USER MANUAL - Wifi
Contents
1. gg 00 0001 006 a0 Nor AN IND JUL if A 90000001 00 OOO A SSU 0000141 06M1 00006 10001 OPIO 100010 TUS 07980900101 101 OC 090 0 0690001 000040Q00000 07700000111 900008 w 401 01010 100001 000 0 0 00001 1010 101U vu WLLL 10000000000 00 i 00 00 0 00000000000 000 000000 000000 01 0111 C OOU VUVODOO YU 1 i 111 00000001 0000001 10000001 00000 1 01000000101 10101010000000001 0 000 0 0 00001 1010 uuu 10 COUTO 19000000 00000001 000001 000 00000001 O 1 0000001 000 Legal notice Copyright 2013 TELTONIKA Ltd All rights reserved Reproduction transfer distribution or storage of part or all of the contents in this document in any form without the prior written permission of TELTONIKA Ltd is prohibited The manufacturer reserves the right to modify the product and manual for the purpose of technical improvement without prior notice Other product and company names mentioned herein may be trademarks or trade names of their respective owners Attention Before using the device we strongly recommend reading this manual first Do not rip open the device Do not touch the device if the device block is broken J The device should only be serviced by qualified personel Q All wireless devices for data transferring may be susceptible to interference which could affect performance The device is water resistant IP65 and can be mounted outdoor though pow2. Domain Name Resolver A server that translates names such as www google lt to their respective IPs In order for your computer or router to communicate with some external server it needs to know it s IP its name www something com just won t do There are special servers set in place that perform this specific task of resolving names into IPs called Domain Name servers If you have no DNS specified you can still browse the web provided that you know the IP of the website you are trying to reach 54
3. Master indicates that you router is an access point Channel 6 2 44 GHz The channel which is used to broadcast the SSID and to establish new connections to devices 19 JUY OOO VUDUDOO UY 1 111 00000001 0000001 10000001 00000 0 101 01000000101 10101010000000001 0 000 0 0 00001 1010 10 COTTON 0000000 00000001 000001 000 00000001 O 1 0000001 000 Encryption WPA2 PSK The type of encryption that the router will use to authenticate establish and CCMP maintain a connection Bit rate 1 0 MBit s The bitrate will be shared between all devices that connect to the routers wireless network 8 County T Country code Additional note MBit s indicates the bits not bytes To get the throughput in bytes divide the bit value by 8 for e g 54MBits s would be 6 75MB s Mega Bytes per second Associated Stations Outputs a list of all devices and their MAC addresses that are maintain a connection with your router right now This can either be the information of the Access Point that the router is connecting to in Client Mode OR a list of all devices that are connecting to the router in Access Point mode Associated Stations MAC Address Network Signal RX Rate TX Rate BC FEF O FE AC 45 Waster Teltonika_demo_ap 48 dBm 2 2 Mbits MES T 20MHz 43 3 Mbits MCS 4 20MHz DOS CER Ca 37 33 Master Teltonika dermo_ap T dem 22 0 Mbits MiS 5 20M HZ 6 5 Mbits MES 0 20M Hz DHCP Leases If you have e
4. IP Aliases Ths section contains no values yet Add The common configuration and IP aliasing sections are identical to the ones found in WAN so for an explanation on how they work please follow through there DHCP Server The DHCP server is the router side service that can automatically configure the TCP IP settings of any device that requests such a service If you connect a device that has been configured to obtain IP address automatically the DHCP server will lease an address and the device will be able to fully communicate with the router 28 JU OO O0000001 Y 1 1111 00000001 0000001 10000001 00000 SS 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 sae UU10 D0000 TO 1000000 00000001 000001 000 00000001 0 1 0000001 000 DHCP Server General setup Advanced Settings Disable E Stat 100 Limit 150 Leasetime 12h E Expiry time of leased addresses minimum is 2 Minutes zm _ Field Name Sample value Checked unchecked Check to DISABLE the DHCP server 2 Start 100 The starting address of the range that the DHCP server can use to give out to devices E g if your LAN IP is 192 168 2 1 and your subnet mask is 255 255 255 0 that means that in your network a valid IP address has to be in the range of 192 168 2 1 192 168 2 254 192 168 2 0 and 192 168 2 255 are special unavailable addresses If the Start value is set to 100 then the DHCP server will only be able to lease out addresses starting from 19
5. Now you have a selection of protocols available for you Depending on whether the Access Point that you intend to connect to runs a DHCP server or not you will have to choose DHCP or Static AP runs a DHCP server DHCP Does not run Static When you ve configured your protocol settings press Save and wait until the settings are applied Next goto the Network gt Wireless page and wait until it loads For the first time an automatic Site Survey will be initiated You should now see a list of available local Access Points Choose one and click Join Network 27 OOU VUVODOO YU 1 a 111 00000001 0000001 10000001 0000C _ e met 101 01000000101 10101010000000001 O 000 0 0 00001 1010 uuu uuu010 OUUUUU TR 0000000 00000001 000001 000 00000001 O 1 0000001 000 Should you be asked enter the secret Encryption Key and click Submit Now you should be transported to the Wireless Station page Click Save and wait until all the settings are applied The configuration is complete and you should now be able to access the internet LAN This page is used to configure the LAN network where all your devices and computers that you connect to the router will reside LAN On this page you can configure your LAN settings Common Configuration General Setup Adwanced settings Protocol static address Pud address 192 160 0161 IPvd netmask 255 2655 455 0 IPvd gateway Pud broadcast T Use custom ONS E servers
6. Fieldname Explanation SSH Access SSH can be enabled or disabled by choosing Enable or Disable from dropdown list Specify port for SSH access Default port is 22 3 Remote SSH access If check box is selected users can access the router via SSH from the outside WAN When check box is not selected users can access the router only from LAN Note The router has 2 users admin for webUl and root for SSH When loging in via SSH use root Web Access control Field name Explanation HTTP Web server port specify a port number for routers web management via HTTP protocol Default port is 80 2 Remote HTTP access if check box is selected users can access the router via the HTTP WEB Interface from the outside WAN When check box is not selected users can access the router only from LAN i 443 T Guide WAN When EEEE y LAN outside WAN When check box is not selected users can access the router only from LAN 52 UVO VUUUUUUT f 111 00000001 0000001 10000001 0000C a 1 01000000101 10101010000000001 0 000 0 0 00001 1010 QVUUUUU Fee 000000 00000001 000001 000 00000001 O 1 0000001 000 A s vuuu0 Backup and Firmware Router firmware backup upgrade and settings reset to their factory defaults Backup and reset configuration Backup archive download current router settings file to personal computer Reset to defaults reset router settings to their default val
7. and how much traffic has gone through that particular connection it s size in Bytes and the amount of packets 21 01 OUOU VODOUDOO 1 111 00000001 0000001 10000001 0000 01 0100000 10101 10101010000000001 0 000 0 0 00001 1010 10 CUUUDO TON 1000000 00000001 000001 000 00000001 O 1 0000001 000 Network LTE Here you can configure the LTE specific settings which are used when connecting to your local LTE network LTE Configuration Here you can configure your LTE settings LTE Configuration APN _ bangapro PIN number 5555 LTE authentication CHAP method Username user ab Password Prefered network UMTS gt Teltonika solutions wav teltonika It The configuration is simple and straightforward Here we will gloss over all the fields Fieldname Possible values Explanation 1 APN bangapro Access Point Name APN is a configurable network identifier used by a mobile device when connecting to a GSM carrier 2 PIN Number 5555 or any A personal identification number is a secret numeric password shared number that falls between a user and a system that can be used to authenticate the user between 0000 and to the system 9999 LTE authentication CHAP PAP or none Authentication method that your carrier uses to authenticate new te connections This selection is unavailable on the alternate model Username ue Your username and password that you would use
8. i e that IP will only work with your computer In this field you can enter your computers MAC address and fool the gateway in thinking that it is communicating with your computer ll hi I neal Maximum transmission unit specifies the largest possible size of a data packet a The WAN configuration by default generates a routing table entry With this field you can alter the metric of that entry DHCP Common Configuration General Setup Advanced Settings Bring Up on boot Disable MAT g If checked router will not perform NAT Masquerade on this interface Use broadcast flag B Required for certain ISPs e g Charter with DOCSIS 3 Use default gateway B If unchecked no default route is configured a E a O E Lise ONS servers advertised by peer E lf unchecked the advertised ONS server addresses are ignored Lise gateway metric Client ID to send when requesting DHCP Vendor Class to Send when requesting DHCP Override MAC address Override MTL PPPoE Common configuration General Setup Advanced Settings Disable NAT El lf checked router will not perform NAT Masquerade on this interface Lise default gateway funchecked no default route is configured Lise gateway metric Use DNS servers f unchecked the advertised DNS server addresses are ignored advertised by peer LCP echo failure threshold Presume peer to be dead after given amount of LCP echo failures use O to ignore failures LCP echo inter
9. 0000001 10000001 0000 i j 01 01000000101 10101010000000001 0 000 0 0 00001 1010 10 CULUDO PO 0000000 00000001 000001 000 00000001 O 1 0000001 000 Advanced Device Configuration General Setup Advanced Settings Mode 802 11g n HT mode 20MHz Country Code OO World E Use ISOMIEC 3166 alpha country codes Distance Optimization jJ Distance to farthest network member in meters Fragmentation Threshold RTSICTS Threshold Here you can configure more advanced parameters Field name Sample value Explanation ol UES on AAA Er AAA country code parameters to meet your countries wireless regulations Distance Optimization 100 Distance to farthest network member in meters to Distance to farthest network member in meters network member in meters ES Threshold The smallest packet size that can be fragmented and transmitted by multiple frames In areas were interference is a problem setting a lower fragment threshold might help reduce the probability of unsuccessful packet transfers thus increasing speed 5 RTS CTS Threshold 2346 Request to send threshold It can help resolve problems arising when several access points are in the same area contending Interface General Interface Configuration General Setup Wireless Security MAC Filter ESSID Teltonika_derno Hide ESSID E ESSID Your wireless networks identification string This is the name of your Wi Fi network When other Wi
