Planet Mh-5000 User manual

Multi-Homing Security

Gateway

MH-5000

User s Manual

Multi-Homing SecurityGatewayUser sManual

The products and programs described inthisUser sManualare licensed products of PLANET Technology,This User sManual

contains proprietaryinformation protected bycopyright, and this User sManualand allaccompanying hardware, software, and

documentation are copyrighted.

No part of this User sManualmaybe copied, photocopied, reproduced, translated, or reduced to anyelectronic medium or

machine-readable form byanymeans byelectronic ormechanical.Including photocopying, recording, or informationstorage and

retrieval systems, for anypurposeother than the purchaser'spersonal use,and without the prior express written permission of

PLANET Technology.

Disclaimer

PLANET Technologydoes not warrant thatthe hardwarewill work properly inallenvironments and applications, and makes no

warrantyand representation, either implied or expressed, with respect to thequality,performance, merchantability,or fitness for a

particular purpose.

PLANET has made everyeffort to ensure thatthisUser sManual isaccurate;PLANET disclaims liabilityfor anyinaccuracies or

omissions that mayhave occurred.

Information in this User sManualissubject to change without notice and does not represent acommitment on the part ofPLANET.

PLANET assumes no responsibility for anyinaccuracies that maybe contained in this User s Manual.PLANET makes no commitment

to update or keep current the information in this User sManual, and reserves the right to make improvements to thisUser sManual

and/or to the products described in this User s Manual, atanytime without notice.

Ifyou find information inthis manualthat isincorrect, misleading, or incomplete, we wouldappreciate your comments and

suggestions.

CE mark Warning

This isaclass A device, in a domestic environment, this product maycauseradio interference, in which casethe user maybe required

to take adequate measures.

Trademarks

The PLANET logo is a trademark of PLANET Technology.

This documentation mayrefer to numerous hardware and software products bytheir trade names. In most, if not allcases, these

designations are claimed as trademarks or registered trademarks bytheir respective companies.

CustomerService

For information on customer service and support for the Multi-Homing SecurityGateway, please refer to the following Website URL:

http://www.planet.com.tw

Before contacting customer service, please take a moment to gatherthe following information:

¨ Multi-Homing SecurityGatewayserial number and MAC address

¨ Anyerror messages that displayed when the problem occurred

¨ Anysoftware running when the problem occurred

¨ Steps you took to resolve the problem on your own

Multi-Homing SecurityGatewayUser sManual

Revision

User s Manualfor PLANET Multi-Homing SecurityGateway

Model:MH-5000

Rev: 1.0 (September, 2004)

Part No. EM-MH5Kv1

TableofContents

Chapter 1 QuickStart................................................................................................1

1.1 Check Your PackageContents.....................................................................................1

1.2 Five steps to configure MH-5000quickly......................................................................1

1.3 Wiringthe MH-5000......................................................................................................4

1.4 Default Settings and architectureofMH-5000..............................................................6

1.5 Usingthe Setup Wizard................................................................................................7

1.6 Internet Connectivity...................................................................................................10

1.6.1 LAN1-to-WAN1Connectivity.......................................................................................................11

1.6.2 WAN1-to-DMZ1 Connectivity......................................................................................................12

Chapter 2 System Overview...................................................................................16

2.1 Typical ExampleTopology..........................................................................................16

2.2 Changingthe LAN1 IP Address..................................................................................17

2.2.1 From LAN1 to configure MH-5000LAN1 network settings...........................................................17

2.2.2 From CLI (commandline interface) toconfigure MH-5000LAN1 network settings.......................18

2.2.3 The design principle...................................................................................................................19

2.2.4 Web GUI designprinciple...........................................................................................................19

2.2.5 Rule principle..............................................................................................................................19

Chapter 3 BasicSetup............................................................................................21

3.1 Demand......................................................................................................................21

3.2 Objectives...................................................................................................................21

3.3 Methods......................................................................................................................21

3.4 Steps...........................................................................................................................21

3.4.1 Setup WAN1 IP..........................................................................................................................21

3.4.2 Setup DMZ1, LAN1Status..........................................................................................................23

