Netgear NTGWGR614 User's Manual
Contents
1. AP decrypts and if correct 4 lt dm k authenticates client 5 Client connects to network gt Figure 7 5 Shared key authentication Overview of WEP Parameters Before enabling WEP on an 802 11 network you must first consider what type of encryption you require and the key size you want to use Typically there are three WEP Encryption options available for 802 11 products 1 Do Not Use WEP The 802 11 network does not encrypt data For authentication purposes the network uses Open System Authentication 2 Use WEP for Encryption A transmitting 802 11 device encrypts the data portion of every packet it sends using a configured WEP Key The receiving device decrypts the data using the same WEP Key For authentication purposes the wireless network uses Open System Authentication Wireless Networking Basics D 5 Reference Manual for Cable DSL Wireless Router WGR614 3 Use WEP for Authentication and Encryption A transmitting 802 11 device encrypts the data portion of every packet it sends using a configured WEP Key The receiving 802 11 device decrypts the data using the same WEP Key For authentication purposes the 802 11 network uses Shared Key Authentication Note Some 802 11 access points also support Use WEP for Authentication Only Shared Key Authentication without data encryption Key Size The IEEE 802 11 standard supports two types of WEP encryption 40 bit and 128 bit2. e If your main e mail account with your ISP is aaa yyy com then use aaa as your host name Your ISP might call this your account user host computer or system name e If your ISP s mail server is mail xxx yyy com then use xxx yyy com as the domain name ISP Host Name ISP Domain Name For Wireless Access For configuration of the wireless network record the following Wireless Network Name SSID Encryption circle one WEP 64 or WEP 128 WEP passphrase or key Connecting the Router to the Internet 2 3 Reference Manual for Cable DSL Wireless Router WGR614 Connecting the WGR614 This section provides instructions for connecting the WGR614 router Also the Model WGR614 Resource CD included with your router contains an animated Installation Assistant to help you through this procedure Connecting the Router There are three steps to connecting your router 1 Connect the router to your network 2 Log in to the router 3 Connect to the Internet Follow the steps below to connect your router to your network You can also refer to the GearBox CD for Cable DSL Wireless Router WGR614 included with your router which contains an animated Installation Assistant to help you through this procedure 1 Connect the router to your network a Turn off your computer and Cable or DSL Modem b Disconnect the Ethernet cable A from your computer which connects to your cable or DSL modem Cable or DSL modem Fig
3. Click Apply to save your changes Wireless Configuration Reference Manual for Cable DSL Wireless Router WGR614 Note If you are configuring the firewall from a wireless PC and you change the firewall s SSID channel or security settings you will lose your wireless connection when you click on Apply You must then change the wireless settings of your PC to match the firewall s new settings 8 Configure and test your PCs for wireless connectivity Program the wireless adapter of your PCs to have the same SSID and channel that you configured in the router Check that they have a wireless link and are able to obtain an IP address by DHCP from the firewall Once your PCs have basic wireless connectivity to the firewall then you can configure the advanced wireless security functions of the firewall How to Restrict Wireless Access by MAC Address To restrict access based on MAC addresses follow these steps 1 Log in to the WGR614 firewall at its default LAN address of Attp 192 168 0 1 with its default user name of admin and default password of password or using whatever LAN address and password you have set up Note When configuring the firewall from a wireless PC whose MAC address is not in the Trusted PC list if you select Turn Access Control On you will lose your wireless connection when you click on Apply You must then access the router from a wired PC or from a wireless PC which 1s on the access control list to
4. The 64 bit WEP data encryption method allows for a five character 40 bit input Additionally 24 factory set bits are added to the forty bit input to generate a 64 bit encryption key The 24 factory set bits are not user configurable This encryption key will be used to encrypt decrypt all data transmitted via the wireless interface Some vendors refer to the 64 bit WEP data encryption as 40 bit WEP data encryption since the user configurable portion of the encryption key is 40 bits wide The 128 bit WEP data encryption method consists of 104 user configurable bits Similar to the forty bit WEP data encryption method the remaining 24 bits are factory set and not user configurable Some vendors allow passphrases to be entered instead of the cryptic hexadecimal characters to ease encryption key entry 128 bit encryption is stronger than 40 bit encryption but 128 bit encryption may not be available outside of the United States due to U S export regulations When configured for 40 bit encryption 802 11 products typically support up to four WEP Keys Each 40 bit WEP Key is expressed as 5 sets of two hexadecimal digits 0 9 and A F For example 12 34 56 78 90 is a 40 bit WEP Key When configured for 128 bit encryption wireless products typically support four WEP Keys but some manufacturers support only one 128 bit key The 128 bit WEP Key is expressed as 13 sets of two hexadecimal digits 0 9 and A F For example 12 34 56 78 90 AB
5. cccceceeeeececeeeeeeeeeeeeeeeneneees Chapter 3 Wireless Configuration Observe Performance Placement and Range Guidelines cccccccceeeeeeeeeeeeeeeees Implement Appropriate Wireless Security ccccceeeeeeeeeeeee eter eee eeeteeeeeeeeeeeeeeeeeeeees Understanding Wireless Settings 2 12 Understanding WEP Authentication and Eneo EERE PE PAT E AAEN AAE oe Authentication Scheme Selection niche nee PP AA EITS eee 3 5 Ty UO Strength CICS iis ieotssercaddadesenncsadicustdndnaaistmedduanntangdaiduadisataoiesdeeds Default Factory Settings Before You Change the SSID a and WEP gt Settings gg How to Set Up and Test Basic Wireless Connectivity cccccceeeeeeeeeceeeeeeeeees How to Restrict Wireless Access by MAC AddresS cccccecceceeeeeeeeeeeeeeeeeeaees i NEF siiicar ae aE Aaa Ra Chapter 4 Content Filtering Content Filtering Overview ccccccccccccccsssessssseeeeeseceececeeceeeceseeeeeeeeeeaaaaeeneneseeeeeeeeeeeeees Blocking Access to Internet Sites nonnnonnennnnnnnnennnernsrrsrrerrrrorrrerrerrrnrenrenrrerrerrenrne 31 44 vei 4 2 Blocking Access to Internet Services cc ccccccccceeccceceeeeceeeeaeeceesaeeecesesseeeeesssssesessseeeens 473 Configuring a User Defined Service Viewing Logs of Web Access or Attempted Configuring E Mail Alert and V Chapter 5 Maintenance Viewing Router Status TAT IF Ewes asicers
6. An open international community of network designers operators vendors and researchers concerned with the evolution of the Internet architecture and the smooth operation of the Internet 4 Glossary Reference Manual for Cable DSL Wireless Router WGR614 IKE Internet Key Exchange An automated method for exchanging and managing encryption keys between two VPN devices IP Internet Protocol is the main internetworking protocol used in the Internet Used in conjunction with the Transfer Control Protocol TCP to form TCP IP IP Address A four byte number uniquely defining each host on the Internet usually written in dotted decimal notation with periods separating the bytes for example 134 177 244 57 Ranges of addresses are assigned by Internic an organization formed for this purpose IPSec Internet Protocol Security IPSec is a series of guidelines for securing private information transmitted over public networks IPSec is a VPN method providing a higher level of security than PPTP IPX Short for Internetwork Packet Exchange a networking protocol used by the Novell NetWare operating systems Like UDP IP IPX is a datagram protocol used for connectionless communications Higher level protocols such as SPX and NCP are used for additional error recovery services ISP Internet service provider Internet Protocol The main internetworking protocol used in the Internet Used in conjunction with the Transfer Control Protocol T
7. C Disable SPI Firewall C Default DMZ Server C Respond to Ping on Internet Port Figure 6 2 WAN Setup menu e Connect Automatically as Required Normally this option should be Enabled so that an Internet connection will be made automatically whenever Internet bound traffic is detected In locations where Internet access is billed by the minute if this causes high connection costs you can disable this setting If disabled you must connect manually using the sub screen accessed from the Router Status menu Show WAN Status screen e Disable SPI Firewall Normally this option should be Enabled so that your local network will be protected by the Stateful Packet Inspection SPI firewall included in the WGR614 However certain communications functions like VPN may require turning off the SPI feature e Setting Up a Default DMZ Server 6 4 Advanced Configuration Reference Manual for Cable DSL Wireless Router WGR614 The default DMZ server feature 1s helpful when using some online games and videoconferencing applications that are incompatible with NAT The router is programmed to recognize some of these applications and to work properly with them but there are other applications that may not function well In some cases one local PC can run the application properly if that PC s IP address is entered as the default DMZ server Note DMZ servers pose a security risk A computer designated as the default DMZ serve
8. IP Subnet Mask 255 255 255 0 Wireless Port Name SSID Earl Region United States Channel 11 Mode g and b Wireless AP On Broadcast Name On Show Statistics Connection Status Figure 5 1 Router Status screen Maintenance 5 1 Reference Manual for Cable DSL Wireless Router WGR614 This screen shows the following parameters Table 5 1 Menu 3 2 Router Status Fields This field displays the Host Name assigned to the router This field displays the router firmware version Internet Port These parameters apply to the Internet WAN port of the router MAC Address This field displays the Media Access Control address being used by the Internet WAN port of the router IP Address This field displays the IP address being used by the Internet WAN port of the router If no address is shown the router cannot connect to the Internet IP Subnet Mask This field displays the IP Subnet Mask being used by the Internet WAN port of the router DHCP If set to None the router is configured to use a fixed IP address on the WAN If set to Client the router is configured to obtain an IP address dynamically from the ISP LAN Port These parameters apply to the Local WAN port of the router MAC Address This field displays the Media Access Control address being used by the LAN port of the router IP Address This field displays the IP address being used by the Local LAN port of the router The default is 192 168 0 1 DHCP
9. connection you will be prompted to check the physical connection between your router and the cable or DSL line d The Setup Smart Wizard will report the type of connection it finds The options are e Connections which require a login using protocols such as PPPoE PPTP Telstra or Bigpond broadband connections e Connections which use dynamic IP address assignment e Connections which use fixed IP address assignment The procedures for filling in the configuration menu for each type of connection follow below PPPoE Smart Wizard Detected Option If the Setup Smart Wizard discovers that your ISP uses PPPoE you will see this menu PPPoE Account Name Domain Name Login Password Idle Timeout 5 Domain Name Server DNS Address Get automatically from ISP C Use these DNS servers Primary DNS Secondary DNS Apply Cancel Test Figure 2 7 Setup Smart Wizard menu for PPPoE accounts e Enter the Account Name Domain Name Login and Password as provided by your ISP These fields are case sensitive The router will try to discover the domain automatically if you leave the Domain Name blank Otherwise you may need to enter it manually 2 8 Connecting the Router to the Internet Reference Manual for Cable DSL Wireless Router WGR614 e To change the login timeout enter a new value in minutes This determines how long the router keeps the Internet connection active after there is no Internet act
10. from one of several Network Time Servers on the Internet In order to localize the time for your log entries you must specify your Time Zone Time Zone Select your local time zone This setting will be used for the blocking schedule and for time stamping log entries Daylight Savings Time Check this box if your time zone is currently under daylight savings time Note If your region uses Daylight Savings Time you must manually select Adjust for Daylight Savings Time on the first day of Daylight Savings Time and unselect it at the end Enabling Daylight Savings Time will cause one hour to be added to the standard time 4 8 Content Filtering Chapter 5 Maintenance This chapter describes how to use the maintenance features of your Model WGR614 Cable DSL Wireless Router These features can be found by clicking on the Maintenance heading in the Main Menu of the browser interface Viewing Router Status Information The Router Status menu provides a limited amount of status and usage information From the Main Menu of the browser interface click on Maintenance then select System Status to view the System Status screen shown below Router Status Account Name WIGRB14 Firmware Version Version 1 0 Release 15 Internet Port MAC Address 00 09 5b 20 67 9f IP Address 67 117 94 53 DHCP Fixed IP Address IP Subnet Mask 255 255 255 0 Domain Name Server 64 115 0 9 LAN Port MAC Address 00 09 5b 20 67 9e IP Address 192 168 0 1 DHCP On
11. 25 Gateway IP Address o o Domain Name Server DNS Address Get Automatically From ISP Use These DNS Servers Primary DNS Secondary DNS Router MAC Address Use Default MAC Address Use Computer MAC Address Use This MAC Address Apply Cancel Test ISP Does Require Login Basic Setting Does Your pternet Connection Require A Login Yes No Internet Service Provider Login Password Service Name If Required idle Timeout In Minutes Domain Name Server DNS Address Get Automatically From ISP Use These DNS Servers Primary DNS Secondary DNS aeey Cerca Fea Figure 2 11 Browser based configuration Basic Settings menus Connecting the Router to the Internet Reference Manual for Cable DSL Wireless Router WGR614 You can manually configure the router using the Basic Settings menu shown in Figure 2 11 using these steps 1 Click the Basic Settings link on the Setup menu 2 If your Internet connection does not require a login click No at the top of the Basic Settings menu and fill in the settings according to the instructions below If your Internet connection does require a login click Yes and skip to step 3 a Enter your Account Name may also be called Host Name and Domain Name These parameters may be necessary to access your ISP s services such as mail or news servers b Internet IP Address If your ISP has assigned you a permanent fixed s
12. Auto Uplink will accommodate either type of cable to make the right connection Extensive Protocol Support The WGR614 router supports the Transmission Control Protocol Internet Protocol TCP IP and Routing Information Protocol RIP For further information about TCP IP refer to Appendix B Network Routing Firewall and Basics e IP Address Sharing by NAT The WGR614 router allows several networked PCs to share an Internet account using only a single IP address which may be statically or dynamically assigned by your Internet service provider ISP This technique known as NAT allows the use of an inexpensive single user ISP account Introduction 1 3 Reference Manual for Cable DSL Wireless Router WGR614 e Automatic Configuration of Attached PCs by DHCP The WGR614 router dynamically assigns network configuration information including IP gateway and domain name server DNS addresses to attached PCs on the LAN using the Dynamic Host Configuration Protocol DHCP This feature greatly simplifies configuration of PCs on your local network e DNS Proxy When DHCP is enabled and no DNS addresses are specified the router provides its own address as a DNS server to the attached PCs The router obtains actual DNS addresses from the ISP during connection setup and forwards DNS requests from the LAN e PPP over Ethernet PPPoE PPPoE 1s a protocol for connecting remote hosts to the Internet over a DSL connection by simulating a dial
13. B SS ee Network Node Class C SSS ee Network Node Figure 7 1 Three Main Address Classes The five address classes are e Class A Class A addresses can have up to 16 777 214 hosts on a single network They use an eight bit network number and a 24 bit node number Class A addresses are in this range 1 x x x to 126 X X X e Class B Class B addresses can have up to 65 354 hosts on a network A Class B address uses a 16 bit network number and a 16 bit node number Class B addresses are in this range 128 1 x x to 191 254 x xX Network Routing Firewall and Basics B 3 Reference Manual for Cable DSL Wireless Router WGR614 e Class C Class C addresses can have 254 hosts on a network Class C addresses use 24 bits for the network address and eight bits for the node They are in this range LIZ 60g Nee TO LAB oF a a e Class D Class D addresses are used for multicasts messages sent to many hosts Class D addresses are in this range 2h sie TO TOAS R LOI LIRL OO e Class E Class E addresses are for experimental use This addressing structure allows IP addresses to uniquely identify each physical network and each node on each physical network For each unique value of the network portion of the address the base address of the range host address of all zeros is known as the network address and is not usually assigned to a host Also the top address of the range host address of all ones is not assigned but is used as
14. CD EF 12 34 56 78 90 is a 128 bit WEP Key Note Typically 802 11 access points can store up to four 128 bit WEP Keys but some 802 11 client adapters can only store one Therefore make sure that your 802 11 access and client adapters configurations match D 6 Wireless Networking Basics Reference Manual for Cable DSL Wireless Router WGR614 WEP Configuration Options The WEP settings must match on all 802 11 devices that are within the same wireless network as identified by the SSID In general if your mobile clients will roam between access points then all of the 802 11 access points and all of the 802 11 client adapters on the network must have the same WEP settings Note Whatever keys you enter for an AP you must also enter the same keys for the client adapter in the same order In other words WEP key 1 on the AP must match WEP key 1 on the client adapter WEP key 2 on the AP must match WEP key 2 on the client adapter etc Note The AP and the client adapters can have different default WEP Keys as long as the keys are in the same order In other words the AP can use WEP key 2 as its default key to transmit while a client adapter can use WEP key 3 as its default key to transmit The two devices will communicate as long as the AP s WEP key 2 is the same as the client s WEP key 2 and the AP s WEP key 3 is the same as the client s WEP key 3 Wireless Channels IEEE 802 11 wireless nodes communicate with each other using r
15. Client for Microsoft Networks If you need to install a new adapter follow these steps a Click the Add button b Select Adapter and then click Add c Select the manufacturer and model of your Ethernet adapter and then click OK If you need TCP IP a Click the Add button b Select Protocol and then click Add c Select Microsoft d Select TCP IP and then click OK Preparing Your Network C 3 Reference Manual for Cable DSL Wireless Router WGR614 If you need Client for Microsoft Networks a b c d Click the Add button Select Client and then click Add Select Microsoft Select Client for Microsoft Networks and then click OK 3 Restart your PC for the changes to take effect Enabling DHCP to Automatically Configure TCP IP Settings After the TCP IP protocol components are installed each PC must be assigned specific information about itself and resources that are available on its network The simplest way to configure this information is to allow the PC to obtain the information from a DHCP server in the network You will find there are many similarities in the procedures for different Windows systems when using DHCP to configure TCP IP The following steps will walk you through the configuration process for each of these ons of Windows versi Locate your Network Neighborhood icon If the Network Neighborhood icon is on the Windows desktop position your mouse pointer over it and
16. IANA at www iana org The Internet Protocol IP uses a 32 bit address structure The address is usually written in dot notation also called dotted decimal notation in which each group of eight bits is written in decimal form separated by decimal points For example the following binary address LLOOOOLL OO0LOO0L0 OO 001 00 O00 001 dL is normally written as URS ko ree stare ie ae B 2 Network Routing Firewall and Basics Reference Manual for Cable DSL Wireless Router WGR614 The latter version is easier to remember and easier to enter into your computer In addition the 32 bits of the address are subdivided into two parts The first part of the address identifies the network and the second part identifies the host node or station on the network The dividing point may vary depending on the address range and the application There are five standard classes of IP addresses These address classes have different ways of determining the network and host sections of the address allowing for different numbers of hosts on a network Each address type begins with a unique bit pattern which is used by the TCP IP software to identify the address class After the address class has been determined the software can correctly identify the host section of the address The follow figure shows the three main address classes including network and host sections of the address for each address type Class A E S l Network Node Class
17. IP address is between 192 168 0 2 and 192 168 0 254 e The subnet mask is 255 255 255 0 Preparing Your Network C 15 Reference Manual for Cable DSL Wireless Router WGR614 e The default gateway is 192 168 0 1 4 Type exit Configuring the Macintosh for TCP IP Networking Beginning with Macintosh Operating System 7 TCP IP is already installed on the Macintosh On each networked Macintosh you will need to configure TCP IP to use DHCP MacOS 8 6 or 9 x 1 From the Apple menu select Control Panels then TCP IP The TCP IP Control Panel opens TCP IP Connect via Ethernet Setup Configure Using DHCP Server IP Address lt willbe supplied by server gt Subnet mask lt will be supplied by server gt Router address lt will be supplied by server gt Search domains Name server addr lt will be supplied by server gt 2 From the Connect via box select your Macintosh s Ethernet interface 3 From the Configure box select Using DHCP Server You can leave the DHCP Client ID box empty 4 Close the TCP IP Control Panel a Repeat this for each Macintosh on your network MacOS X 1 From the Apple menu choose System Preferences then Network C 16 Preparing Your Network Reference Manual for Cable DSL Wireless Router WGR614 2 If not already selected select Built in Ethernet in the Configure list 3 Ifnot already selected Select
18. Identifies if the router s built in DHCP server is active for the LAN attached devices IP Subnet Mask This field displays the IP Subnet Mask being used by the Local LAN port of the router The default is 255 255 255 0 Wireless Port These parameters apply to the Wireless port of the router MAC Address This field displays the Media Access Control address being used by the Wireless port of the router Name SSID This field displays the wireless network name SSID being used by the wireless port of the router The default is Wireless Region This field displays the geographic region where the router being used It may be illegal to use the wireless features of the router in some parts of the world Channel Identifies if the channel the wireless port is using See Wireless Channels on page D 7 for the frequencies used on each channel 5 2 Maintenance Reference Manual for Cable DSL Wireless Router WGR614 Click on the Show WAN Status button to display the WAN status as shown below Connection Time 0 18 29 Connection Method Dynamic IP IP Address 0 0 0 0 Network Mask 0 0 0 0 Default Gateway 0 0 0 0 Figure 5 2 Connection Status screen This screen shows the following statistics Table 5 1 Connection Status Fields Connection Time The length of time the router has been connected to your Internet service provider s network Connection Method The method used to obtain an IP address from your Internet
19. Using DHCP in the TCP IP tab 4 Click Save Verifying TCP IP Properties for Macintosh Computers After your Macintosh is configured and has rebooted you can check the TCP IP configuration by returning to the TCP IP Control Panel From the Apple menu select Control Panels then TCP IP TCP IP Connect via DHCP Client ID Name server addr Configure IP Address Subnet mask Router address Using DHCP Server 192 168 0 2 255 255 255 0 192 168 0 1 192 168 0 1 Search domains The panel is updated to show your settings which should match the values below if you are using the default TCP IP settings that NETGEAR recommends e The IP Address is between 192 168 0 2 and 192 168 0 254 e The Subnet mask is 255 255 255 0 e The Router address is 192 168 0 1 If you do not see these values you may need to restart your Macintosh or you may need to switch the Configure setting to a different option then back again to Using DHCP Server Preparing Your Network Reference Manual for Cable DSL Wireless Router WGR614 Verifying the Readiness of Your Internet Account For broadband access to the Internet you need to contract with an Internet service provider ISP for a single user Internet access account using a cable modem or DSL modem This modem must be a separate physical box not a card and must provide an Ethernet port intended for connection
