UTT HiPER 811 User manual
HiPER 811
Quick Guide
2009-3-17
Version: 1.2
Copyright Notice
Copyright © 2000-2009, Shanghai UTT Technologies Co., Ltd.
All rights reserved.
The information of this publication is protected by copyright. No part of this publication
may be reproduced, transmitted, transcribed, stored in a retrieval system, or translated
into any language without written permission from the copyright holders. The scope of
delivery and other details are subject to change without prior notice.
Trademark
UTT® is a registered trademark of Shanghai UTT Technologies Co., Ltd.
HiPER® is a registered trademark of Shanghai UTT Technologies Co., Ltd.
Other trademarks and registered trademarks of products mentioned in this publication
may be the properties of their respective owners and are only used for identification
purposes.
Warning
This equipment has been tested and found to comply with the limits for a Class B digital
device, pursuant to part 15 of the FCC Rules. These limits are designed to provide
reasonable protection against harmful interference in a residential installation. This
equipment generates, uses and can radiate radio frequency energy and, if not installed
and used in accordance with the instructions, may cause harmful interference to radio
communications. However, there is no guarantee that interference will not occur in a
particular installation. If this equipment does cause harmful interference to radio or
television reception, which can be determined by turning the equipment off and on, the
user is encouraged to try to correct the interference by one or more of the following
measures:
Reorient or relocate the receiving antenna.
Increase the separation between the equipment and receiver.
Connect the equipment into an outlet on a circuit different from that to which the
receiver is connected.
Consult the dealer or an experienced radio/TV technician for help.
Caution: Any changes or modifications to this device not explicitly approved by
manufacturer could void your authority to operate this equipment.
Page I
Table of Contents
About This Guide .................................................................................................................1
0.1 Conventions............................................................................................1
0.1.1 Conventions for page path .....................................................................1
0.1.2 Common Button......................................................................................1
0.1.3 List ..........................................................................................................2
0.1.3.1 Editable List ............................................................................................2
0.1.3.2 Read-only List.........................................................................................3
0.1.3.3 Sorting Function......................................................................................4
0.2 Factory Default Settings .........................................................................4
Chapter 1 Product Overview ...................................................................................5
1.1 Key Features ..........................................................................................5
1.2 Specifications..........................................................................................7
Chapter 2 Physical Installation ................................................................................8
2.1 Front Panel .............................................................................................8
2.1.1 LEDs .......................................................................................................8
2.1.2 Ports........................................................................................................9
2.1.3 Reset Button...........................................................................................9
2.2 Connecting the Device .........................................................................11
Chapter 3 Quick Setup Guide................................................................................12
3.1 Configure PC ........................................................................................12
3.2 Login the Device...................................................................................14
3.3 Internet Connection ..............................................................................17
3.3.1 Internet Connection Setup....................................................................17
3.3.1.1 PPPoE Connection...............................................................................19
3.3.1.2 Static IP Connection .............................................................................22
3.3.1.3 DHCP Connection ................................................................................23
3.3.2 Internet Connection List........................................................................24
3.3.3 How to Dial and Hang up a PPPoE connection...................................26
3.3.4 How to Renew and Release a DHCP Connection.................................27
3.3.5 How to Edit the Connection..................................................................28
Page II
3.3.6 How to Delete the Connection..............................................................28
3.4 Network Security...................................................................................29
3.4.1 Virus Defense .......................................................................................29
3.4.2 Rate Limit..............................................................................................30
3.5 ARP Spoofing Defense.........................................................................31
3.5.1 ARP Spoofing Defense Setup ..............................................................31
3.5.2 Dynamic ARP Table..............................................................................31
3.5.3 How to Defense Against ARP Spoofing Attack.....................................32
3.6 Port Forwarding ....................................................................................33
3.6.1 Port Forwarding Setup..........................................................................33
3.6.2 Port Forwarding Rule List.....................................................................34
3.7 Change Administrator’s Password .......................................................35
3.8 Remote Management...........................................................................36
Appendix Contact Information ...........................................................................................37
Page 1
About This Guide
Note
For best use of our product, it is strongly recommended that you update Windows
Internet Explorer browser to 6.0 or above.