10. 10000001 0000 O 01 0100001 10101 10101010000000001 0 000 0 0 00001 1010 1 10 OUUUUU 88 0090000 00000001 000001 000 00000001 O 1 0000001 000 Services PING Reboot PING Reboot function will periodically send PING command to server and waits for echo receive If no echo is received router will try again sending PING command defined number times after defined time interval If no echo is received after the defined number of unsuccessful retries router will reboot It is possible to turn of the router rebooting after defined unsuccessful retries Therefore this feature can be used as Keep Alive function when router PINGs the host unlimited number of times Common configuration Enable PING Reboot M Reboot routerifno M echo received Interval between 0 PIMfss min 2 Minimum 5 minutes Retry count 45 Server to PING 127 0 0 1 2 e g 192 158 1 1 or www host com If ONS server configured correctly A A s Enable PING Reboot This check box will enable or disable PING reboot PING Reboot is disabled by feature default Reboot router if no echo This check box will disable router rebooting after This check box must be received the defined number of unsuccessful retries unselected if you want to use PING Reboot feature as Keep Alive function Retry count Number of times try sending PING to server after Minimum retry number is 1 time interval if echo receive was unsuccessful Second retry will be done
11. 168 1 1 192 168 1 255 192 168 1 699 and so on are not Next we enter the subnet mask this has to be 255 255 255 0 Then we enter the default gateway this has to be 192 168 1 1 Finally we enter primary and secondary DNS server IPs One will suffice though it is good to have a secondary one as well as it will act as a backup if the first should fail The DNS can be your routers IP 192 168 1 1 but it can also be some external DNS server like the one Google provides 8 8 8 8 13 JU UVUVUUVU 1 11 00000001 0000001 10000001 00001 a 1 01000000101 10101010000000001 0 000 0 0 00001 1010 un 1 yuuu 10 01010 0 0j0 x 0000000 00000001 000001 000 00000001 O 1 0000001 00 Internet Protocol Version 4 TCP IPY4 Properties General You can get IP settings assigned automatically iF your network supports this capability Otherwise you need to ask your network administrator For the appropriate IP settings 5 Obtain an IP address automatically Use the Following IP address IP address 192 168 Subnet mask pss ss Default gateway 197 168 Obtain ONS server address automatically Use the Following DNS server addresses Preferred DMS server 192 168 Alternate DNS server Yalidate settings upon exit Right click on the Wireless network icon and select Connect Disconnect A list should pop up with all available wireless networks Select Teltonika and click connect A Wireless Network Co
12. E A E E E PANE A E A E e A o A ce 39 PP E T ee 39 S RO e e E E 0 e en 40 SLEID EE EE Minis 40 Et OE EA QA 41 DYNACO N eee E 42 Wree los L a e ST 43 GD IT E E E E E S S 2 SS 45 a A snn S S S A S SSS DS SS S aa a s T eeu 47 A nn e UE A SD A 49 SUSTO Mia iii 50 Bay api nr On AP aio 50 ol PPP PI A 52 PUMA IS Use ON ODETI u uu iio cti dde sitao aia 52 BackUp UIT A A cin oda 53 tee SD D S is 53 A PI uatcenesatiuspougnernad unun SS 53 A aN een SS SSS ES e OP E eran eee en neve eee rere 54 001 OUO VUUVODVOO 0 1 111 00000001 0000001 10000001 00000 SO 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 10 0000055858 0000000 00000001 000001 000 00000001 O 1 0000001 000 one x SAFETY INFORMATION In this document you will be introduced on how to use the router safely We suggest you to adhere to the following recommendations in order to avoid personal injuries and or property damage You have to be familiar with the safety requirements before using the device To avoid burning and voltage caused traumas of the personnel working with the device please follow these safety requirements The device is intended for supply from a Limited Power Source LPS that power consumption should not exceed 15VA and current rating of overcurrent protective device should not exceed 2A The highest transient overvoltage in the output secondary circuit of used PSU shall not exceed 71V peak The device can be used w
13. VPN Virtual Private Network is a method for secure data transfer through unsafe public network This section explains how to configure OpenVPN which is implementation of VPN supported by the router OpenVPN OpenVPN instances Below is a list of configured OpenVPN instances and their current state Tunnel Name Tun Tap Protocol Port Status This section contains no values yet Role Client New configuration name Add New A picture above demonstrates default OpenVPN configurations list which is empty so you have to define a new configuration to establish any sort of OpenVPN connection To create it enter desired configuration name in New configuration name field select device role from Role drop down list For example to create a OpenVPN client with configuration name Demo select client role name it Demo and press Add New button as shown in the following picture Role Client Le New configuration name Demo Add New A new configuration entry has appeared in the list and it is populated with default OpenVPN client settings Tunnel Name Tun Tap Protocol Port Status client_Demo 1194 Disabled Edit Delete You could select a server in previous step to create server default configuration To see at specific configuration settings press edit button located in newly created configuration entry A new page with detailed configuration appears as shown in the picture below OpenVPN instance clie
14. is available to maintain routers functionality 2 Free 1476 29964 The amount of memory that is completely free Should this rapidly decrease or get close to 0 it would indicate that the router is running out of memory which could cause crashes and unexpected reboots accessed data A U rr yaway another location Network Information This page is much like the status page previously described though dedicated to data associated with networking LTE Statistics for the LTE modem and the connection LTE dll state connected IMEI 354043050050436 sim card state DK signal strength 105 dErn Operator Bite Connection type a HSDPA Bytes recieved 12564 Bytes sent 12034 Explanation I Shows the state of the connection hows the LTE modems IMEI number ndicates whether the SIM card is inserted or not ndicates connection strength ndicates the operator of the mobile network ndicates the connection type How many bytes were received via LTE 10 How many bytes were sent via LTE 6 8 9 17 01 OUOU VUDOUODOO Y 1 111 00000001 0000001 10000001 0000 P 01 01000000101 10101010000000001 0 000 0 0 00001 1010 1 0010101010 wam asA A 0000000 00000001 000001 000 00000001 O 1 0000001 000 WAN Statistics on the routers WAN connection WAN Interface J56 ppp Type LTE IPvd address 10 12 18 71 Metmask Pl a 9 Gateway 10 12 18 71 DNS 1 213 226 131 131 DNS 2 193 219 66 36 Connected Oh 40m 325 Specifies
15. oS A mask used to define how large the WAN network is IPv4 gateway IPv4 broadcast 192 168 99 255 Broadcast address auto generated if not set It is best to leave this blank unless you know what you are doing custom DNS servers 8 8 8 8 8 8 6 6 Usually the gateway has some predefined DNS servers As such the router when it needs to resolve a hostname www google com www cnn com etc to an IP address it will forward all the DNS requests to the gateway By entering custom DNS servers the router will take care of host name resolution You can enter multiple DNS servers to provide redundancy in case the one of the server fails 5 DHCP Common Configuration General Setup Advanced settings Protocol DHCP client Hostname to send when requesting DHCP When you select the DHCP protocol you can use it as is because most networks will not require any additional advanced configuration 24 Om UOU 01 0 010 010 0h Y 1 1A 111 00000001 0000001 10000001 00000 n_n E 01000000101 10101010000000001 0 000 0 0 00001 1010 1 a III 1 OUUUUU Fe 00090000 00000001 000001 000 00000001 0 1 0000001 000 PPPoE This protocol is mainly used by DSL providers Common configuration General Setup Advanced Settings Protocal PPPoE PARVLAAP username test PAPICHAP password eee Gb Access Concentrator Leave empty to autodetect service Mame Leave empty to autodetect This is the configuration
16. setup for when you select PPPoE protocol Filedname_ Sample Explanation 1 PAP CHAP username Your username and password that you would use to connect to your PAP CHAP password carriers network Access Concentrator Specifies the name of access concentrator Leave empty to autodetect 4 ServiceName isp Specifies the name of the service Leave empty to autodetect Advanced These are the advanced settings for each of the protocols if you are unsure of how to alter these attributes it is highly recommended to leave them to a trained professional Static Common Configuration General Setup Advanced Settings Bring up on boot Disable NAT checked router will not perform NAT Masquerade on this interface Override MAC address Override WT Lise gateway metric Fieldname Sample value Explanation 1 On Specifies whether the interface will be configured and brought up when the router boots up Disabling will render your WAN connection non functional Disable NAT On Off Toggle NAT on and off 3 Override MAC address 00 0C 43 30 50 38 Override MAC address of the WAN interface If your ISP gives you a static IP address it might also bind it to your computers MAC 25 Bring up on boot VOU VUUULU0N7 1 111 00000001 0000001 10000001 0000C AA 101000000101 10101010000000001 0 000 0 0 00001 1010 se UU UU 10 DUDO TORS 0000000 00000001 000001 000 00000001 O 1 0000001 000 address
17. simply unplugging your Ethernet WAN cable When you ve done so you should see this And if you plug the cable back in you should again see this Backup WAN Status 34 JUY UU 0 0 01 0101 00h 1 111 00000001 0000001 10000001 0000 pie 101 01000000101 10101010000000001 O 000 0 0 00001 1010 1 TEI 10 000U00 588 0000000 00000001 000001 000 00000001 O 1 0000001 000 gt Backup WAN Status WAN red IN USE Backup WAN SG READY If you witness the above sequence your backup link is working Firewall In this section we will look over the various firewall features that come with the router General Settings The routers firewall is a standard linux iptables package which uses routing chains and policies to facilitate control over inbound and outbound traffic General Settings Enable S M flood protection Drop invalid packets Input accept E Output accept Forward reject Sample value Explanation 1 Enable SYN flood Checked Unchecked When checked the router becomes more resistant against SYN protection flood attacks Drop Invalid packets Checked Unchecked A Drop action is performed on a packet that is determined to be invalid DEFAULT action that is to be performed for packets that pass through the Input chain H Output DEFAULT action that is to be performed for packets that pass through the Output chain 5 Forward Reject Drop Accept DEFAULT action that