20. always on connection by simulating a dial up connection PPPoE PPPoE PPP over Ethernet is a protocol for connecting remote hosts to the Internet over an always on connection by simulating a dial up connection Glossary 7 Reference Manual for Cable DSL Wireless Router WGR614 PPP over ATM PPPoA PPP over ATM is a protocol for connecting remote hosts to the Internet over an always on connection by simulating a dial up connection PPP over Ethernet PPPoE PPP over Ethernet is a protocol for connecting remote hosts to the Internet over an always on connection by simulating a dial up connection PPTP Point to Point Tunneling Protocol A method for establishing a virtual private network VPN by embedding Microsoft s network protocol into Internet packets PSTN Public Switched Telephone Network Public Key Infrastructure PKIX The most widely used standard for defining digital certificates X 509 is actually an ITU Recommendation which means that it has not yet been officially defined or approved As a result companies have implemented the standard in different ways For example both Netscape and Microsoft use X 509 certificates to implement SSL in their Web servers and browsers But an X 509 Certificate generated by Netscape may not be readable by Microsoft products and vice versa RADIUS Short for Remote Authentication Dial In User Service RADIUS is an authentication system Using RADIUS you must enter your user name and pa
21. an address scheme for the network by using different subnets for other geographical locations in the network or for other departments in the organization Network Routing Firewall and Basics B 5 Reference Manual for Cable DSL Wireless Router WGR614 Although the preceding example uses the entire third octet for a subnet address note that you are not restricted to octet boundaries in subnetting To create more network numbers you need only shift some bits from the host address to the network address For instance to partition a Class C network number 192 68 135 0 into two you shift one bit from the host address to the network address The new netmask or subnet mask is 255 255 255 128 The first subnet has network number 192 68 135 0 with hosts 192 68 135 1 to 129 68 135 126 and the second subnet has network number 192 68 135 128 with hosts 192 68 135 129 to 192 68 135 254 gt Note The number 192 68 135 127 is not assigned because it is the broadcast address of the first subnet The number 192 68 135 128 is not assigned because it is the network address of the second subnet The following table lists the additional subnet mask bits in dotted decimal notation To use the table write down the original class netmask and replace the 0 value octets with the dotted decimal value of the additional subnet bits For example to partition your Class C network with subnet mask 255 255 255 0 into 16 subnets 4 bits the new subnet mask become
22. both the Shared Key and WEP encryption settings Be sure to set your wireless adapter according to the authentication scheme you choose for the WGR614 router Please refer to Authentication and WEP on page D 3 for a full explanation of each of these options as defined by the IEEE 802 11 wireless communication standard Encryption Strength Choices Choose the encryption strength from the drop down list Please refer to Overview of WEP Parameters on page D 5 for a full explanation of each of these options as defined by the IEEE 802 11 wireless communication standard Wireless Configuration 3 5 Reference Manual for Cable DSL Wireless Router WGR614 e Disable No encryption will be applied This setting is useful for troubleshooting your wireless connection but leaves your wireless data fully exposed e 64 bit or 128 bit WEP When 64 bit or 128 bit is selected WEP encryption will be applied If WEP is enabled you can manually or automatically program the four data encryption keys These values must be identical on all PCs and access points in your network There are two methods for creating WEP encryption keys e Passphrase Enter a word or group of printable characters in the Passphrase box and click the Generate button These characters are case sensitive e Manual For 64 bit WEP enter 10 hexadecimal digits any combination of 0 9 a f or A F For 128 bit WEP enter 26 hexadecimal digits any combination of 0 9 a f
23. have located it click the Restore button to send the file to the router The router will then reboot automatically Maintenance 5 7 Reference Manual for Cable DSL Wireless Router WGR614 Erasing the Configuration It is sometimes desirable to restore the router to the factory default settings This can be done by using the Erase function which will restore all factory settings After an erase the router s password will be password the LAN IP address will be 192 168 0 1 and the router s DHCP client will be enabled To erase the configuration click the Erase button To restore the factory default configuration settings without knowing the login password or IP address you must use the Default Reset button on the rear panel of the router See Restoring the Default Configuration and Password on page 7 7 Changing the Administrator Password The default password for the router s Web Configuration Manager is password Netgear recommends that you change this password to a more secure password From the Main Menu of the browser interface under the Maintenance heading select Set Password to bring up the menu shown below Change Password Old password New password Repeat new password Apply Cancel Figure 5 7 Set Password menu To change the password first enter the old password and then enter the new password twice Click Apply 5 8 Maintenance Chapter 6 Advanced Configuration This chapter describes h
24. is a common alternate for HTTP 4 Click Apply to have your changes take effect Note When accessing your router from the Internet you will type your router s WAN IP address into your browser s Address in IE or Location in Netscape box followed by a colon and the custom port number For example if your external address is 134 177 0 123 and you use port number 8080 you must enter ttp 134 177 0 123 S080 in your browser Using Universal Plug and Play UPnP Universal Plug and Play UPnP helps devices such as Internet appliances and computers access the network and connect to other devices as needed UPnP devices can automatically discover the services from other registered UPnP devices on the network Turn UPnP On Advertisement Period fin minutes Advertisement Time To Live in hops UPnP Portmap Table Active Protocol int Port Ext Port IP Address Yes TCP 9198 11913 192 168 0 2 Yes UDP 5339 7102 192 168 0 2 Apply Cancel Refresh Figure 6 6 UPnP Menu Advanced Configuration 6 13 Reference Manual for Cable DSL Wireless Router WGR614 Turn UPnP On UPnP can be enabled or disabled for automatic device configuration The default setting for UPnP is enabled If disabled the router will not allow any device to automatically control the resources such as port forwarding mapping of the router Advertisement Period The Advertisement Period is how often the router will broadcast its UPnP information
25. make any further changes 2 Click the Wireless Settings link in the main menu of the WGR614 firewall Wireless Configuration 3 9 Reference Manual for Cable DSL Wireless Router WGR614 3 From the Wireless Settings menu click the Setup Access List button to display the Wireless Access menu shown below Wireless Card Access List setup Access List Wireless Card Access List Turn Access Control On Device Name Mac Address Add Edit Delete Apply Cancel Wireless Card Access Setup Available Wireless Cards Device Name MAC Add ess alsallette xp 00 30 ab 11 ed 84 Wireless Card Entry Device Name alsallettexpe MAC Address 00 30 8a6 11 ed 54 Add Cancel Refresh Figure 3 5 Wireless Card Access List Setup 4 Click Add to add a wireless device to the wireless access control list The Available Wireless Cards list displays 5 Click the Turn Access Control On check box 6 Then either select from the list of available wireless cards the WGR614 has found in your area or enter the MAC address and device name for a device you plan to use You can usually find the MAC address printed on the wireless adapter Note You can copy and paste the MAC addresses from the firewall s Attached Devices menu into the MAC Address box of this menu To do this configure each wireless PC to obtain a wireless link to the firewall The PC should then appear in the Attached Devices menu 3 10 Wireless Config
26. or A F These values are not case sensitive Default Factory Settings When you first receive your WGR614 the default factory settings are shown below You can restore these defaults with the Factory Default Restore button on the rear panel After you install the WGR614 router use the procedures below to customize any of the settings to better meet your networking needs Wireless Access List MAC Filtering eR Gham SSS WEF 3 6 Wireless Configuration Reference Manual for Cable DSL Wireless Router WGR614 Before You Change the SSID and WEP Settings Before customizing your wireless settings print this form and record the following information If your working with an existing wireless network the person who set up or is responsible for the network will be able to provide this information Otherwise you will choose the settings for your wireless network Either way record the settings for your wireless network in the spaces below Network Name SSID The Service Set Identification SSID called the wireless network name in Windows XP identifies the wireless network You may use up to 32 alphanumeric characters Record your customized SSID on the line below Name SSID Note The SSID in the router is the SSID you configure in the wireless adapter card For the access point and wireless nodes to communicate with each other all must be configured with the same SSID Authentication The authentication setting Open Sy
27. power to the router the following sequence of events should occur 1 When power is first applied verify that the Power LED is on 2 After approximately 10 seconds verify that a The Test LED is not lit b The LAN port LEDs are lit for any local ports that are connected c The WAN port LED is lit If a port s LED is lit a link has been established to the connected device If a LAN port is connected to a 100 Mbps device verify that the port s LED is green If the port is 10 Mbps the LED will be amber If any of these conditions does not occur refer to the appropriate following section Power LED Not On If the Power and other LEDs are off when your router is turned on e Make sure that the power cord is properly connected to your router and that the power supply adapter is properly connected to a functioning power outlet e Check that you are using the 12 V DC 800mA power adapter supplied by NETGEAR for this product If the error persists you have a hardware problem and should contact technical support Troubleshooting 7 1 Reference Manual for Cable DSL Wireless Router WGR614 LEDs Never Turn Off When the router is turned on the LEDs turns on for about 10 seconds and then turn off If all the LEDs stay on there is a fault within the router If all LEDs are still on one minute after power up e Cycle the power to see if the router recovers e Clear the router s configuration to factory defaults This wi
28. service provider IP Address The WAN Internet IP Address assigned to the router Network Mask The WAN Internet Subnet Mask assigned to the router Default Gateway The WAN Internet default gateway the router communicates with WAN Status action buttons are described in Table 5 2 Table 5 2 Show WAN Status action buttons w a S i Click the Renew button to renew the DHCP lease Maintenance 5 3 Reference Manual for Cable DSL Wireless Router WGR614 Click on the Show Statistics button to display router usage statistics as shown below System Up Time 0 13 27 Port Status TxPkts RxPkts Collisions TX Bis Rx Bis Up Time WAN 1OMIHalf 52 0 0 115 0 0 13 22 LAN 1 OOMIF ull 959 T20 0 1921 T20 0 13 22 WLAN 11M g59 T20 0 1921 T20 0 13 23 Set Interval otop Poll Interval secs Figure 5 3 Router Statistics screen This screen shows the following statistics Table 5 1 Port Status TxPkts RxPkts Collisions Tx B s Rx B s Up Time Up Time Poll Interval Router Statistics Fields The statistics for the WAN Internet and LAN local ports For each port the screen displays The link status of the port The number of packets transmitted on this port since reset or manual clear The number of packets received on this port since reset or manual clear The number of collisions on this port since reset or manual clear The current transmission outbound bandwidth used on the WAN and
29. spectrum at 2 5GHz 802 11 g is backwards compatible with 802 11b Glossary 1 Reference Manual for Cable DSL Wireless Router WGR614 ADSL Short for asymmetric digital subscriber line a technology that allows data to be sent over existing copper telephone lines at data rates of from 1 5 to 9 Mbps when receiving data known as the downstream rate and from 16 to 640 Kbps when sending data known as the upstream rate ADSL requires a special ADSL modem ADSL is growing in popularity as more areas around the world gain access AES Advanced Encryption Standard a symmetric 128 bit block data encryption technique It is an iterated block cipher with a variable block length and a variable key length The block length and the key length can be independently specified to 128 192 or 256 bits The U S government adopted the algorithm as its encryption technique in October 2000 replacing the DES encryption it used AES works at multiple network layers simultaneously AH Authentication Header ARP Address Resolution Protocol a TCP IP protocol used to convert an IP address into a physical address called a DLC address such as an Ethernet address A host wishing to obtain a physical address broadcasts an ARP request onto the TCP IP network The host on the network that has the IP address in the request then replies with its physical hardware address There is also Reverse ARP RARP which can be used by a host to discover its IP address In th
30. to be Usually this means that the CA has an arrangement with a financial institution such as a credit card company which provides it with information to confirm an individual s claimed identity CAs are a critical component in data security and electronic commerce because they guarantee that the two parties exchanging information are really who they claim to be CRL Certificate Revocation List Each Certificate Authority CA maintains a revoked certificates list Denial of Service attack DoS A hacker attack designed to prevent your computer or network from operating or communicating DHCP An Ethernet protocol specifying how a centralized DHCP server can assign network configuration information to multiple DHCP clients The assigned information includes IP addresses DNS addresses and gateway router addresses DMZ A Demilitarized Zone is used by a company that wants to host its own Internet services without sacrificing unauthorized access to its private network The DMZ sits between the Internet and an internal network s line of defense usually some combination of firewalls and bastion hosts Typically the DMZ contains devices accessible to Internet traffic such as Web HTTP servers FTP servers SMTP e mail servers and DNS servers DNS Short for Domain Name System or Service an Internet service that translates domain names into IP addresses Because domain names are alphabetic they re easier to remember The Internet ho
31. up connection This feature eliminates the need to run a login program such as Entersys or WinPOET on your PC Easy Installation and Management You can install configure and operate the Model WGR614 Cable DSL Wireless Router within minutes after connecting it to the network The following features simplify installation and management tasks e Browser based management Browser based configuration allows you to easily configure your router from almost any type of personal computer such as Windows Macintosh or Linux A user friendly Setup Wizard is provided and online help documentation is built into the browser based Web Management Interface e Smart Wizard The WGR614 router Smart Wizard automatically senses the type of Internet connection asking you only for the information required for your type of ISP account e Visual monitoring The WGR614 router s front panel LEDs provide an easy way to monitor its status and activity Maintenance and Support NETGEAR offers the following features to help you maximize your use of the WGR614 router e Flash memory for firmware upgrade e Free technical support seven days a week twenty four hours a day 1 4 Introduction Reference Manual for Cable DSL Wireless Router WGR614 Package Contents The product package should contain the following items Model WGR614 Cable DSL Wireless Router AC power adapter Category 5 CATS Ethernet cable Model WGR614 Resource CD including
32. which 1s a special cable in which the transmit and receive pairs are exchanged at one of the two cable connectors Crossover cables are often unmarked as such and must be identified by comparing the two connectors Since the cable connectors are clear plastic it is easy to place them side by side and view the order of the wire colors on each On a straight through cable the color order will be the same on both connectors On a crossover cable the orange and blue pairs will be exchanged from one connector to the other B 12 Network Routing Firewall and Basics Reference Manual for Cable DSL Wireless Router WGR614 The WGR614 router incorporates Auto Uplink technology also called MDI MDIX Each LOCAL Ethernet port will automatically sense whether the Ethernet cable plugged into the port should have a normal connection e g connecting to a PC or an uplink connection e g connecting to a router switch or hub That port will then configure itself to the correct configuration This feature also eliminates the need to worry about crossover cables as Auto Uplink will accommodate either type of cable to make the right connection Cable Quality A twisted pair Ethernet network operating at 10 Mbits second LOBASE T will often tolerate low quality cables but at 100 Mbits second LOBASE Tx the cable must be rated as Category 5 or Cat 5 or Cat V by the Electronic Industry Association EIA This rating will be printed on the cable jacke
33. zeros Subnet Addressing By looking at the addressing structures you can see that even with a Class C address there are a large number of hosts per network Such a structure is an inefficient use of addresses if each end of a routed link requires a different network number It is unlikely that the smaller office LANs would have that many devices You can resolve this problem by using a technique known as subnet addressing Subnet addressing allows us to split one IP network address into smaller multiple physical networks known as subnetworks Some of the node numbers are used as a subnet number instead A Class B address gives us 16 bits of node numbers translating to 64 000 nodes Most organizations do not use 64 000 nodes so there are free bits that can be reassigned Subnet addressing makes use of those bits that are free as shown below Class B SSS LLU Network Subnet Node Figure 7 2 Example of Subnetting a Class B Address A Class B address can be effectively translated into multiple Class C addresses For example the IP address of 172 16 0 0 is assigned but node addresses are limited to 255 maximum allowing eight extra bits to use as a subnet address The IP address of 172 16 97 235 would be interpreted as IP network address 172 16 subnet number 97 and node number 235 In addition to extending the number of addresses available subnet addressing provides other benefits Subnet addressing allows a network manager to construct
34. 1 6 Introduction Reference Manual for Cable DSL Wireless Router WGR614 The Router s Rear Panel The rear panel of the Model RP614 router contains the port connections listed below Figure 1 2 WGR614 Rear Panel Viewed from left to right the rear panel contains the following features AC power adapter outlet Four Local LAN 10 100 Mbps Ethernet ports for connecting the router to the local PCs Internet WAN Ethernet port for connecting the router to a cable or DSL modem Factory Default Reset push button Wireless antenna Introduction 1 7 Reference Manual for Cable DSL Wireless Router WGR614 1 8 Introduction Chapter 2 Connecting the Router to the Internet This chapter describes how to set up the router on your local area network LAN and connect to the Internet You will find out how to configure your Model WGR614 Cable DSL Wireless Router for Internet access using the Setup Wizard or how to manually configure your Internet connection What You Will Need Before You Begin You need to prepare these three things before you begin 1 Have active Internet service such as that provided by an cable or DSL broadband account 2 Locate the Internet Service Provider ISP configuration information for your DSL account 3 Connect the router to a cable or DSL modem and a computer as explained below Cabling and Computer Hardware Requirements To use the WGR614 router on your network each computer must have an installed Eth
35. 2 ey wea B 1 EE A ETE B 2 B 2 Contents Vil Subnet Addressing Private IP Addresses cccceceeeeeees PEPE EE AE E E ETE EET EEE LOA Related Documents Single IP Address Operation Using NAT ooann PETEA EETA ETE EAA dena B 8 MAC Addresses and Address Resolution Protocol essssssseeeeeeeressseerrrerrrrenreeses B 9 Domani Name DONET ccna tes aneenanpapeaisananicppraunasnexu nancies marudanedeatiayeouce ts To IP Configuration by DHCP ceeeceeeeeeeeeees iepiasigereeiweiorassiieetat EA B 10 Internet Security and Firewalls spocccvisccccidicssirenseciesdvneadnivassnsbanscrascrnetiavesotaststesressiacromce B 10 AaB a FONI irena i e a Stat ful Packet INSPECUON ssciccsivcisratevitciesnertscenssenseverasiesseieabenedesisaesienesisersiausens O71 Denial of Service AWaCK dascinniiemmviencnnunsamninmeniniemeitinenmiumennaent Se ee p e A E A E PE lee le Uplink Switches Crossover Cables and MDI MDIX Switching pierre le Be NE seseei es invari eincris iret end iaa ence er kG Appendix C Preparing Your Network Preparing Your Computers for TCP IP Networking ccccccccccceecceeeeeeseesssseseesssssssssees O71 Configuring Windows 95 98 and Me for TCP IP Networking c sseeeeesseeeeeeeeeees C2 Install or Verify Windows Networking Components c s0sseeeeeseeeeeeasseeessateees C2 Enabling DHCP to Automatically Configure TCP IP Settings E OF Selec
36. CP to form TCP IP LAN A communications network serving users within a limited area such as one floor of a building LDAP A set of protocols for accessing information directories Lightweight Directory Access Protocol LDAP A set of protocols for accessing information directories LDAP is based on the standards contained within the X 500 standard but is significantly simpler And unlike X 500 LDAP supports TCP IP which is necessary for any type of Internet access Because it s a simpler version of X 500 LDAP is sometimes called X 500 lite local area network LAN A communications network serving users within a limited area such as one floor of a building Glossary 5 Reference Manual for Cable DSL Wireless Router WGR614 A LAN typically connects multiple personal computers and shared network devices such as storage and printers Although many technologies exist to implement a LAN Ethernet is the most common for connecting personal computers MAC address The Media Access Control address is a unique 48 bit hardware address assigned to every network interface card Usually written in the form 01 23 45 67 89 ab Mbps Megabits per second MD5 MDS creates digital signatures using a one way hash function meaning that it takes a message and converts it into a fixed string of digits also called a message digest When using a one way hash function one can compare a calculated message digest against the message digest that is d
37. DOM aic css eciticeyiasiicacesedlatatucsousiieisisilateie ma cisahticiets nets 1 4 te Ie cis ca atand kepivainnel T EEA ean aad 1 5 1e Ron S FOM FANS ariei aeai etek ra a Eai 1 6 Th RONO S FEI FONOL ssrin dania ARA SEANA RA DRA i a ih 1 7 Chapter 2 Connecting the Router to the Internet What You Will Need Before You Begin cccccccececesecceeeseeeceeecueeaueeaueesaeesaueceueeneeenas 2 1 Cabling and Computer Hardware Requirements cccccccseceeeeeeeeeeeeeeaeeseeeeeeees 2 1 Computer Network Configuration Requirements ccccceecceeeceeceeeeeeeeseeeseeesaees 2 2 Internet Configuration Requirements cccceseccescceeseecseeceseeceaseenseeeseeeeneneesens 2 2 Where Do Get the Internet Configuration Parameters ccccccseeceeeeeeeeeeeeeees 2 2 Record Your Internet Connection Information cccccccccceecceeeceeeeseeeseeeseesseeeaaes 2 3 OTR Mhe WORD TH arniran ENE E cna onan 2 4 CONCE ME ROUT oria E A A 2 4 PPPoE Smart Wizard Detected Option ccccceccseecceeeceeeecseesaeeceeeesaeecaeeseeseaes 2 8 Telstra Bigpond Cable Smart Wizard Detected Option ccc ceccecceeeeeeeeeeeeeeneees 2 9 Dynamic IP Smart Wizard Detected Option cc cceecc cece eeeeeeeeeeeeaeeeaeeeseeeseeees 2 10 Fixed IP Account Smart Wizard Detected Option cccecccceececeeeeceeeeeeeeeeeeeees 2 11 Contents V How to Manually Configure Your Internet CONNECTION
38. LAN ports The current reception inbound bandwidth used on the WAN and LAN ports The amount of time since the router was last restarted The time elapsed since this port acquired the link Specifies the intervals at which the statistics are updated in this window Click on Stop to freeze the display Show Statistics action buttons are described in Table 5 2 Table 5 2 Set Interval Stop Show Statistics action buttons Description Enter a time and click the button to set the polling frequency Click the Stop button to freeze the polling information Maintenance Reference Manual for Cable DSL Wireless Router WGR614 Viewing a List of Attached Devices The Attached Devices menu contains a table of all IP devices that the router has discovered on the local network From the Main Menu of the browser interface under the Maintenance heading select Attached Devices to view the table shown below Attached Devices igi 1p Address Device Name _ MAC Address 1 192 168 0 2 emachine 00 48 54 8d 97 d3 Refresh Figure 5 4 Attached Devices menu For each device the table shows the IP address NetBIOS Host Name if available and Ethernet MAC address Note that if the router is rebooted the table data is lost until the router rediscovers the devices To force the router to look for attached devices click the Refresh button Upgrading the Router Software The routing software of the WGR614 r
