DSR-150 User Manual
Page 6
...and Users...131 7.1.1 Users and Passwords ...137 7.2 Using SSL VPN Policies 138 7.2.1 Using Network Res ourc es 141 7.3 Application Port Forwarding 142 7.4 SSL VPN Client Configuration 144 7.5 User Portal ...147 7.5.1 Creating Portal Layouts 147 Chapter 8. Rout er Status and Statistics...178 10.1 System Overview ...178 10.1.1 Device Status ...178 10.1.2 Resource Utilization ...180 10.2 Traffic Statistics ...183 10.2.1 Wired Port Statistics...183 10.2.2 Wireless Statistics...184 10.3 Active Connections...185 10.3.1 Sessions through the Router 185 4 Administration & Management 157 9.1...
...and Users...131 7.1.1 Users and Passwords ...137 7.2 Using SSL VPN Policies 138 7.2.1 Using Network Res ourc es 141 7.3 Application Port Forwarding 142 7.4 SSL VPN Client Configuration 144 7.5 User Portal ...147 7.5.1 Creating Portal Layouts 147 Chapter 8. Rout er Status and Statistics...178 10.1 System Overview ...178 10.1.1 Device Status ...178 10.1.2 Resource Utilization ...180 10.2 Traffic Statistics ...183 10.2.1 Wired Port Statistics...183 10.2.2 Wireless Statistics...184 10.3 Active Connections...185 10.3.1 Sessions through the Router 185 4 Administration & Management 157 9.1...
DSR-150 User Manual
Page 7
... 192 11.3.2 Testing the LA N path from your P C to a remote device 193 11.4 Restoring factory-default configuration settings 194 Chapter 12. Standard Services A vailable for Port Forwarding & Firewall Configuration 200 Appendix D. Product Statement ...256 5 Glossary ...196 Appendix B. RJ-45 Pin-outs...255 Appendix F. Unified Services Router User Manual 10.3.2 Wireless Clients ...187...
... 192 11.3.2 Testing the LA N path from your P C to a remote device 193 11.4 Restoring factory-default configuration settings 194 Chapter 12. Standard Services A vailable for Port Forwarding & Firewall Configuration 200 Appendix D. Product Statement ...256 5 Glossary ...196 Appendix B. RJ-45 Pin-outs...255 Appendix F. Unified Services Router User Manual 10.3.2 Wireless Clients ...187...
DSR-150 User Manual
Page 10
...SSL VPN policies ........ 142 Figure 96: List of three IPsec client connections to the Internet...111 Figure 72: Example of A vailable Applications for SSL Port Forwarding 144 Figure 97: SSL VPN client adapter and access configuration 145 8 PP TP Server 122 Figure 80: L2TP tunnel configuration - Unified Services Router ...Figure 67: Export Approved URL list ...106 Figure 68: The following example binds a LAN host's MAC Address to an IP address served by DSR. If there is an IP/MAC Binding violation, the violating packet will be dropped and logs will be capt ured...107 Figure 69: Intrusion ...
...SSL VPN policies ........ 142 Figure 96: List of three IPsec client connections to the Internet...111 Figure 72: Example of A vailable Applications for SSL Port Forwarding 144 Figure 97: SSL VPN client adapter and access configuration 145 8 PP TP Server 122 Figure 80: L2TP tunnel configuration - Unified Services Router ...Figure 67: Export Approved URL list ...106 Figure 68: The following example binds a LAN host's MAC Address to an IP address served by DSR. If there is an IP/MAC Binding violation, the violating packet will be dropped and logs will be capt ured...107 Figure 69: Intrusion ...
DSR-150 User Manual
Page 37
By g o in g t h ro ug h a few s t raig ht forward co nfig uratio n p ag es y o u can t ake t h e in this router. 35 Th e fo llo win g ISP co n n ect io n t y p es are lo cat ed in t ... n n ectio n t y p e a u s ername/ passwo rd may b e req u ired t o reg ister t h is ro u t er wit h t h e ISP. Connecting to the Internet: WAN Setup This router has two W AN ports that can mo v e o n and configure other features in fo rmat io n provided by your ISP to get your W AN connection up and enable internet acces...
By g o in g t h ro ug h a few s t raig ht forward co nfig uratio n p ag es y o u can t ake t h e in this router. 35 Th e fo llo win g ISP co n n ect io n t y p es are lo cat ed in t ... n n ectio n t y p e a u s ername/ passwo rd may b e req u ired t o reg ister t h is ro u t er wit h t h e ISP. Connecting to the Internet: WAN Setup This router has two W AN ports that can mo v e o n and configure other features in fo rmat io n provided by your ISP to get your W AN connection up and enable internet acces...
DSR-150 User Manual
Page 103
...Manual 5.8 Application Rules Advanced > Application Rules > Application Rules Application rules are n o t left open when not in us e, thereby providing a level of s ecurity that port forwarding does not offer. Po rt t rig g erin g is n o t ap p ro p riat e fo r s erv ers o n t h e... fo r t h at s pecified t y pe o f t raffic. Th e ro u t er h as a fo rm o f d y n amic p o rt fo rward in g wh ile an ap p licat io n is becaus e a port triggering ru le d o es n o t h ave t o referen ce a s p ecific LA N IP o r IP ran g e. Po rt t rig g erin g wait s fo r an o u t b o u n d req u es...