0.1 Conventions
0.1.1 Conventions for page path
Lever one menu > lever two menu(bold)means the menu path to open some
configuration page. E.g. System admin > Time means that in web interface, first click
level one menu system admin, then click level two menu Time to open clock
management page.
0.1.2 Common Button
Following common action buttons are used in this doc.
: Save and apply current settings.
: Cancel current settings and recover to the previous saved settings.
: Refresh the information on page.
: Acquire related help information.
Page 2
: Delete the selected entry(s) with the corresponding settings.
0.1.3 List
In web page there are two kinds of lists: Editable list and read-only list.
0.1.3.1 Editable List
Editable list is used to display, edit and delete configuration item. Let us take DHCP
Static Binding List (see Table 0-1) as an example to explain the functions.
Table 0-1 DHCP Static Binding List
: Current page number/ total pages, the example means the current page is first
page, and total one page.
: Go to the first page.
: Go to the previous page.
: Go to the next page.
: Go to the last page.
: Enter page number in text field, then click Go to or type <Enter> to
Page 3
jump to that page.
: Enter the search text in text field, then type <Enter> to display
all the matched entries, besides, you can search within results. After search, if you want
to display all the entries, you only need type <Enter> in empty text field.
Note: The match criterion is that search text exists in entry’s information.
: Created entry number / maximum number, the example means two DHCP static
binding entries have been set up and the maximum configurable entries number is 53.
: Click to open corresponding edit page.
: Select it to select all the entries in current page. Else, unselect all the
entries.
: First select some entry(s) (by selecting the leftmost check box), and then click
it to delete the selected entry(s).
0.1.3.2 Read-only List
Read-only list is used to display the system status information that is not editable. Let us
take DHCP Leases List (see Table 0-2) as an example to explain the functions.
Table 0-2 DHCP Leases List
, , , , , ,
have the same meaning of the former.
Page 4
: Current status entry number /maximum number,the example means there are
two status information entry in the list.
: Refresh the list to view current status of the list.
0.1.3.3 Sorting Function
Except Access Rule List in Advanced Setup > Access Rule page, all the lists in web
page support sorting function. Steps are as following:
Clicking the column title in list will make the list sorts the data by clicked column. The first
click makes it sorted descendingly. And the secondary click makes it sorted ascendingly.
The third one is descending again, and so forth. Each sorting will make the list display
the first page.
0.2 Factory Default Settings
1. The following table provides the factory default settings of Interfaces.
Interface
IP Address
Subnet Mask
LAN
192.168.16.1
255.255.255.0
WAN
192.168.17.1
255.255.255.0
Table 0-3 the Factory Default Settings of Interfaces
2. The default administrator’s user name is Default (case sensitive) with empty
password.
Page 5
Chapter 1 Product Overview
The HiPER 811 security gateway/VPN firewall is a purpose-built security system
designed for small-sized businesses and enterprise branch offices.
The HiPER 811 integrates a rich suite of functions, including L2TP/PPTP/IPSec VPN,
NAT/PAT, firewall, bandwidth management, DHCP server/client, popular attack defense
capability, system management and monitor, and so on.
1.1 Key Features
Operation mode: NAT/NAPT, route and hybrid mode
Internet connection type: PPPoE, Static IP and DHCP
Supports Express Forwarding, excellent performance
Built-in firewall,Defense against ARP spoofing, DoS/DDoS attack, port scanning,
Worm.Blaster, Worm.Sasser, etc.
Supports NAT port forwarding, DMS host
Supports NAT ALG: ICMP, FTP, GRE, PPTP, ESP ALG, etc.