3.4.3 Setup WAN1 IP alias..................................................................................................................25

Chapter 4 System Tools..........................................................................................28

4.1 Demand......................................................................................................................28

4.2 Objectives...................................................................................................................28

4.3 Methods......................................................................................................................28

4.4 Steps...........................................................................................................................32

4.4.1 General settings.........................................................................................................................32

4.4.2 DDNSsetting..............................................................................................................................34

4.4.3 DNS Proxysetting......................................................................................................................35

4.4.4 DHCPRelaysetting....................................................................................................................35

4.4.5 SNMPControl............................................................................................................................36

4.4.6 Change MH-5000 interface.........................................................................................................37

Chapter 5 Remote Management.............................................................................38

5.1 Demands.....................................................................................................................38

5.2 Methods......................................................................................................................38

5.3 Steps...........................................................................................................................39

5.3.1 Telnet.........................................................................................................................................39

5.3.2 WWW.........................................................................................................................................39

5.3.3 SNMP.........................................................................................................................................39

5.3.4 ICMP..........................................................................................................................................39

Chapter 6 NAT.........................................................................................................40

6.1 Demands.....................................................................................................................40

6.2 Objectives...................................................................................................................41

6.3 Methods......................................................................................................................41

6.4 Steps...........................................................................................................................42

6.4.1 Setup Many-to-one NAT rules.....................................................................................................42

6.4.2 Setup Virtual ServerfortheFtpServer1.......................................................................................46

6.5 NAT modes introduction..............................................................................................50

6.5.1 Many-to-One type.......................................................................................................................50

6.5.2 Many-to-Manytype.....................................................................................................................51

6.5.3 One-to-One type.........................................................................................................................51

6.5.4 NAT modes & types....................................................................................................................52

Chapter 7 Routing...................................................................................................53

7.1 Demands.....................................................................................................................53

7.2 Objectives...................................................................................................................54

7.3 Methods......................................................................................................................54

7.4 Steps...........................................................................................................................54

7.4.1 Add a static routing entry............................................................................................................54

7.4.2 Add a policyrouting entry...........................................................................................................56

Chapter 8 Firewall...................................................................................................59

8.1 Demands.....................................................................................................................59

8.2 Objectives...................................................................................................................59

8.3 Methods......................................................................................................................59

8.4 Steps...........................................................................................................................60

8.4.1 Block internalPC session(LAN àWAN)....................................................................................60

8.4.2 Setup Alertdetectedattack.........................................................................................................63

Chapter 9 VPN Technical Introduction..................................................................65

9.1 VPN benefit.................................................................................................................65

9.2 Related TerminologyExplanation...............................................................................65

9.2.1 VPN...........................................................................................................................................65

9.2.2 IPSec.........................................................................................................................................65

9.2.3 SecurityAssociation...................................................................................................................65

9.2.4 IPSec Algorithms........................................................................................................................65

9.2.5 KeyManagement.......................................................................................................................66

9.2.6 Encapsulation.............................................................................................................................67

III

9.2.7 IPSec Protocols..........................................................................................................................67

9.3 MakeVPN packets pass throughMH-5000................................................................68

Chapter 10 Virtual Private Network –IPSec..........................................................69

10.1 Demands.....................................................................................................................69

10.2 Objectives...................................................................................................................69

10.3 Methods......................................................................................................................69

10.4 Steps...........................................................................................................................70

10.4.1 DES/MD5 IPSec tunnel:the IKE way..........................................................................................70

10.4.2 DES/MD5 IPSectunnel:theManual-Keyway.............................................................................80

Chapter 11Virtual Private Network –Dynamic IPSec............................................88

11.1 Demands.....................................................................................................................88

11.2 Objectives...................................................................................................................88

11.3 Methods......................................................................................................................88

11.4 Steps...........................................................................................................................89

Chapter 12 Virtual Private Network –PPTP..........................................................95

12.1 Demands.....................................................................................................................95

12.2 Objectives...................................................................................................................95

12.3 Methods......................................................................................................................96

12.4 Steps...........................................................................................................................96

12.4.1 Setup PPTPNetwork Server.......................................................................................................96

12.4.2 Setup PPTPNetwork Client........................................................................................................97

