Alcon Aq500h User manual

AX500h User manual

Disclaimer

Incorporated shall not be liable for technical or editorial errors or omissions

contained herein; nor for incidental or consequential damages resulting from

furnishing this material, or the performance or use of this product.

Incorporated reserves the right to change the product specification without notice.

Information in this document may change without notice.

Trademarks

Microsoft, Windows 95, 98, ME, 2000, NT, and XP are registered trademarks of

the Microsoft Corporation. All other brand and product names mentioned herein

may be registered trademarks of their respective owners.

Customers should ensure that their use of this product does not infringe upon

any patent rights. Trademarks mentioned in this publication are sued for

identification purposes only and are properties of their respective companies.

AX500h User manual

Table of Contents

Introduction ................................................................................................5

Features.....................................................................................................5

Minimum Requirements .............................................................................5

Physical Specification ................................................................................6

Installation..................................................................................................6

Configuring the Clients...............................................................................7

Configuration Wizard..................................................................................7

Status.........................................................................................................9

System Profile ........................................................................................9

DHCP IP Assignment .............................................................................9

DDNS ...................................................................................................10

Online Users.........................................................................................10

Traffic Statistics ....................................................................................10

Network Setup..........................................................................................12

WAN Interface......................................................................................12

LAN Interface........................................................................................13

Virtual Server........................................................................................13

Port Trigger...........................................................................................14

Real DMZ .............................................................................................15

Software DMZ.......................................................................................16

DDNS ...................................................................................................17

Multi DMZ.............................................................................................17

Alias IP .................................................................................................18

Destination Route.................................................................................18

Change WAN MAC address.................................................................19

Firewall.....................................................................................................20

Service Management............................................................................20

Access Rules........................................................................................21

Special Rules........................................................................................21

MAC Filter.............................................................................................22

Anti-DoS...............................................................................................23

Web URL Filter.....................................................................................25

Web Content Filter................................................................................26

Application Filter...................................................................................28

Traffic Control...........................................................................................30

Link Bandwidth.....................................................................................30

Service Management............................................................................30

IP Management....................................................................................32

Statistic Setting.....................................................................................32

Bandwidth Group..................................................................................33

System Service........................................................................................35

Administrator ........................................................................................35

Time......................................................................................................35

UPNP....................................................................................................36

AX500h User manual

SNMP...................................................................................................36

Centralized Control...............................................................................37

Version .................................................................................................37

Backup..................................................................................................39

Restore.................................................................................................39

Diagnostic.............................................................................................40

Access Control.........................................................................................41

Authentication Setting...........................................................................41

RADIUS................................................................................................46

Group Configuration .............................................................................47

Authentication Policy ............................................................................47

Local Account.......................................................................................49

Service Plan .........................................................................................50

On-Demand User .................................................................................51

Guest User ...........................................................................................52

Walled Garden......................................................................................52

Log...........................................................................................................54

View Log...............................................................................................54

Log Settings..........................................................................................54

Web Statistics.......................................................................................55

Packet Statistics ...................................................................................55

MISC........................................................................................................56

Reboot..................................................................................................56

FAQ..........................................................................................................56

AX500h User manual

Introduction

The AQ500h used in the Hotspot environment usually connects Internet through

ADSL. To install the system with ADSL, you have to prepare an Ethernet Cable

in addition to the one included in the product package. Please refer to the

following figure to connect your devices.

The AQ500h features zero configuration connectivity, which means that as an

administrator you do not need to reconfigure every computer’s TCP/IP

information, which attempts to connect to your network. However, given the

simplicity of connecting, other access control methods needed to be designed.

The AQ500h solves this solution by requiring all users to authenticate themselves

before they are allowed to use the Internet. Authentication is simple and easy, all

users need to attempt to connect to some web site, and the AQ500h will

automatically redirect them to an authentication page, where they enter their

username and password. If the administrator should so choose, the AQ500H will

also verify if the MAC address of the computer attempting to connect with a

specific username and password is valid, denying access if not. Once the user

has authenticated himself with the AQ500h, he will be redirected to his originally

intended website, if it is a legal URL, and his computer is now free to use other

services such as email and instant messaging. The last of which is of course at

the discretion of the network administrator as the AQ500h can be configured to

block services with its firewall capabilities.