Supports NAT sessions limit for each internal host
Supports bandwidth limit for each internal host
Supports IP packet filtering IP address, protocol and TCP/UDP port filtering
Supports Web content filtering: URL and keyword filtering
Filtering based on schedule
IM (instant messenger) control: block or allow IM application, e.g., MSN and QQ
Page 6
Messenger
P2P (peer-to-peer) control: block or allow P2P application, e.g., BitTorrent and
BitSpirit
Supports personal policy settings to realize personal service according to need
Provide hierarchy management structure (include personal, group and global) to
flexibly manage the internal users
Supports IP/MAC binding, blacklist and whitelist Setting
IP/MAC intelligent binding: automatic binding and batch binding
Supports DHCP Server and Client,DHCP static binding;
Supports SNTP (Simple Network Time Protocol)
Supports DDNS (Dynamic DNS)
Supports Port-based VLAN
Supports UPnP
Supports port mirror
Supports MAC address clone
Supports static route,dynamic route protocol: RIP I and RIP II
Supports NAT traversal of IPSec, PPTP and L2TP
Provides Web user interface, Command line interface (Telnet)
Remote management via Web or CLI
Supports SYSLOG, SNMP v1 and v2c
Configuration file backup and restore
Firmware upgrade via TFTP or Web
Multi-level administration privileges
Built-in diagnostic tool: ping, traceroute, nslookup
Real-time monitoring, logging, alarms of system activities
Supports IPSec, L2TP and PPTP VPN
FQDN (fully qualified domain name) support for dynamic IP address VPN
connections
Site-to-site VPN, remote access VPN (client-to-site)
VPN pass-through of L2TP, PPTP, IPSec
L2TP server and client, PPTP server and client
Page 7
IPSec features as followed:
1. AutoIKE based on preshared key and manual key tunnels
2. ESP and AH protocols
3. DES, 3DES and AES 128/192/256 encryption algorithm
4. MD5 and SHA-1 hash algorithm
5. Diffie-Hellman group 1, 2 and 5
6. Main mode and aggressive mode
7. DPD (dead peer detection) and Anti-Replay
8. Hub-spoke and mesh connections
1.2 Specifications
Conforms to IEEE 802.3 Ethernet and IEEE 802.3u Fast Ethernet standards
Supports TCP/IP, PPPoE, DHCP, ICMP, NAT, Static Route, RIPI/II, SNMP (MIB II),
etc.
Supports 4-port LAN switch, a WAN port, and a reset button
Supports Auto-negotiation for 10/100Mbps and duplex mode for each physical port
Supports Auto MDI/MDI-X for each physical port
Provides status LEDs
Environment:
Operating Temperature: 32ºF to 104ºF (0ºC to 40ºC)
Storage Temperature: 32ºF to 158ºF (0ºC to 70ºC)
Operating Humidity: 10% to 90%, Non-condensing
Storage Humidity: 10% to 90%, Non-condensing
Power Supply: 180V to 240V AC, 50/60Hz
Page 8
Chapter 2 Physical Installation
This section describes how to install the Device.
2.1 Front Panel
The LEDs and network ports are located on the front panel of the Device.
Figure 2-1 Front Panel
2.1.1 LEDs
The LEDs give real-time information of system status. The following table provides
description of the LEDs status and their meaning.
LED
Status
Description
PWR
Green
The Device is powered on.
Off
The Device is powered off.
SYS
Blinking
When system is working well, the status light will
blink twice per second, and it will blink slower under
heavy load.
Off or Green
Ever-on or ever-off means system is abnormal.
Page 9
TRF
Blinking
Network activity on the Device.
Off
No activity on the Device.
FLT
Blinking
The Device is not operating correctly.
Off
The Device is operating correctly.
Link/Act
Green
Valid link on the associated port.
Blinking
Network activity on the associated port.
Off
No link established on the associated port.
100M
Green
The associated port is connected at 100Mbps.
Off
The associated port is connected at 10Mbps.
Table2-1 LEDs Description
2.1.2 Ports
Interface
Description
LAN (1, 2, 3, 4)
These Ethernet ports connect the Device to wired computers,
hubs, switches, and other Ethernet network devices.
WAN
This port connects to a cable or DSL modem, or other Ethernet
network device.
Table2-2 Ports Description
2.1.3 Reset Button
If you want to reset the Device to the factory default settings, press and hold in the Reset
button for more than 5 seconds when the Device is on, then release the button. After that,
the Device will restart with the factory default settings.
Note
Page 10
1. The reset operation will clear all the settings and preferences that you have
configured.
2. You can also reset the Device to the factory defaults on the System Admin >
Backup & Restore page.
Page 11
2.2 Connecting the Device
Before you install the Device, please make sure your PC can connect to the Internet
through your broadband service successfully. If there is any problem, please contact with
your ISP for help.