Chapter 13 Virtual Private Network –L2TP...........................................................99

13.1 Demands.....................................................................................................................99

13.2 Objectives...................................................................................................................99

13.3 Methods......................................................................................................................99

13.4 Steps.........................................................................................................................100

13.4.1 Setup L2TP Network Server.....................................................................................................100

Chapter 14 Content Filtering –Web Filters.........................................................103

14.1 Demands...................................................................................................................103

14.2 Objectives.................................................................................................................104

14.3 Methods....................................................................................................................104

14.4 Steps.........................................................................................................................105

14.5 Setting priorities........................................................................................................110

Chapter 15 Content Filtering –MailFilters..........................................................113

15.1 Demands...................................................................................................................113

15.2 Objectives.................................................................................................................113

15.3 Methods....................................................................................................................113

15.4 Steps for Anti-Virus...................................................................................................114

15.5 Steps for Anti-Spam..................................................................................................115

15.6 Steps for SMTP Relay...............................................................................................116

Chapter 16 Content Filtering –FTPFiltering.......................................................117

16.1 Demands...................................................................................................................117

16.2 Objectives.................................................................................................................117

16.3 Methods....................................................................................................................117

16.4 Steps.........................................................................................................................118

Chapter 17 Intrusion Detection Systems.............................................................121

17.1 Demands...................................................................................................................121

17.2 Objectives.................................................................................................................121

17.3 Methods....................................................................................................................121

17.4 Steps.........................................................................................................................122

Chapter 18 Bandwidth Management....................................................................123

18.1 Demands...................................................................................................................123

18.2 Objectives.................................................................................................................124

18.3 Methods....................................................................................................................125

18.4 Steps.........................................................................................................................125

Chapter 19 Load Balancer....................................................................................129

19.1 Demands...................................................................................................................129

19.2 Objectives.................................................................................................................129

19.3 Methods....................................................................................................................130

19.4 Steps.........................................................................................................................130

19.4.1 Outbound Load Balancer..........................................................................................................130

Chapter 20 System Status....................................................................................131

20.1 Demands...................................................................................................................131

20.2 Objectives.................................................................................................................131

20.3 Methods....................................................................................................................131

20.4 Steps.........................................................................................................................131

Chapter 21 Log System........................................................................................134

21.1 Demands...................................................................................................................134

21.2 Objectives.................................................................................................................134

21.3 Methods....................................................................................................................134

21.4 Steps.........................................................................................................................134

21.4.1 System Logs............................................................................................................................134

21.4.2 Syslog & Maillog......................................................................................................................135

Chapter 22 System Maintenance.........................................................................137

22.1 Demands...................................................................................................................137

22.2 Steps for TFTP Upgrade...........................................................................................137

22.3 Steps for Firmwareupgrade fromWebGUI..............................................................138

22.4 Steps for DatabaseUpdate fromWebGUI...............................................................139

22.5 Steps for Factory Reset............................................................................................140

22.5.1 Step for factoryreset underweb GUI........................................................................................140

22.5.2 Step for NORMAL factoryreset................................................................................................140

22.5.3 Steps forEMERGENT factoryreset..........................................................................................140

22.6 Save thecurrentconfiguration..................................................................................141

22.7 Steps for Backup / Restore Configurations...............................................................141

22.8 Steps for Resetpassword.........................................................................................142

Appendix A Command LineInterface (CLI).....................................................143

A.1 Enable theport ofMH-5000......................................................................................143

A.2 CLIcommands list(NormalMode)............................................................................143

A.3CLIcommands list (RescueMode)..................................................................................145

Appendix B Troubleshooting............................................................................147

Appendix C System Log Syntax.......................................................................151

Appendix D Glossaryof Terms........................................................................158

Appendix E Index..............................................................................................160

Appendix F Version ofSoftware and Firmware..............................................161

MH-5000 User Manual Chapter 1

Quick Start

Chapter 1

QuickStart

This chapterintroduces howtoquick setupthe MH-5000.

