D-Link Di624 A Manual
Have a look at the manual D-Link Di624 A Manual online for free. It’s possible to download the document as PDF or print. UserManuals.tech offer 48 D-Link manuals and user’s guides for free. Share the user manual or guide on Facebook, Twitter or Google+.
21 Example #2: If you have an FTP server that you wanted Internet users to access by WAN port 2100 and only during the weekends, you would need to enable it as such. FTP server is on LAN computer 192.168.0.30. FTP uses port 21, TCP. Name: FTP Server Private IP: 192.168.0.30 Protocol Type: TCP Private Port: 21 Public Port: 2100 Schedule: From: 01:00AM to 01:00AM, Sat to Sun Using the Configuration Menu (continued) Advanced > Virtual Server continued Click on this icon to edit the virtual service Click on this icon to delete the virtual service All Internet users who want to access this FTP Server must connect to it from port 2100. This is an example of port redirection and can be useful in cases where there are many of the same servers on the LAN network.
22 Using the Configuration Menu (continued) Advanced > Applications Some applications require multiple connections, such as Internet gaming, video conferencing, Internet telephony and others. These applications have difficulties working through NAT (Network Address Translation). Special Applications makes some of these applications work with the DI-624. If you need to run applications that require multiple connections, specify the port normally associated with an application in the “Trigger Port” field, select the protocol type as TCP or UDP, then enter the public ports associated with the trigger port to open them for inbound traffic. The DI-624 provides some predefined applications in the table on the bottom of the web page. Select the application you want to use and enable it. Note! Only one PC can use each Special Application tunnel. Name:This is the name referencing the special application. Trigger Port:This is the port used to trigger the application. It can be either a single port or a range of ports. Trigger Type:This is the protocol used to trigger the special application. Public Port:This is the port number on the WAN side that will be used to access the application. You may define a single port or a range of ports. You can use a comma to add multiple ports or port ranges. Public Type:This is the protocol used for the special application.
23 Using the Configuration Menu (continued) Advanced > Filters > IP Filters Filters are used to deny or allow LAN (Local Area Network) computers from accessing the Internet. The DI-624 can be setup to deny internal computers by their IP or MAC addresses. The DI-624 can also block users from accessing restricted web sites. This is the schedule of time when the IP Filter will be enabled. Schedule: Select the protocol typeProtocol Type: Use IP Filters to deny LAN IP addresses from accessing the Internet. You can deny specific port numbers or all ports for the specific IP address.IP Filters: The single port or port range that will be denied access to the Internet.Port: The IP address of the LAN computer that will be denied access to the Internet.IP:
24 Using the Configuration Menu (continued) Advanced > Filters > URL Blocking Filters- URL Blocking is used to deny LAN computers from accessing specific web sites by the URL. A URL is a specially formatted text string that defines a location on the Internet. If any part of the URL contains the blocked word, the site will not be accessible and the web page will not display. To use this feature, enter the text string to be blocked and click Apply. The text to be blocked will appear in the list. To delete the text, just highlight it and click Delete. Select the filter you wish to use; in this case, URL Blocking was chosen. Keywords-Block URLs which contain keywords listed below. Enter the keywords in this space. URL Blocking-Select Enabled or Disabled.
25 Using the Configuration Menu Advanced > Filters > MAC Filters Use MAC (Media Access Control) Filters to allow or deny LAN (Local Area Network) computers by their MAC addresses from accessing the Network. You can either manually add a MAC address or select the MAC address from the list of clients that are currently connected to the Broadband Router. MAC Filters-Choose Disable MAC filters; allow MAC addresses listed be- low; or deny MAC addresses listed below. Filters- Name- Enter the name here. MAC Address-Enter the MAC Address. DHCP Client-Select a DHCP client from the pull-down list; click Clone to copy that MAC Address. Select the filter you wish to use; in this case, MAC filters was chosen. (continued)
26 Using the Configuration Menu Advanced > Filters > Domain Blocking Filters- Domain Blocking- Blocked Domains- Permitted Domains- Domain Blocking is used to allow or deny LAN (Local Area Network) computers from accessing specific domains on the Internet. Domain blocking will deny all requests to a specific domain such as http and ftp. It can also allow computers to access specific sites and deny all other sites. Select the filter you wish to use; in this case, Domain Blocking was chosen. Disabled- Allow- Deny- Enter the Permitted Domains in this field Enter the Blocked Domains in this field Select Disabled to disable Domain Blocking Allows users to access all domains except Blocked Domains Denies users access to all domains except Permitted Domains (continued)