Features

zZero configuration connectivity

zSimple and powerful access control system

zConfigurable as a DHCP server

zUniversal Plug and Play

zRemote administration

zSoftware DMZ

zPort forwarding

zNAT firewall

Minimum Requirements

•One PC equipped with:

oTCP/IP Protocol

oA web browser

oAn Ethernet adapter with a UTP CAT 5 network cable.

•Internet access via cable modem or DSL modem with an Ethernet

connection.

AX500h User manual

Physical Specification

zPorts (10/100Mbps RJ45)：WAN：2 ports , LAN：8 ports

zConsole Ports：1 port

zStorage：8 MB

zMemory：128 MB

zPower：110 – 220V AC Power

zLEDs：Power/Status, WAN1 , WAN2 , LAN1 – LAN 8

zDimension (mm)：243(W)x150(D)x45.5(H)

Installation

Installation of the AQ500h is simple:

1. Plug in the network cable from the WAN interface of the AQ500H to your DSL

modem or cable modem.

2. Plug in a network cable from your computer to one of the four LAN interfaces

on the AQ500h. You do not need to change your computer’s TCP/IP settings

in either case.

3. Plug in the power to your AQ500H.

4. The AQ500h comes with default DHCP server enabled for range (172.16.1.1-

172.16.1.253), Set the networking TCP/IP properties of the system connected

to AQ500H to get IP automatically from the DHCP server. The AQ500h will

assign a IP address to the connected PC.

5. Open a web browser. Change the URL shown at the top to use port 9953 by

typing http://172.16.1.254:9953

6. Once you have hit enter, the AQ500h will prompt you to enter a username

and password. The default username and password to log into the

administrative user interface is admin and 123456.

AX500h User manual

7. Once you login you will see the administrative interface to configure.

8. Click on Network Setup>Click on WAN Interface.

9. Select the radio button corresponding to your type of network connection.

10.Enter the pertinent information.

A. DSL providers generally use PPPoE connections, in which case you

have a username and password.

B. Cable modem providers generally use DHCP connections, in which

case you do not need to provide anymore information to connect.

C. DSL and cable modem providers sometimes provide static IP services

as well as other type of installations. This will require the Fixed IP

setting and you will need to provide the IP, net mask, and gateway for

the AQ500H.

11. When you are done, you can logout or just attempt to connect to the Internet.

You must always authenticate yourself using the web interface before other

services will be available to you.

Configuring the Clients

Clients using the AQ500h as a gateway do not need any special configuration

unless you are planning to use them as virtual servers. If you are planning on

making a virtual server out of one of the computers in your local area network

(LAN), you will need to know how to change the IP, net mask, and gateway of

your client computer, or at least know how to get that information to update your

AQ500h should your IP, net mask, and gateway of your virtual server should ever

change.

Configuration Wizard

Step.1 Enter the page in the path “TRAFFIC CONTROL > Link Bandwidth”.

Then enable the function and set the uplink and downlink bandwidth

value for WAN1 or WAN2.

AX500h User manual

Step.2 Click the page in the path “TRAFFIC CONTROL > Bandwidth Group”.

Then add one bandwidth group.

Step.3 Click the ACCESS CONTROL from the top menu. Then, click

Authentication Policies and configure authentication type. If you choose

RADIUS for authentication type, please enter RADIUS page under the

ACCESS CONTROL to set radius server.

Step.4 Click the TRAFFIC CONTROL from the top menu. Then, click Bandwidth

Group to configure the bandwidth profile.

Step.5 Click the ACCESS CONTROL from the top menu. Then, click Group

Configuration to configure Group ID and set a bandwidth profile.

Step.6 Click the ACCESS CONTROL from the top menu. Then, click Service

Plan and enable the function.

Step.7 Click the ACCESS CONTROL from the top menu. Then, click On-

Demand User and enter User Name, Password and service plan for a

new user.