MH-5000is anintegrated all-in-onesolutionthat canfacilitatethe maximumsecurityand thebest resourceutilizationfor

the enterprises. It contains a high-performance statefulpacket inspection(SPI) Firewall,policy-based NAT,ASIC-based

wire-speed VPN,upgradeable Intrusion Detection System, DynamicRouting, Content Filtering, Bandwidth

Management, WANLoadBalancer, Anti-Virus, Anti-Spam andother solutionsinasingle box.Itisone of themost

cost-effective all-in-one solutions forenterprises.

1.1Check Your Package Contents

These are the items includedwith your MH-5000 purchase.Theyarethe followingitems

1. MH-5000 x 1

2. Quick Installation Guidex 1

3. CD-ROM Manual /InstallationGuide x 1

4. PowerCord x 1

5. Rack mount x 1

6. RS-232cablex 1

1.2Five steps to configure MH-5000 quickly

Let slook at thecommonnetwork topologywithout MH-5000applyinglike Figure 1-1. Thisis atopologywhich is almost

used byallthe small/mediumbusiness or SOHOuse as their internet connectivity. Although that your topologyisnot

necessarilythe same diagram below,butit stillcan give you a guideline to configureMH-5000 quickly.

Nowyoucan payattention at the IP Sharer in the diagram.The IP Sharer can provide youwith NAT (Network

Address Translation),PAT (Port Address Translation) and other functions.

Figure 1-1 TheexamplebeforeMH-5000 applies on it

Figure1-2The example after MH-5000applies onit

MH-5000 User Manual Chapter 1

Quick Start

Here we wouldlike to alter the originalIP Sharer with the MH-5000likeFigure1-2. If we hope to have MH-5000to

replace the IPSharer, we just needto simplyexecutethe followingfivestepsas Figure 1-3 showed.Bythese steps, we

hope tobuildan imageto tellyouhow to let MH-5000work basically.

Figure 1-3 Fivesteps to configure MH-5000

AstheFigure 1-3 illustrated, with the five-step configurations,MH-5000 willhave thesame functions with theoriginal IP

Sharer.Please see the following description of thefive-stepconfigurations.

1. Setup:

Install three physicallinesinclusive ofthe power cord, outbound link (connected WAN1 port)and inbounddirection

(connected LAN1port). Forthe details, please refer section1.3.

Continually, wewill connect to theweb GUI of MH-5000. So you must make surethatyou have aPC whichis

locatedin thesame subnet withMH-5000 before this step.

Start up the Internet browser with “http://192.168.1.254”in the address field. Andfollowwith “admin/admin”as the

defaultuser name andpassword.

Note: The default LAN1 port is(192.168.1.254 / 255.255.255.0). Refer tosection 1.5 formore information.

2. LAN:

Configure theLAN1 portof MH-5000.Youcan refertosection 1.4forthe defaultnetwork configurations of

MH-5000.

Note: Ifyouwere connected fromLAN1 port andchanged the LAN1 IP addresssettingsofMH-5000. The

network will be disconnected sincetheIP addressis differentbetweenyourpcand MH-5000 LAN1 port.

3. WAN:

Configure the WAN1port of MH-5000.Youcan refertosection 1.4 forthe default networkconfigurations of

MH-5000.

MH-5000 User Manual Chapter 1

Quick Start

4. NAT:

Configure theconnection of LAN to WANdirection.It will make alltheclientpc access theinternet through

MH-5000.For more information, please refer to section1.6.1.

5. VirtualServer:

If there isany server located insidetheMH-5000. You mayhopethese servers can provide servicesoutside. So

you should configure theVirtual Serverwhich provides connections of WANtoLAN direction. Formore information,

please refertosection 1.6.2.

Afteryou completelyfinishedthe above steps, the connectivityfunctionof MH-5000 is probablywell-done.

1.3Wiring the MH-5000

A. First,connect the power cordtothesocket attheback panelofthe MH-5000as in Figure 1-4 and then

plugthe other end ofthepower adapter toawalloutletorpower strip. The Power LEDwillturn ON to

indicate proper operation.

Figure 1-4 Back panel of the MH-5000

B. Usingan Ethernet cable, insert one end of the cable tothe WAN porton thefront panelof theMH-5000

andtheother endof thecableto a DSL orCable modem, asin Figure 1-5.