39. Logs of Web Access or Attempted Web Access The log is a detailed record of what websites you have accessed or attempted to access Up to 128 entries are stored in the log Log entries will only appear when keyword blocking is enabled and no log entries will be made for the Trusted User An example is shown below O Fri 15 Feb 2002 16 36 14 source 192 165 0 2 BLOCK www yahoo com 1 Fri 15 Feb 2002 16 34 07 source 192 165 0 2 ALLOW ar atwola com 2 Fri 15 Feb 2002 16 34 06 Source 192 168 0 2 ALLOW www cnn com 3 Fri 15 Feb 2002 16 34 05 source 192 1665 0 2 ALLOW toolbar netscape com 4 Fri 15 Feb 2002 16 34 03 source 192 1668 0 2 ALLOW i cnn net S Fri 15 Feb 2002 16 34 02 Source 192 168 0 2 ALLOW www cnn com 6 Fri 15 Feb 2002 16 33 03 Source 192 166 0 2 ALLOW i cnn net Retresh Clear Log send Log Figure 4 5 Logs menu Log entries are described in Table 4 1 Table 4 1 Log entry descriptions Description Number The index number of the content filter log entries 128 entries are available numbered from 0 to 127 The log will keep the record of the latest 128 entries The date and time the log entry was recorded The IP address of the initiating device for this log entry This field displays whether the access was blocked or allowed The name or IP address of the website or newsgroup visited or attempted to access 4 6 Content Filtering Reference Manual for Cable DSL Wireless Router WGR614 Log actio
40. NetBIOS The Network Basic Input Output System is an application programming interface API for sharing services and information on local area networks LANs Provides for communication between stations of a network where each station is given a name These names are alphanumeric names up to 16 characters in length Network Address Translation NAT A technique by which several hosts share a single IP address for access to the Internet NIC Network Interface Card An adapter in a computer which provides connectivity to a network NID Network Interface Device The point of demarcation where the telephone line comes into the house packet A block of information sent over a network A packet typically contains a source and destination network address some protocol and length information a block of data and a checksum Perfect Forward Secrecy Perfect Forward Secrecy PFS provides additional security by means of a Diffie Hellman shared secret value With PFS if one key is compromised previous and subsequent keys are secure because they are not derived from previous keys PKIX PKIX The most widely used standard for defining digital certificates Point to Point Protocol PPP A protocol allowing a computer using TCP IP to connect directly to the Internet PPP A protocol allowing a computer using TCP IP to connect directly to the Internet PPPoA PPPoA PPP over ATM is a protocol for connecting remote hosts to the Internet over an
41. P Account Name if Required Domain Name If Required Domain Name Server DNS Address Get Automatically From ISP Use These DNS Servers Primary DNS Secondary DNS Apply Cancel Test Figure 2 9 Setup Smart Wizard menu for Dynamic IP address accounts 2 10 Connecting the Router to the Internet Reference Manual for Cable DSL Wireless Router WGR614 e Enter your Account Name may also be called Host Name and Domain Name These parameters may be necessary to access your ISP s services such as mail or news servers If you leave the Domain Name field blank the router try to discover the domain Otherwise you may need to enter it manually e Ifyou know that your ISP does not automatically transmit DNS addresses to the router during login select Use these DNS servers and enter the IP address of your ISP s Primary DNS Server If a Secondary DNS Server address is available enter it also Note If you enter DNS addresses restart your computers so that these settings take effect e Click Apply to save your settings e Click Test to test your Internet connection If the NETGEAR website does not appear within one minute refer to Chapter 7 Troubleshooting Fixed IP Account Smart Wizard Detected Option If the Setup Wizard discovers that your ISP uses Fixed IP assignment you will see this menu Fixed IP internet IP Address IP Address IP Subnet Mask 13 SEE Gateway I
42. P Address Domain Name Server DNS Address Primary DNS aa ag aa AC Secondary DNS Apply Cancel Test Figure 2 10 Setup Smart Wizard menu for Fixed IP address accounts e Fixed IP is also called Static IP Enter your assigned IP Address Subnet Mask and the IP Address of your ISP s gateway router This information should have been provided to you by your ISP Refer to the configuration parameters from your ISP you recorded in Record Your Internet Connection Information on page 2 3 e Enter the IP address of your ISP s Primary and Secondary DNS Server addresses Note Restart the computers on your network so that these settings take effect e Click Apply to save the settings Connecting the Router to the Internet 2 11 Reference Manual for Cable DSL Wireless Router WGR614 e Click Test to test your Internet connection If the NETGEAR website does not appear within one minute refer to Chapter 7 Troubleshooting How to Manually Configure Your Internet Connection You can manually configure your router using the menu below or you can allow the Setup Wizard to determine your configuration as described in the previous section ISP Does Not Require Login Basic Settings Does Your Intemet Connection Require A Login Account Name If Required Domain Name If Required Internet IP Address Get Dynamically From ISP Use Static IP Address IP Address 0 0 IP Subnet Mask 255 255
43. Reference Manual for Cable DSL Wireless Router WGR614 NETGEAR NETGEAR Inc 4500 Great America Parkway Santa Clara CA 95054 USA SM WGR614NA 1 Version 1 0 March 2003 2003 by NETGEAR Inc All rights reserved Trademarks NETGEAR is a trademark of Netgear Inc Microsoft Windows and Windows NT are registered trademarks of Microsoft Corporation Other brand and product names are registered trademarks or trademarks of their respective holders Statement of Conditions In the interest of improving internal design operational function and or reliability NETGEAR reserves the right to make changes to the products described in this document without notice NETGEAR does not assume any liability that may occur due to the use or application of the product s or circuit layout s described herein Federal Communications Commission FCC Compliance Notice Radio Frequency Notice This equipment has been tested and found to comply with the limits for a Class B digital device pursuant to part 15 of the FCC Rules These limits are designed to provide reasonable protection against harmful interference in a residential installation This equipment generates uses and can radiate radio frequency energy and if not installed and used in accordance with the instructions may cause harmful interference to radio communications However there is no guarantee that interference will not occur in a particular installation If this equipment d
44. Routing Firewall and Basics This chapter provides an overview of IP networks routing and networking Related Publications As you read this document you may be directed to various RFC documents for further information An RFC is a Request For Comment RFC published by the Internet Engineering Task Force IETF an open organization that defines the architecture and operation of the Internet The RFC documents outline and define the standard protocols and procedures for the Internet The documents are listed on the World Wide Web at www ietf org and are mirrored and indexed at many other sites worldwide Basic Router Concepts Large amounts of bandwidth can be provided easily and relatively inexpensively in a local area network LAN However providing high bandwidth between a local network and the Internet can be very expensive Because of this expense Internet access is usually provided by a slower speed wide area network WAN link such as a cable or DSL modem In order to make the best use of the slower WAN link a mechanism must be in place for selecting and transmitting only the data traffic meant for the Internet The function of selecting and forwarding this data is performed by a router Network Routing Firewall and Basics B 1 Reference Manual for Cable DSL Wireless Router WGR614 What is a Router A router is a device that forwards traffic between networks based on network layer information in the data and on routing ta
45. This guide Application Notes and other helpful information WGR614 Cable DSL Wireless Router Installation Guide Registration and Warranty Card Support Information Card If any of the parts are incorrect missing or damaged contact your NETGEAR dealer Keep the carton including the original packing materials in case you need to return the router for repair Introduction 1 5 Reference Manual for Cable DSL Wireless Router WGR614 The Router s Front Panel The front panel of the WGR614 router contains the status LEDs described below in IN I ha A AL UA Sm Figure 1 1 WGR614 Front Panel You can use some of the LEDs to verify connections Viewed from left to right Table 1 1 describes the LEDs on the front panel of the router These LEDs are green when lit Table 1 1 LED Descriptions On Power is supplied to the router W Off Power is not supplied to the router Power n The Internet Wide Area Network port has detected a link with an ar Blink attached device infennet Data is being transmitted or received by the Internet port tra O Indicates that the Wireless port is initialized Wireless On Green The Local LAN port has detected link with a 100 Mbps device Blink Green Data is being transmitted or received at 100 Mbps On Amber The Local port has detected link with a 10 Mbps device Blink Amber Data is being transmitted or received at 10 Mbps Off No link is detected on this port
46. This value can range from 1 to 1440 minutes The default period is 30 minutes Shorter durations will ensure that control points have current device status at the expense of additional network traffic Longer durations may compromise the freshness of the device status but can significantly reduce network traffic Advertisement Time To Live The time to live for the advertisement is measured in hops steps for each UPnP packet sent The time to live hop count is the number of steps a broadcast packet is allowed to propagate for each UPnP advertisement before it disappears The number of hops can range from 1 to 255 The default value for the advertisement time to live is 4 hops which should be fine for most home networks If you notice that some devices are not being updated or reached correctly then it may be necessary to increase this value a little UPnP Portmap Table The UPnP Portmap Table displays the IP address of each UPnP device that is currently accessing the router and which ports Internal and External that device has opened The UPnP Portmap Table also displays what type of port is opened and if that port is still active for each IP address 6 14 Advanced Configuration Chapter 7 Troubleshooting This chapter gives information about troubleshooting your Model WGR614 Cable DSL Wireless Router After each problem description instructions are provided to help you diagnose and solve the problem Basic Functioning After you turn on
47. a or an adjacent area thereto and conforms to the standards set by the Voluntary Control Council for Interference by Data Processing Equipment and Electronic Office Machines aimed at preventing radio interference in such residential areas When used near a radio or TV receiver it may become the cause of radio interference Read instructions for correct handling Customer Support Refer to the Support Information Card that shipped with your Model WGR614 Cable DSL Wireless Router World Wide Web NETGEAR maintains a World Wide Web home page that you can access at the universal resource locator URL http www netgear com A direct connection to the Internet and a Web browser such as Internet Explorer or Netscape are required This page intentionally left blank Contents Preface About This Manual Chapter 1 Introduction Key Features of the Router adios cciscenssesdapcidndmuntpacisimndacdasnnciespanasvessqetin vc stnavimentocennaasciows 1 1 802 110 Wireless NetWorking or iets eect iain a 1 2 A Powerful True Firewall with Content Filtering ccccccseeceeeceseseeeeaeeseneeseeenes 1 2 S EE EEE EAE 1 3 Autosensing Ethernet Connections with Auto Uplink ccc eecceeeceeeeeeeeeeeeeeeeees 1 3 Extensive Protocol Support ae ncecesticecicteswernasivaticvoridecesancnwiesinvnectsiecenthisesiepetaecevnn 1 3 kasy Installation and Management cs itsccalaus sinnsawupeddeasaiarasntvestaeniorencaluwmentaiaioniaws 1 4 Mamenance and SUP
48. access policies based on time of day Website addresses and address keywords and share high speed cable DSL Internet access for up to 253 personal computers In addition to the Network Address Translation NAT feature the built in firewall protects you from hackers With minimum setup you can install and use the router within minutes The WGR614 router provides the following features e 802 11g wireless networking with the ability to operate in 802 11g only or 802 11b g modes e Easy web based setup for installation and management e Content Filtering and Site Blocking Security e Built in 4 port 10 100 Mbps Switch e Ethernet connection to a wide area network WAN device such as a cable modem or DSL modem e Extensive Protocol Support e Login capability e Front panel LEDs for easy monitoring of status and activity e Flash memory for firmware upgrade Introduction 1 1 Reference Manual for Cable DSL Wireless Router WGR614 802 11g Wireless Networking The WGR614 router includes an 802 11g wireless access point providing continuous high speed 54 Mbps access between your wireless and Ethernet devices The access point provides 802 11g wireless networking at up to 54 Mbps 802 11g wireless networking with the ability to operate in 802 11g only or 802 11b g modes providing backwards compatibility with 802 11b devices or dedicating the wireless network to the higher bandwidth 802 11g 54Mbps devices 64 bit and 128 bi
49. adio frequency signals in the ISM Industrial Scientific and Medical band between 2 4 GHz and 2 5 GHz Neighboring channels are 5 MHz apart However due to spread spectrum effect of the signals a node sending signals using a particular channel will utilize frequency spectrum 12 5 MHz above and below the center channel frequency As a result two separate wireless networks using neighboring channels for example channel 1 and channel 2 in the same general vicinity will interfere with each other Applying two channels that allow the maximum channel separation will decrease the amount of channel crosstalk and provide a noticeable performance increase over networks with minimal channel separation Wireless Networking Basics D 7 Reference Manual for Cable DSL Wireless Router WGR614 The radio frequency channels used are listed in Table 7 1 Table 7 1 802 11 Radio Frequency Channels Note The available channels supported by the wireless products in various countries are different The preferred channel separation between the channels in neighboring wireless networks is 25 MHz 5 channels This means that you can apply up to three different channels within your wireless network There are only 11 usable wireless channels in the United States It is recommended that you start using channel and grow to use channel 6 and 11 when necessary as these three channels do not overlap D 8 Wireless Networking Basics Glossary Use the list b
50. and register your new IP address From the Main Menu of the browser interface under Advanced click on Dynamic DNS To configure Dynamic DNS 1 Register for an account with one of the dynamic DNS service providers whose names appear in the Select Service Provider box For example for dyndns org go to www dyndns org Select the Use a Dynamic DNS service check box Select the name of your dynamic DNS Service Provider Type the Host Name or domain name that your dynamic DNS service provider gave you Type the User Name for your dynamic DNS account Type the Password or key for your dynamic DNS account oe ye a ae oe If your dynamic DNS provider allows the use of wildcards in resolving your URL you may select the Use wildcards check box to activate this feature For example the wildcard feature will cause yourhost dyndns org to be aliased to the same IP address as yourhost dyndns org 8 Click Apply to save your configuration 6 6 Advanced Configuration Reference Manual for Cable DSL Wireless Router WGR614 Using LAN IP Setup Options The LAN IP Setup feature is under the Advanced heading of the main menu This feature allows configuration of LAN IP services such as DHCP and RIP From the Main Menu of the browser interface under Advanced click on LAN IP Setup to view the LAN IP Setup menu shown below LAN IP Setup LAN TCPAP Setup IP Address IP Subnet Mask RIP Direction RIP Version Use Router As DHCP S
51. annot connect to the WGR614 e Wireless Card Access List When the Trusted PCs Only radio button is selected the WGR614 checks the MAC address of the wireless station and only allows connections to PCs identified on the trusted PCs list 3 4 Wireless Configuration Reference Manual for Cable DSL Wireless Router WGR614 Understanding WEP Authentication and Encryption Restricting wireless access to your network prevents intruders from connecting to your network However the wireless data transmissions are still vulnerable to snooping Using the WEB data encryption settings described below will prevent a determined intruder from eavesdropping on your wireless data communications Also if you are using the Internet for such activities as purchases or banking those Internet sites use another level of highly secure encryption called SSL You can tell if a web site is using SSL because the web address begins with HTTPS rather than HTTP Authentication Scheme Selection Security Encryption WEP Authentication Type Automatic 4 Encryption Strength Disable Figure 3 3 Encryption Strength The WGR614 lets you select the following wireless authentication schemes e Automatic e Open System e Shared key Note The authentication scheme is separate from the data encryption You can choose an authentication scheme which requires a shared key but still leave the data transmissions unencrypted If you require strong security use
52. are rebooted e PC or workstation IP addresses 192 168 0 2 through 192 168 0 254 e Subnet mask 255 255 255 0 e Gateway address the firewall 192 168 0 1 These addresses are part of the IETF designated private address range for use in private networks Configuring Windows 95 98 and Me for TCP IP Networking As part of the PC preparation process you need to manually install and configure TCP IP on each networked PC Before starting locate your Windows CD you may need to insert it during the TCP IP installation process Install or Verify Windows Networking Components To install or verify the necessary components for IP networking 1 On the Windows taskbar click the Start button point to Settings and then click Control Panel 2 Double click the Network icon The Network window opens which displays a list of installed components C 2 Preparing Your Network Reference Manual for Cable DSL Wireless Router WGR614 Configuration Identification Access Control The following network components are installed m Client for Microsoft Networks NETGEAR FA310T Fast Ethernet PCI Adapter i TEPIP Primary Network Logan Chent for Microgott Networks File and Print Sharing Description You must have an Ethernet adapter the TCP IP protocol and Client for Microsoft Networks Note It is not necessary to remove any other network components shown in the Network window in order to install the adapter TCP IP or
53. ary significantly based on the physical placement of the wireless firewall The latency data throughput performance and notebook power consumption of wireless adapters also vary depending on your configuration choices Note Failure to follow these guidelines can result in significant performance degradation or inability to wirelessly connect to the router For complete range performance specifications please see Appendix A Technical Specifications For best results place your firewall e Near the center of the area in which your PCs will operate e In an elevated location such as a high shelf where the wirelessly connected PCs have line of sight access even if through walls e Away from sources of interference such as PCs microwaves and 2 4 GHz cordless phones e Away from large metal surfaces The time it takes to establish a wireless connection can vary depending on both your security settings and placement WEP connections can take slightly longer to establish Also WEP encryption can consume more battery power on a notebook PC Wireless Configuration 3 1 Reference Manual for Cable DSL Wireless Router WGR614 Implement Appropriate Wireless Security Note Indoors computers can connect over 802 11b g wireless networks at ranges of up to 500 feet Such distances can allow for others outside of your immediate area to access your network _ gt Unlike wired network data your wireless data transmissi
54. as defined two types of authentication methods Open System and Shared Key With Open System authentication a wireless PC can join any network and receive any messages that are not encrypted With Shared Key authentication only those PCs that possess the correct authentication key can join the network By default IEEE 802 11 wireless devices operate in an Open System network Wired Equivalent Privacy WEP data encryption 1s used when the wireless devices are configured to operate in Shared Key authentication mode There are two shared key methods implemented in most commercially available products 64 bit and 128 bit WEP data encryption 802 11 Authentication The 802 11 standard defines several services that govern how two 802 11 devices communicate The following events must occur before an 802 11 Station can communicate with an Ethernet network through an access point such as the one built in to the WGR614 1 Turn on the wireless station The station listens for messages from any access points that are in range The station finds a message from an access point that has a matching SSID The station sends an authentication request to the access point a 3 4 5 The access point authenticates the station 6 The station sends an association request to the access point 7 The access point associates with the station 8 The station can now communicate with the Ethernet network through the access point An access point must authen
55. assign to the PC or server choose an IP address from the router s LAN subnet such as 192 168 0 X 3 Type the MAC Address of the PC or server Tip If the PC is already present on your network you can copy its MAC address from the Attached Devices menu and paste it here 4 Click Apply to enter the reserved address into the table Advanced Configuration 6 9 Reference Manual for Cable DSL Wireless Router WGR614 Note The reserved address will not be assigned until the next time the PC contacts the router s DHCP server Reboot the PC or access its IP configuration and force a DHCP release and renew To edit or delete a reserved address entry 1 Click the button next to the reserved address you want to edit or delete 2 Click Edit or Delete How to Configure Static Routes Static Routes provide additional routing information to your router Under normal circumstances the router has adequate routing information after it has been configured for Internet access and you do not need to configure additional static routes You must configure static routes only for unusual cases such as multiple routers or multiple IP subnets located on your network From the Main Menu of the browser interface under Advanced click on Static Routes to view the Static Route menu shown below Static Routes Active Name Destination Gateway 1 Yes Horace 134 177 0 0 192 168 0 100 Aa E Eeee Figure 6 4 Static Route Summary Ta
56. ata encryption will block all but the most determined eavesdropper 3 2 Wireless Configuration Reference Manual for Cable DSL Wireless Router WGR614 e Turn Off the Wired LAN If you disable the wireless LAN wireless devices cannot communicate with the router at all You might choose to turn off the wireless the LAN when you are away and the others in the household all use wired connections Understanding Wireless Settings To configure the Wireless settings of your firewall click the Wireless link in the main menu of the browser interface The Wireless Settings menu will appear as shown below Wireless Settings Wireless Network Name SSID Earl Region United States Channel 1 v Mode ERIE v Wireless Access Point Enable Wireless Access Point Allow Broadcast of Name SSID Wireless Card Access List setup Access List Security Encryption WEP Authentication Type Automatic Encryption Strength Disable Security Encryption WEP Key Passphrase Key 1 Key 2 O Key 3 O Key 4 O Cancel Figure 3 2 Wireless Settings menu Wireless Configuration 3 3 Reference Manual for Cable DSL Wireless Router WGR614 The 802 11b and 802 11g wireless networking protocols are configured in exactly the same fashion e Name SSID The SSID is also known as the wireless network name Enter a value of up to 32 alphanumeric characters In a setting where there is more than one wireles
57. ay need to collect configuration information from your PC so that you can use this information when you configure the WGR614 router Following this procedure is only necessary when your ISP does not dynamically supply the account information To get the information you need to configure the firewall for Internet access 1 On the Windows taskbar click the Start button point to Settings and then click Control Panel 2 Double click the Network icon The Network window opens which displays a list of installed components 3 Select TCP IP and then click Properties The TCP IP Properties dialog box opens 4 Select the IP Address tab If an IP address and subnet mask are shown write down the information If an address 1s present your account uses a fixed static IP address If no address is present your account uses a dynamically assigned IP address Click Obtain an IP address automatically 5 Select the Gateway tab Preparing Your Network C 19 Reference Manual for Cable DSL Wireless Router WGR614 If an IP address appears under Installed Gateways write down the address This is the ISP s gateway address Select the address and then click Remove to remove the gateway address Select the DNS Configuration tab If any DNS server addresses are shown write down the addresses If any information appears in the Host or Domain information box write it down Click Disable DNS Click OK to save your changes and close the TCP IP Pr