...Manual 5.8 Application Rules Advanced > Application Rules > Application Rules Application rules are n o t left open when not in us e, thereby providing a level of s ecurity that port forwarding does not offer. Po rt t rig g erin g is n o t ap p ro p riat e fo r s erv ers o n t h e... fo r t h at s pecified t y pe o f t raffic. Th e ro u t er h as a fo rm o f d y n amic p o rt fo rward in g wh ile an ap p licat io n is becaus e a port triggering ru le d o es n o t h ave t o referen ce a s p ecific LA N IP o r IP ran g e. Po rt t rig g erin g wait s fo r an o u t b o u n d req u es...
DSR-150 User Manual
Page 143
Unified Services Router User Manual 7.2.1 ICMP: Select this option to include ICMP traffic Port range: If the policy governs a type of traffic, this is done, editing one or all b e d efin ed fo r t h is res ource as sociated with the s ... n as sig n ed res o u rces d efin ed b y t h is us ed for d efin in g TCP o r UDP p o rt n u mb er(s ) co rres p o n d in g t o t h e res o u rce (VPN t u n n el, Port Forwarding or All). 141 Leav in g t h e s t art in g s imilar p o licies fo r mu lt ip le remo t e SSL VPN u s ers .
Unified Services Router User Manual 7.2.1 ICMP: Select this option to include ICMP traffic Port range: If the policy governs a type of traffic, this is done, editing one or all b e d efin ed fo r t h is res ource as sociated with the s ... n as sig n ed res o u rces d efin ed b y t h is us ed for d efin in g TCP o r UDP p o rt n u mb er(s ) co rres p o n d in g t o t h e res o u rce (VPN t u n n el, Port Forwarding or All). 141 Leav in g t h e s t art in g s imilar p o licies fo r mu lt ip le remo t e SSL VPN u s ers .
DSR-150 User Manual
Page 144
... access s pecified n et wo rk ap p licat io n s o r s ervices after they login to SSL VPN policie s 7.3 Application Port Forwarding Setup > VPN Settings > SSL VPN Server > Port Forwarding Po rt fo rward in g TCP p o rt n u mb ers : T CP Ap p lication FTP Data (usually not needed) Po ...mb er o f t h e ap plicat ion t o b e t u nn elled . In t ern al h o st s erv ers o r TCP ap p licat io n s mu s t b e s pecified as ed o n configured port forwarding rules . Traffic fro m t h e remo t e u s er t o t h e ro u t er is d et ect ed an d re -ro u t ed b as b ein g mad e acces s ib le t o remo...
... access s pecified n et wo rk ap p licat io n s o r s ervices after they login to SSL VPN policie s 7.3 Application Port Forwarding Setup > VPN Settings > SSL VPN Server > Port Forwarding Po rt fo rward in g TCP p o rt n u mb ers : T CP Ap p lication FTP Data (usually not needed) Po ...mb er o f t h e ap plicat ion t o b e t u nn elled . In t ern al h o st s erv ers o r TCP ap p licat io n s mu s t b e s pecified as ed o n configured port forwarding rules . Traffic fro m t h e remo t e u s er t o t h e ro u t er is d et ect ed an d re -ro u t ed b as b ein g mad e acces s ib le t o remo...
DSR-150 User Manual
Page 145
... application s hould be configured in advance. Fu lly q u alified d o main n ame: Th e d o main n a me o f t h e in a lis t of configured applications for port forwarding. 143 Unified Services Router User Manual A s a co n v enien ce fo r remo t e u s ers , t h e h o s t n ame (FQDN) o f t h e n et... h e co n fig u red h o s t n ame mu s t mat ch t h e IP ad d res s o f t h e co n fig u red application for port forwarding. Th is defined in the port forwarding hos t configuration s ection. Lo cal s erv er IP ad d res s : Th e IP ad d res s o f t h e lo cal s erv er h o s ...
... application s hould be configured in advance. Fu lly q u alified d o main n ame: Th e d o main n a me o f t h e in a lis t of configured applications for port forwarding. 143 Unified Services Router User Manual A s a co n v enien ce fo r remo t e u s ers , t h e h o s t n ame (FQDN) o f t h e n et... h e co n fig u red h o s t n ame mu s t mat ch t h e IP ad d res s o f t h e co n fig u red application for port forwarding. Th is defined in the port forwarding hos t configuration s ection. Lo cal s erv er IP ad d res s : Th e IP ad d res s o f t h e lo cal s erv er h o s ...
DSR-150 User Manual
Page 146
... clien t is b ein g acces s ed t h ro u g h t h e SSL VPN t u n n el. 144 Unified Services Router User Manual Figure 96 : Lis t of Available Applicat io ns for SSL Port Forward i ng 7.4 SSL VPN Client Configuration Setup > VPN Settings > SSL VPN Client > SSL VPN Client A n SSL VPN t u n n el clien t p ro vid es a p o in t-to -po int...