Step.8 Click the ACCESS CONTROL from the top menu. Then, click Guest

User and enable certain guest user and assign session time.

Step.9 Click the ACCESS CONTROL from the top menu. Then, click Local User

and begin the following steps.

(1)enable local user

(2)bandwidth setting

(3)group assign

(4)policy assign

AX500h User manual

Status

The status pages of the AQ500h Web-based User Interface allow the

administrator to quickly gather information about the workings of the AQ500h,

what users are using the AQ500h, and other important at-a-glance

information.

System Profile

This page shows the administrator basic network information about how the

AQ500h is configured.

DHCP IP Assignment

This page shows what IP addresses have been assigned by the AQ500h

and to which MAC addresses they have been assigned.

AX500h User manual

DDNS

1. Under DDNS condition, you can choose Enable or Disable to function

the system.

2. Use web display setting function, you can set up Auto DDNS update

per minute to update by minute, or choose Auto Data Refresh per

seconds to determine the data renew by second.

3. The figure below shows the DDNS form, all the DDNS details data can

be display clearly using a chart form as below.

4. You can click the Update 、Remove or Edit icons to change any

DDNS data as needed.

Online Users

This page shows what users are connected through the AQ500h, their

username, login time, what service they are currently using, their MAC and

IP address, the remote server they are connected to, and how much of the

bandwidth they are using. Users that are highlighted have been configured

by the administrator to use MAC binding and their connections will not be

timed out.

Traffic Statistics

This page shows the bandwidth usage by types of services and also displays

the total ad individual user’s bandwidth usage. An instant update of the

information can be done by clicking on the “Update” on the right hand side.

AX500h User manual

Network Setup

Under these pages, the administrator could configure the network interfaces.

WAN Interface

This page allows the administrator to configure the WAN interface. Just pick

the desired mode to get WAN’s IP and enter the pertinent information for that

option. Click on “Update” to finalize the configuration.

AX500h User manual

LAN Interface

This page allows the administrator to configure the LAN interface and DHCP

server. Enter pertinent information for all the fields and click “Update” to

finalize the configuration. Administrator could enable or disable the DHCP

server, assign fixed IP for a specific MAC address and control the PnP

mechanism.

Virtual Server

This page allows the administrator to forward ports to computers with virtual

IPs in the LAN. This is used for creating virtual servers in your LAN and will

work with DHCP assigned IPs, however we recommend that you use a static

virtual IP for dedicated virtual servers. Using this page the administrator can

forward a range of ports or a single port to a computer in the LAN.

AX500h User manual

Port Trigger

When the firewall is enabled, all ports, unless specified under Firewall Rules,

will be closed. This is very inconvenient for those services that receive

responding packets on uncertain high range ports. Therefore, we have this

port trigger function that opens up a certain port, or ports, automatically

when in need.

The way it works is like this: when packets of a certain service/application

have been detected to go out using ports specified under Trigger Port Range

column, the port(s) specified on the corresponding Incoming Port Range will

be opened to accept responding packets of this service/application.

For example, if your have a rule that states port 22222~22223 port as

triggering port and 34567~34569 as the incoming port, then when an out-

bound packets using port 22222~22223 are detected, the ports 34567 to

34569 will open up automatically to receive responding

AX500h User manual

packets.

Add Step1: Add data into cgi_screen and press the update button

Ex: name=test

Trigger_Port:10-20

Incoming_Port:25-96

Step2: The screen will show the data as above

Del Step1: Click the delete checkbox on the exist data item and press the

update button

Ex: name=test

Trigger_Port:10-20

Incoming_Port:25-96

Step2: Then the data just selected will disappear in the screen

Real DMZ

On this system, the WAN2 port could toggle between being a WAN port or a

real DMZ port. To toggle between these two status, please configure it under

Network Setup > WAN Interface page. Machines on the Real DMZ are

freely accessed by machines from outside and are totally separated from the

LAN. To setup a machine on the DMZ, just enter this machine’s IP and click

on Add button. Once added, this machine’s IP should show up on the DMZ

IP list. The machines on the IP list could be access by machines from WAN.