58. ble To add or edit a Static Route 6 10 Advanced Configuration l Reference Manual for Cable DSL Wireless Router WGR614 Click the Add button to open the Add Edit Menu shown below Static Routes Route Name Private Active Destination IP Address 134 IP Subnet Mask Gateway IP Address 192 Apply Cancel Figure 6 5 Static Route Entry and Edit Menu 9 Type a route name for this static route in the Route Name box under the table This is for identification purpose only Select Private if you want to limit access to the LAN only The static route will not be reported in RIP Select Active to make this route effective Type the Destination IP Address of the final destination Type the IP Subnet Mask for this destination If the destination is a single host type 255 255 255 255 Type the Gateway IP Address which must be a router on the same LAN segment as the router Type a number between 1 and 15 as the Metric value This represents the number of routers between your network and the destination Usually a setting of 2 or 3 works but if this 1s a direct connection set it to 1 Click Apply to have the static route entered into the table As an example of when a static route is needed consider the following case e Your primary Internet access is through a cable modem to an ISP e You have an ISDN router on your home network for connecting to the company where you are employed This rout
59. bles maintained by the router In these routing tables a router builds up a logical picture of the overall network by gathering and exchanging information with other routers in the network Using this information the router chooses the best path for forwarding network traffic Routers vary in performance and scale number of routing protocols supported and types of physical WAN connection they support The Model WGR614 Cable DSL Wireless Router is a small office router that routes the IP protocol over a single user broadband connection Routing Information Protocol One of the protocols used by a router to build and maintain a picture of the network is the Routing Information Protocol RIP Using RIP routers periodically update one another and check for changes to add to the routing table The WGR614 router supports both the older RIP 1 and the newer RIP 2 protocols Among other improvements RIP 2 supports subnet and multicast protocols RIP is not required for most home applications IP Addresses and the Internet Because TCP IP networks are interconnected across the world every machine on the Internet must have a unique address to make sure that transmitted data reaches the correct destination Blocks of addresses are assigned to organizations by the Internet Assigned Numbers Authority JANA Individual users and small organizations may obtain their addresses either from the ANA or from an Internet service provider ISP You can contact
60. cases you may need to reconfigure the router after upgrading Configuration File Management The configuration settings of the WGR614 router are stored within the router in a configuration file This file can be saved backed up to a user s PC retrieved restored from the user s PC or cleared to factory default settings 5 6 Maintenance Reference Manual for Cable DSL Wireless Router WGR614 From the Main Menu of the browser interface under the Maintenance heading select the Settings Backup heading to bring up the menu shown below Settings Backup Save a copy of current settings Back Up Restore saved settings from file Browse Restore Revert to factory default settings Erase Figure 5 6 Settings Backup menu Three options are available and are described in the following sections Restoring and Backing Up the Configuration The Restore and Backup options in the Settings Backup menu allow you to save and retrieve a file containing your router s configuration settings To save your settings select the Backup tab Click the Backup button Your browser will extract the configuration file from the router and will prompt you for a location on your PC to store the file You can give the file a meaningful name at this time such as pacbell cfg To restore your settings from a saved configuration file enter the full path to the file on your PC or click the Browse button to browse to the file When you
61. e Automatic Enter a word or group of printable characters in the Passphrase box and click the Generate button The four key boxes will be automatically populated with key values Wireless Configuration 3 11 Reference Manual for Cable DSL Wireless Router WGR614 e Manual Enter ten hexadecimal digits any combination of 0 9 a f or A F Select which of the four keys will be active Please refer to Overview of WEP Parameters on page D 5 for a full explanation of each of these options as defined by the IEEE 802 11 wireless communication standard 5 Click Apply to save your settings 3 12 Wireless Configuration Chapter 4 Content Filtering This chapter describes how to use the content filtering features of the Model WGR614 Cable DSL Wireless Router to protect your network These features can be found by clicking on the Content Filtering heading in the Main Menu of the browser interface Content Filtering Overview The Model WGR614 Cable DSL Wireless Router provides you with Web content filtering options plus browsing activity reporting and instant alerts via e mail Parents and network administrators can establish restricted access policies based on time of day web addresses and web address keywords You can also block Internet access by applications and services such as chat or games To configure these features of your router click on the subheadings under the Content Filtering heading in the Main Menu of the browser inter
62. ecrypted with a public key to verify that the message hasn t been tampered with This comparison is called a hashcheck MDI MDIX In cable wiring the concept of transmit and receive are from the perspective of the PC which is wired as a Media Dependant Interface MDI In MDI wiring a PC transmits on pins and 2 At the hub switch router or access point the perspective is reversed and the hub receives on pins and 2 This wiring is referred to as Media Dependant Interface Crossover MDI X See also AES Maximum Receive Unit The size in bytes of the largest packet that can be sent or received Maximum Transmit Unit The size in bytes of the largest packet that can be sent or received Most Significant Bit or Most Significant Byte MSB The portion of a number address or field that is farthest left when written as a single number in conventional hexadecimal ordinary notation The part of the number having the most value MRU The size in bytes of the largest packet that can be sent or received MSB MSB The portion of a number address or field that is farthest left when written as a single number in conventional hexadecimal ordinary notation The part of the number having the most value MTU The size in bytes of the largest packet that can be sent or received 6 Glossary Reference Manual for Cable DSL Wireless Router WGR614 NAT A technique by which several hosts share a single IP address for access to the Internet
63. ed are used by this connection m Client for Microsoft Networks E amp File and Printer Sharing for Microsoft Networks s internet Protocol TCP IP Install Uninstall Properties Description Transmission Control Protocol lntermet Protocol The default Wide area network protocol that provides communication across diverse interconnected networks M Show icon in taskbar when connected Reference Manual for Cable DSL Wireless Router WGR614 Internet Protocol TCP IP Properties General You can get IF settings assigned automatically if your network supports With Internet Protocol TCPAP selected 3 S sa need to ask your network administrator for click on Properties to open the Internet Protocol TCP IP Properties dialogue box i Obtain an IP address automatically Use the following IP address Verify that IP address Subnet mask e Obtain an IP address automatically is Default gateway selected Obtain ONS server address automatically g Obtain DNS server address Use the following DNS server addresses automatically is selected Prefered DNS server Alternate DANS serer e Click OK to return to Local Area Connection Properties Local Area Connection Properties General Connect using Click Ok coon to complete the BY 3Com EtherLink amp L 10 1700 PCI NIC SC905 T configuration process for Windows 2000 _Confioue Components checked are used by this con
64. elow Select Yes if you normally must launch a login program such as Enternet or WinPOET in order to access the Internet Connecting the Router to the Internet 2 13 Reference Manual for Cable DSL Wireless Router WGR614 Note After you finish setting up your router you will no longer need to launch the ISP s login program on your PC in order to access the Internet When you start an Internet application your router will automatically log you in a Select you Internet service provisory from the drop down list Internet Service Provider Other PPTP Telstra Bigpond om Other Password Figure 2 12 Basic Settings ISP list b The screen will change according to the ISP settings requirements of the ISP you select c Fill inthe parameters for your ISP according to the Wizard detected procedures starting on page 2 3 d Click Apply to save your settings 2 14 Connecting the Router to the Internet Chapter 3 Wireless Configuration This chapter describes how to configure the wireless features of your WGR614 router In planning your wireless network you should consider the level of security required You should also select the physical placement of your firewall in order to maximize the network speed For further information on wireless networking refer to in Appendix D Wireless Networking Basics Observe Performance Placement and Range Guidelines The operating distance or range of your wireless connection can v
65. elow to find definitions for technical terms used in this manual List of Glossary Terms 10BASE T IEEE 802 3 specification for 10 Mbps Ethernet over twisted pair wiring 100BASE Tx IEEE 802 3 specification for 100 Mbps Ethernet over twisted pair wiring 3DES 3DES Triple DES achieves a high level of security by encrypting the data three times using DES with three different unrelated keys 802 1x 802 1x defines port based network access control used to provide authenticated network access and automated data encryption key management The IEEE 802 1x draft standard offers an effective framework for authenticating and controlling user traffic to a protected network as well as dynamically varying encryption keys 802 1x uses a protocol called EAP Extensible Authentication Protocol and supports multiple authentication methods such as token cards Kerberos one time passwords certificates and public key authentication For details on EAP specifically refer to IETF s RFC 2284 802 11a IEEE specification for wireless networking at 54 Mbps operating in unlicensed radio bands over 5GHz 802 11b IEEE specification for wireless networking at 11 Mbps using direct sequence spread spectrum DSSS technology and operating in the unlicensed radio spectrum at 2 5GHz 802 11g A soon to be ratified IEEE specification for wireless networking at 54 Mbps using direct sequence spread spectrum DSSS technology and operating in the unlicensed radio
66. ent when connecting to the ISP The firewall can automatically obtain an IP address subnet mask DNS server addresses and a gateway address if the ISP provides this information by DHCP Internet Security and Firewalls When your LAN connects to the Internet through a router an opportunity is created for outsiders to access or disrupt your network A NAT router provides some protection because by the very nature of the process the network behind the router is shielded from access by outsiders on the Internet However there are methods by which a determined hacker can possibly obtain information about your network or at the least can disrupt your Internet access A greater degree of protection is provided by a firewall router B 10 Network Routing Firewall and Basics Reference Manual for Cable DSL Wireless Router WGR614 What is a Firewall A firewall is a device that protects one network from another while allowing communication between the two A firewall incorporates the functions of the NAT router while adding features for dealing with a hacker intrusion or attack Several known types of intrusion or attack can be recognized when they occur When an incident 1s detected the firewall can log details of the attempt and can optionally send email to an administrator notifying them of the incident Using information from the log the administrator can take action with the ISP of the hacker In some types of intrusions the firewall can fe
67. er s address on your LAN is 192 168 0 100 e Your company s network is 134 177 0 0 Advanced Configuration 6 11 Reference Manual for Cable DSL Wireless Router WGR614 When you first configured your router two implicit static routes were created A default route was created with your ISP as the gateway and a second static route was created to your local network for all 192 168 0 x addresses With this configuration if you attempt to access a device on the 134 177 0 0 network your router will forward your request to the ISP The ISP forwards your request to the company where you are employed and the request will likely be denied by the company s firewall In this case you must define a static route telling your router that 134 177 0 0 should be accessed through the ISDN router at 192 168 0 100 The static route would look like Figure 6 5 In this example e The Destination IP Address and IP Subnet Mask fields specify that this static route applies to all 134 177 0 x addresses e The Gateway IP Address fields specifies that all traffic for these addresses should be forwarded to the ISDN router at 192 168 0 100 e A Metric value of 1 will work since the ISDN router is on the LAN e Private is selected only as a precautionary security measure in case RIP is activated Enabling Remote Management Access Using the Remote Management page you can allow a user or users on the Internet to configure upgrade and check the status of yo
68. er 2 9 Auto MDI MDI X B 13 G 2 Auto Uplink 1 3 B 13 G 2 B backup configuration 5 7 Basic Wireless Connectivity 3 8 BSSID D 2 C cables pinout B 12 Cabling B 12 Cat5 cable 2 1 B 13 G 2 configuration automatic by DHCP 1 4 backup 5 7 erasing 5 8 restore 5 6 router initial 2 1 content filtering 1 2 4 1 conventions typography 1 x1 crossover cable 1 3 7 2 B 12 B 13 G 2 customer support 1 111 Index Index D date and time 7 7 Daylight Savings Time 7 7 daylight savings time 4 8 Default DMZ Server 6 4 Denial of Service DoS protection 1 2 denial of service attack B 11 DHCP B 10 DHCP Client ID C 16 DMZ 1 3 6 2 6 5 DMZ Server 6 4 DNS Proxy 1 4 DNS server 2 11 C 20 DNS dynamic 6 6 domain C 20 Domain Name 2 11 2 13 domain name server DNS B 10 DoS attack B 11 Dynamic DNS 6 6 E Encryption Strength 3 6 End Port 6 2 EnterNet C 18 erase configuration 5 8 ESSID 3 8 D 2 Ethernet 1 3 Ethernet cable B 12 F factory settings restoring 5 8 firewall features 1 2 Flash memory for firmware upgrade 1 1 front panel 1 6 1 7 fully qualified domain name FQDN 3 4 G gateway address C 20 H Half Life 6 3 host name 2 11 2 13 IANA contacting B 2 IETF B 1 Web site address B 7 infrastructure mode D 2 installation 1 4 Internet account address information C 18 establishing C 18 Internet Service Provider 2 1 IP addresses C 19 C 20 and NAT B 8 and the I
69. er to the Internet 2 9 Reference Manual for Cable DSL Wireless Router WGR614 Note You will no longer need to launch the ISP s login program on your PC in order to access the Internet When you start an Internet application your router will automatically log you in e The Domain Name Server DNS Address parameters may be necessary to access your ISP s services such as mail or news servers Note If you enter DNS addresses restart your computers so that these settings take effect e Router MAC Address This section determines the Ethernet MAC address that will be used by the router on the Internet port Some ISPs will register the Ethernet MAC address of the network interface card in your PC when your account is first opened They will then only accept traffic from the MAC address of that PC This feature allows your router to masquerade as that PC To change the MAC address select Use this Computer s MAC address The router will then capture and use the MAC address of the PC that you are now using You must be using the one PC that is allowed by the ISP Or select Use this MAC address and enter it e Click Apply to save your settings e Click Test to test your Internet connection If the NETGEAR website does not appear within one minute refer to Chapter 7 Troubleshooting Dynamic IP Smart Wizard Detected Option If the Setup Wizard discovers that your ISP uses Dynamic IP assignment you will see this menu Dynamic I
70. ernet Network Interface Card NIC and an Ethernet cable If the computer will connect to your network at 100 Mbps you must use a Category 5 Cat 5 cable such as the one provided with your router Tip The power adapter and cord shipped with the WGR614 limits the distance from an gt AC outlet To overcome this consider using NETGEAR s POE101 Power Over Ethernet Adapter with a Category 5 Ethernet cable like the one included with your WGR614 This adapter sends DC power through an Ethernet cable to enable you to power your router in a remote location Connecting the Router to the Internet 2 1 Reference Manual for Cable DSL Wireless Router WGR614 Computer Network Configuration Requirements The WGR614 includes a built in Web Configuration Manager To access the configuration menus on the WGR614 your must use a Java enabled web browser program which supports HTTP uploads such as Microsoft Internet Explorer or Netscape Navigator NETGEAR recommends using Internet Explorer or Netscape Navigator 4 0 or above Free browser programs are readily available for Windows Macintosh or UNIX Linux For the initial connection to the Internet and configuration of your router you will need to connect a computer to the router which is set to automatically get its TCP IP configuration from the router via DHCP Note For help with DHCP configuration please refer to Appendix C Preparing Your Network The cable or DSL modem broadband access dev
71. erved IP adresses 6 9 restore configuration 5 6 restore factory settings 5 8 Restrict Wireless Access by MAC Address 3 9 RFC 1466 B 7 B 9 Index 1597 B 7 B 9 1631 B 8 B 9 finding B 7 RIP Router Information Protocol 6 8 router concepts B 1 Router Status 5 1 Routing Information Protocol 1 3 B 2 S Secondary DNS Server 2 9 2 11 2 13 security 1 1 1 3 service numbers 4 4 Setup Wizard 2 1 Shared Key authentication D 3 SMTP 4 8 spoof MAC address 7 5 SSID 3 4 3 8 3 9 D 2 Start Port 6 2 stateful packet inspection 1 2 B 11 Static Routes 6 6 subnet addressing B 5 subnet mask B 6 C 19 C 20 T TCP IP configuring C 1 network troubleshooting 7 5 TCP IP properties verifying for Macintosh C 17 verifying for Windows C 6 C 15 time of day 7 7 time zone 4 8 time stamping 4 8 troubleshooting 7 1 Trusted Host 4 3 typographical conventions 1 xi U Universal Plug and Play 6 13 Uplink switch B 12 UPnP 6 13 USB C 18 W WAN 6 4 WAN Setup 6 4 WEP D 3 Wi Fi D 1 Windows configuring for IP routing C 2 C 7 winipcfg utility C 6 WinPOET C 18 Wired Equivalent Privacy See WEP Wireless Access 2 3 Wireless Authentication 3 5 wireless authentication scheme 3 5 Wireless Encryption 3 5 Wireless Ethernet D 1 Wireless Performance 3 1 Wireless Range Guidelines 3 1 Wireless Security 3 2 World Wide Web 1 iii Index
72. erver Starting IP Address Ending IP Address Address Reservation IP Address Device Name MAC Address Add Edit Delete Apply Cancel Figure 6 3 LAN IP Setup Menu The router is shipped preconfigured to use private IP addresses on the LAN side and to act as a DHCP server The router s default LAN IP configuration 1s e LAN IP addresses 192 168 0 1 e Subnet mask 255 255 255 0 These addresses are part of the IETF designated private address range for use in private networks and should be suitable in most applications If your network has a requirement to use a different IP addressing scheme you can make those changes in this menu The LAN IP parameters are Advanced Configuration 6 7 Reference Manual for Cable DSL Wireless Router WGR614 e JP Address This is the LAN IP address of the router e IP Subnet Mask This is the LAN Subnet Mask of the router Combined with the IP address the IP Subnet Mask allows a device to know which other addresses are local to it and which must be reached through a gateway or router e RIP Direction RIP Router Information Protocol allows a router to exchange routing information with other routers The RIP Direction selection controls how the router sends and receives RIP packets Both is the default When set to Both or Out Only the router will broadcast its routing table periodically When set to Both or In Only it will incorporate the RIP information that i
73. ess resolution Internet Protocol uses the Address Resolution Protocol ARP to resolve MAC addresses If a device sends data to another station on the network and the destination MAC address is not yet recorded ARP is used An ARP request is broadcast onto the network All stations on the network receive and read the request The destination IP address for the chosen station is included as part of the message so that only the station with this IP address responds to the ARP request All other stations discard the request Related Documents The station with the correct IP address responds with its own MAC address directly to the sending device The receiving station provides the transmitting station with the required destination MAC address The IP address data and MAC address data for each station are held in an ARP table The next time data is sent the address can be obtained from the address information in the table For more information about address assignment refer to the IETF documents RFC 1597 Address Allocation for Private Internets and RFC 1466 Guidelines for Management of IP Address Space For more information about IP address translation refer to RFC 1631 The IP Network Address Translator NAT Network Routing Firewall and Basics B 9 Reference Manual for Cable DSL Wireless Router WGR614 Domain Name Server Many of the resources on the Internet can be addressed by simple descriptive names such as www NETGEAR com Thi
74. face The subheadings are described below Content Filtering 4 1 Reference Manual for Cable DSL Wireless Router WGR614 Blocking Access to Internet Sites The WGR614 router allows you to restrict access based on web addresses and web address keywords Up to 255 entries are supported in the Keyword list The Block Sites menu is shown in Figure 4 1 below Block Sites Keyword Blocking Never Per Schedule Always Type keyword or domain name here Add keyword Block sites containing these keywords or domain names discodanny A Delete Keyword Clear List Allow Trusted IP Address To Visit Blocked Sites Trusted IP Address 0 Apply Cancel Figure 4 1 Block Sites menu To enable keyword blocking select either Per Schedule or Always then click Apply If you want to block by schedule be sure that a time period is specified in the Schedule menu To add a keyword or domain type it in the Keyword box click Add Keyword then click Apply To delete a keyword or domain select it from the list click Delete Keyword then click Apply Keyword application examples e Ifthe keyword XXX is specified the URL lt http www badstuff com xxx html gt is blocked AQ Content Filtering Reference Manual for Cable DSL Wireless Router WGR614 e Ifthe keyword com is specified only websites with other domain suffixes such as edu or gov can be viewed e If you wish to block all I
75. for your ISP Any packets sent through the router that are larger than the configured MTU size will be repackaged into smaller packets to meet the MTU requirement To change the MTU size Under MTU Size enter a new size between 64 and 1500 Then click Apply to save the new configuration Advanced Configuration 6 5 Reference Manual for Cable DSL Wireless Router WGR614 Using a Dynamic DNS Service If your network has a permanently assigned IP address you can register a domain name and have that name linked with your IP address by public Domain Name Servers DNS However if your Internet account uses a dynamically assigned IP address you will not know in advance what your IP address will be and the address can change frequently In this case you can use a commercial dynamic DNS service which will allow you to register your domain to their IP address and will forward traffic directed at your domain to whatever your current IP address happens to be Note If your ISP assigns a private WAN IP address such as 192 168 x x or 10 x x x the dynamic DNS service will not work because private addresses will not be routed on the Internet The router contains a client that can connect to many popular dynamic DNS services You can select one of these services and obtain an account with them Then whenever your ISP assigned IP address changes your router will automatically contact your dynamic DNS service provider log in to your account
76. formation about how to assign IP addresses for your network If another device on your network will be the DHCP server or if you will manually configure the network settings of all of your computers clear the Use router as DHCP server check box Otherwise leave it checked Specify the pool of IP addresses to be assigned by setting the Starting IP Address and Ending IP Address These addresses should be part of the same IP address subnet as the router s LAN IP address Using the default addressing scheme you should define a range between 192 168 0 2 and 192 168 0 253 although you may wish to save part of the range for devices with fixed addresses The router will deliver the following parameters to any LAN device that requests DHCP e An IP Address from the range you have defined e Subnet Mask e Gateway IP Address the router s LAN IP address e Primary DNS Server if you entered a Primary DNS address in the Basic Settings menu otherwise the router s LAN IP address e Secondary DNS Server if you entered a Secondary DNS address in the Basic Settings menu Using Address Reservation When you specify a reserved IP address for a PC on the LAN that PC will always receive the same IP address each time it access the router s DHCP server Reserved IP addresses should be assigned to servers that require permanent IP settings To reserve an IP address 1 Click the Add button 2 Inthe IP Address box type the IP address to
77. g and Play UPnP PEENE A Chapter 7 Troubleshooting 6 2 Te PEEP EE EE gt I ass cdccasenstsasatecsousi kiar ai a aari E iana Ponor LED MOL OT saman asada LELO yoo al Li ig gS a RA Tee EEE DEDrat ROE ened MEER ENE ye Here ne seer rrr rn Teer Tere LAN or WAN Port LEDs Not ON ccccccceeeccceceeeeeeeeeeeceeecaseceeceeeseeesseneeeesaeeeeeees eursreeistanneetonnnsenieans 7 4 ROD ditional O Testing the LAN Path to Your Router sisi ciisncsescracicecdinicigniiewcicioitiscdiaderenssi ETTEPLAN E E PETERET APENE Oe Troubleshooting the Web Configuration Interface 00 Troubleshooting the ISP Connection ccccecceeeeeee ees ARH Troubleshooting a TCP IP Network Using a Ping Utility aa se Testing the Path from Your PC to a Remote Device Restoring the Default Configuration and Password 065 Problems With Date and Time sswiscssincidisicrsvicsdiccvarinacisusesitedicessinnrdacwntiandecevaianieaceiaseannes Appendix A Technical Specifications Appendix B Network Routing Firewall and Basics Fee FUDGE oi EAEE T EEN Basic Router Concepts cccccccesccccseceeeceenseeeeeceeaeeceeeeeeceseeseneeeensenenesteneenneeseness Whati a Rouler sorserien Routing Information Protocol 0006 PEAT A PE E E IP Addresses and the Internet 20 00 00 ccccc cece eceeeeeeeeeueeeeeceeaeeeueeeueeeeeeeeueeueeeeeeeenees peel EE E ean aanne 1 a l 2 il