After that, please install the Device according to the following steps. Don’t forget to pull
out the power plug and keep your hands dry.
Step 1 Power off your PC(s), Cable/DSL modem, and the Device.
Step 2 Connect the PC(s) and the Switches or Hubs on your LAN to the Device’s LAN
port (see Figure 2-2).
Step 3 Connect the Cable/DSL modem to the Device’s WAN port (see Figure 2-2).
Step 4 Connect the power cord to the power connector on the back panel of the
Switch. Then plug the other end of the power cord to a grounded three-prong
AC power outlet. The Device will start to work automatically.
Step 5 Power on your network devices, PCs, Switches, Hubs, and so on.
Figure 2-2 Connecting the Device
Page 12
Chapter 3 Quick Setup Guide
After you have connected the Device into your network, you may configure it. This
chapter describes how to configure the basic functions of your Device. It will only take
you a few minutes. You can access the Internet via the Device immediately after it has
been successfully configured.
3.1 Configure PC
Before set up the Device, you need to install and configure TCP/IP properties on each
network PC.
Step 1 Connect the PC to the Device’s LAN port.
Step 2 Install TCP/IP protocol components on your PC. If it has been installed, please
ignore it.
Step 3 Setup IP settings for your PC. You can setup manually or configure the PC to
obtain an IP address automatically.
Setup manually: Your PC’s IP address should be within the range from
192.168.16.2 to 192.168.16.254, the default gateway should be
192.168.16.1 (LAN interface’s IP address), and the DNS server should be
provided by your ISP.
Setup automatically: In the Internet Protocol (TCP/IP) Properties
screen, select Obtain an IP address automatically. The Device’s built-in
DHCP server will automatically assign an IP address to the PC.
Step 4 To verify the network connection between your PC and Device, you can use
the ping command at the command prompt on the PC: Ping 192.168.16.1
If the displayed page is similar to the screenshot below, the connection
between your PC and Device has been established.
Page 13
If the displayed page is similar to the screenshot below, it means that your
PC has not connected to the Device.
If it is failed to connect, please check it follow the steps below:
1. Is the connection between your PC and the Route correct?
The LEDs of LAN port which links to the device and the LED on your PC’s adapter
should be lit.
2. Is the TCP/IP configuration for your PC correct?
If the Device’s IP address is 192.168.16.1, your PC’s IP address should be within the
range from 192.168.16.2 to 192.168.16.254, the gateway should be 192.168.16.1.
Page 14
3.2 Login the Device
Once your PC is properly configured, please do the following to use the Web-based
Utility.
For local access of the Device’s web-based utility, launch your web browser, and enter
the Device’s default IP address: 192.168.16.1, in the RUL filed (see Figure 3-1). Then
press the Enter key.
Figure 3-1 Address Bar
A login screen prompts you for your User name and Password. Enter Default (case
sensitive) in the User name field, and keep the Password field empty (see Figure 3-2).
Then click OK.
Figure 3-2 Login Screen
Page 15
The first screen that appears is the Homepage (see Figure 3-3).
Figure 3-3 Homepage
Note
If you have not setup the Internet connection yet, the system will push a prompt dialog
box as below:
Model and Version
Start Menu
Click to Restart
the Device
Click to jump to
the related page
Level One Menu
Table of contents
Popular Firewall manuals by other brands
Freedom9
Freedom9 freeGuard 100 reference guide
3Com
3Com 3C16792 - OfficeConnect Dual Speed Switch 16 datasheet
Fortinet
Fortinet FortiGate 300D quick start guide
Tosibox
Tosibox Lock 200 quick start guide
D-Link
D-Link NetDefend DFL-260E Quick installation guide
Fortinet
Fortinet FortiGate 100A Administration guide
ZyXEL Communications
ZyXEL Communications ZyWall ATP series user guide
Watchguard
Watchguard Firebox t10 specification
Watchguard
Watchguard Firebox Vclass quick start guide
Watchguard
Watchguard XCS Series Hardware guide
Checkpoint
Checkpoint Power-1 P-10 Getting started guide
Checkpoint
Checkpoint Quantum LightSpeed Appliance QLS250 Rack Mounting Guide