C. Computers withanEthernet adapter can bedirectly connectedtoanyof theLAN ports using a

cross-overEthernet cable, as in Figure 1-5.

D. Computers that act as servers to provide Internet services should be connected tothe DMZportusing

anEthernet Cable, asin Figure 1-5.

MH-5000 User Manual Chapter 1

Quick Start

Figure 1-5 Front end of theMH-5000

MH-5000 User Manual Chapter 1

Quick Start

1.4DefaultSettingsand architecture ofMH-5000

You should haveanInternet account alreadyset up and havebeen given most of thefollowing informationas Table1-1.

Fillout thistable when you editthe web configuration of MH-5000.

ItemsDefaultvalueNewvalue

Password: admin

IP Address ____.____.____.____

SubnetMask ____.____.____.____

GatewayIP____.____.____.____

PrimaryDNS ____.____.____.____

Fixed IP

SecondaryDNS ____.____.____.____

PPPoE Username ____.____.____.____

PPPoE PPPoE Password ____.____.____.____

WAN1

(Port 1)

DHCP

Not initialized

IP Address ____.____.____.____

SubnetMask ____.____.____.____

GatewayIP____.____.____.____

PrimaryDNS ____.____.____.____

Fixed IP

SecondaryDNS ____.____.____.____

PPPoE Username ____.____.____.____

PPPoE PPPoE Password ____.____.____.____

WAN2

(Port 2)

DHCP

Not initialized

IP Address 10.1.1.254 ____.____.____.____

DMZ1(Port 3) IP Subnet Mask 255.255.255.0 ____.____.____.____

IP Address 192.168.1.254____.____.____.____

LAN1(Port 4) IP Subnet Mask 255.255.255.0 ____.____.____.____

IP Address 192.168.2.254____.____.____.____

LAN2(Port 5) IP Subnet Mask 255.255.255.0 ____.____.____.____

Table 1-1 MH-5000related network settings

MH-5000 User Manual Chapter 1

Quick Start

Figure 1-6 Thedefault settings of MH-5000

As the above diagram Figure1-6 illustrated, this diagram shows the default topologyofMH-5000. And you can configure

the MH-5000 byconnectingto the LAN1_IP (192.168.1.254)from the PC1_1 (192.168.1.1). In the following sections, we

will teach you how toquickly setup theMH-5000in thebasic appliances.

1.5Using the Setup Wizard

AcomputeronyourLAN1 must beassigned an IP address and SubnetMask fromthe same range as theIP address and

SubnetMask assigned totheMH-5000, inordertobeable tomake anHTTPSconnection using aweb browser. The

MH-5000isassigned anIPaddress of192.168.1.254withaSubnet Mask of255.255.255.0 bydefault. The computer

that willbeusedto configure theMH-5000 must be assigned an IPaddress between 192.168.1.1and192.168.1.253with

a Subnet Mask of 255.255.255.0 tobeableto connect to theMH-5000. This address rangecan be changed later.

MH-5000 User Manual Chapter 1

Quick Start

Step 1. Login

Type “admin”in the accountfield, “admin”in the

Password field and click Login.

Connect to https://192.168.1.254

Step 2. Run Setup Wizard

Click the Run Setup Wizard.

After login tohttps://192.168.1.254

BASIC SETUP>Wizard

Step 3. SystemName

Enterthe Host Name andthe Domain

Name, followed byclicking the Next.

BASIC SETUP>Wizard

MH-5000 User Manual Chapter 1

Quick Start

Step 4. WAN Connectivity

Choose the type of IP Address Assignment

provided byyour ISP to access the Internet.

Here we have four types to select. Thiswill

determine how the IP address of WAN1 is

obtained. Click Next to proceed.

BASIC SETUP>Wizard>Next

Step 4.a DHCP client

IfGet IP Automatically(DHCP) is selected,

MH-5000 willrequest for IP address, netmask,

and DNS servers from your ISP. You can use

your preferred DNS byclicking the DNS IP

Addressand then completing the PrimaryDNS

and SecondaryDNS server IP addresses. Click

Next to proceed.