18. through what medium the router is connecting to the internet This can either be Wired 3G or Wi Fi DHCP Specifies the type of connection This can either be static DHCP PPPoE or LTE 10 12 104 103 The IP address that the routers uses to connect the internet 255 255 255 240 Indicates the networks netmask Gateway 10 12 104 97 Indicates the default gateway an address where traffic destined for the internet is routed to 8 8 8 8 1h 57m 25s The amount of time before the routers DHCP lease expires Connected Oh 2m 2s How long the connection has been successfully maintained LAN LAN IPv4 address 142 168 1 161 Metmask 255 255 255 0 connected Uh brn 145 QA ul ES IPv4 address 192 168 1 161 Address that the router uses on the LAN network 255 255 255 0 Indicates the networks netmask Oh 6m 14s How long LAN has been successfully maintained 18 JU OOO O0000001 Y 1 111 00000001 0000001 10000001 00000 N 8040 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 LUTO COCO 3900000 00000001 000001 000 00000001 O 1 0000001 000 Wireless Wireless can work in two modes AP or Client AP is when the wireless radio is used to create an Access Point that other devices can connect to Client is when the radio is used to connect to an Access Point via WAN Client Wireless ail SSID teltonika rnd division ap Mode Client Channel B 2 34 GHz BSSID CEJA 35 02 FC Bo Encryption WIPA2 PSK CMF Bit rate 65 0 MB
19. 0 0 O Teltonika solutions wey teltonika It ARP Shows the routers active ARP table An ARP table contains recently cached MAC addresses of every immediate device that was communicating with the router Active IPv4 Routes Shows the routers routing table The routing table indicates where a TCP IP packet with a specific IP address should be directed to Network Protocol Source Destination Transfer Pd TCP 192 166 0 156 377D6 192 166 99 30 3389 613 24 KB 8338 Pkts IFP UDP 132 15118 157 1821600 259 57 7 24 KB 54 Pkts IFP UDP 192 166 0 19 158 192 166 0 255 130 5 20 KB 24 Pkts Pv TLF 194 169 0 156 52547 173 194 70 139 50 3 30 KB 11 Pkts IP TGP 192 166 0 156 55821 199 127 194 50 00 1 97 KB 17 Pkts 1 Pv UDP 132 158 1 3 57 259 iia us aaa 1 13 KB 2 Pkts IPv 4 TP 192 166 0 156 42797 209 05 148 140 00 930 00 6 5 Pkts FP TER 192 168 0 30 5566 9 192 168 0 161 50 703 00 B 5 Pkts IFP UDP 0 0 0 0 68 2959 295 25595 2555 B7 E55 00 B 2 Pkts IP v 4 UDP 192 168 0 5 567 255 295 255 bd 604 00 B 2 Pkts IP v 4 UDP 192 166 0 156 54245 0 0 0 0 55 142 00 E 2 Pkts FP UDP 192 166 0 156 41391 0 0 0 8 53 66 00 E 1 Pkts On the same page you can also analyze a detailed list of all active connections that the router maintains Each entry consist of a type of network IPV4 protocol TCP UDP ICMP the source address an IPv4 address the source port the destination address an IPv4 address the destination port
20. 01 00 Device connection e BN RUT750 UTP cable PoE Adapter UTP cable Data in Data amp Power Out ca Automatic Shutdown B Wall Outlet Device arain i _ Board 230V AC QUU VUOVUODODO U 1 i 111 00000001 0000001 10000001 0000 1 01000000101 10101010000000001 0 000 0 0 00001 1010 10 CULITO Pe 0000000 00000001 000001 000 00000001 O 1 0000001 000 Introduction Thank you for purchasing a RUT750 LTE router Teltonika RUT750 is outdoor LTE router with high speed wireless and Ethernet connections Internal LTE modem can reach download rate of up to 100Mbps Router supports the latest IEEE802 11n as well as IEEE802 11b g standards and provides wireless receiving and transmitting rate of up to 150 Mbps High gain directional antenna LTE antenna allows the router to be used in low signal locations while external Wi Fi connector makes it possible to attach desired antenna IEEE 802 3af 2003 compliant POE uses single Ethernet cable to communicate with the device and to power it making for an easy installation Key features e LTE downlink of up to 100Mbps e LTE uplink of up to 50Mbps e DC HSPA downlink of up to 42Mbps e DC HSPA uplink of up to 5 76Mbps e Complies with IEEE 802 11n IEEE 802 11g IEEE 802 11b wireless standards e Complies with IEEE 802 3 and IEEE 802 3u standards e IEEE 802 3af 2003 compliant POE e One 10 100 Base T Ethernet port e Adjustable pole mounting k
21. 168 55 255 192 168 55 161 255 255 255 0 192 168 55 0 192 168 55 255 192 168 0 0 255 255 0 0 192 168 0 0 192 168 255 255 Diagnostics Contains Network Utilities used for testing network Network Utilities Ping Traceroute Mslookup Ping the utility used to test the reachability of a host on an Internet IP network and to measure the round trip time for messages sent from the originating host to a destination server Enter server IP address or hostname and click Ping Server echo response will be shown after few seconds if server is accessible Traceroute diagnostic tool for displaying the route path and measuring transit delays of packets across an Internet IP network Enter server IP address or hostname and click Traceroute Log containing route information will be shown after few seconds Nslookup network administration command line tool for querying the Domain Name System DNS to obtain domain name or IP address mapping or for any other specific DNS record Enter server hostname and click Nslookup Log containing specified server DNS lookup information will be shown after few seconds Full manual with all available Nslookup commands and parameters can be found in Linux manual page nslookup 1 Important notes e Note that DNS server must be configured correctly if you use server hostname instead of server IP address in address field 38 JUY UOU 0 0 010 010 0h U 1 111 00000001 0000001
22. 2 168 2 100 3 Limit 150 How many addresses the DHCP server gets to lease out Continuing on the above example if the start address is 192 168 2 100 then the end address will be 192 168 2 254 100 150 1 254 Lease time 12h How long can a leased IP be considered valid An IP address after the specified amount of time will expire and the device that leased it out will have to request for a new one Advanced settings You can also define some advanced options that specify how the DHCP server will operate on your LAN network DHCP Server General Setup Advanced Settings Dynamic DHCP Force B Force DHCP on this network even if another server is detected IPv4 netmask DHCP Options 0 B Define additional DHCP options forexample e 192 168 2 1 192 168 2 2 which advertises different ONS servers to clients Field Name Sample Value Explanation 1 Dynamic DHCP Checked Unchecked Dynamically allocate client addresses if set to 0 only clients present in the ethers files are served same network segment think it s serving a larger or a smaller network than it actually is 29 UUO VUUOUVUUU7 U 1 n 111 00000001 0000001 10000001 00000 Fm eo 101 01000000101 10101010000000001 O 000 0 0 00001 1010 10 CUUUDO Pe 0000000 00000001 000001 000 00000001 O 1 0000001 000 DHCP Options 6 192 168 2 1 192 168 2 2 Additional options to be added for this DHCP server For example with 26 1470 26 1470 or option m
23. Fi capable computers or devices scan the area for Wi Fi networks they will see your network with this name Hide ESSID Will render your SSID hidden from other devices that try to scan the area 31 U0DO VUVUUUUT gt 111 00000001 0000001 10000001 0000C di 1 01000000101 10101010000000001 0 000 0 0 00001 1010 su Ur 0 OOUUTU TM 0000000 00000001 000001 000 00000001 0 1 0000001 000 Security Interface Configuration seneral Setup Wireless Security MAC Filter Encryption WPA2 PSK Cipher auto Key s te Encryption There are many modes of encryption though two distinctive classes have to be pointed out WEP Encryption EF Open system Used Key Slot Key 1 gt Key 1 Key He Key 3 Key 4 Enter the keys that will be used as passphrase for connecting computers and then specify which key will be preferred above the remaining It s sufficient to enter one key and then specify it as the preferred one Length is important as well 10 or 26 characters in length in hex mode OR 5 or 13 in ASCII mode A hex key may only contain numbers 0 through 9 and letters a through f WPA Encryption WPA PSK oe Cipher auto Key T x First select an encryption method TKIP CCMP TKIP amp CCMP auto Note Some authentication methods won t support TKIP and TKIP amp CCMP encryption After you ve selected your encryption method you should enter your passphrase which
24. SIM card 2 Wi Fi antenna connector 3 Ethernet connector Inserting the SIM card e Remove the hex cap which is protecting the SIM holder e Insert the SIM card Correct SIM card orientation is shown in the picture e Screw the protecting hex cap back on 10 IVY VUVUUVUU I x V 11 00000001 0000001 10000001 0000C xn 1 1 01000000101 10101010000000001 0 000 0 0 00001 1010 yl yuu 10 UVUUUUU T See 10000000 00000001 000001 000 00000001 O 1 0000001 001 s Connecting the device To set up the router perform these steps e Connect your PC PoE power supply adapter and router using included LAN cables as shown in the picture bellow make sure that the power LED on the router lights up attach WiFi antenna if required 4 Power LED Data In Data amp Power Out e Plug the PoE power supply adapter into an AC socket e Connect to the using Ethernet cable or wirelessly SSID Teltonika e Find the best signal location and secure the router ona pole Note Device position and angle has a big impact on the performance By monitoring the Status window in the WebUI try to find a location with the best signal quality Logging in After you re complete with the setting up as described in the section above you are ready to start logging into your router and start configuring it This example shows how to connect on Windows 7 On windows Vista click Start gt Control Panel gt Network and Sharin
25. after defined time interval Server to PING Server IP address or host name which will receive If you use server host name PING from router instead of the IP address you must configure DNS server first Important notes Interval between PINGs Time interval in minutes between two PINGs Minimum time interval minutes e Always check if your defined server responds to echo commands before using PING Reboot function Otherwise router keeps rebooting after unsuccessful PING echo receive You can test PING send at Network gt Diagnostics 39 JU OOO O0000001 Y 1 111 00000001 0000001 10000001 0000 55 OO 0100 1000101 10101010000000001 0 000 0 0 00001 1010 1 yu uuu 10 OOUUUUTORR 990000 00000001 000001 000 00000001 0 1 0000001 000 SMS Reboot It is possible to reboot router via SMS text message This function is useful when router does not respond and it is difficult to manually restart router by hand Common configuration Enable SWS Reboot SMS text Sender phone sl number E e g 37012345678 Get status g Get detailed router connection information via SMS message after SMS reboot Field name Description Notes disable SMS EDDOL 555 ee tg SP ea mi Contlltan amater o router special symbols Capital letters o Matar Sender phone number Phone number of person who You can add as many phone numbers as you need can reboot router via SMS Dropdown list with additional rows will show up if you