78. g the Network Once you ve set up your computers to work with the firewall you must reset the network for the devices to be able to communicate correctly Restart any computer that is connected to the firewall After configuring all of your computers for TCP IP networking and restarting them and connecting them to the local network of your WGR614 router you are ready to access and configure the firewall Preparing Your Network C 21 Reference Manual for Cable DSL Wireless Router WGR614 This page intentionally left blank C 22 Preparing Your Network Appendix D Wireless Networking Basics This chapter provides an overview of Wireless networking Wireless Networking Overview The WGR614 router conforms to the Institute of Electrical and Electronics Engineers IEEE 802 11 standard for wireless LANs WLANs and a product update will bring the WGR614 into conformance to the 802 11g standard when it is ratified On an 802 11b or g wireless link data is encoded using direct sequence spread spectrum DSSS technology and is transmitted in the unlicensed radio spectrum at 2 5GHz The maximum data rate for the wireless link 1s 11 Mbps but it will automatically back down from 11 Mbps to 5 5 2 and 1 Mbps when the radio signal 1s weak or when interference is detected The 802 11g auto rate sensing rates are 1 2 5 5 6 9 12 18 24 36 48 and 54 Mbps The 802 11 standard is also called Wireless Ethernet or Wi Fi by the Wireless Etherne
79. gured the firewall will perform the login task when needed and you will no longer need to run the login program from your PC It is not necessary to uninstall the login program What Is Your Configuration Information More and more ISPs are dynamically assigning configuration information However if your ISP does not dynamically assign configuration information but instead used fixed configurations your ISP should have given you the following basic information for your account C 18 Preparing Your Network Reference Manual for Cable DSL Wireless Router WGR614 e An IP address and subnet mask e A gateway IP address which is the address of the ISP s router e One or more domain name server DNS IP addresses e Host name and domain suffix For example your account s full server names may look like this mail xxx yyy com In this example the domain suffix is xxx yyy com If any of these items are dynamically supplied by the ISP your firewall automatically acquires them If an ISP technician configured your PC during the installation of the broadband modem or if you configured it using instructions provided by your ISP you need to copy the configuration information from your PC s Network TCP IP Properties window or Macintosh TCP IP Control Panel before reconfiguring your PC for use with the firewall These procedures are described next Obtaining ISP Configuration Information for Windows Computers As mentioned above you m
80. he following e Your ISP may require a login program Ask your ISP whether they require PPP over Ethernet PPPoE or some other type of login e If your ISP requires a login you may have incorrectly set the login name and password e Your ISP may check for your PC s host name Assign the PC Host Name of your ISP account as the Account Name in the Basic Settings menu e Your ISP only allows one Ethernet MAC address to connect to Internet and may check for your PC s MAC address In this case Inform your ISP that you have bought a new network device and ask them to use the router s MAC address 1 4 Troubleshooting Reference Manual for Cable DSL Wireless Router WGR614 OR Configure your router to spoof your PC s MAC address This can be done in the Basic Settings menu Refer to How to Manually Configure Your Internet Connection on page 2 12 If your router can obtain an IP address but your PC is unable to load any web pages from the Internet e Your PC may not recognize any DNS server addresses A DNS server is a host on the Internet that translates Internet names such as www addresses to numeric IP addresses Typically your ISP will provide the addresses of one or two DNS servers for your use If you entered a DNS address during the router s configuration reboot your PC and verify the DNS address as described in Verifying TCP IP Properties on page C 6 Alternatively you may configure your PC manually wi
81. he portion of the IP address specified by the netmask is different from the network address of the remote device Check that your cable or DSL modem is connected and functioning 7 6 Troubleshooting Reference Manual for Cable DSL Wireless Router WGR614 If your ISP assigned a host name to your PC enter that host name as the Account Name in the Basic Settings menu Your ISP could be rejecting the Ethernet MAC addresses of all but one of your PCs Many broadband ISPs restrict access by only allowing traffic from the MAC address of your broadband modem but some ISPs additionally restrict access to the MAC address of a single PC connected to that modem If this is the case you must configure your router to clone or spoof the MAC address from the authorized PC Refer to How to Manually Configure Your Internet Connection on page 2 12 Restoring the Default Configuration and Password This section explains how to restore the factory default configuration settings changing the router s administration password to password and the IP address to 192 168 0 1 You can erase the current configuration and restore factory defaults in two ways e Use the Erase function of the router see Erasing the Configuration on page 5 8 e Use the Default Reset button on the rear panel of the router Use this method for cases when the administration password or IP address is not known To restore the factory default configu
82. hen TCP IP is probably already installed as well Most operating systems include the software components you need for networking with TCP IP e Windows 95 or later includes the software components for establishing a TCP IP network e Windows 3 1 does not include a TCP IP component You need to purchase a third party TCP IP application package such as NetManage Chameleon e Macintosh Operating System 7 or later includes the software components for establishing a TCP IP network e All versions of UNIX or Linux include TCP IP components Follow the instructions provided with your operating system or networking software to install TCP IP on your computer Preparing Your Network C 1 Reference Manual for Cable DSL Wireless Router WGR614 In your IP network each PC and the firewall must be assigned a unique IP addresses Each PC must also have certain other IP configuration information such as a subnet mask netmask a domain name server DNS address and a default gateway address In most cases you should install TCP IP so that the PC obtains its specific network configuration information automatically from a DHCP server during bootup For a detailed explanation of the meaning and purpose of these configuration items refer to Appendix B Network Routing Firewall and Basics The WGR614 router is shipped preconfigured as a DHCP server The firewall assigns the following TCP IP configuration information automatically when the PCs
83. ice must provide a standard 10 Mbps LOBASE T or 100 Mbps LOOBASE Tx Ethernet interface Internet Configuration Requirements Depending on how your ISP set up your Internet account you will need one or more of these configuration parameters to connect your router to the Internet e Host and Domain Names e ISP Login Name and Password e ISP Domain Name Server DNS Addresses e Fixed IP Address which is also known as Static IP Address Where Do Get the Internet Configuration Parameters There are several ways you can gather the required Internet connection information e Your ISP provides all the information needed to connect to the Internet If you cannot locate this information you can ask your ISP to provide it or you can try one of the options below e Ifyou have a computer already connected using the active Internet access account you can gather the configuration information from that computer For Windows 95 98 ME open the Network control panel select the TCP IP entry for the Ethernet adapter and click Properties Record all the settings for each tab page For Windows 2000 XP open the Local Area Network Connection select the TCP IP entry for the Ethernet adapter and click Properties Record all the settings for each tab page For Macintosh computers open the TCP IP or Network control panel Record all the settings for each section 2 2 Connecting the Router to the Internet Reference Manual for Cable DSL Wi
84. inadvercticesdireensicioricencpdenierinsinncieieaiciess Veb Access Log Notifications ccceeccseeeeneeeeeeeees 4 4 Configuring Services Blocking by IP Address Range PREET EEA EPEE ET o Scheduling When Blocking Will Be Enforced ssssseeensosssoesennnrnnnnnnrennreeeerrrerensnennnne Web ACCESS sasisveciscvasavsaeisadeessseuecianecstieeiaO n 4 5 4 7 Viewing a List of Attached Devices cccccccecccceeceeeeeeeeeeeseeeseeeeseessecessaseeeeeeessaeeeeeeess OPO PAE the Router Software ReO me oaa Up the ee Erasing the Configuration S8 Changing the Administrator Password ccccccecceecceeeeeeeceeeaeeeeeeeeeeceteueneeeeeneeeeeeas Advanced Configuration Configuring Port Forwarding to Local Servers csceeeees ans Bere ree errs 6 Vi Contents Adding a Port Forwarding Custom Service ccccccccccceecceeeeceeeeeceseeneesseeeesaees Editing or Deleting a Port Forwarding Entry cccccceees Local Web and FTP Server Example EEPE EE PAE T Multiple Computers for Half Life KALI or Quake III Bowie iia eleenekiawalaadient gt ides ae WAN aun PEPER E ETAL ENEE EIE AELE AA ETATE EEEE ENT ene the ee asa s DHCP Ie E E ete eosin eee Using Address Reservation How to Configure Static Routes cccceccccceseecceeaeeceeeeeeeeeeeeeees Enabling Remote Management ACCESS c sseeeeeeeeceeeeeeeeeeeeaees Using Universal Plu
85. ing Port and Ending Port numbers If the application uses a single port number enter that number in both boxes If you know that the application uses either TCP or UDP select the appropriate protocol If you are not sure select Both AA Content Filtering Reference Manual for Cable DSL Wireless Router WGR614 Configuring Services Blocking by IP Address Range Under Filter Services For you can block the specified service for a single PC a range of PCs having consecutive IP addresses or all PCs on your network Scheduling When Blocking Will Be Enforced The WGR614 router allows you to specify when blocking will be enforced The Schedule menu is shown below Schedule Days To Block MV Every day F Sunday F Monday F Tuesday V Wednesday Thursday I Friday F Saturday Time Of Day To Block use 24 hour clock M All Day Start Blocking f Hour L Min End Blocking fo Hour 0 Min Cancel Figure 4 4 Schedule menu Use this check boxes on this menu to create a schedule for blocking content Click Apply e Days to Block Select days to block by checking the appropriate boxes Select Everyday to check the boxes for all days Click Apply e Time of Day to Block Select a start and end time in 23 59 format Select All day for 24 hour blocking Click Apply Note Be sure to select your time zone in the E Mail menu Content Filtering 4 5 Reference Manual for Cable DSL Wireless Router WGR614 Viewing
86. is case the host broadcasts its physical address and a RARP server replies with the host s IP address Auto Uplink Auto Uplink technology also called MDI MDIX eliminates the need to worry about crossover vs straight through Ethernet cables Auto Uplink will accommodate either type of cable to make the right connection CA A Certificate Authority is a trusted third party organization or company that issues digital certificates used to create digital signatures and public private key pairs Cat 5 Category 5 unshielded twisted pair UTP cabling An Ethernet network operating at 10 Mbits second 1LOBASE T will often tolerate low quality cables but at 100 Mbits second 1OBASE Tx the cable must be rated as Category 5 or Cat 5 or Cat V by the Electronic Industry Association EIA This rating will be printed on the cable jacket Cat 5 cable contains eight conductors arranged in four twisted pairs and terminated with an RJ45 type connector In addition there are restrictions on maximum cable length for both 10 and 100 Mbits second networks Certificate Authority 2 Glossary Reference Manual for Cable DSL Wireless Router WGR614 A Certificate Authority is a trusted third party organization or company that issues digital certificates used to create digital signatures and public private key pairs The role of the CA in this process is to guarantee that the individual granted the unique certificate is in fact who he or she claims
87. it starts automatically f Verify the following When you turn the router on the power light goes on The router s local LAN lights 4 are lit for any computers that are connected to it The router s Internet light _ j _1s lit indicating a link has been established to the cable or DSL modem Note For wireless placement and range guidelines and wireless configuration instructions please see Chapter 3 Wireless Configuration 2 Log in to the router Note To connect to the router your computer needs to be configured to obtain an IP address automatically via DHCP If you need instructions on how to do this please refer to Appendix C Preparing Your Network a Connect to the router by typing ttp 192 168 0 1 in the address field of Internet Explorer or Netscape Navigator Figure 2 4 Log in to the router b For security reasons the router has its own user name and password When prompted enter admin for the router user name and password for the router password both in lower case letters Note The router user name and password are not the same as any user name or password you may use to log in to your Internet connection 2 6 Connecting the Router to the Internet Reference Manual for Cable DSL Wireless Router WGR614 A login window like the one shown below opens gt Please type your user name and password Site 192 168 0 1 Realm User Name admin Password E Save thi
88. ivity from the LAN Entering a timeout value of zero means never log out Note You no longer need to run the ISP s login program on your PC in order to access the Internet When you start an Internet application your router will automatically log you in e Ifyou know that your ISP does not automatically transmit DNS addresses to the router during login select Use these DNS servers and enter the IP address of your ISP s Primary DNS Server If a Secondary DNS Server address is available enter it also Note If you enter DNS addresses restart your computers so that these settings take effect e Click Apply to save your settings e Click Test to verify that your Internet connection works If the NETGEAR website does not appear within one minute refer to Chapter 7 Troubleshooting Telstra Bigpond Cable Smart Wizard Detected Option If the Setup Wizard discovers Telstra Bigpond Cable is your ISP you will see this menu Telstra Bigpond Cable Login Password Authentication Server sm server Domain Name Server DNS Address Get automatically from ISP Use these DNS servers Primary DNS Secondary DNS Router MAC Address Use Default MAC Address Use Computer MAC Address Use This MAC Address Apply Cancel Test Figure 2 8 Setup Smart Wizard menu for Telstra Bigpond Cable accounts e Enter your Login Password and Authentication Server These fields are case sensitive Connecting the Rout
89. ks OOO Oe eS dn OD et OO O W oO ees O et ee gO LOZ 2 MGS OO se O27 OG 670s ZOO Choose your private network number from this range The DHCP server of the WGR614 router is preconfigured to automatically assign private addresses Regardless of your particular situation do not create an arbitrary IP address always follow the guidelines explained here For more information about address assignment refer to RFC 1597 Address Allocation for Private Internets and RFC 1466 Guidelines for Management of IP Address Space The Internet Engineering Task Force IETF publishes RFCs on its Web site at www ietf org Network Routing Firewall and Basics B 7 Reference Manual for Cable DSL Wireless Router WGR614 Single IP Address Operation Using NAT In the past if multiple PCs on a LAN needed to access the Internet simultaneously you had to obtain a range of IP addresses from the ISP This type of Internet account is more costly than a single address account typically used by a single user with a modem rather than a router The WGR614 router employs an address sharing method called Network Address Translation NAT This method allows several networked PCs to share an Internet account using only a single IP address which may be statically or dynamically assigned by your ISP The router accomplishes this address sharing by translating the internal LAN IP addresses to a single address that is globally unique on the Internet The internal LAN IP add
90. le or Always then click Apply If you want to block by schedule be sure that a time period is specified in the Schedule menu Content Filtering 4 3 Reference Manual for Cable DSL Wireless Router WGR614 To specify a service for blocking click Add The Add Services menu will appear as shown below Block Services Service Type HTTP Protocol TOF r Starting Port 8 1 65535 Ending Port f 1 65535 Service Type User Defined HT Filter IP by Only this IP 192 fies fo C IP address range 192 fies fo to 192 fies fo C Every IP OK Cancel Figure 4 3 Add Services menu From the Service Type list select the application or service to be allowed or blocked The list already displays several common services but you are not limited to these choices To add any additional services or applications that do not already appear select User Defined Configuring a User Defined Service To define a service first you must determine which port number or range of numbers is used by the application The service numbers for many common protocols are defined by the Internet Engineering Task Force IETF and published in RFC1700 Assigned Numbers Service numbers for other applications are typically chosen from the range 1024 to 65535 by the authors of the application This information can usually be determined by contacting the publisher of the application or from user groups of newsgroups Enter the Start
91. lf Life KALI or Quake III 1 Click the button of an unused port in the table 2 Select the game again from the Service Name list 3 Change the beginning port number in the Start Port box For these games use the supplied number in the default listing and add 1 for each additional computer For example if you ve already configured one computer to play Hexen II using port 26900 the second computer s port number would be 26901 and the third computer would be 26902 4 Type the same port number in the End Port box that you typed in the Start Port box 5 Type the IP address of the additional computer in the Server IP Address box 6 Click Apply Advanced Configuration 6 3 Reference Manual for Cable DSL Wireless Router WGR614 Some online games and videoconferencing applications are incompatible with NAT The WGR614 router is programmed to recognize some of these applications and to work properly with them but there are other applications that may not function well In some cases one local PC can run the application properly if that PC s IP address is entered as the default in the PORTS Menu If one local PC acts as a game or videoconferencing host enter its IP address as the default Configuring WAN Setup Options The WAN Setup options let you configure a DMZ server change the MTU size and enable the router to respond to a Ping on the WAN port These options are discussed below WAN Setup Connect Automatically as Required
92. ll set the router s IP address to 192 168 0 1 This procedure is explained in Restoring the Default Configuration and Password on page 7 7 If the error persists you might have a hardware problem and should contact technical support LAN or WAN Port LEDs Not On If either the LAN LEDs or WAN LED do not light when the Ethernet connection is made check the following e Make sure that the Ethernet cable connections are secure at the router and at the hub or workstation e Make sure that power is turned on to the connected hub or workstation e Be sure you are using the correct cable When connecting the router s WAN port to a cable or DSL modem use the cable that was supplied with the cable or DSL modem This cable could be a standard straight through Ethernet cable or an Ethernet crossover cable 1 2 Troubleshooting Reference Manual for Cable DSL Wireless Router WGR614 Troubleshooting the Web Configuration Interface If you are unable to access the router s Web Configuration interface from a PC on your local network check the following e Check the Ethernet connection between the PC and the router as described in the previous section e Make sure your PC s IP address is on the same subnet as the router If you are using the recommended addressing scheme your PC s address should be in the range of 192 168 0 2 to 192 168 0 254 Refer to Verifying TCP IP Properties on page C 6 or Verifying TCP IP Prope
93. n buttons are described in Table 4 2 Table 4 2 Log action buttons Fita Beserptiom Refresh Click this button to refresh the log screen Clear Log Click this button to clear the log entries Send Log Click this button to email the log immediately Configuring E Mail Alert and Web Access Log Notifications In order to receive logs and alerts by email you must provide your email information in the E Mail menu shown below E mail V Turn E mail Notification On Send Alert And Logs Via E mail Your Outgoing Mail Server mail myisp cam Send To This E mail Address lismith myisp com V Send Alert Immediately When Someone Attempts To Visit Blocked Site Send Logs According To This Schedule When Log is Full 12 00 7 Am C PM Time Zone GMT 08 00 Pacific Time US amp Canada Tijuana M Adjust for Daylight Savings Time Current Time 10 14 38 Fri Cancel Figure 4 6 Email menu Content Filtering 4 7 Reference Manual for Cable DSL Wireless Router WGR614 Turn e mail notification on Check this box if you wish to receive e mail logs and alerts from the router Your outgoing mail server Enter the name of your ISP s outgoing SMTP mail server such as mail myISP com You may be able to find this information in the configuration menu of your e mail program If you leave this box blank log and alert messages will not be sent via e mail Send to this e mail address Enter the e mail addre
94. n for Macintosh Computers 6 C 20 POTNO MO MOUNDE siri AE A R C 21 Appendix D Wireless Networking Basics Wireless Networking Overview iricaicinescscencinticcsassinivenideaiesusiearsoudncaddiadmnnsisesenoancranecsaciaians D 1 Ree MRA OUG siers E A EE D 1 Ad Hoc Mode Peer to Peer Workgroup cccsssccccsseeceessecceeeeecseseeceseeesneessaaees D 2 Network Name Extended Service Set Identification ESSID 0 0 0 cece D 2 Pa see eterna a D 3 A PE asters eid cine iccncassadeaein sativa ate i D 3 Open System Authentication is cisnxevccsaxinrciaceetnecksncess mrinciaaslenmaineconaianedaiaselunee D 4 snared Koy UOT pire nsoyerciacieneeteserericisn icone aiaenenreersaidnaidioeennaies D 4 Overview of WEP Parameters aciciciscisinisaisassianisiesnavcnssransaiassaiesseveldaienseiasaviesasaabdanans D 5 Fe A E E T A D 6 WEF C Omonni O a alate D 7 Wireless Channels aac edsanasicdecenenatedaenaaatedooennasseasedarenhiidinarcedveeneteedadiassndiaescedesteeees D 7 Glossary Liot Or GDS TONT scier R E T G 1 Index Contents Contents Preface About This Manual Congratulations on your purchase of the NETGEAR Model WGR614 Cable DSL Wireless Router The WGR614 router provides connection for multiple personal computers PCs to the Internet through an external broadband access device such as a cable modem or DSL modem that is normally intended for use by a single PC Audience This reference manual assumes that the reader has ba
95. n the Network Protocols box and click on the Properties button Add m Description C 14 Preparing Your Network Reference Manual for Cable DSL Wireless Router WGR614 Microsoft TCP IP Properties IP Address DNS WINS Address Routing The TCP IP Prop erties di al o g b ox now by a DHCP server If your network does not have a DHCP server An IP address can be automatically assigned to this network card ask your network administrator for an address and then type it in the space below displays e Click the IP Address tab e Select the radio button marked Obtain an IP address from a DHCP server Obtain an IP address from a DHCP server Adapter 1 3Com Etherlink Ill PCI Bus Master Adapter 30590 Specify an IP address e Click OK This completes the configuration of TCP IP in Windows NT Restart the PC Repeat these steps for each PC with this version jee of Windows on your network Cancel Verifying TCP IP Properties for Windows XP 2000 and NT4 To check your PC s TCP IP configuration 1 On the Windows taskbar click the Start button and then click Run The Run window opens 2 Type cma and then click OK A command window opens 3 Type ipconfig all Your IP Configuration information will be listed and should match the values below if you are using the default TCP IP settings that NETGEAR recommends for connecting through a router or gateway e The
96. nce Manual for Cable DSL Wireless Router WGR614 Security The WGR614 router is equipped with several features designed to maintain security as described in this section e PCs Hidden by NAT NAT opens a temporary path to the Internet for requests originating from the local network Requests originating from outside the LAN are discarded preventing users outside the LAN from finding and directly accessing the PCs on the LAN e Port Forwarding with NAT Although NAT prevents Internet locations from directly accessing the PCs on the LAN the router allows you to direct incoming traffic to specific PCs based on the service port number of the incoming request or to one designated DMZ host computer You can specify forwarding of single ports or ranges of ports Autosensing Ethernet Connections with Auto Uplink With its internal 8 port 10 100 switch the WGR614 can connect to either a 10 Mbps standard Ethernet network or a 100 Mbps Fast Ethernet network Both the LAN and WAN interfaces are autosensing and capable of full duplex or half duplex operation The router incorporates Auto Uplink technology Each Ethernet port will automatically sense whether the Ethernet cable plugged into the port should have a normal connection such as to a PC or an uplink connection such as to a switch or hub That port will then configure itself to the correct configuration This feature also eliminates the need to worry about crossover cables as