BASIC SETUP>Wizard>Next > DHCP

Step 4.b Fixed IP

IfFixed IP Address isselected, enter the

ISP-given IP Address, Subnet Mask,Gateway

IP, PrimaryDNS and SecondaryDNS IP. Click

Next to proceed.

BASIC SETUP>Wizard>Next > Fixed IP

MH-5000 User Manual Chapter 1

Quick Start

Step 4.c PPPoE client

If PPP over Ethernet is selected, enter the

ISP-given User Name, Password and the

optional Service Name. Click Next to proceed.

BASIC SETUP>Wizard>Next > PPPoE

Step 4.d Alert Message

Please Note that an alert message box “When

changing to none fixed ip mode, system will

delete all ip alias!”willappear while you change

Get IP Automatically(DHCP) or PPP over

Ethernetbut not Fixed IP Address as your WAN

link.

Step 5. SystemStatus

Here we select Fixed IP method in WAN1 port.

Then the MH-5000 provides a short summary of

the system. Please check ifanything mentioned

above is properly set into the system. Click

Finish to close the wizard.

BASIC SETUP>Wizard>Run Setup Wizard > Next> Next

1.6InternetConnectivity

Aftersetting up MH-5000with the wizard, MH-5000 canconnect to theISP. In thischapter, weintroduce LAN1-to-WAN1

Connectivitytoexplain howthecomputers underLAN1 can access theInternet atWAN1 through MH-5000.

MH-5000 User Manual Chapter 1

Quick Start

Subsequently,weintroduce WAN1-to-DMZ1 Connectivitytoexplainhowthe servers under DMZ1 canbe accessed by

the LAN1 users andotherInternet userson the WAN1side.

You MUST press Applyto proceedto the nextpage.Once applyinganychanges,the settingsare immediately

updated into the flashmemory.

1.6.1LAN1-to-WAN1 Connectivity

The LAN Settings pageallows you to modify the IPaddress and Subnet Mask thatwillidentify the MH-5000 onyour LAN.

This istheIP address youwill enterintheURL fieldofyourweb browser toconnectto theMH-5000.Itisalso theIP

address that all of the computers anddevices on yourLAN willuse as theirDefaultGateway.

Step 1. Device IPAddress

Setup the IP Address and IP Subnet Mask for

the MH-5000.

Step 2. Client IPRange

Enable the DHCP server ifyou want to use

MH-5000 to assign IP addresses to the

computersunder LAN1. Specifythe Pool

Starting Address, Pool Size, PrimaryDNS, and

SecondaryDNS that willbe assigned to them.

Example: inthe figure, the MH-5000 willassign

one IP address from 192.168.1.100 ~

192.168.1.119, together withthe DNS server

192.168.1.254,to the LAN1 PC thatrequests

foran IP address.

Step 3. Applythe Changes

Click Applyto save. Now you can enablethe

DHCP clients on your LAN1 PCs to get an IP.

BASIC SETUP>LANSettings > LAN1Status

Note: The IP Pool Starting Address must be on the samesubnet specifiedin

the IP Address and the IP Subnet Mask field.

For example, theaddresses given bythe 192.168.1.100 with apool size of20

(192.168.1.100 ~192.168.1.119) areallwithin the same range of 192.168.1.254 /

255.255.255.0

Step 4. Check NAT Status

The default setting ofNAT isin BasicMode.

After completing Step 3,the NAT is

automaticallyconfigured related rules toletall

private-IPLAN/DMZ-to-WANrequeststo be

translated with the publicIP assigned bythe

ISP.

ADVANCED SETTINGS > NAT> Status

MH-5000 User Manual Chapter 1

Quick Start

Step 5. Check NAT Rules

The MH-5000 has added the NAT rules as the

right diagram. The rule Basic-LAN1 means that,

when matching the condition (requests of

LAN/DMZ-to-WAN direction with its source IP

falling inthe range of 192.168.1.254 /

255.255.255.0),the request will be translated

into apublic-source-IP requests, and then be

forwarded to the destinations.

ADVANCED SETTINGS > NAT> NAT Rules

1.6.2WAN1-to-DMZ1 Connectivity

This section tells youhow to providean FTPservice with aserverinstalled underyour DMZ1 to the public Internet users.