26. c_ shat Remote network secure group IP address 192 168 2 0 Subnet mask 24 Number 0 32 Phase 1 and Phase 2 must be configured accordingly to the IPSec server configuration Remote Network Secure Group Set the remote network Secure Policy Database information Tunnel keep alive Enable keep alive E Ping IP address Ping period seconds Fieldname_ Explanation 1 Tunnel keep alive Allows sending ICMP echo request ping utility to the remote tunnel network This function may be used to automatically start the IPSec tunnel Ping IP address Enter IP address to which ICMP echo requests will be sent Ping period seconds Set sent ICMP request period in seconds 48 VOU UODOUVOO Y 1 111 00000001 0000001 10000001 00000 1 01000000101 10101010000000001 0 000 0 0 00001 1010 10 CULTO TO 0000000 00000001 000001 000 00000001 O 1 0000001 000 s GRE Tunnel GRE Generic Routing Encapsulation RFC2784 is a solution for tunneling RFC1812 private address space traffic over an intermediate TCP IP network such as the Internet GRE tunneling does not use encryption it simply encapsulates data and sends it over the WAN WAN IP 192 168 0 2 LAN 192 168 1 2 In the example network diagram two distant networks LAN1 and LAN2 are connected To create GRE tunnel the user must know the following parameters 1 Source and destination IP addresses 2 Tunnel local IP address 3 Distant network IP addres
27. e it carefully with high rate traffic or low CPU resources Authentication Sets authentication mode used to secure data sessions Two possibilities you have here Static means that OpenVPN client and server will use the same secret key which must be uploaded to the router using Static pre shared key option Tls authentication mode uses X 509 type certificates Depending on your selected OpenVPN mode client or server you have to upload these certificates to the router For client Certificate Authority CA Client certificate Client key For server Certificate Authority CA Server certificate Server key and Diffie Hellman DH certificate used to key exchange through unsafe data networks All mention certificates can be generated using OpenVPN or OpenSSL utilities on any type host machine Certificate generation and theory is out of scope of this user manual address before generating service exception Keep alive Defines two time intervals one is used to periodically send ICMP request to OpenVPN server and another one defines a time window which is used to restart OpenVPN service if no ICPM request is received during the window time slice endpoint I IP address of virtual remote network interface endpoint Remote IP address of remote virtual network network IP address Remote Subnet mask of remote virtual network network IP netmask gt e e ulelw w Nje W N P After setting an
28. econnect with a new set of parametes Device Configuration Wireless network is Disable enabled B Important note Do not disable ifthe only way to reach the router is your wireless network Channel 6 2 437 GHz Mode 802 110 se Country Code LT Lithuania ta Interface Configuration ESSID Teltonika_demo Hide ESSID r Encryption WPA2 PSK Cipher auto Key TT a 51 JU OOO O0000001 Y 1 _ 111 00000001 0000001 10000001 0000 r STO 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 IO OUUUUUIAWIN 1900000 00000001 000001 000 00000001 0 1 0000001 000 a The final step allows you to configure your wireless settings in order to set up a rudimentary Access Point When you re done with the configuration wizard press Finish Administration Administration properties Administration password _ Field name Explanation Enter your new administration password Re enter your new administration password Important notes e The only way to gain access to the web management if you forget the administrator password is to reset the device factory default settings Default administrator login settings are User Name admin Password admin01 Logging System logs are divided into following groups e Info e Notice e Warning e Error e Critical e Alert e Emergency You can watch logs by choosing the group from dropdown list and clicking button show SSH Access control
29. ed logs on what each device denoted as a MAC address was doing on the network what sites were traversed and so on General Settings General Settings Enabled AP IP 132 160 162 204 24 The IP address of the router on the hotspot network Radius server 1 12 23 45 56 Radius server 2 142 23 45 57 Authentication port 1012 Accounting port 1013 Hotspot name Teltonika Secret key eeeeeneeee Allowed hosts www chillispot org 10 11 12 0 24 3 bd J a wr teltonika lt Picture above illustrate a sample configuration of the general section Fieldname_ Explanation Check this flag to enable hotspot functionality on the router 2 AP IP Access Point IP address This will be the address of the router on the hotspot network The router will automatically create a network according to its own IP and the CIDR number that you specify after the slash E g 192 168 182 254 24 means that the router will create a network with the IP address 192 168 182 0 netmask 255 255 255 0 for the express purpose of containing all the wireless clients Such a network will be able to have 253 clients their IP addresses will be automatically granted to them and will range from 192 168 182 1 to 192 168 182 253 3 Radius server 1 The IP address of the RADIUS server that is to be used for Authenticating your wireless clients 4 Radius server 2 The IP address of the second RADIUS server 5 Authentication RADIUS server authentication port
30. er adapter must be kept dry U0DO VUVOUOVDUOO UY 1 111 00000001 0000001 10000001 00000 1 01000000101 10101010000000001 0 000 0 0 00001 1010 10 CULITO POE 0000000 00000001 000001 000 00000001 O 1 0000001 000 Table of Contents o nn 2 A nee D s S nae ange SD Sua SS a s A 2 SAFETY INFORMA TION Suit 5 DS VCS CO MASEL OM eaa E E E E E a E RE said 6 inn AP E A 7 REVISA LUTOS aia 7 PEC ONE A A 7 A eo AA A 5 7 UM o ia 7 GSM GPRS EDGE iaa a ass 7 A A 8 Electrical Mechanical amp Environmental a 8 e E oe 9 SENE OD VOUE TOUS panal E 10 Ia do O er E o oo uo osseacssasseeesescaenee 10 Ol TL u EE u dieta 10 las ql a the SIM GO iG o A 10 Sl SA EIE PEATE EE 11 IO O Iera o o E Z n 11 Ope HON NOE u x u x s a o eee 15 FUG ON el ONS uu u u u A e 5 xu Z u 2 S 2 16 l C uay ET u s sS u A i u EE i EA TE E s ss 16 Sy SUS l lo nn 55 uu SSS S au Sun 16 Network InformatiON A AA A e e 17 A A E UU o E Elo OE E E A 21 A 28 s S SSS SSS SS cee ee E SSS 5 s 22 LE EEE o AAPP Si E E O E AE o q 55 n 22 W En u u unus u PP E Su 23 A ss e S naman tee SS S sS SS S s 28 e Su o o Po II ss 30 A A e E OO ro OE E o wardens una 33 FW Ig no A sns 35 UVU VUVUUUUT I f es 11 00000001 0000001 10000001 00000 p pa 1 01000000101 10101010000000001 0 000 0 0 00001 1010 su syUU10 COUT 0000000 00000001 000001 000 00000001 O 1 0000001 000 a e A eee 37 MA e APP E O E OE E u unu 38 SS
31. ernal port localWWebsite TCP UDP 12345 192 168 99 156 80 Add You can use port forwarding to set up servers and services on local LAN machines The above picture shows how you can set up a rule that would allow a website that is being hosted on 192 168 99 156 to be reached from the outside by entering http routersExternallp 12345 mm Field Name Sample Value Explanation localWebsite Name of the rule Used purely to make it easier to manage rules TCP UDP TCP UDP Other Type of protocol of incoming packet 3 External Port 1 65535 From what port on the WAN network will the traffic be forwarded Internal IP address IPv4 address of some The IP address of the internal machine that hosts some service computer on your LAN that we want to access from the outside Internal port 1 65535 To what port on the internal machine would the rule redirect the traffic Additional note Notice how the external port is 12345 and not 80 It is perfectly fine to define the external port as 80 but then the routers configuration interface would not reachable unless you change the web access port from remote management When you click edit you can fine tune a rule to near perfection if you should desire that 36 001 000 00000001 U 1 f 1111 00000001 0000001 10000001 00000 Emme 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 III OUTI OR 1000000 00000001 000001 000 00000001 O 1 0000001 000 Traffic Rules The
32. g Centre gt Manage network Connections gt Go to step 4 On Windows XP Click Start gt Settings gt Network Connections gt see step 4 gt You wont s see Internet protocol version 4 TCP IPv4 instead you ll have to select TCP IP Settings and click options gt Go to step 6 We first must set up our network card so that it could properly communicate with the router 1 Press the start button gt Calculator shipping Tool ae Sticky Notes Z Paint h XPS Viewer Windows Fax and Scan i Remote Desktop Connection x T COMODO Antivirus gt ip Search programs and files D 11 UUUUUUI i 00000001 0000001 10000001 0000 101 01000000101 10101010000000001 0000 0 0 00001 101 a JUV 10 VUYUDO OO 0000000 00000001 000001 000 00000001 O 1 0000001 00 2 Type in network connections wait for the results to pop up En 4 See more results network connection x 19 w Find and fix networking and connection problems E Setup a connection or network Le Set up a virtual private network YPN connection srs View network connections a Manage network passwords as Add a wireless device to the network S Connect to a network Se Identify and repair network problems Files 9 nclllnt le wireshark dictionary st Cisco dictionary Tr Uservianual DPH401 en wi UserManual DPH411 en 4 See more results o Ole 3 Click View network connec
33. gister to DDNS service provider You are provided with add delete buttons to manage and use different DDNS configurations at the same time Dynamic DNS Dynamic DNS allows that your router can be reached with a fixed hostname while having a dynamically changing IP address DEMO Enable Status MIA Service dvndns arq Hostname miypersonaldomain dyadns org Lisername MyUsername Password s IP renew interval 10 imini Force IP renew min T2 Delete Add l Enables current DDNS configuration Timestamp of the last IP check or update 3 Service Your dynamic DNS service provider selected from the list 1 dydns org 2 3322 org 3 no ip com 4 easydns com 5 zoneedit com In case your DDNS provider is not present from the ones provided please feel free to use custom and add hostname of the update URL I IP renew Time interval in minutes to check if the IP address of the device have changed interval Force IP renew Time interval in minutes to force IP address renew F 6 8 42 JU OO O0000001 Y 1 111 00000001 0000001 10000001 00000 es 040 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 10 COUTO TON 000000 00000001 000001 000 00000001 0 1 0000001 000 Wireless hotspot Wireless hotspot provides essential functionality for managing an open access wireless network In addition to standard RADIUS server authentication there is also the ability to gather and upload detail