97. nd off the hacker by discarding all further packets from the hacker s IP address for a period of time Stateful Packet Inspection Unlike simple Internet sharing routers a firewall uses a process called stateful packet inspection to ensure secure firewall filtering to protect your network from attacks and intrusions Since user level applications such as FTP and Web browsers can create complex patterns of network traffic it is necessary for the firewall to analyze groups of network connection states Using Stateful Packet Inspection an incoming packet is intercepted at the network layer and then analyzed for state related information associated with all network connections A central cache within the firewall keeps track of the state information associated with all network connections All traffic passing through the firewall is analyzed against the state of these connections in order to determine whether or not it will be allowed to pass through or rejected Denial of Service Attack A hacker may be able to prevent your network from operating or communicating by launching a Denial of Service DoS attack The method used for such an attack can be as simple as merely flooding your site with more requests than it can handle A more sophisticated attack may attempt to exploit some weakness in the operating system used by your router or gateway Some operating systems can be disrupted by simply sending a packet with incorrect length information Ne
98. ndow opens which lists among other things your IP address subnet mask and default gateway From the drop down box select your Ethernet adapter The window is updated to show your settings which should match the values below if you are using the default TCP IP settings that NETGEAR recommends for connecting through a router or gateway e The IP address is between 192 168 0 2 and 192 168 0 254 e The subnet mask is 255 255 255 0 e The default gateway is 192 168 0 1 Configuring Windows NT4 2000 or XP for IP Networking As part of the PC preparation process you may need to install and configure TCP IP on each networked PC Before starting locate your Windows CD you may need to insert it during the TCP IP installation process Install or Verify Windows Networking Components To install or verify the necessary components for IP networking l 2 3 On the Windows taskbar click the Start button point to Settings and then click Control Panel Double click the Network and Dialup Connections icon If an Ethernet adapter is present in your PC you should see an entry for Local Area Connection Double click that entry Select Properties Verify that Client for Microsoft Networks and Internet Protocol TCP IP are present If not select Install and add them Select Internet Protocol TCP IP click Properties and verify that Obtain an IP address automatically is selected Click OK and close all Netwo
99. nection m Client for Wicrosott Networks i i i File and Printer Sharing for Microsoft Networks epeat these steps for each PC with this version AF Intemet Protocol TCP IP t of Windows on your network Install Uninstall Properties Description Allows other computers to access resources on pour computer using a Microsoft network l Show icon in taskbar when connected C 12 Preparing Your Network Reference Manual for Cable DSL Wireless Router WGR614 DHCP Configuration of TCP IP in Windows NT4 Once you have installed the network card you need to configure the TCP IP environment for Windows NT 4 0 Follow this procedure to configure TCP IP with DHCP in Windows NT 4 0 e Choose Settings from the Start Menu and then select Control Panel This will display Control Panel window Identification Services Protocols Adapters Bindings al Windows uses the following information to identify your ss computer on the network You may change the name for s Double click the Network icon in the this computer and the workgroup or domain that it will appear in Control Panel window Computer Name DOCBERT NT The Network panel will display Workgroup emoa e Select the Protocols tab to continue Preparing Your Network C 13 Reference Manual for Cable DSL Wireless Router WGR614 Network Identification Services Protocols Adapters Bindings Network Protocols e Highlight the TCP IP Protocol i
100. nternet B 2 assigning B 2 B 9 auto generated 7 3 private B 7 translating B 9 IP configuration by DHCP B 10 IP networking for Macintosh C 16 for Windows C 2 C 7 ISP 2 1 K KALI 6 3 L LAN IP Setup Menu 6 7 LEDs description 1 6 troubleshooting 7 2 log sending 4 7 log entries 4 6 Login 2 9 MAC address 7 7 B 9 spoofing 2 10 2 13 7 5 Macintosh C 19 configuring for IP networking C 16 DHCP Client ID C 16 Obtaining ISP Configuration Information C 20 masquerading C 18 MDI MDI X B 13 G 2 MDI MDI X wiring B 12 G 6 metric 6 11 N NAT C 18 NAT See Network Address Translation netmask translation table B 6 Network Address Translation 1 3 B 8 C 18 Network Time Protocol 4 8 7 7 NTP 4 8 7 7 O Open System authentication D 3 P package contents 1 5 Passphrase 3 6 3 7 3 11 passphrase 1 2 Index Password 2 9 password restoring 7 7 PC using to configure C 21 ping 6 5 pinout Ethernet cable B 12 placement 3 1 port filtering 4 3 Port Forwarding 6 1 port forwarding behind NAT B 9 Port Forwarding Menu 6 1 port numbers 4 3 PPP over Ethernet 1 4 C 18 PPPoE C 18 Primary DNS Server 2 9 2 11 2 13 protocols Address Resolution B 9 DHCP B 10 Routing Information 1 3 B 2 support 1 1 publications related B 1 Q Quake 6 3 R range 3 1 range port forwarding 6 2 rear panel 1 7 Remote Management 6 12 remote management 6 12 requirements hardware 2 1 res
101. nternet browsing access during a scheduled period enter the keyword and set the schedule in the Schedule menu To specify a Trusted User enter that PC s IP address in the Trusted User box and click Apply You may specify one Trusted User which is a PC that will be exempt from blocking and logging Since the Trusted User will be identified by an IP address you should configure that PC with a fixed IP address Blocking Access to Internet Services The WGR614 router allows you to block the use of certain Internet services by PCs on your network This is called services blocking or port filtering The Block Services menu is shown below Block Services C off C Per Schedule Always _ SericeType Port 1 HTTP 80 80 Every IP Apply Add Edit Delete Figure 4 2 Block Services menu Services are functions performed by server computers at the request of client computers For example Web servers serve web pages time servers serve time and date information and game hosts serve data about other players moves When a computer on your network sends a request for service to a server computer on the Internet the requested service is identified by a service or port number This number appears as the destination port number in the transmitted IP packets For example a packet that is sent with destination port number 80 is an HTTP Web server request To enable service blocking select either Per Schedu
102. o button is selected Obtain an IP address automatically i C Use the following IF address e Click the OK button Use the following IP address This completes the DHCP configuration of TCP P in Windows XP epeat these steps for each PC with this version of Windows on your network _ Advanced DHCP Configuration of TCP IP in Windows 2000 Once again after you have installed the network card TCP IP for Windows 2000 is configured TCP IP should be added by default and set to DHCP without your having to configure it However if there are problems follow these steps to configure TCP IP with DHCP for Windows 2000 C 10 Preparing Your Network Reference Manual for Cable DSL Wireless Router WGR614 e Click on the My Network Places icon on the Windows desktop This will bring up a window called Network and Dial up Connections e Right click on Local Area Connection and select Properties The Local Area Connection Properties dialog box appears e Verify that you have the correct Ethernet card selected in the Connect using box e Verify that at least the following two items are displayed and selected in the box of Components checked are used by this connection e Client for Microsoft Networks and e Internet Protocol TCP IP e Click OK Preparing Your Network Local Area Connection Properties General Connect using BY 3Com 107100 Mini PCI Ethernet Adapter Components check
103. oes cause harmful interference to radio or television reception which can be determined by turning the equipment off and on the user is encouraged to try to correct the interference by one or more of the following measures e Reorient or relocate the receiving antenna e Increase the separation between the equipment and receiver e Connect the equipment into an outlet on a circuit different from that to which the receiver is connected e Consult the dealer or an experienced radio TV technician for help FCC Caution 1 FCC RF Radiation Exposure Statement The equipment complies with FCC RF radiation exposure limits set forth for an uncontrolled environment This equipment should be installed and operated with a minimum distance of 20 centimeters between the radiator and your body 2 This Transmitter must not be co located or operating in conjunction with any other antenna or transmitter 3 Changes or modifications to this unit not expressly approved by the party responsible for compliance could void the user authority to operate the equipment EN 55 022 Declaration of Conformance This is to certify that the Model WGR614 Cable DSL Wireless Router is shielded against the generation of radio interference in accordance with the application of Council Directive 89 336 EEC Article 4a Conformity is declared by the application of EN 55 022 Class B CISPR 22 Compliance with the applicable regulations is dependent upon the use of shielded cable
104. office that provides the ADSL signal Dynamic Host Configuration Protocol DHCP An Ethernet protocol specifying how a centralized DHCP server can assign network configuration information to multiple DHCP clients The assigned information includes IP addresses DNS addresses and gateway router addresses EAP Extensible Authentication Protocol is a general protocol for authentication that supports multiple authentication methods EAP an extension to PPP supports such authentication methods as token cards Kerberos one time passwords certificates public key authentication and smart cards In wireless communications using EAP a user requests connection to a WLAN through an AP which then requests the identity of the user and transmits that identity to an authentication server such as RADIUS The server asks the AP for proof of identity which the AP gets from the user and then sends back to the server to complete the authentication EAP is defined by RFC 2284 ESP Encapsulating Security Payload ESSID The Extended Service Set Identification ESSID 1s a thirty two character maximum alphanumeric key identifying the wireless local area network Gateway A local device usually a router that connects hosts on a local network to other networks IETF Internet Engineering Task Force Working groups of the IETF propose standard protocols and procedures for the Internet which are published as RFCs Request for Comment at www ietf org
105. on in the Web browser The changes may have occurred but the Web browser may be caching the old configuration Troubleshooting 7 3 Reference Manual for Cable DSL Wireless Router WGR614 Troubleshooting the ISP Connection If your router is unable to access the Internet you should first determine whether the router is able to obtain a WAN IP address from the ISP Unless you have been assigned a static IP address your router must request an IP address from the ISP You can determine whether the request was successful using the Web Configuration Manager To check the WAN IP address 1 Launch your browser and select an external site such as www netgear com 2 Access the Main Menu of the router s configuration at http 192 168 0 1 3 Under the Maintenance heading select Router Status 4 Check that an IP address is shown for the WAN Port If 0 0 0 0 is shown your router has not obtained an IP address from your ISP If your router is unable to obtain an IP address from the ISP you may need to force your cable or DSL modem to recognize your new router by performing the following procedure 1 Turn off power to the cable or DSL modem 2 Turn off power to your router 3 Wait five minutes and reapply power to the cable or DSL modem 4 When the modem s LEDs indicate that it has reacquired sync with the ISP reapply power to your router If your router is still unable to obtain an IP address from the ISP the problem may be one of t
106. ons can be received well beyond your walls by anyone with a compatible adapter For this reason use the security features of your wireless equipment The WGR614 router provides highly effective security features which are covered in detail in this chapter Deploy the security features appropriate to your needs Wireless Data Security Options Range Up to 500 Feet ee i 1 Open System Easy but no security WGR614 INTERNET 2 MAC Access List No data security 3 WEP Security but some performance impact Figure 3 1 WGR614 wireless data security options There are several ways you can enhance the security of you wireless network e Restrict Access Based on MAC address You can restrict access to only trusted PCs o that unknown PCs cannot wirelessly connect to the WGR614 MAC address filtering adds an obstacle against unwanted access to your network but the data broadcast over the wireless link is fully exposed e Turn Off the Broadcast of the Wireless Network Name SSID If you disable broadcast of the SSID only devices that have the correct SSID can connect This nullifies the wireless network discovery feature of some products such as Windows XP but the data is still fully exposed to a determined snoop using specialized test equipment like wireless sniffers e WEP Wired Equivalent Privacy WEP data encryption provides data security WEP Shared Key authentication and WEP d
107. operties dialog box You are returned to the Network window Click OK Reboot your PC at the prompt You may also be prompted to insert your Windows CD Obtaining ISP Configuration Information for Macintosh Computers As mentioned above you may need to collect configuration information from your Macintosh so that you can use this information when you configure the WGR614 router Following this procedure is only necessary when your ISP does not dynamically supply the account information To get the information you need to configure the firewall for Internet access l From the Apple menu select Control Panels then TCP IP The TCP IP Control Panel opens which displays a list of configuration settings If the Configure setting is Using DHCP Server your account uses a dynamically assigned IP address In this case close the Control Panel and skip the rest of this section If an IP address and subnet mask are shown write down the information If an IP address appears under Router address write down the address This is the ISP s gateway address If any Name Server addresses are shown write down the addresses These are your ISP s DNS addresses If any information appears in the Search domains information box write it down Change the Configure setting to Using DHCP Server Close the TCP IP Control Panel C 20 Preparing Your Network Reference Manual for Cable DSL Wireless Router WGR614 Restartin
108. orking architecture that provides compatibility among networking technology UPnP compliant routers provide broadband users at home and small businesses with a seamless way to participate in online games videoconferencing and other peer to peer services UTP Unshielded twisted pair is the cable used by 10BASE T and 1OOBASE Tx Ethernet networks VCI Virtual Channel Identifier Together with the VPI defines a Virtual Channel through an ATM network Used by ATM switching equipment to route data through the network VPI Virtual Path Identifier Together with the VCI defines a Virtual Channel through an ATM network Used by ATM switching equipment to route data through the network VPN Virtual Private Network A method for securely transporting data between two private networks by using a public network such as the Internet as a connection WAN A long distance link used to extend or connect remotely located local area networks The Internet is a large WAN WEB Proxy Server A Web proxy server is a specialized HTTP server that allows clients access to the Internet from behind a firewall The proxy server listens for requests from clients within the firewall and forwards these requests to remote Internet servers outside the firewall The proxy server reads responses from the external servers and then sends them to internal client clients WEP Wired Equivalent Privacy is a data encryption protocol for 802 11b wireless networks All wirele
109. outer is stored in FLASH memory and can be upgraded as new software is released by NETGEAR Upgrade files can be downloaded from Netgear s website If the upgrade file is compressed ZIP file you must first extract the binary BIN file before sending it to the router The upgrade file can be sent to the router using your browser Note The Web browser used to upload new firmware into the WGR614 router must support HTTP uploads NETGEAR recommends using Microsoft Internet Explorer or Netscape Navigator 4 0 or above Maintenance 5 5 Reference Manual for Cable DSL Wireless Router WGR614 From the Main Menu of the browser interface under the Maintenance heading select the Router Upgrade heading to display the menu shown below Router Upgrade Locate and select the upgrade file from your hard disk Browse Upload Cancel Figure 5 5 Router Upgrade menu To upload new firmware 1 Download and unzip the new software file from NETGEAR 2 Inthe Router Upgrade menu click the Browse button and browse to the location of the binary BIN upgrade file 3 Click Upload Note When uploading software to the WGR614 router it is important not to interrupt the Web browser by closing the window clicking a link or loading a new page If the browser is interrupted it may corrupt the software When the upload is complete your router will automatically restart The upgrade process will typically take about one minute In some
110. ow to configure the advanced features of your Model WGR614 Cable DSL Wireless Router These features can be found under the Advanced heading in the Main Menu of the browser interface Configuring Port Forwarding to Local Servers Although the router causes your entire local network to appear as a single machine to the Internet you can make a local server for example a web server or game server visible and available to the Internet This is done using the Port Forwarding menu From the Main Menu of the browser interface under Advanced click on Port Forwarding to view the port forwarding menu shown below Port Forwarding Service Name Server IP Address FTP i192 j168 o Add Service Name Start Port End PortServer IP Address Edit Service Delete Service Add Custom Service Figure 6 1 Port Forwarding Menu Note If you are unfamiliar with networking and routing refer to Appendix B Network Routing Firewall and Basics to become more familiar with the terms and procedures used in this manual Advanced Configuration 6 1 Reference Manual for Cable DSL Wireless Router WGR614 Use the Port Forwarding menu to configure the router to forward incoming protocols to computers on your local network In addition to servers for specific applications you can also specify a Default DMZ Server to which all other incoming protocols are forwarded The DMZ Server is configured in the Security Menu Before star
111. r loses much of the protection of the firewall and 1s exposed to exploits from the Internet If compromised the DMZ server can be used to attack your network Incoming traffic from the Internet is normally discarded by the router unless the traffic is a response to one of your local computers or a service that you have configured in the Ports menu Instead of discarding this traffic you can have it forwarded to one computer on your network This computer is called the Default DMZ Server The WAN Setup menu shown below lets you configure a Default DMZ Server To assign a computer or server to be a Default DMZ server follow these steps l 2 Click WAN Setup link on the Advanced section of the main menu Type the IP address for that server To remove the default DMZ server replace the IP address numbers with all zeros Click Apply Respond to Ping on Internet WAN Port If you want the router to respond to a ping from the Internet click the Respond to Ping on Internet WAN Port check box This should only be used as a diagnostic tool since it allows your router to be discovered Don t check this box unless you have a specific reason to do so Setting the MTU Size The default MTU size is usually fine The normal MTU Maximum Transmit Unit value for most Ethernet networks is 1500 Bytes For some ISPs particularly some using PPPoE you may need to reduce the MTU This should not be done unless you are sure it is necessary
112. r network does not automatically assign IP addresses ask wour network administrator for an address and then type itin e Verify the following the space below Obtain an IP address automatically is selected If not selected click in the radio button to the left of it to select it This f Specify an IP address setting 1s required to enable the DHCP server to automatically assign an IP address e Click OK to continue SURE MESty Restart the PC Redders Repeat these steps for each PC with this version of Windows on your network Selecting Windows Internet Access Method 1 On the Windows taskbar click the Start button point to Settings and then click Control Panel 2 Double click the Internet Options icon 3 Select I want to set up my Internet connection manually or I want to connect through a Local Area Network and click Next 4 Select I want to connect through a Local Area Network and click Next 5 Uncheck all boxes in the LAN Internet Configuration screen and click Next 6 Proceed to the end of the Wizard Verifying TCP IP Properties After your PC is configured and has rebooted you can check the TCP IP configuration using the utility winipcfg exe 1 On the Windows taskbar click the Start button and then click Run C 6 Preparing Your Network Reference Manual for Cable DSL Wireless Router WGR614 Type winipcfg and then click OK The IP Configuration wi
113. r when two devices use Shared Key Authentication 1 The station sends an authentication request to the access point 2 The access point sends challenge text to the station 3 The station uses its configured 64 bit or 128 bit default key to encrypt the challenge text and sends the encrypted text to the access point 4 The access point decrypts the encrypted text using its configured WEP Key that corresponds to the station s default key The access point compares the decrypted text with the original challenge text If the decrypted text matches the original challenge text then the access point and the station share the same WEP Key and the access point authenticates the station D 4 Wireless Networking Basics Reference Manual for Cable DSL Wireless Router WGR614 5 The station connects to the network If the decrypted text does not match the original challenge text 1 e the access point and station do not share the same WEP Key then the access point will refuse to authenticate the station and the station will be unable to communicate with either the 802 11 network or Ethernet network This process is illustrated in below Shared Key Authentication Steps 1 Authentication WWW _______ Access Point request sent to AP INTERNET Cable or DLS modem r lt 2 AP sends challenge text Client 3 Client encrypts attempting challenge text and a to connect sends it back to AP
114. ration settings without knowing the administration password or IP address you must use the Default Reset button on the rear panel of the router 1 Press and hold the Default Reset button until the Test LED turns on about 10 seconds 2 Release the Default Reset button and wait for the router to reboot Problems with Date and Time The E Mail menu in the Content Filtering section displays the current date and time of day The WGR614 router uses the Network Time Protocol NTP to obtain the current time from one of several Network Time Servers on the Internet Each entry in the log is stamped with the date and time of day Problems with the date and time function can include e Date shown is January 1 2000 Cause The router has not yet successfully reached a Network Time Server Check that your Internet access settings are configured correctly If you have just completed configuring the router wait at least five minutes and check the date and time again e Time is off by one hour Cause The router does not automatically sense Daylight Savings Time In the E Mail menu check or uncheck the box marked Adjust for Daylight Savings Time Troubleshooting 1 1 Reference Manual for Cable DSL Wireless Router WGR614 7 8 Troubleshooting Appendix A Technical Specifications This appendix provides technical specifications for the Model WGR614 Cable DSL Wireless Router Network Protocol and Standards Compatibility Data and Routing Pro
115. re the subnet mask would be 11111111 11111111 11110000 00000000 It s called a mask because it can be used to identify the subnet to which an IP address belongs by performing a bitwise AND operation on the mask and the IP address The result is the subnetwork address Subnet Mask 255 255 240 000 11111111 11111111 11110000 00000000 IP Address 150 215 017 009 10010110 11010111 00010001 00001001 Subnet Address 150 215 016 000 10010110 11010111 00010000 00000000 The subnet address therefore is 150 215 016 000 TCP IP The main internetworking protocols used in the Internet The Internet Protocol IP used in conjunction with the Transfer Control Protocol TCP form TCP IP TLS Short for Transport Layer Security TLS is a protocol that guarantees privacy and data integrity between client server applications communicating over the Internet Glossary 9 Reference Manual for Cable DSL Wireless Router WGR614 The TLS protocol is made up of two layers The TLS Record Protocol ensures that a connection is private by using symmetric data encryption and ensures that the connection is reliable The second TLS layer is the TLS Handshake Protocol which allows authentication between the server and client and the negotiation of an encryption algorithm and cryptographic keys before data is transmitted or received Based on Netscape s SSL 3 0 TLS supercedes and is an extension of SSL TLS and SSL are not interoperable Universal Plug and Play UPnP A netw