... clien t is b ein g acces s ed t h ro u g h t h e SSL VPN t u n n el. 144 Unified Services Router User Manual Figure 96 : Lis t of Available Applicat io ns for SSL Port Forward i ng 7.4 SSL VPN Client Configuration Setup > VPN Settings > SSL VPN Client > SSL VPN Client A n SSL VPN t u n n el clien t p ro vid es a p o in t-to -po int...
DSR-150 User Manual
Page 150
... t h at t h e u s er s elect s t h is o p t io n . ActiveX web cache cleaner: An ActiveX cache control web cleaner can eit h er en able VPN t u n n el p ag e or Port Forwarding, or both depending on the SSL s ervices to the lis t of portal layouts . 148 This field is optional. Dis p lay b an n er mes s ag...
... t h at t h e u s er s elect s t h is o p t io n . ActiveX web cache cleaner: An ActiveX cache control web cleaner can eit h er en able VPN t u n n el p ag e or Port Forwarding, or both depending on the SSL s ervices to the lis t of portal layouts . 148 This field is optional. Dis p lay b an n er mes s ag...
DSR-150 User Manual
Page 204
... IPv6 forwarding failed to set capabilities on the " failed to the resolv.conf file. Exiting. Exiting./n Could not write to open the resolv.conf file. Unified Services Router User Manual nimfAdvOptSetWrap: user has changed MTU option nimfAdvOptSetWrap: MTU: %d nimfAdvOptSetWrap: old MTU size: %d nimfAdvOptSetWrap: old Port Speed ...not de-configure ISATAP Tunnel nimfStatusUpdate: updating NimfStatus failed nim fStatus Update: updating NimfStatus failed nimfLinkStatusGet: determinig link's status failed nimfLinkStatusGet: opening the lanUptime File Error Opening the lanUptime File.
... IPv6 forwarding failed to set capabilities on the " failed to the resolv.conf file. Exiting. Exiting./n Could not write to open the resolv.conf file. Unified Services Router User Manual nimfAdvOptSetWrap: user has changed MTU option nimfAdvOptSetWrap: MTU: %d nimfAdvOptSetWrap: old MTU size: %d nimfAdvOptSetWrap: old Port Speed ...not de-configure ISATAP Tunnel nimfStatusUpdate: updating NimfStatus failed nim fStatus Update: updating NimfStatus failed nimfLinkStatusGet: determinig link's status failed nimfLinkStatusGet: opening the lanUptime File Error Opening the lanUptime File.
DSR-150 User Manual
Page 224
... DROP for INPUT Enabling DROP for FORWARD Disabling NAT based Firewall Rules Enabling Firewall Rules for URL Filtering & " Adding Firewall Rule for IP address range" Disabling remote access management only to delete rule from FirewallRules6 where ScheduleName = '%s'. Deleting rule, port triggering for protocol TCP. Deleting rule, port triggering for protocol TCP. Stopping IPS...
... DROP for INPUT Enabling DROP for FORWARD Disabling NAT based Firewall Rules Enabling Firewall Rules for URL Filtering & " Adding Firewall Rule for IP address range" Disabling remote access management only to delete rule from FirewallRules6 where ScheduleName = '%s'. Deleting rule, port triggering for protocol TCP. Deleting rule, port triggering for protocol TCP. Stopping IPS...
DSR-150 User Manual
Page 240
...unable to update hardware queue %s: bogus frame type 0x%x (%s), dev>nam e, ath_stoprecv: rx queue 0x%x, link %p, %s: %s: unable to reset channel %u (%u MHz) %s: %s: unable to restart recv logic, %s: ...unable to collect channel list from HAL; ipt_rpc: only valid for PRE_ROUTING, FORWARD, POST_ROUTING, LOCAL_IN and/or LOCAL_OUT targets. DEBUG ip_nat_init: can 't register ... positive integer ip_conntrack_rtsp: setup_timeout must be a positive integer ip_conntrack_rtsp: ERROR registering port %d, ports[i] ip_nat_rtsp v IP_NF_RTSP_VERSION loading %s: Sorry! ip_conntrack: can 't register local in...
...unable to update hardware queue %s: bogus frame type 0x%x (%s), dev>nam e, ath_stoprecv: rx queue 0x%x, link %p, %s: %s: unable to reset channel %u (%u MHz) %s: %s: unable to restart recv logic, %s: ...unable to collect channel list from HAL; ipt_rpc: only valid for PRE_ROUTING, FORWARD, POST_ROUTING, LOCAL_IN and/or LOCAL_OUT targets. DEBUG ip_nat_init: can 't register ... positive integer ip_conntrack_rtsp: setup_timeout must be a positive integer ip_conntrack_rtsp: ERROR registering port %d, ports[i] ip_nat_rtsp v IP_NF_RTSP_VERSION loading %s: Sorry! ip_conntrack: can 't register local in...