34. ing button Reboot Logout Log out from router management WEB interface 53 JYY OOO O0000001 Y 1 a 111 00000001 0000001 10000001 0000 C it 101 01000000101 10101010000000001 O 000 0 0 00001 1010 10 CUUUDO Pe 0000000 00000001 000001 000 00000001 O 1 0000001 000 Glossary WAN Wide Area Network is a telecommunication network that covers a broad area i e any network that links across metropolitan regional or national boundaries Here we use the term WAN to mean the external network that the router uses to reach the internet LAN A local area network LAN is a computer network that interconnects computers in a limited area such as a home school computer laboratory or office building DHCP The Dynamic Host Configuration Protocol DHCP is a network configuration protocol for hosts on Internet Protocol IP networks Computers that are connected to IP networks must be configured before they can communicate with other hosts The most essential information needed is an IP address and a default route and routing prefix DHCP eliminates the manual task by a network administrator It also provides a central database of devices that are connected to the network and eliminates duplicate resource assignments AP Access point An access point is any device that provides wireless connectivity for wireless clients In this case when you enable Wi Fi on your router your router becomes an access point DNS
35. internet WAN via LTE standard Ethernet cable or via a wireless network If you connect to the internet via an Ethernet cable of Wi Fi you may also backup your connection with LTE for added stability Selected WAN type determines available LAN interfaces O E A AAA In later sections it will be explained bit by bit how to configure your router to work in a desired mode 15 1 OOO VUUUVVO7 U 1 111 00000001 0000001 10000001 0000 ES 1 01000000101 10101010000000001 0 000 0 0 00001 1010 nu UU 10 COUOT 19900000 00000001 000001 000 00000001 O 1 0000001 000 i Function explanations The following sections contain a detailed explanation of every page tab and sub tab of the configuration interface in the order that they appear on the router Status The status section contains various information like current IP addresses of various network interfaces the state of the routers memory firmware version DHCP leases associated wireless stations graphs indicating load traffic etc and much more System Information The System Information tab contains data that pertains to the routers operating system CITELTONIKA system information system Router Mame Teltonika Router Model Teltonika RUT SO Furriware Version RUT S0_T 00 00 246 Kemel Version 3215 Local Time Wed Aug 8 13 10 47 2013 Uptinie 1h 3m 518 Load Average 0 18 0 11 0 13 Memory lotal Awardee PP 10476 FB 30012 kB 34 F
36. is to be performed for packets that pass through the Forward chain DEFAULT When a packet goes through a firewall chain it is matched against all the rules for that specific chain If no rule matches said packet an according Action either Drop or Reject or Accept is performed Accept Packet gets to continue down the next chain Drop Packet is stopped and deleted Reject Packet is stopped deleted and differently from Drop an ICMP packet containing a message of rejection is sent to the source of the dropped packet 35 Om OOU 0 0 0010 0 Oh Y 1 111 00000001 0000001 10000001 0000 AO 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 10 CUVUDO PO 0000000 00000001 000001 000 00000001 O 1 0000001 000 DMZ DMZ configuration Enabled OMZ hostiP address By enabling DMZ for a specific internal host for e g your computer you will expose that host and its services to the routers WAN network i e internet Port Forwarding Here you can define your own port forwarding rules Firewall Port Forwarding Port forwarding allows remote computers on the Internet to connect to a specific computer or service within the private LAN Port Forwarding Name Protocol Source Via Destination Enable Sort localvYebsite TCP From any host in wan To any router IP at port Forward to IP 192766 99 756 port 80 in Edit Delete 12545 lan New port forward Mame Protocol External port Internal IP address Int
37. it e Waterproof RJ45 socket e Secure SIM card socket e Dual poliarization 6 8 dBi MIMO antenna e Integrated OpenVPN IPSec and Dynamic DNS e SMS reboot function Specifications LTE e FDD 800 850 900 1800 1900 2100 2600 MHz e Upto 100 Mbps downlink speed e Upto 50 Mbps uplink speed e All bands with diversity UMTS e 850 900 1900 2100 MHz e DC HSPA mode DL up to 43 2 Mbps UL 5 76 Mbps e HSPA mode DL up to 21 6 Mbps UL 5 76 Mbps e UMTS mode 384 kbps DL 384 kbps UL e All bands with diversity GSM GPRS EDGE e 850 900 1800 1900 MHz e Power Class 4 2 W 33 dBm GSM GPRS 850 900 MHz e Power Class 1 1 W 30 dBm GSM GPRS 1800 1900 Mhz e Power Class E2 0 5 W 27 dBm for EDGE 850 900 MHz e GPRS 85 6 kbps DL 85 6 kbps UL class 12 e EDGE 236 8 kbps DL 236 8 kbps UL class 12 OOU VUVODOO YU 1 111 00000001 0000001 10000001 0000C a _ n 101000000101 10101010000000001 O 000 0 0 00001 1010 VA yuuU 10 UUUUUU TUS 0000000 00000001 000001 000 00000001 O 1 0000001 000 LAN and Wi Fi e High performance 320 MHz CPU with 256 Mbits SDRAM e EEE 802 11b g n IEEE 802 3 IEEE 802 3u standards e IEEE 802 3af 2003 compliant POE e 64 128 bit WEP WPA WPA2 WPA amp WPA2 encryption methods e 1x LAN 10 100Mbps Ethernet port e Supports Auto MDI MDIX e Remote local Web management e 1x RP SMA Wi Fi antenna connector e SSID stealth mode and access control based over MAC address e System log to record the status of the Route
38. ith the Personal Computer first safety class or Notebook second safety class Associated equipment PSU power supply unit LPS and personal computer PC shall comply with the requirements of standard EN 60950 1 Do not mount or service the device during a thunderstorm To avoid mechanical damages to the device it is recommended to transport it packed in a damage proof pack Protection in primary circuits of associated PC and PSU LPS against short circuits and earth faults of associated PC shall be provided as part of the building installation gt P gt gt gt P To avoid mechanical damages to the device it is recommended to transport it packed in a damage proof pack While using the device it should be placed so that its indicating LEDs would be visible as they inform in which working mode the device is and if it has any working problems Protection against overcurrent short circuiting and earth faults should be provided as a part of the building installation Signal level of the device depends on the environment in which it is working In case the device starts working insufficiently please refer to qualified personnel in order to repair this product We recommend forwarding it to a repair center or the manufacturer There are no exchangeable parts inside the device 00000001 0000001 10000001 00001 0100000011 10101010000000001 0 000 0 0 00001 101 A wuuu10 QOUUD 10000000 00000001 000001 000 00000001 O 1 00000
39. its Country LT MX Field Name Sample Value Explanation A SSD teltonika_rnd_division_ap The SSID that the AP to which the routers is connected to uses An A Connection mode Client indicates that the router is a client to some local AP 3 Channel 6 2 44 GHz The channel that the AP to which the routers is connected to uses Your wireless radio is forced to work in this channel in order to maintain the connection BSSID C8 3A 53 02 FC BO The MAC address of the access points radio WPA2 PSK CCMP The AP to which the router is connected to dictates the type of encryption i Bit rate 65 0 MBit s The physical maximum possible throughput that the routers radio can handle Keep in mind that this value is cumulative The bitrate will be shared between the router and other possible devices that connect to the local AP 7 Country code AP Wireless ull signal quality 100 Soll Teltonika demo Mode Master Channel E 2 44 GHz BsslD 00 01 43 30 50 35 Encryption WPA2 PSK CCMP Bit rate 1 0 MBit s Country LT Field Name Sample Value Explanation Signal Quality 100 The quality between routers radio and some other device that is connecting to the router Will show 0 if no devices are trying to connect or are currently maintaining a connection 2 SSID Teltonika_demo The SSID that is being broadcast Other devices will see this and will be able to use to connect to your wireless network Connection mode
40. message click on add icon at the end of phone number row Get status Check this to receive connection Disabled by default status via SMS after a reboot Status via SMS It is possible to get routers connection status via SMS text message Common configuration Enable SMS Status SWS text sender phone number eg 37012345678 Field name Description Note 1 Enable SMS Status This check box will enable and SMS status is disabled by default disable SMS status function SMS text SMS text which will send routers SMS text can contain letters numbers spaces and status special symbols Capital letters also matters Sender phone Phone number of person who can You can add as many phone numbers as you need number receive router status via SMS Dropdown list with additional rows will show up if you message click on add icon at the end of phone number row Important Notes e LTE settings must be configured correctly If SIM card has PIN number you must enter it at Network gt LTE settings Otherwise SMS reboot function will not work 40 JYY OOO O0000001 Y 1 111 00000001 0000001 10000001 0000 o ao 101 01000000101 10101010000000001 O 000 0 0 00001 1010 10 CUUUDO Pe 0000000 00000001 000001 000 00000001 O 1 0000001 000 A e Sender phone number must contain country code You can check sender phone number format by reading the details of old SMS tex
41. must be at least 8 characters long 32 000 00000001 0 1 AA A 111 00000001 0000001 10000001 0000 lt A 0101 01000000101 10101010000000001 0 000 0 0 00001 1010 10 00000 TO 19000000 00000001 000001 000 00000001 O 1 0000001 000 MAC Filter Interface Configuration General Setup Wireless Security MAC F ilter MAC Address Filter Allow listed only MAC List ral Filter you can define a rule for what to do with the MAC list you ve defined You can either allow only the listed MACs or allow ALL but forbid only the listed ones Client Client mode is nearly identical to AP except for the fact that most for the options are dictated by the wireless access point that the router is connecting to Changing them can result in an interrupted connection to an AP In addition to standard options you can also click the Scan button to rescan the surrounding area and attempt to connect to a new wireless access point Backup WAN Backup WAN is function that allows you to back up your wired OR wireless connection in case they go down At the current moment you can only backup wired Wifi connection with LTE Backup Link Here you can setup your backup link If your conventional WAN connection such as wired Ethernet or wifi fails the backup link will enable and take over to keep the router connected Enable Timing amp other parameters Timing amp other parameters will indicate how and when twill be determined that yo
