 3GN ...