116. reless Router WGR614 e You may also refer to the GearBox CD for Cable DSL Wireless Router WGR614 for the NETGEAR Router ISP Guide which provides Internet connection information for many ISPs Once you locate your Internet configuration parameters you may want to record them on the page below Record Your Internet Connection Information Print this page Fill in the configuration parameters from your Internet Service Provider ISP ISP Login Name The login name and password are case sensitive and must be entered exactly as given by your ISP For AOL customers the login name is their primary screen name Some ISPs use your full e mail address as the login name The Service Name is not required by all ISPs If you connect using a login name and password then fill in the following Login Name Password Service Name Fixed or Static IP Address If you have a static IP address record the following information For example 169 254 141 148 could be a valid IP address Fixed or Static Internet IP Address ___ _ Gateway IP Address a ee ae Subnet Mask l i ISP DNS Server Addresses If you were given DNS server addresses fill in the following Primary DNS Server IP Address 7 Secondary DNS Server IP Address Host and Domain Names Some ISPs use a specific host or domain name like CCA7324 A or home If you haven t been given host or domain names you can use the following examples as a guide
117. resses can be either private addresses or registered addresses For more information about IP address translation refer to RFC 1631 The IP Network Address Translator NAT The following figure illustrates a single IP address operation Private IP addresses assigned by user IP addresses assigned by ISP 192 168 0 2 192 168 0 3 192 168 0 1 172 21 15 105 192 168 0 4 192 168 0 5 Figure 7 3 Single IP Address Operation Using NAT B 8 Network Routing Firewall and Basics Reference Manual for Cable DSL Wireless Router WGR614 This scheme offers the additional benefit of firewall like protection because the internal LAN addresses are not available to the Internet through the translated connection All incoming inquiries are filtered out by the router This filtering can prevent intruders from probing your system However using port forwarding you can allow one PC for example a Web server on your local network to be accessible to outside users MAC Addresses and Address Resolution Protocol An IP address alone cannot be used to deliver data from one LAN device to another To send data between LAN devices you must convert the IP address of the destination device to its media access control MAC address Each device on an Ethernet network has a unique MAC address which is a 48 bit number assigned to each device by the manufacturer The technique that associates the IP address with a MAC address is known as addr
118. right click your mouse button If the icon is not on the desktop e Click Start on the task bar located at the bottom left of the window e Choose Settings and then Control Panel e Locate the Network Neighborhood icon and click on it This will open the Network panel as shown below C 4 Preparing Your Network Reference Manual for Cable DSL Wireless Router WGR614 Verify the following settings as shown Client for Microsoft Network exists Ethernet adapter is present TCP IP is present Primary Network Logon is set to Windows logon Click on the Properties button The following TCP IP Properties window will display Preparing Your Network Configuration Identification Access Control The following network components are installed m Client for Microsoft Hetwork s aCom Fast EtherLink sL 1077100Mb T Ethemet Adapter f TCPYIP Add Piapenies Primary Network Logori Client for Microsoft Networks J Client for Microsoft Networks windows Logon Description The primary network logon is the client that is used to validate your User name and password process any login scripts and perform other startup tasks Reference Manual for Cable DSL Wireless Router WGR614 TEPIP Properties Bindings Advanced NetBIOS DNS Configuration Gateway WINS Configuration IP Address e By default the IP Address tab is open on this window An IF address can be automatically assigned to this computer If vou
119. rk and Dialup Connections windows Then restart your PC Preparing Your Network C Reference Manual for Cable DSL Wireless Router WGR614 DHCP Configuration of TCP IP in Windows XP 2000 or NT4 You will find there are many similarities in the procedures for different Windows systems when using DHCP to configure TCP IP The following steps will walk you through the configuration process for each of these versions of Windows DHCP Configuration of TCP IP in Windows XP Locate your Network Neighborhood icon e Select Control Panel from the Windows XP new Start Menu e Select the Network Connections icon on the Control Panel This will take you to the next step MS Local Grea Connectigg Network Tasks Disable fs Create a new connection Repair al Disable this network device Bridge Connections Repair this connection mi Rename this connection Faget eee e Now the Network Connection window View status of this connection displays Change settings of this Properties connection Rename The Connections List that shows all the network connections set up on the PC located to the right of the window Details Other Places e Right click on the Connection you will use and choose Status C 8 Preparing Your Network Reference Manual for Cable DSL Wireless Router WGR614 4 Local Area Connection Status General Support e Now you should be at the Local Area INE E Network Connection Status
120. roblems e Wrong physical connections Make sure the LAN port LED is on If the LED is off follow the instructions in LAN or WAN Port LEDs Not On on page 7 2 Check that the corresponding Link LEDs are on for your network interface card and for the hub ports if any that are connected to your workstation and router e Wrong network configuration Verify that the Ethernet card driver software and TCP IP software are both installed and configured on your PC or workstation Verify that the IP address for your router and your workstation are correct and that the addresses are on the same subnet Testing the Path from Your PC to a Remote Device After verifying that the LAN path works correctly test the path from your PC to a remote device From the Windows run menu type PING n 10 lt IP address gt where lt P address gt is the IP address of a remote device such as your ISP s DNS server If the path is functioning correctly replies as in the previous section are displayed If you do not receive replies Check that your PC has the IP address of your router listed as the default gateway If the IP configuration of your PC is assigned by DHCP this information will not be visible in your PC s Network Control Panel Verify that the IP address of the router is listed as the default gateway as described in Verifying TCP IP Properties on page C 6 Check to see that the network address of your PC t
121. rties for Macintosh Computers on page C 17 to find your PC s IP address Follow the instructions in Appendix C to configure your PC Note If your PC s IP address is shown as 169 254 x x Recent versions of Windows and MacOS will generate and assign an IP address if the computer cannot reach a DHCP server These auto generated addresses are in the range of 169 254 x x If your IP address is in this range check the connection from the PC to the router and reboot your PC e If your router s IP address has been changed and you don t know the current IP address clear the router s configuration to factory defaults This will set the router s IP address to 192 168 0 1 This procedure is explained in Restoring the Default Configuration and Password on page 7 7 e Make sure your browser has Java JavaScript or ActiveX enabled If you are using Internet Explorer click Refresh to be sure the Java applet is loaded e Try quitting the browser and launching it again e Make sure you are using the correct login information The factory default login name is admin and the password is password Make sure that CAPS LOCK is off when entering this information If the router does not save changes you have made in the Web Configuration Interface check the following e When entering configuration settings be sure to click the APPLY button before moving to another menu or tab or your changes are lost e Click the Refresh or Reload butt
122. s It is the responsibility of the user to procure the appropriate cables Bestatigung des Herstellers Importeurs Es wird hiermit best tigt da das Model WGR614 Cable DSL Wireless Router gem der im BMPT AmtsblVfg 243 1991 und Vfg 46 1992 aufgef hrten Bestimmungen entstort ist Das vorschriftsmaBige Betreiben einiger Ger te z B Testsender kann jedoch gewissen Beschr nkungen unterliegen Lesen Sie dazu bitte die Anmerkungen in der Betriebsanleitung Das Bundesamt f r Zulassungen in der Telekommunikation wurde davon unterrichtet daB dieses Ger t auf den Markt gebracht wurde und es ist berechtigt die Serie auf die Erf llung der Vorschriften hin zu berpr fen Certificate of the Manufacturer Importer It is hereby certified that the Model WGR614 Cable DSL Wireless Router has been suppressed in accordance with the conditions set out in the BMPT AmtsblVfg 243 1991 and Vfg 46 1992 The operation of some equipment for example test transmitters in accordance with the regulations may however be subject to certain restrictions Please refer to the notes in the operating instructions Federal Office for Telecommunications Approvals has been notified of the placing of this equipment on the market and has been granted the right to test the series for compliance with the regulations Voluntary Control Council for Interference VCCI Statement This equipment is in the second category information equipment to be used in a residential are
123. s 255 255 255 240 Table 7 1 Netmask Notation Translation Table for One Octet Number of Bits Dotted Decimal Value 128 192 224 240 248 252 254 255 CON O OO A OO N gt The following table displays several common netmask values in both the dotted decimal and the masklength formats Table 7 2 Netmask Formats Dotted Decimal Masklength 255 0 0 0 8 255 255 0 0 16 B 6 Network Routing Firewall and Basics Reference Manual for Cable DSL Wireless Router WGR614 Table 7 2 Netmask Formats 255 255 255 0 24 255 255 255 128 25 299 255 255 192 26 255 255 255 224 27 255 255 255 240 28 299 255 255 248 129 299 259 255 252 30 255 255 255 254 31 259 255 255 255 32 Configure all hosts on a LAN segment to use the same netmask for the following reasons e So that hosts recognize local IP broadcast packets When a device broadcasts to its segment neighbors it uses a destination address of the local network address with all ones for the host address In order for this scheme to work all devices on the segment must agree on which bits comprise the host address e So that a local router or bridge recognizes which addresses are local and which are remote Private IP Addresses If your local network is isolated from the Internet for example when using NAT you can assign any IP addresses to the hosts without problems However the IANA has reserved the following three blocks of IP addresses specifically for private networ
124. s addressing is very helpful at the application level but the descriptive name must be translated to an IP address in order for a user to actually contact the resource Just as a telephone directory maps names to phone numbers or as an ARP table maps IP addresses to MAC addresses a domain name system DNS server maps descriptive names of network resources to IP addresses When a PC accesses a resource by its descriptive name it first contacts a DNS server to obtain the IP address of the resource The PC sends the desired message using the IP address Many large organizations such as ISPs maintain their own DNS servers and allow their customers to use the servers to look up addresses IP Configuration by DHCP When an IP based local area network is installed each PC must be configured with an IP address If the PCs need to access the Internet they should also be configured with a gateway address and one or more DNS server addresses As an alternative to manual configuration there is a method by which each PC on the network can automatically obtain this configuration information A device on the network may act as a Dynamic Host Configuration Protocol DHCP server The DHCP server stores a list or pool of IP addresses along with other information such as gateway and DNS addresses that it may assign to the other devices on the network The WGR614 router has the capacity to act as a DHCP server The WGR614 router also functions as a DHCP cli
125. s network different wireless network names provide a means for separating the traffic Any device you want to participate in a particular wireless network will need to use this SSID for that network The WGR614 default SSID is NETGEAR e Region This field identifies the region where the WGR614 can be used It may not be legal to operate the wireless features of the router in a region other than one of those identified in this field e Channel This field determines which operating frequency will be used It should not be necessary to change the wireless channel unless you notice interference problems with another nearby access point For more information on the wireless channel frequencies please refer to Wireless Channels on page D 7 e Mode This field determines which data communications protocol will be used You can select g only or g and b g only dedicates the WGR614 to communicating with the higher bandwidth 802 11g wireless devices exclusively The g and b mode provides backward compatibility with the slower 802 11b wireless devices while still enabling 802 11g communications e Allow Broadcast of Name SSID If you disable broadcast of the SSID only devices that have the correct SSID can connect Disabling SSID broadcast nullifies the wireless network discovery feature of some products such as Windows XP e Enable Wireless Access Point If you disable the wireless access point wireless devices c
126. s password in your password list Cancel Figure 2 5 Login window 3 Connect to the Internet Setup Wizard Setup Wizard System Can Now Detect The Connection Type Of WAN Port Or You Can Configure it By Yourself Do You Want System To Detect The Connection Type Yas C No Want To Configure By Myself Next Figure 2 6 Setup Smart Wizard a You are now connected to the router If you do not see the menu above click the Setup Smart Wizard link on the upper left of the main menu b Click Next and follow the steps in the Setup Smart Wizard for inputting the configuration parameters from your ISP to connect to the Internet Note If you choose not to use the Setup Smart Wizard you can manually configure your Internet connection settings by following the procedure How to Manually Configure Your Internet Connection on page 2 12 Unless your ISP automatically assigns your configuration automatically via DHCP you will need the configuration parameters from your ISP that you recorded in the form Record Your Internet Connection Information on page 2 3 Connecting the Router to the Internet 2 7 Reference Manual for Cable DSL Wireless Router WGR614 c When the router successfully detects an active Internet service the router s Internet LED goes on The Setup Smart Wizard reports which connection type it discovered and displays the appropriate configuration menu If the Setup Smart Wizard finds no
127. sic to intermediate computer and Internet skills However basic computer network Internet firewall and VPN technologies tutorial information is provided in the Appendices and on the Netgear website Typographical Conventions This guide uses the following typographical conventions italics Emphasis Screen text user typed command line entries Enter Named keys in text are shown enclosed in square brackets The notation Enter is used for the Enter key and the Return key Ctrl C Two or more keys that must be pressed simultaneously are shown in text linked with a plus sign DOS file and directory names About This Manual XI Reference Manual for Cable DSL Wireless Router WGR614 Special Message Formats This guide uses the following formats to highlight special messages Note This format is used to highlight information of importance or special interest xii About This Manual Chapter 1 Introduction This chapter describes the features of the NETGEAR Model WGR614 Cable DSL Wireless Router Key Features of the Router The Model WGR614 Cable DSL Wireless Router with 4 port switch connects your local area network LAN to the Internet through an external access device such as a cable modem or DSL modem The WGR614 router provides you with multiple Web content filtering options plus browsing activity reporting and instant alerts both via e mail Parents and network administrators can establish restricted
128. ss PC card It corresponds to the ESSID in the wireless Access Point and to the wireless network name See also Wireless Network Name and ESSID Subnet Mask A mask used to determine what subnet an IP address belongs to Subnetting enables a network administrator to further divide an IP address into two or more subnets An IP address has two components the network address and the host address For example consider the IP address 150 215 017 009 Assuming this is part of a Class B network the first two numbers 150 215 represent the Class B network address and the second two numbers 017 009 identify a particular host on this network Subnetting enables the network administrator to further divide the host part of the address into two or more subnets In this case a part of the host address is reserved to identify the particular subnet This is easier to see if we show the IP address in binary format The full address is 10010110 11010111 00010001 00001001 The Class B network part is 10010110 11010111 and the host address is 00010001 00001001 If this network is divided into 14 subnets however then the first 4 bits of the host address 0001 are reserved for identifying the subnet The subnet mask is the network address plus the bits reserved for identifying the subnetwork By convention the bits for the network address are all set to 1 though it would also work if the bits were set exactly as in the network address In this case therefo
129. ss nodes and access points on the network are configured with a 64 bit or 128 bit Shared Key for data encryption 10 Glossary Reference Manual for Cable DSL Wireless Router WGR614 wide area network WAN A long distance link used to extend or connect remotely located local area networks The Internet is a large WAN Wi Fi A trade name for the 802 11b wireless networking standard given by the Wireless Ethernet Compatibility Alliance WECA see http www wi fi net an industry standards group promoting interoperability among 802 11b devices Windows Internet Naming Service WINS Windows Internet Naming Service is a server process for resolving Windows based computer names to IP addresses If a remote network contains a WINS server your Windows PCs can gather information from that WINS server about its local hosts This allows your PCs to browse that remote network using the Windows Network Neighborhood feature WINS WINS Windows Internet Naming Service is a server process for resolving Windows based computer names to IP addresses Wireless Network Name SSID Wireless Network Name SSID is the name assigned to a wireless network This is the same as the SSID or ESSID configuration parameter Glossary 11 Reference Manual for Cable DSL Wireless Router WGR614 12 Glossary Numerics 64 or 128 bit WEP 3 6 802 11b D 1 A Account Name 2 11 2 13 5 2 Address Resolution Protocol B 9 ad hoc mode D 2 Authentication Serv
130. ss to which logs and alerts are sent This e mail address will also be used as the From address If you leave this box blank log and alert messages will not be sent via e mail You can specify that logs are automatically sent to the specified e mail address with these options Send alert immediately Check this box if you would like immediate notification of attempted access to a blocked site Send logs according to this schedule Specifies how often to send the logs None Hourly Daily Weekly or When Full Day for sending log Specifies which day of the week to send the log Relevant when the log is sent weekly or daily Time for sending log Specifies the time of day to send the log Relevant when the log is sent daily or weekly If the Weekly Daily or Hourly option is selected and the log fills up before the specified period the log is automatically e mailed to the specified e mail address After the log is sent the log is cleared from the router s memory If the router cannot e mail the log file the log buffer may fill up In this case the router overwrites the log and discards its contents If you don t want logs sent select None from the list in the Send Logs According To This Schedule area When you turn on e mail notification and choose None in the Send Logs According to this Schedule list the alert is sent but not the log The WGR614 router uses the Network Time Protocol NTP to obtain the current time and date
131. ssword before gaining access to a network This information is passed to a RADIUS server which checks that the information is correct and then authorizes access Though not an official standard the RADIUS specification is maintained by a working group of the IETF RFC Request For Comment Refers to documents published by the Internet Engineering Task Force IETF proposing standard protocols and procedures for the Internet RFCs can be found at www ietf org RIP A protocol in which routers periodically exchange information with one another so that they can determine minimum distance paths between sources and destinations router A device that forwards data between networks An IP router forwards data based on IP source and destination addresses Routing Information Protocol RIP A protocol in which routers periodically exchange information with one another so that they can determine minimum distance paths between sources and destinations 8 Glossary Reference Manual for Cable DSL Wireless Router WGR614 router A device that forwards data between networks An IP router forwards data based on IP source and destination addresses SSID A Service Set Identification is a thirty two character maximum alphanumeric key identifying a wireless local area network For the wireless devices in a network to communicate with each other all devices must be configured with the same SSID This is typically the configuration parameter for a wirele
132. stem or Shared Key is unrelated to encryption of transmissions The two bands can use different authentication settings Choose Shared Key for more security circle one Open System or Shared Key Note If you select shared key the other devices in the network will not connect unless they are set to Shared Key as well WEP Encryption Strength Choose the key size Circle one 64 or 128 bits WEP Encryption Keys There are two methods for creating WEP encryption keys Passphrase Enter a word or group of printable characters These characters are case sensitive When you enter the Passphrase and click the Generate button on the WGR614 the keys will be generated Manual For 64 bit WEP enter 10 hexadecimal digits any combination of 0 9 or a f These values are not case sensitive For 128 bit WEP enter 26 hexadecimal digits Whichever method you use record the key values in the spaces below Key 1 Key 2 Key 3 Key 4 Use the procedures described in the following sections to configure the WGR614 Store this information in a safe place Wireless Configuration 3 7 Reference Manual for Cable DSL Wireless Router WGR614 How to Set Up and Test Basic Wireless Connectivity Follow the instructions below to set up and test basic wireless connectivity Once you have established basic wireless connectivity you can enable security settings appropriate to your needs l Log in to the WGR614 firewall at its defa
133. t A Category 5 cable will meet specified requirements regarding loss and crosstalk In addition there are restrictions on maximum cable length for both 10 and 100 Mbits second networks Network Routing Firewall and Basics B 13 Reference Manual for Cable DSL Wireless Router WGR614 B 14 Network Routing Firewall and Basics Appendix C Preparing Your Network This appendix describes how to prepare your network to connect to the Internet through the Model WGR614 Cable DSL Wireless Router and how to verify the readiness of broadband Internet service from an Internet service provider ISP Note If an ISP technician configured your computer during the installation of a broadband modem or if you configured it using instructions provided by your ISP you may need to copy the current configuration information for use in the configuration of your firewall Write down this information before reconfiguring your computers Refer to Obtaining ISP Configuration Information for Windows Computers on page C 19 or Obtaining ISP Configuration Information for Macintosh Computers on page C 20 for further information Preparing Your Computers for TCP IP Networking Computers access the Internet using a protocol called TCP IP Transmission Control Protocol Internet Protocol Each computer on your network must have TCP IP installed and selected as its networking protocol If a Network Interface Card NIC is already installed in your PC t
134. t Compatibility Alliance WECA see hittp www wi fi net an industry standard group promoting interoperability among 802 11 devices The 802 11 standard offers two methods for configuring a wireless network ad hoc and infrastructure Infrastructure Mode With a wireless Access Point you can operate the wireless LAN in the infrastructure mode This mode provides wireless connectivity to multiple wireless network devices within a fixed range or area of coverage interacting with wireless nodes via an antenna Wireless Networking Basics D 1 Reference Manual for Cable DSL Wireless Router WGR614 In the infrastructure mode the wireless access point converts airwave data into wired Ethernet data acting as a bridge between the wired LAN and wireless clients Connecting multiple Access Points via a wired Ethernet backbone can further extend the wireless network coverage As a mobile computing device moves out of the range of one access point it moves into the range of another As a result wireless clients can freely roam from one Access Point domain to another and still maintain seamless network connection Ad Hoc Mode Peer to Peer Workgroup In an ad hoc network computers are brought together as needed thus there is no structure or fixed points to the network each node can generally communicate with any other node There is no Access Point involved in this configuration This mode enables you to quickly set up a small wireless workgro