Note: The machines on DMZ must be in the same subnet and gateway as

the WAN1 interface to allow access from WAN.

AX500h User manual

Software DMZ

This page allows the administrator to add computers into the software DMZ.

The AQ500h is designed such that the software DMZ supports only IP

addresses that are in the subnet of the WAN interface. If you wish to put

servers into your LAN using a virtual IP, please see the section on One to

One NAT. Computers in the software DMZ cannot connect to the AQ500H

administration page.

AX500h User manual

DDNS

Under this page, the administrator can fill in the Manage Name 、Manage

Server 、User Name、Password、IP Address and Domain Name in the

page, or click the Status> DDNS to inquire, delete, or modify.

Multi DMZ

This function allows the administrator to map real IP addresses to virtual IP

addresses in the LAN of the device. This is a one to one correspondence,

meaning one virtual IP address maps to one virtual IP address. Users on the

Internet can connect to the real IP address to connect to these computers’

services, such as a web server or email server. LAN users can use the

virtual IP or the corresponding real IP address to access the server.

The IPs of the machines Multi-DMZ must be in the same subnet of the WAN

IP.

AX500h User manual

Alias IP

Alias IP function allows the administrator to set more than one IP for the LAN

interface. In effect, the machine can have more than one LAN subnet. Use

the following picture as an example; you can see that an Alias IP of

172.16.2.254/24 has been set for this machine. This allows any pc within the

IP range of 172.16.2.1/24~172.16.2.253/24 to connect to this machine and

also enjoy all the services this machine provides.

Destination Route

This function allows the administrator to route packets through a user-

defined route. This is convenient when you have more than one subnet

under the machine. Enter the destination IP and the gateway IP for that

destination machine and the packets will be routed correctly

AX500h User manual

Change WAN MAC address

Some ISPs bind user accounts to a specific MAC addresses. Therefore we

provide this simple and easy-to-use function for the user to change the

machine’s WAN MAC address when needed. Just enter the new WAN MAC

and click on Update, the system will write-in the new MAC and then

automatically reboot to allow the configuration to take effect. After the

system boots up again, the WAN MAC address will be changed to the new

one.

AX500h User manual

Firewall

Service Management

This page allows the administrator to add new port filtering rules or remove

existing rules on the AQ500h, as well as enable or disable the firewall

entirely. There are two default rules for the firewall that cannot be deleted,

ICMP and other services. ICMP allows ping, and other services opens the

port filtering firewall entirely. To add more services to the firewall select it

from the common service menu, or enter it manually using the user-defined

service. Then click Add to see the new rule being added on the “Service List”

near the bottom. To delete a rule on the Service List, just check the

corresponding “Delete” box and then click on “Update” to delete the selected

rule. More than one rule can be deleted at the same time.

Table of contents

Popular Wireless Router manuals by other brands

Microhard Systems

Microhard Systems pX2 operating manual

Yamaha

Yamaha UD-WL01 owner's manual

NETGEAR

NETGEAR NIGHTHAWK R7000 installation guide

BCM

BCM BPR1000 Series Quick installation guide

Linksys

Linksys WRT54G - Wireless-G Broadband Router... user guide

NETGEAR

NETGEAR Zing quick start guide

Huawei

Huawei WiFi Q2 Pro quick start guide

Teltonica

Teltonica RUT900 user manual

TP-Link

TP-Link Archer GE800 user guide

vYSoo

vYSoo MR600 user guide

SMC Networks

SMC Networks SMCBR14 WIRED BARRICADE user guide

Huawei

Huawei E5885 quick start

D-Link

D-Link DIR-882-US user manual

Pace

Pace VPN-Lite user manual

NetZero

NetZero UMX Start here

Tenda

Tenda nova MW Series Quick installation guide

ZyXEL Communications

ZyXEL Communications LTE4506-M606 user guide

NETGEAR

NETGEAR DGND3700v2 Guia de instalação

ALCON AQ500h User manual

Popular Wireless Router manuals by other brands