27 Using the Configuration Menu (continued) Advanced > Firewall Firewall Rules is an advanced feature used to deny or allow traffic from passing through the DI-624. It works in the same way as IP Filters with additional settings. You can create more detailed access rules for the DI-624. When virtual services are created and enabled, it will also display in Firewall Rules. Firewall Rules contain all network firewall rules pertaining to IP (Internet Protocol). In the Firewall Rules List at the bottom of the screen, the priorities of the rules are from top (highest priority) to bottom (lowest priority.) Note: The DI-624 MAC Address filtering rules have precedence over the Firewall Rules. Firewall Rules-Enable or disable the Firewall Name-Enter the name Action-Allow or Deny Source-Enter the IP Address range Schedule-Select Always or enter the Time Range. Destination-Enter the IP Address range; the Protocol; and the Port Range
28 Advanced > DMZ Using the Configuration Menu (continued) If you have a client PC that cannot run Internet applications properly from behind the DI-624, then you can set the client up for unrestricted Internet access. It allows a computer to be exposed to the Internet. This feature is useful for gaming purposes. Enter the IP address of the internal computer that will be the DMZ host. Adding a client to the DMZ (Demilitarized Zone) may expose your local network to a variety of security risks, so only use this option as a last resort. DMZ-Enable or Disable the DMZ. The DMZ (Demilitarized Zone) allows a single computer to be exposed to the internet. By default the DMZ is disabled. IP Address-Enter the IP Address of the computer to be in the DMZ
29 Using the Configuration Menu (continued) Advanced > Performance Preamble Type- Select Short or Long Preamble. The Preamble defines the length of the CRC block (Cyclic Redundancy Check is a com- mon technique for detecting data transmission errors) for com- munication between the wireless router and the roaming wire- less network adapters. Note: High network traffic areas should use the shorter preamble type. Beacon Interval-Beacons are packets sent by an Access Point to synchronize a wireless network. Specify a value. 100 is the default setting and is recommended. RTS Threshold-This value should remain at its default setting of 2432. If inconsis- tent data flow is a problem, only a minor modification should be made. Fragmentation-The fragmentation threshold, which is specified in bytes, deter- mines whether packets will be fragmented. Packets exceeding the 2346 byte setting will be fragmented before transmission.2346 is the default setting DTIM interval-(Delivery Traffic Indication Message) 3 is the default setting. A DTIM is a countdown informing clients of the next window for listening to broadcast and multicast messages. Wireless Performance- Displayed in this window are the Wireless Performance features for the Access Point portion of the DI-624. TX Rates- Auto is the default selection. Selct from the drop down menu. SSID Broadcast-Choose Enabled to broadcast the SSID across the network. All devices on a network must share the same SSID (Service Set Identifier) to establish communication. Choose Disabled if you do not wish to broadcast the SSID over the network.
30 Super G Mode-Super G is a group of performance enhancement features that increase end user application throughput in an 802.11g network. Super G is backwarsd compatible to standard 802.11g devices. For top performance, all wirelss devices on the network should be Super G capable. Select either Disabled, Super G without Turbo, Super G with Dynamic Turbo, or Super G with Static Turbo. Disabled-Standard 802.11g support, no enhanced capabilities. Super G without Turbo-Capable of Packet Bursting, FastFrames, Compression, and no Turbo mode. Super G with Dynamic Turbo-Capable of Packet Bursting, FastFrames, Compression, and Dynamic Turbo. This setting is backwards compatible with non- Turbo (legacy) devices. Dynamic Turbo mode is only enabled when all nodes on the wireless network is Super G with Dy- namic Turbo enabled. 802.11g only mode-Select this mode to restrict your network to only those devices that employ the 802.11g standard. Enabling this mode will en- sure that you maintain the highest connectivity rate, unhampered by any connection to an 802.11b device. CTS Mode-CTS (Clear To Send) is a function used to minimize collisions among wireless devices on a wireless local area network (LAN). CTS will make sure the wireless network is clear before a wire- less client attempts to send wireless data. Enabling CTS will add overhead and may lower wireless throughput. Auto-CTS will monitor the wireless network and automati- cally decide whether to implement CTS based on the amount of traffic and collisions that occurs on the wireless network. Always-CTS will always be used to make sure the wireless LAN is clear before sending data. None-CTS is typically used in a pure 802.11g environment. If CTS is set to “None” in a mixed mode environment populated by 802.11b clients, wireless collisions may occur frequently. Super G with Static Turbo-Capable of Packet Bursting, FastFrames, Compression, and Static Turbo. This setting is not backwards compatible with non- Turbo (legacy) devices. Static turbo mode is always on and is only enabled when all nodes on the wireless network is Super G with Static Turbo enabled. Using the Configuration Menu (continued) Advanced > Performance (continued)