135. t WEP encryption security WEP keys can be generated manually or by passphrase Wireless access can be restricted by MAC address Wireless network name broadcast can be turned off so that only devices that have the network name SSID can connect A Powerful True Firewall with Content Filtering Unlike simple Internet sharing NAT routers the WGR614 is a true firewall using stateful packet inspection to defend against hacker attacks Its firewall features include 1 2 Denial of Service DoS protection Automatically detects and thwarts DoS attacks such as Ping of Death SYN Flood LAND Attack and IP Spoofing Blocks unwanted traffic from the Internet to your LAN Blocks access from your LAN to Internet locations or services that you specify as off limits Logs security incidents The WGR614 will log security events such as blocked incoming traffic port scans attacks and administrator logins You can configure the router to email the log to you at specified intervals You can also configure the router to send immediate alert messages to your email address or email pager whenever a significant event occurs With its content filtering feature the WGR614 prevents objectionable content from reaching your PCs The router allows you to control access to Internet content by screening for keywords within Web addresses You can configure the router to log and report attempts to access objectionable Internet sites Introduction Refere
136. t receives When set to None it will not send any RIP packets and will ignore any RIP packets received e RIP Version This controls the format and the broadcasting method of the RIP packets that the router sends It recognizes both formats when receiving By default this is set for RIP 1 RIP 1 is universally supported RIP 1 is probably adequate for most networks unless you have an unusual network setup RIP 2 carries more information RIP 2B uses subnet broadcasting Note If you change the LAN IP address of the router while connected through the browser you will be disconnected You may need to restart your computer for the new IP address setting to take effect Using the Router as a DHCP server By default the router will function as a DHCP Dynamic Host Configuration Protocol server allowing it to assign IP DNS server and default gateway addresses to all computers connected to the router s LAN The assigned default gateway address is the LAN address of the router IP addresses will be assigned to the attached PCs from a pool of addresses specified in this menu Each pool address is tested before it is assigned to avoid duplicate addresses on the LAN 6 8 Advanced Configuration Reference Manual for Cable DSL Wireless Router WGR614 For most applications the default DHCP and TCP IP settings of the router are satisfactory See IP Configuration by DHCP on page B 10 for an explanation of DHCP and in
137. tatic IP address for your PC select Use static IP address Enter the IP address that your ISP assigned Also enter the netmask and the Gateway IP address The Gateway is the ISP s router to which your router will connect c Domain Name Server DNS Address If you know that your ISP does not automatically transmit DNS addresses to the router during login select Use these DNS servers and enter the IP address of your ISP s Primary DNS Server If a Secondary DNS Server address is available enter it also Note If you enter an address here restart the computers on your network so that these settings take effect d Gateway s MAC address This section determines the Ethernet MAC address that will be used by the router on the Internet port Some ISPs will register the Ethernet MAC address of the network interface card in your PC when your account is first opened They will then only accept traffic from the MAC address of that PC This feature allows your router to masquerade as that PC by cloning its MAC address To change the MAC address select Use this Computer s MAC address The router will then capture and use the MAC address of the PC that you are now using You must be using the one PC that is allowed by the ISP Or select Use this MAC address and enter it e Click Apply to save your settings 3 Ifyour Internet connection does require a login fill in the settings according to the instructions b
138. teps 1 In the table select the button next to the service name 2 Click Edit or Delete 6 2 Advanced Configuration Reference Manual for Cable DSL Wireless Router WGR614 Local Web and FTP Server Example Ifa local PC with a private IP address of 192 168 0 33 acts as a Web and FTP server configure the Ports menu to forward HTTP port 80 and FTP port 21 to local address 192 168 0 33 In order for a remote user to access this server from the Internet the remote user must know the IP address that has been assigned by your ISP If this address is 172 16 1 23 for example an Internet user can access your Web server by directing the browser to http 172 16 1 23 The assigned IP address can be found in the Maintenance Status Menu where it is shown as the WAN IP Address Some considerations for this application are e If your account s IP address is assigned dynamically by your ISP the IP address may change periodically as the DHCP lease expires e Ifthe IP address of the local PC is assigned by DHCP it may change when the PC is rebooted To avoid this you can manually configure the PC to use a fixed address e Local PCs must access the local server using the PCs local LAN address 192 168 0 33 in this example Attempts by local PCs to access the server using the external IP address 172 16 1 23 in this example will fail Multiple Computers for Half Life KALI or Quake III Example To set up an additional computer to play Ha
139. th DNS addresses as explained in your operating system documentation e Your PC may not have the router configured as its TCP IP gateway If your PC obtains its information from the router by DHCP reboot the PC and verify the gateway address as described in Verifying TCP IP Properties on page C 6 Troubleshooting a TCP IP Network Using a Ping Utility Most TCP IP terminal devices and routers contain a ping utility that sends an echo request packet to the designated device The device then responds with an echo reply Troubleshooting a TCP IP network is made very easy by using the ping utility in your PC or workstation Testing the LAN Path to Your Router You can ping the router from your PC to verify that the LAN path to your router is set up correctly To ping the router from a PC running Windows 95 or later 1 From the Windows toolbar click on the Start button and select Run 2 Inthe field provided type Ping followed by the IP address of the router as in this example ping 192 168 0 1 3 Click on OK You should see a message like this one Pinging lt IP address gt with 32 bytes of data Troubleshooting 1 5 Reference Manual for Cable DSL Wireless Router WGR614 If the path is working you see this message Reply from lt IP address gt bytes 32 time NN ms TTL xxx If the path is not working you see this message Request timed out If the path is not functioning correctly you could have one of the following p
140. the broadcast address for simultaneously sending a packet to all hosts with the same network address Netmask In each of the address classes previously described the size of the two parts network address and host address is implied by the class This partitioning scheme can also be expressed by a netmask associated with the IP address A netmask is a 32 bit quantity that when logically combined using an AND operator with an IP address yields the network address For instance the netmasks for Class A B and C addresses are 255 0 0 0 255 255 0 0 and 255 255 255 0 respectively For example the address 192 168 170 237 is a Class C IP address whose network portion is the upper 24 bits When combined using an AND operator with the Class C netmask as shown here only the network portion of the address remains TIOO0000 LOLOrooo lt LOTOLOLO LEVORTOL 192 L68 7062 371 combined with DTT ET el ea 000000008 255425 9 25950 Equals LEOQOQOO TOLOLTOOO LVOTOLOLO 00000000 L19210 9 l70 0 B 4 Network Routing Firewall and Basics Reference Manual for Cable DSL Wireless Router WGR614 As a shorter alternative to dotted decimal notation the netmask may also be expressed in terms of the number of ones from the left This number is appended to the IP address following a backward slash as n In the example the address could be written as 192 168 170 237 24 indicating that the netmask is 24 ones followed by 8
141. ticate a station before the station can associate with the access point or communicate with the network The IEEE 802 11 standard defines two types of authentication Open System and Shared Key e Open System Authentication allows any device to join the network assuming that the device SSID matches the access point SSID Alternatively the device can use the ANY SSID option to associate with any available Access Point within range regardless of its SSID Wireless Networking Basics D 3 Reference Manual for Cable DSL Wireless Router WGR614 e Shared Key Authentication requires that the station and the access point have the same WEP Key to authenticate These two authentication procedures are described below Open System Authentication The following steps occur when two devices use Open System Authentication 1 The station sends an authentication request to the access point 2 The access point authenticates the station 3 The station associates with the access point and joins the network This process 1s illustrated in below Open System Authentication Steps 1 Authentication request sent to AP A hae 2 AP authenticates l w DET 3 Lo ef s INTERNET 4 Cable or r 3 Client connects to network Di noden Client _ _ gt attempting to connect Access Point AP Servers PC s Figure 7 4 Open system authentication Shared Key Authentication The following steps occu
142. ting you ll need to determine which type of service application or game you ll provide and the IP address of the computer that will provide each service Be sure the computer s IP address never changes To configure port forwarding to a local server 1 From the Service Name box select the service or game that you will host on your network If the service does not appear in the list refer to the following section Adding a Port Forwarding Custom Service 2 Enter the IP address of the local server in the corresponding Server IP Address box 3 Click the Add button Adding a Port Forwarding Custom Service To define a service game or application that does not appear in the Service Name list you must determine what port numbers are used by the service For this information you may need to contact the manufacturer of the program that you wish to use When you have the port number information follow these steps 1 Click the Add Custom Service button 2 Enter the first port number in an unused Starting Port box 3 To forward only one port enter it again in the Ending Port box To specify a range of ports enter the last port to be forwarded in the End Port box 4 Enter the IP address of the local server in the corresponding Server IP Address box 5 Type a name for the service 6 Click Apply at the bottom of the menu Editing or Deleting a Port Forwarding Entry To edit or delete a Port Forwarding entry follow these s
143. ting Windows Internet Access Method eeeeeeeeeeeeeeeeeeeseeeseeeeesaees O76 Verifying TCP IP Properties EETA A Ieee ere EEEE reer P Configuring Windows NT4 2000 or XP for IP Networking MELEE scenester C 7 Install or Verify Windows Networking Components EPEE TEE PE D T i DHCP Configuration of TCP IP in Windows XP 2000 or NTA ssiasianiernenenass uD DHCP Configuration of TCP IP in Windows XP c cece cece eseeeeeeteeeteeeteesteteessessee O78 DHCP Configuration of TCP IP in Windows 2000 06 EEEE ERO E i DHCP Configuration of TCP IP in Windows NT4 anaes pai PERNT EE IEE eeu C 13 Verifying TCP IP Properties for Windows XP 2000 and NT4 cceeceeeeseeeee C 15 Configuring the Macintosh for TCP IP Networking ccccsseccceeeeseceeseeeeeesseseeeeees C716 MacOS 8 6 OF 9 X scsisssicccnvesse P NE diagonal EE E APPEN E C 16 MacOS X eer nein et Verifying TCP IP P Properties fc for Macintosh koei E ETE EEE E E E E DO a Verifying the Readiness of Your Internet Account ccccseeeeeceeeeeeeeeseeeeeesseeeeeees C18 Are Login Protocols Used ee ERTE EE ANE E ieai C 18 Contents viii What Is Your Configuration Information svciccncicsacpeveriesejsovesnersiesreacickvsrereeiadiere nests C 18 Obtaining ISP Configuration Information for Windows Computers 066 C 19 Obtaining ISP Configuration Informatio
144. to a Network Interface Card NIC in a computer Your firewall does not support a USB connected broadband modem For a single user Internet account your ISP supplies TCP IP configuration information for one computer With a typical account much of the configuration information is dynamically assigned when your PC is first booted up while connected to the ISP and you will not need to know that dynamic information In order to share the Internet connection among several computers your firewall takes the place of the single PC and you need to configure it with the TCP IP information that the single PC would normally use When the firewall s Internet port is connected to the broadband modem the firewall appears to be a single PC to the ISP The firewall then allows the PCs on the local network to masquerade as the single PC to access the Internet through the broadband modem The method used by the firewall to accomplish this is called Network Address Translation NAT or IP masquerading Are Login Protocols Used Some ISPs require a special login protocol in which you must enter a login name and password in order to access the Internet If you normally log in to your Internet account by running a program such as WinPOET or EnterNet then your account uses PPP over Ethernet PPPoE When you configure your router you will need to enter your login name and password in the router s configuration menus After your network and firewall are confi
145. tocols Power Adapter North America United Kingdom Australia Europe Japan All regions output Physical Specifications Dimensions Weight Environmental Specifications Operating temperature Operating humidity Technical Specifications TCP IP RIP 1 RIP 2 DHCP PPP over Ethernet PPPoE 120V 60 Hz input 240V 50 Hz input 230V 50 Hz input 100V 50 60 Hz input 12 V DC 800 mA output 22W maximum 28x 175x118 mm 1 1 x 6 89 x 4 65 in 0 3 kg 0 66 Ib 0 to 40 C 32 to 104 F 90 maximum relative humidity noncondensing A 1 Reference Manual for Cable DSL Wireless Router WGR614 Electromagnetic Emissions Meets requirements of Interface Specifications LAN WAN Wireless Radio Data Rates Frequency Data Encoding Maximum Computers Per Wireless Network Operating Frequency Ranges Encryption A 2 FCC Part 15 Class B VCCI Class B EN 55 022 CISPR 22 Class B IOBASE T or lOOBASE Tx RJ 45 IOBASE T RJ 45 1 2 5 5 6 9 12 18 24 36 48 and 54 Mbps Auto Rate Sensing 2 4 2 5Ghz Direct Sequence Spread Spectrum DSSS Limited by the amount of wireless network traffic generated by each node Typically 30 70 nodes 2 412 2 462 GHz US 2 457 2 462 GHz Spain 2 412 2 484 GHz Japan 2 457 2 472 GHz France 2 412 2 472 GHz Europe ETSI 40 bits also called 64 bits 128 bits WEP data encryption Technical Specifications Appendix B Network
146. twork Routing Firewall and Basics B 11 Reference Manual for Cable DSL Wireless Router WGR614 Ethernet Cabling Although Ethernet networks originally used thick or thin coaxial cable most installations currently use unshielded twisted pair UTP cabling The UTP cable contains eight conductors arranged in four twisted pairs and terminated with an RJ45 type connector A normal straight through UTP Ethernet cable follows the EIA568B standard wiring and pinout as described in Table 7 1 Table 7 1 UTP Ethernet cable wiring straight through Orange White Transmit Tx Transmit 1 Green White Receive Rx Bue euwe Receive Rx Browning Bown Uplink Switches Crossover Cables and MDI MDIX Switching In the wiring table above the concept of transmit and receive are from the perspective of the PC which is wired as Media Dependant Interface MDI In this wiring the PC transmits on pins 1 and 2 At the hub the perspective is reversed and the hub receives on pins 1 and 2 This wiring is referred to as Media Dependant Interface Crossover MDI X When connecting a PC to a PC or a hub port to another hub port the transmit pair must be exchanged with the receive pair This exchange is done by one of two mechanisms Most hubs provide an Uplink switch which will exchange the pairs on one port allowing that port to be connected to another hub using a normal Ethernet cable The second method is to use a crossover cable
147. ult LAN address of http 192 168 0 1 with its default user name of admin and default password of password or using whatever LAN address and password you have set up Click the Wireless Settings link in the main menu of the WGR614 firewall Wireless Settings Wireless Network Name SSID Earl Region United states Channel 11 Figure 3 4 Wireless Settings menu 3 8 Choose a suitable descriptive name for the wireless network name SSID In the SSID box enter a value of up to 32 alphanumeric characters The default SSID is NETGEAR Note The SSID of any wireless access adapters must match the SSID you configure in the Model WGR614 Cable DSL Wireless Router If they do not match you will not get a wireless connection to the WGR614 Set the Region Select the region in which the wireless interface will operate Set the Channel The default channel is 11 This field determines which operating frequency will be used It should not be necessary to change the wireless channel unless you notice interference problems with another nearby wireless router or access point Select a channel that is not being used by any other wireless networks within several hundred feet of your firewall For more information on the wireless channel frequencies please refer to Wireless Channels on page D 7 For initial configuration and test leave the Wireless Card Access List set to Everyone and the Encryption Strength set to Disabled
148. up and allows workgroup members to exchange data or share printers as supported by Microsoft networking in the various Windows operating systems Some vendors also refer to ad hoc networking as peer to peer group networking In this configuration network packets are directly sent and received by the intended transmitting and receiving stations As long as the stations are within range of one another this is the easiest and least expensive way to set up a wireless network Network Name Extended Service Set Identification ESSID The Extended Service Set Identification ESSID is one of two types of Service Set Identification SSID In an ad hoc wireless network with no access points the Basic Service Set Identification BSSID is used In an infrastructure wireless network that includes an access point the ESSID is used but may still be referred to as SSID An SSID is a thirty two character maximum alphanumeric key identifying the name of the wireless local area network Some vendors refer to the SSID as network name For the wireless devices in a network to communicate with each other all devices must be configured with the same SSID D 2 Wireless Networking Basics Reference Manual for Cable DSL Wireless Router WGR614 Authentication and WEP The absence of a physical connection between nodes makes the wireless links vulnerable to eavesdropping and information theft To provide a certain level of security the IEEE 802 11 standard h
149. ur WGR614 router Note Be sure to change the router s default configuration password to a very secure password The ideal password should contain no dictionary words from any language and should be a mixture of letters both upper and lower case numbers and symbols Your password can be up to 30 characters To configure your router for Remote Management 1 Select the Turn Remote Management On check box 2 Specify what external addresses will be allowed to access the router s remote management Note For enhanced security restrict access to as few external IP addresses as practical a To allow access from any IP address on the Internet select Everyone 6 12 Advanced Configuration Reference Manual for Cable DSL Wireless Router WGR614 b To allow access from a range of IP addresses on the Internet select IP address range Enter a beginning and ending IP address to define the allowed range c To allow access from a single IP address on the Internet select Only this PC Enter the IP address that will be allowed access 3 Specify the Port Number that will be used for accessing the management interface Web browser access normally uses the standard HTTP service port 80 For greater security you can change the remote management web interface to a custom port by entering that number in the box provided Choose a number between 1024 and 65535 but do not use the number of any common service port The default is 8080 which
150. uration Reference Manual for Cable DSL Wireless Router WGR614 7 Click Add to add this wireless device to the Wireless Card Access List The screen changes back to the list screen Repeat these steps for each additional device you wish to add to the list 8 Be sure to click Apply to save your wireless access control list settings Now only devices on this list will be allowed to wirelessly connect to the WGR614 How to Configure WEP To configure WEP data encryption follow these steps wwe Note If you use a wireless PC configure WEP settings you will be disconnected when gt you click on Apply You must then either configure your wireless adapter to match the router WEP settings or access the router from a wired PC to make any further changes 1 Log in to the WGR614 firewall at its default LAN address of Attp 192 168 0 1 with its default user name of admin and default password of password or using whatever LAN address and password you have set up 2 Click the Wireless Settings link in the main menu of the WGR614 firewall 3 From the Security Encryption menu drop down list select the WEP encryption strength you will use Security Encryption WEP Key Passphrase Generate Keyl Key ke3 Keyd O Figure 3 6 Wireless Settings encryption menu 4 You can manually or automatically program the four data encryption keys These values must be identical on all PCs and Access Points in your network
151. ure 2 1 Disconnect the cable or DSL Modem c Connect the Ethernet cable from your cable or DSL modem to the Internet port A on the WGR614 2 4 Connecting the Router to the Internet Reference Manual for Cable DSL Wireless Router WGR614 Note Place the WGR614 router in a location which conforms to the Observe Performance Placement and Range Guidelines on page 3 1 The stand provided with the WGR614 provides a convenient space saving way of installing the router Avoid stacking it on other electronic equipment m Ad ol i METALL Lo meee hd Tn Figure 2 2 Connect the cable or DSL Modem to the router d Connect the Ethernet cable which came with the router from a Local port on the router B to your computer Cable or DSL modem Tin u zes a ami VIET TTL AIL Figure 2 3 Connect the computers on your network to the router Note The WGR614 router incorporates Auto Uplink technology Each LOCAL Ethernet port will automatically sense if the cable should have a normal connection or an uplink connection This feature eliminates the need to worry about crossover cables because Auto Uplink will make the right connection either type of cable Connecting the Router to the Internet 2 5 Reference Manual for Cable DSL Wireless Router WGR614 e Now turn on your computer If software usually logs you in to your Internet connection do not run that software or cancel it if
152. wever is really based on IP addresses Every time you use a domain name therefore a DNS service must translate the name into the corresponding IP address For example the domain name www example com might translate to 198 105 232 4 The DNS system 1s in fact its own network If one DNS server doesn t know how to translate a particular domain name it asks another one and so on until the correct IP address is returned Domain Name A descriptive name for an address or group of addresses on the Internet Domain names are of the form of a registered entity name plus one of a number of predefined top level suffixes such as com edu uk etc For example in the address mail NETGEAR com mail is a server name and NETGEAR com is the domain DoS A hacker attack designed to prevent your computer or network from operating or communicating Glossary 3 Reference Manual for Cable DSL Wireless Router WGR614 DSL Short for digital subscriber line but is commonly used in reference to the asymmetric version of this technology ADSL that allows data to be sent over existing copper telephone lines at data rates of from 1 5 to 9 Mbps when receiving data known as the downstream rate and from 16 to 640 Kbps when sending data known as the upstream rate ADSL requires a special ADSL modem ADSL is growing in popularity as more areas around the world gain access DSLAM DSL Access Multiplexor The piece of equipment at the telephone company central
153. window This Status Connected box displays the connection status duration Duration 01 40 23 me Speed 100 0 Mb speed and activity statistics es e Administrator logon access rights are needed P Activity to use this window Sent AN Received e Click the Properties button to view details Packets 138 143 243 057 about the connection Local Area Connection Properties The TCP IP details are presented on the Support tab page e Select Internet Protocol and click Properties to view the configuration information Preparing Your Network General Authentication Advanced Connect using ES Intel R PRO 100 VE Network Connection This connection uses the following items TE Client for Microsoft Networks a File and Printer Sharing for Microsoft Networks C 8 QoS Packet Scheduler Internet Protocol TCP IP Install Uninstall Description Allows your computer to access resources on a Microsoft network Show icon in notification area when connected Reference Manual for Cable DSL Wireless Router WGR614 Internet Protocol TCP IP Properties e Verify that the Obtain an IP address automatically radio button is selected ou can get IF settings assigned automatically if your network supports this capability Otherwise you need to ask your network administrator tor e Verify that Obtain DNS server address the approntare 1E settings automatically radi
Download Pdf Manuals
Related Search