Afterfollowing thesteps, users at the WAN side can connect to the FTPserver at theDMZ1 side.

Step 1. Device IPAddress

Setup the IP Address and IP Subnet Mask for

the MH-5000 of the DMZ1 interface.

Step 2. Client IPRange

Enable the DHCP server if you want to use

MH-5000 to assign IP addresses to the

computers under DMZ1.

Step 3. Applythe Changes

Click Applyto save your settings.

BASIC SETUP>DMZ Settings > DMZ1 Status

MH-5000 User Manual Chapter 1

Quick Start

Step 4. Check NAT Status

The defaultsetting ofNAT is in Basic Mode.

After applying the Step 3, the NAT is

automaticallyconfigured related rules to let

allprivate-IP LAN/DMZ-to-WAN requeststo

be translated with the public IP assigned by

the ISP.

ADVANCED SETTINGS > NAT> Status

Step 5. Check NAT Rules

The MH-5000 has added the NAT rules as

the right diagram. The ruleBasic-DMZ1

(number 1) means that,whenmatching the

condition (requests of LAN/DMZ-to-WAN

direction with its source IP falling in the range

of 10.1.1.254 /255.255.255.0), the request

willbe translated into apublic-source-IP

requests, and then be forwarded to the

destinations.

ADVANCED SETTINGS > NAT> NAT Rules

Step 6. Setup IPforthe FTP

Server

Assign an IP of 10.1.1.5/255.255.255.0 to the FTP server under DMZ1.Assume the

FTP Server is at 10.1.1.5.And it is listening on the well-known port (21).

Step 7. Setup ServerRules

Insert avirtual server rule byclicking the

Insert button.

ADVANCED SETTINGS > NAT> Virtual Servers

Other manuals for MH-5000

Table of contents

Other Planet Gateway manuals

Planet

Planet VIP-410 User manual

Planet

Planet WPG-120 User manual

Planet

Planet UMG-2000 User manual

Planet

Planet MH-1000 User manual

Planet

Planet VCG-1500WG-LTE User manual

Planet

Planet ICG-2510W-LTE Series User manual

Planet

Planet VIP-1680 Series User manual

Planet

Planet IMG-110T User manual

Planet

Planet IG-100 User manual

Planet

Planet WPG-100 User manual

Planet

Planet ISG-101 User manual

Planet

Planet VIP 24 Series User manual

Planet

Planet WPG-100 User manual

Planet

Planet MH-1000 User manual

Planet

Planet LCG-300 Series User manual

Planet

Planet Content Security Gateway CS-500 User manual

Planet

Planet ICG-2515 Series User manual

Planet

Planet BM-525 User manual

Planet

Planet WIPG-300H User manual

Planet

Planet VIP-000 User manual

Planet

Planet VCG-1500WG-LTE User manual

Planet

Planet WPG-110 User manual

Planet

Planet VIP-880 Series User manual

Planet

Planet MH-5000 User manual

Popular Gateway manuals by other brands

MIKRODEV

MIKRODEV MDC100 Hardware manual

AAMP of America

AAMP of America iSimple owner's manual

red lion

red lion ICM8 manual

VisionNet

VisionNet M505N End user manual

Flyingvoice

Flyingvoice G504 user manual

Ink Bird

Ink Bird IBS-M1 quick guide

Black Box

Black Box Optinet FE408005AA user guide

2-Wire

2-Wire 2701HGV-W installation guide

USR IOT

USR IOT USR-LG220 user manual

HySecurity

HySecurity SlideDriver 15 manual

Multitech

Multitech Conduit AP MTCAP-L4E1 user guide

Next Century

Next Century GW-20 Operation and installation manual

i-MO

i-MO iConnect user manual

Delta

Delta SOLIVIA GW Quick start instructions

Bin Master

Bin Master BINCLOUD BCGW.02XXE Quick setup guide

Multitech

Multitech MultiConnect Conduit Getting started guide

Speedtouch

Speedtouch 7G Installation and setup guide

Checkpoint

Checkpoint 1535 quick start guide