42. nabled a DHCP server this field will show how many devices have received an IP address and what those IP addresses are DHCP Leases Hostname IPv4 Address MAC Address Leasetime remaining android _be594cr8df714b08 142168 1 101 bce rB 7U Te ac 45 11h 54m 40s The picture above shows a DHCP lease for an Android phone that is currently connecting to the routers Access Point Backup WAN When enabled this field will indicate the health of your primary connection IN USE Indicates that the connection is being used for main traffic READY Indicates that the connection is ready to take over network traffic if the other link should fail NOT READY Indicates that the connection is down Backup WAN Status WN Wired IM USE Backup WAN 36 READY Backup WAN Status AWANE pred NOT READY Backup WAN 361 IN USE More on this see the main backup WAN section of this manual 20 JUU UVOUUOVO I I s 11 00000001 0000001 10000001 0000 p 1 01000000101 10101010000000001 0 000 0 0 00001 1010 vvv i uuu010 0000005585 0000000 00000001 000001 000 00000001 O 1 0000001 001 Routes Routes The following rules are currently active on this system ARP IPv4d Address 192 168 9 30 192 168 99 254 MAC Address Interface 007 1 be Ur 1 05 br lan 00 00 00 00 00 00 ethO 2 Active lPv4 Routes Network Target IPvd Gateway Metric wan 0 0 0 0 0 192 160 99 254 O lan 192 160 0 0 244 0 0 0 0 O wan 192 160 99 Of24 0 0
43. nnection x A 3 salin ORO Disable Connect Disconnect Matus Diagnose Bridge Connections Create Shortcut Delete Rename Properties Launch your favorite browser and enter the routers IP into the address field i 192 168 11 pa Press enter If there are no problems you should be greeted with a login screen such as this Authorization Required Please enter your username and password sername admin Password Login Reset Teltonika solutions www teltanika It 14 UUVUUVUT 1 00000001 0000001 10000001 0000 101 01000000101 10101010000000001 0 000 0 0 00001 1011 ua guuU10 000U0 140000000 00000001 000001 000 00000001 O 1 0000001 00 Enter the default password which is admin01 into the Password field and then either click Login with your mouse or press the Enter key You have now successfully logged into the router and should see the Status page system information System Router Mame Teltomika Router Model Teltonika RIUT SU Furrnvare Wersian RUT 5O T 00 00 246 Kernel Version 3 2 15 Local Time Wed Aug 8 13 10 47 2013 Uptinme 1h 36m Sis Load Average 018 0 11 0 13 Memory Total Available DATE ke 30012 kB 34 Free r 1872 kB 30012 kB 5 Cached 6456 kB 30012 kB 21 Bulfered 2948 kB f 30012 kB 7 w From here on out you can configure almost any aspect of your router Operation Modes The router supports various operation modes It can be connected to the
44. nnection to internet is down for good you ll have to define a host whose availability that of the internet as a whole 3 Health Monitor ICMP Timeout 4 3 4 5 10 Seconds How long to wait for an ICMP request to come back Set a higher value if your connection has high latency or high jitter latency spikes A A ji deere DOWN for good connection to be declared DOWN for good connection to be declared UP DNS Servers Auto Custom Define custom DNS servers Has meaning when you select DNS as your Health Monitor ICMP HOST 7 Backup ICMP host IPv4 address This is where the address of an ICMP host that will be used to check the health of your LTE backup link goes This has to be a ping able host How do I set up a backup link First we must pick a main link Wired or Wi Fi and ensure that the link is working Configure your WAN settings to use that link and see whether you have internet access If the main link is working we can continue configuring our Backup Link Now go to Backup WAN page and configure the settings to your liking Click Save and wait until the settings are applied Now in the Status gt Network Information page there should be a status indication for the backup WAN If everything is working correctly you should see this Backup WAN Status WAN Wired IN USE Backup WAN 3G READY The above picture shows the status for Backup WAN configured on a wired main link You can now simulate a downed link by
45. nt_Demo Main settings Enable Tun Tap Tun tunnel Type of used device Protocol Udp gt Port 1194 TCP UDP port for both local and remote zo E Use fast LZO compression Authentication Tls gt Remote host IP address Resolve Retry infinite No Bind Do not bind to local address and port Keep alive Helper directive to simplify the expression of ping and ping restart Client E Certificate authority Y Browse Client certificate Poo Browse Client key Poo Browse 45 001 000 O0000001 0 1 f 111 00000001 0000001 10000001 00000 a SO 01 01000000101 10101010000000001 0 000 0 0 00001 1010 1 css UO 0UUUUUWAWII 1900000 00000001 000001 000 00000001 O 1 0000001 000 You can set custom settings here according to your VPN needs Below is summary of parameters available to set Explanation Enabled Switches configuration on and off This must be selected to make configuration active TUN TAP Selects virtual VPN interface type TUN is most often used in typical IP level VPN connections however TAP is required to some Ethernet bridging configurations Defines a transport protocol used by connection You can choose here between TCP and UDP defines TCP or UDP port number make sure that this port allowed by firewall This setting enables LZO compression With LZO compression your VPN connection will generate less network traffic however this means higher router CPU loads Us
46. port 6 Accounting port RADIUS server accounting port Hotspot name The name of your hotspot Will appear on the login screen Secret Key The secret key used for authenticating with the RADIUS server Allowed hosts A list of hosts that your clients will be able to reach regardless of whether they were authenticated or not 43 001 000 O0000001 0 1 f 111 00000001 0000001 10000001 00000 O 01 01000000101 10101010000000001 0 000 0 0 00001 1010 1 IO III AAA 1000000 00000001 000001 000 00000001 0 1 0000001 000 Logging and FTP settings Logging Settings Enabled E Upload via FTP Settings Enabled E Server address yourttp server Lisername Username Password wsws a Port 9999 Intervals ou configure upload timing settings here Description Mode Interval Weekdays 1 2 5 Enter numbers corresponding weekdays separated by commas E g Monday Tuesday and Friday would be 1 25 Upload interval 4 Hours gt Delete Add The above picture illustrates a sample configuration of the Logging and FTP settings portion of the page Explanation Logging enabled Check this box if you want to enable wireless traffic logging This feature will produce logs which contain data on what websites each client was visiting during the time he was connected to your hotspot 2 FTP enabled Check this box if you want you logs to be periodically uploaded to an FTP server of your choice erver address The IP address of the FTP
47. r e Auto negotiation manual mode for IEEE 802 11b g n e Dynamic DNS e LAN access control over Internet connection e Virtual server e Auto wireless channel selection e OpenVPN IPSec PPPoE e SMS and Ping reboot Status via SMS e 1xLANLED Electrical Mechanical amp Environmental e Dimensions H x W x D 290mm x 240mm x 45mm e Weight 1 3kg e Power supply 36 57VDC POE adapter e Power consumption lt 7W e Antenna connectors 1 x RP SMA for Wi Fi e Indicators 1 x Power LED 1 x LAN LED 1 x Status LED e Operating temperature 202 to 502 C e Storage temperature 202 to 702 C e Operating humidity 10 to 90 Non condensing e Storage humidity 5 to 95 Non condensing J UUUUUUU 00000001 0000001 10000001 0000 AO 101 01000000101 10101010000000001 0 000 0 0 00001 1010 vyv yuUU10 OUUU TOS 0000000 00000001 000001 000 00000001 O 1 0000001 00 Applications Device can provide internet connection by either Wi Fi or Ethernet cable Ethernet switch can be used to provide more Ethernet ports and to be able to connect several devices Router LTE PoE Power adaptor lt 10000001 0000 O 101 01000000101 10101010000000001 0 000 0 0 00001 1011 00000001 0000001 III O O00 0000000 00000001 000001 000 00000001 0 1 0000001 00 Setting up your router Installation After you unpack the box follow the steps documented below in order to properly connect the device Connectors 1
48. ree r 1672 kes 30012 kB 5 Cached 6456 kB 30012 KA 21 Buffered Ll 2348 kB 30012 kB 7 Teltonika solutions www delonika H System x Field Name Sample value Explanation Teltonika Name of the router hostname of the routers system 2 Router Model Teltonika RUT750 Routers model Firmware RUT750_T_00 00 436 Shows the version of the firmware that is currently loaded in the Version router Newer versions might become available as new features are added Use this field to decide whether you need a firmware upgrade or not 3 2 15 The version of the Linux kernel that is currently running on the router because the router synchronizes it s time with an NTP server reset this timer to 0 7 Load Average 0 98 0 57 0 30 Indicates how busy the router is Let s examine some sample output 2 43 2 96 3 41 The first number 2 43 means that in the past minute there have been on average 2 43 processes running or waiting for a resource The second number show that in the past 10 minutes on average there have been 2 96 processes running or waiting for a resource The last number indicates the same on the last 15 minutes 16 JUY UOU 0 0 010 010 0h U 1 gt 111 00000001 0000001 10000001 00000 goo 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 10 OUULUDO POE 0000000 00000001 000001 000 00000001 O 1 0000001 000 Memory Field Name Sample Value Total Available 14416 29964 Shows how much memory
49. s and Subnet mask Enable GRE Tunnel E E a value 0 255 PMTUD gl Remote tunnel network address Remote CIDR fa CIDR netmask value 0 32 Remote IP address MTU 1500 a MTL value 0 1500 Fieldname Explanation Enable GRE Tunnel Check the box to enable the GRE Tunnel function Specify the fixed time to live TTL value on tunneled packets 0 255 The O is a special value meaning that packets inherit the TTL value status on this tunnel Remote tunnel network Specify remote LAN Subnet address address 5 Remote CIDR Specify remote LAN Subnet CIDR value 6 Remote IP address Specify remote WAN IP address 7 TU Specify the maximum transmission unit MTU of a communications protocol of a layer in bytes 49 U0DO QVUVUUUUT 11 00000001 0000001 10000001 0000C ARO 101 01000000101 10101010000000001 0 000 0 0 00001 1010 OI E 000000 00000001 000001 000 00000001 0 1 0000001 000 Systems Configuration Wizard The configuration wizard provides a simple way of quickly configuring the device in order to bring it up to basic functionality The wizard is comprised out of 4 steps and they are as follows Step 1 Password change Step Password First let s change your router password from the default one Password Confirmation First the wizard prompts you to change the default password Simply enter the same password into both Password and Confirmation fields and press Nex
50. server to which you want the logs uploaded The username of the user on the aforementioned FTP server The password of the user The TCP IP Port of the FTP server The description of the schedule Mode The mode of the schedule Use Fixed if you want the uploading to be done on a specific time of the day Use Interval If you want the uploading to be done at fixed interval Weekdays This field specifies on what weekdays the uploading should be done The entry format is numbers from 1 to 7 separated by only commas E g If you want to upload the logs on Monday Wednesday and Saturday you should enter 1 3 6 10 Interval Shows up only when Mode is set to Interval Specifies the interval of regular uploads on one specific day E g If you choose 4 hours the uploading will be done on midnight 4 00 8 00 12 00 16 00 and 20 00 11 Hours Minutes Shows up only when Mode is set to Fixed Uploading will be done on that specific time of the day E g If you want to upload your logs on 6 48 you will have to simply enter hours 6 and minutes 48 6 You can also one than more uploading schedule Simply click Add at the very bottom of the configuration page and an additional configuration box will appear 44 QUU VUOUVUODODO YU 1 aa 111 00000001 0000001 10000001 0000 _ 1 01000000101 10101010000000001 0 000 0 0 00001 1010 10 CULITO Pe 0000000 00000001 000001 000 00000001 O 1 0000001 000 OpenVPN
51. sion 4 TCP IP y4 Link Layer Topology Discovery Mapper 1 0 Driver de Link Layer Topology Discovery Responder Install Uninstall Description Transmission Control Protocol Internet Protocol The default wide area network protocol that provides communication across diverse interconnected networks K I lt I lt I lt I lt lt lt l 6 By default the router is going to have DHCP enabled which means that if you select Obtain an IP address automatically and Obtain DNS server address automatically the router should lease you an IP and you should be ready to login Internet Protocol Version 4 Te P7IPs d Properties General Alternate Configuration You can get IP settings assigned automatically iF your network supports this capability Otherwise you need to ask your network administrator For the appropriate IP settings Obtain an IP address automatically 5 Use the Following IP address IP address Subnet mask 5 Use the Following DNS server addresses Preferred DNS server Alternate DNS server Validate settings upon exit 7 If you choose to configure manually here s what you do First select an IP address Due to the stock settings that your router has arrived in you can only enter an IP in the form of 192 168 1 XXX where XXX is a number in the range of 2 254 192 168 1 2 192 168 1 254 192 168 1 155 and so on are valid 192 168 1 0 192
52. t Note At this point you can also Skip the wizard Step 2 LTE Step LTE Next lets configure your LTE settings so you can start using internet right away LTE Configuration APH PIN nurnbes LTE authentication none maod Prefered neterork auto Next we have to enter your LTE configuration On a detailed instruction on how this should be done see the LTE Section under Network 50 U0DO VUVUUUUT I 11 00000001 0000001 10000001 0000C m O 101 01000000101 10101010000000001 0 000 0 0 00001 1010 vei uuuU10 OOLUUUU Tee 0000000 00000001 000001 000 00000001 O 1 0000001 000 Step 3 LAN Step LAN Here wwe will configure the basic settings of a typical LAN configuration The wizard will cower 2 basic configurations static IP address LAN and DHCP client Common Configuration Protocol Static address ma Pwd address 192 163 0 161 IPud netmask 255 255 255 0 P IFwe gateway Fw broadcast Use custom ONS ca Se pre DHCP Server Disable E Start 100 Limit 150 Leasetime 12h B Exping time of leased addresses minimum is 2 Minutes t 2m Next you are given the chance to configure your LAN and DHCP server options For a detailed explanation see LAN under Network Step 4 Wifi Step Wireless Mow let s configure your wireless radio Note it you are currently connecting via wireless and you change parameters like SSID encryption etc your connection will be dropped and you will have to r
53. t each field means Operation Mode Operation Mode Interface e LTE D ga wil Ta Wired First and foremost a mode of connection has to be defined Available selections Type Description oS An Ethernet cable connected to the WAN port of the router The router will be able to connect to a local wireless access point and reach the internet through it The router will connect to your local mobile network for LTE access Common configuration Common configuration allows you to configure your TCP IP settings for the wan network Common Configuration General Setup Protocol DHCP client Really switch Switch protocol protocol You can switch between the Static DHCP or PPPoE protocol by selecting the protocol that you want to use and then pressing Switch Protocol 23 Om OOU 0 0101 01010 0h Y 1 ss _ 111 00000001 0000001 10000001 00000 ALO 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 10 0000055858 19000000 00000001 000001 000 00000001 O 1 0000001 000 General This area is dedicated for protocol specific options Static Common Configuration General Setup Advanced Settings Protocol static address IPvd address 192 168 99 162 IPv4 netmask 255 255 255 0 A P4 gateway 192 160 939 254 IPv4 broadcast E Lise custom ONS 6 5 5 5 servers 6 8 6 6 rail This is the configuration setup for when you select the static protocol Filed name Sample Explanation
54. t massages you receiving usually NTP Hostname Network Time Protocol NTP and time zone configuration settings is needed to periodically update router local time Common configuration System Properties Local Time Wed Aug 8 08 32 11 2012 Sync with browser Hostname Teltonika Timezone UTE hd Time Synchronization Enable builtin WTP M NTP server candidates U europe pool ntp org 3 europe pool ntp org Sync with browser button will synchronize local router time with computer browser time Field name Description Notes 1 Local Time Local time of router 2 Hostname Hostname of router ee 3 Timezone Time zone of your country ee Enable builtin NTP This check box will turn on When check box is selected you must enter one or more automatic time synchronizing working NTP servers Otherwise time sync feature will with defined NTP servers not work 5 NTP server NTP server hostname You can add as many servers as you need by clicking candidates add button at the end of server hostname field 41 01 OOU 0 0 010 0610 0 1 E 111 00000001 0000001 10000001 00000 aaa AO 401 01000000101 10101010000000001 0 000 0 0 00001 1010 4 ee III O 0000005688 10090000 00000001 000001 000 00000001 O 1 0000001 000 Dynamic DNS Dynamic DNS DDNS is a domain name service allowing to link dynamic IP addresses to static hostname To start using this feature firstly you should re
55. tions Control Panel 10 ue View network status and tasks ES View network connections E E af View network computers a Network and sharing Center View devices and printers View network connections ue Manage wireless networks 4 Then right click on your wireless device that you use to connect to other access points It is the one with the name Wireless Network Connection and has signal bars on its icon w J Ses Go ug Control Panel Network and Internet Network Connections Organize y Disable this network device Diagnose this connection A Wireless Network Connection FE Disabled Pil Intel R PRO Wireless 39 Enable Status Diagnose Create Shortcut Delete Rename Properties 12 f U0OO UO0O0O0O00U1 1 111 00000001 0000001 10000001 0000C AA gt 1 0100001 0101 10101010000000001 0 000 0 0 00001 1010 uy UUUUTO JUUUUU TOS 0000000 00000001 000001 000 00000001 O 1 0000001 000 i 5 Select Internet Protocol Version 4 TCP IPv4 and then click Properties i 4 Wireless Network Connection Properties Networking Sharing Connect using xx Intel R PRO Wireless 39454BG Network Connection This connection uses the following items Mk Client for Microsoft Networks QoS Packet Scheduler a File and Printer Sharing for Microsoft Networks GCT WiMax Protocol Driver de Internet Protocol Version 6 TCP IP v6 A Intemet Protocol Ver
56. to connect to your MES passwd carriers network These field become available when you select an authentication method i e authentication method is not none These fields are always enabled on the alternate model Preferred network GSM UMTS LTE or Your network preference If your local mobile network supports GSM auto 2G UMTS 3G and LTE you can specify to which network you wish to connect E g if you choose GSM 2G the router will connect to a GSM 2G network so long as it is available otherwise it will connect to a LTE network If you select auto then the router will connect to the network that provides better connectivity 22 QUU VOVOUDODO YU 1 111 00000001 0000001 10000001 0000C 0 101 01000000101 10101010000000001 0 000 0 0 00001 1010 IO COUTO 0000000 00000001 000001 000 00000001 0 1 0000001 000 Warning If an invalid PIN number was entered i e the entered PIN does not match the one that was used to protect the SIM card your SIM card will get blocked To avoid such mishaps it is highly advised to use an unprotected SIM If you happen to insert a protected SIM and the PIN number is incorrect your card won t get blocked immediately although after a couple of reboots OR configuration saves it will Wan WAN configuration is arguably the crux of the routers configuration as it determines how the router will connect to the internet Here is quick rundown of how the page looks and wha
57. traffic rule page contains a more generalized rule definition With it you can block or open ports alter how traffic is forwarded between LAN and WAN and many more things _ Field name Sample Value Explanation TCP UDP Other 4 Source IPv4 address IPv4 address Action Drop Accept Reject Action to be taken on the packet if it matches the rule You can also define 1 chain additional additional options like limiting packet volume and defining to which chain the rules rule belongs 7 Enable Checked Unchecked Self explanatory Uncheck to make the rule inactive The rule will not be deleted but it also will not be loaded into the firewall Sort Up Down When a packet arrives it gets checked for a matching rule If there are several rules that match the rule the first one is applied i e the order of the rule list impacts how your firewall operates therefore you are given the ability to sort your list as you wish Custom Rules Here you have the ultimate freedom in defining your rules you can enter them straight into the iptables program Just type them out into the text field ant it will get executed as a linux shell script If you are unsure of how to use iptables check the internet out for manuals examples and explanations Static Routes Static routes provide a way of entering custom entries in the internal routing table of the router Routes Routes specify over which interface and gate
58. tu 1470 you can assign an MTU per DHCP option mtu 1470 Your client must accept MTU by DHCP for this to work Wireless On this page you can configure your wireless settings Depending on whether your WAN mode is set to Wifi or not the page will display either the options for configuring an Access Point or options for configuring a connection to some local access point Access Point Wireless Access Point Here you can configure your wireless settings like radio frequency mode encrytion etc Device Configuration General Setup Advanced Settings Wireless networkis Disable enabled E Donttorgetto save before toggling the wireless radio on and off Channel 11 2 462 GHz gt Interface Configuration General Setup Wireless Security MAc Filter ESSID Teltonika Hide ESSID Here you can see the Overview of the wireless configuration It is divided into two main sections device and interface One is dedicated to configuring hardware parameters other software Device General Device Configuration General Setup Advanced Settings Wireless networkis Disable enabled y Donttorgetto save before toggling the wireless radio on and off Channel 11 2 462 GHz Le Here you can toggle the availability of the wireless radio and the physical channel frequency Important note As seen in the picture you should always Save before toggling the radio on and off 30 OOU QVUVUUVLU1I Y 1 111 00000001
59. ues Restore configuration Restore backup upload and restore router settings file from personal computer Firmware upgrade Keep settings when check box is selected router will keep saved user configuration settings after firmware upgrade When check box is not selected all router settings will be restored to factory defaults after firmware upgrade Image router firmware upgrade file Firmware upgrade Verify Firmware upgrade Verify The flash image was uploaded Below is the checksum and file size listed compare them with the original file to ensure data integrity Click Proceed below to start the flash procedure e Checksum 446e4c75bf7f558642aabb5b61 37f94 s Size 4 50 MB 7 69 MB available s Configuration files will be kept Compare firmware file checksum to ensure data integrity If checksum is correct click Proceed button below Wait until upgrade process completes Important notes e Leaving Keep settings check box unselected before upgrade process will change IP address of router to default value 192 168 1 1 and you may need to configure router again please read chapter Logging in at page 9 Warning Do not ever remove router power supply and do not press reset button during upgrade process This will totally damage your router and it won t be accessible If you have any problems related to firmware upgrade you should always consult with local dealer Reboot Reboot router by press
60. unnel keep alive feature Automatic IPSec Key exchange Description Enable IPsec IPSec key exchange Auto key IKE mode Mode aggressive B Enable NAT traversal O Enable initial contact E My identifier type address ES My identifier gwe Preshare Key 123456709 Length 6 32 Remote WPN endpoint 861 51 51 51 IP address Enable IPSec Check box to enable IPSec IPSec key exchange mode Automatic Key exchange Enable NAT traversal Enable this function if client to client applications will be used Enable initial contact Enable this to send an INITIAL CONTACT message 5 Peers identifier type Choose fqdn or user fqdn accordingly to your IPSec server configuration Mod Select Main or Aggressive mode accordingly to your IPSec server configuration My identifier Set the device identifier for IPSec tunnel Preshare key specify the authentication secret string Secret s length depends on selected algorithm eg 128 bit long secret is 16 characters in length 128 bits 8 bits one character 16 Remote VPN Endport set remote IPSec server IP address 47 U0O YVUUUVOUY7I UY 1 111 00000001 0000001 10000001 00000 1 01000000101 10101010000000001 0 000 0 0 00001 1010 JUUUU PIN 0000000 00000001 000001 000 00000001 O 1 0000001 000 Phase 1 Encryption JES B Hash shal Dh group Modp1024 Phase 2 PFS group modp1024 Encryption Jdes Es EJ E Authentication hima
61. ur conventional connection has gone down Health Monitor 5 Sec xe Interval Health MonitorICMP ONS Serveris Hostis Health Monitor ICMP 1 sec tz Timeout Attempts Before 1 e WAN Failover Attempts Before 1 WAM Recovery DNS Servers Auto Backup ICMP host A remote host that willbe used to test wether your backup link is alive ICMP host 884 4 The majority of the options consist of timing and other important parameters that help determine the health of your primary connection Regular health checks are constantly performed in the form of ICMP packets PINGs on the your primary connection When the connections state starts to change READY gt NOT READY and vice versa a necessary 33 001 000 O0000001 0 1 111 00000001 0000001 10000001 00000 A AA 00 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 IO VITA 1000000 00000001 000001 000 00000001 0 1 0000001 000 amount of failed or passed health checks has to be reached before the state changes completely This delay is instituted so as to mitigate spikes in connection availability but it also extends the time before the backup link can be brought up or down _ Field Name Sample value 1 Health Monitor Interval Dsb 5 10 20 30 60 120 Seconds The interval at which health checks are performed 2 Health Monitor ICMP HOST Dsb DNS WAN GW Custom Where to PING for a health check As there is no definitive way to determine when the co
62. val send LCF echo requests at the given interval in seconds only effective in conjunction with failure threshold Inactivity timeout Close inactive connection after the given amount of seconds use U to persist connection 26 1 VOU OUUU Y 1 a 111 00000001 0000001 10000001 0000 DAA 101 01000000101 10101010000000001 0 000 0 0 00001 1010 10 CUUUDO Pe 0000000 00000001 000001 000 00000001 O 1 0000001 000 IP Aliases IP aliases are a way of defining or reaching a subnet that works in the same space as the regular network IP Aliases SUBNETIS General Setup Advanced Settings IPvd Address 192 160 565 161 IPv4 Netmask 255 255 255 0 IPvt Gateway 192 166 556 153 Delete Add As you can see the configuration is very similar to the static protocol only in the example a 55 th subnet is defined Now if some device has an IP in the 55 subnet 192 168 55 xxx and the subnets gateway metric is higher and the device is trying to reach the internet it will reroute it s traffic not to the gateway that is defined in common configurations but through the one that is specified in IP aliases IP Aliases SUBNETSS General Setup Advanced settings IPyv4 Broadcast DNS Server Delete Add You may also optionally define a broadcast address and a custom DNS server How do I setup Wifi WAN First we must switch the mode to Wifi Do so by selecting Wifi from the list and wait for the page to quickly reload
63. way a certain host or nebwork can be reached Static IPv4 Routes Interface Target IPv4 Netmask IPv4 Gateway Metric Host lP or Network if target is a network lan z 192 168 55 0 255 255 255 0 192 168 55 145 Delete Add Save Field name Value Explanation The zone where the Target resides IPv4 address The source of the traffic 3 IPv4 Netmask IPv4 mask Mask that is applied to the Target to determine to what actual IP addresses the routing rule applies 4 IPv4 Gateway IPv4 address To where the router should send all the traffic that applies to the rule 5 Metric integer Used as a sorting measure If a packet about to be routed fits two rules the one with the higher metric is applied 37 001 VOU VUUUUUO7 U 1 _ LA 111 00000001 0000001 10000001 00000 gt gt AA goo 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 10 000000 10000000 00000001 000001 000 00000001 O 1 0000001 000 Additional note on Target amp Netmask You can define a rule that applies to a single IP like this Target some IP Netmask 255 255 255 255 Furthermore you can define a rule that applies to a segment of IPs like this Target some IP that STARTS the segment Netmask Netmask that defines how large the segment is E g 192 168 55 161 255 255 255 255 Only applies to 192 168 55 161 192 168 55 0 255 255 255 0 Applies to IPs in range 192 168 55 0 192 168 55 255 192 168 55 240 255 255 255 240 Applies 192 168 55 240 192
64. y of these parameters press Save button Some of selected parameters will be shown in the configuration list table You should also be aware of the fact that router will launch separate OpenVPN service for every configuration entry if it is defined as active of course so the router has ability to act as server and client at the same time 46 U1 0101001001010 0 0 U 1 LA 111 00000001 0000001 10000001 0000 B SST 101 01000000101 10101010000000001 0 000 0 0 00001 1010 1 10 OUUUUU 88 0000000 00000001 000001 000 00000001 0 1 0000001 000 IPsec The IPsec protocol client enables the router to establish a secure connection to an IPsec peer via the Internet IPsec is supported in two modes transport and tunnel Transport mode creates secure point to point channel between two hosts Tunnel mode can be used to build a secure connection between two remote LANS serving as a VPN solution IPsec system maintains two databases Security Policy Database SPD which defines whether to apply IPsec to a packet or not and specify which how IPsec SA is applied and Security Association Database SAD which contain Key of each IPsec SA The establishment of the Security Association IPsec SA between two peers is needed for IPsec communication It can be done by using manual or automated configuration Note router starts establishing tunnel when data from router to remote site over tunnel is sent For automatic tunnel establishment used t
Download Pdf Manuals
Related Search
Related Contents
MANUAL DO USUÁRIO 1 / 5 MCB – MOTOR DE CLARABÓIA Legenda: Xerox Phaser 5550, 256MB ・賞例4=漏水・ Descargar. - Busca alarmas para casas o comercios? SMOKE ALARMS - City of Meridian 亡日ロキャコ円=ライト(グラデー設ョコカラー) 取扱説明書 [ 傘使用上のご Samsung WA70H4200SW دليل المستخدم SERVO-s Ventilator Data Sheet LED Skin Rejuvenation System User`s Manual Contents- https://telegra.ph/Wire-Size-Calculator-From-Voltage-Drop-a7d301a9-11-16
- https://telegra.ph/Calculat-Wire-Area-From-Voltage-Drop-1948d344-11-16
- https://telegra.ph/Wall-Concrete-Volume-Calculator-8149ff96-11-17
- https://telegra.ph/Square-Slab-Concrete-Volume-Calculator-bd9afb76-11-17
- https://telegra.ph/Round-Slab-Concrete-Volume-Calculator-c8541ed1-11-13
- https://telegra.ph/Wall-Concrete-Volume-Calculator-b37c5c3c-11-13
- https://telegra.ph/Round-Column-Concrete-Volume-Calculator-cb5c03a8-11-13
- https://telegra.ph/Calculate-Length-from-Voltage-Drop-cf2fd1f0-11-17
- https://telegra.ph/AC-Three-phase-Voltage-Drop-Calculator-6e5792fa-11-18
- https://telegra.ph/Calculate-Current-from-Voltage-Drop-7564976b-11-18