D-Link DSR-250N User Manuals

Table of Contents

• Chapter 1. Introduction

  10
• About this User Manual

  11
• Typographical Conventions

  11
• Chapter 2. Configuring Your Network: LAN Setup

  13
• LAN Configuration

  13
• 2.1.1 LAN Configuration in an IPv6 Network

  16
• 2.1.2 Configuring IPv6 Router Advertisements

  19
• VLAN Configuration

  21
• 2.2.1 Associating VLANs to ports

  22
• Configurable Port: DMZ Setup

  24
• Universal Plug and Play (UPnP)

  25
• Captive Portal

  27
• Chapter 3. Connecting to the Internet: WAN Setup

  28
• Internet Setup Wizard

  28
• WAN Configuration

  29
• 3.2.1 WAN Port IP address

  30
• 3.2.2 WAN DNS Servers

  30
• 3.2.3 DHCP WAN

  30
• 3.2.4 PPPoE

  31
• 3.2.5 Russia L2TP and PPTP WAN

  34
• 3.2.6 WAN Configuration in an IPv6 Network

  35
• 3.2.7 Checking WAN Status

  37
• Bandwidth Controls

  38
• Features with Multiple WAN Links

  41
• 3.4.1 Auto Failover

  41
• 3.4.2 Load Balancing

  42
• 3.4.3 Protocol Bindings

  43
• Routing Configuration

  44
• 3.5.1 Routing Mode

  44
• 3.5.2 Dynamic Routing (RIP)

  47
• 3.5.3 Static Routing

  48
• Configurable Port - WAN Option

  49
• WAN 3 (3G) Configuration

  49
• WAN Port Settings

  51
• Chapter 4. Wireless Access Point Setup

  53
• Wireless Settings Wizard

  53
• 4.1.1 Wireless Network Setup Wizard

  54
• 4.1.2 Add Wireless Device with WPS

  54
• 4.1.3 Manual Wireless Network Setup

  55
• Wireless Profiles

  55
• 4.2.1 WEP Security

  56
• 4.2.2 WPA or WPA2 with PSK

  57
• 4.2.3 RADIUS Authentication

  58
• Creating and Using Access Points

  59
• Primary benefits of Virtual APs:

  61
• Tuning Radio Specific Settings

  62
• Advanced Wireless Settings

  63
• Wi-Fi Protected Setup (WPS)

  63
• Chapter 5. Securing the Private Network

  65
• Firewall Rules

  65
• Defining Rule Schedules

  66
• Configuring Firewall Rules

  67
• 5.3.1 Firewall Rule Configuration Examples

  72
• Security on Custom Services

  76
• ALG support

  77
• VPN Passthrough for Firewall

  78
• Application Rules

  79
• Web Content Filtering

  80
• 5.8.1 Content Filtering

  80
• 5.8.2 Approved URLs

  81
• 5.8.3 Blocked Keywords

  82
• 5.8.4 Export Web Filter

  83
• IP/MAC Binding

  84
• 5.10 Intrusion Prevention (IPS)

  85
• 5.11 Protecting from Internet Attacks

  86
• Chapter 6. IPsec / PPTP / L2TP VPN

  88
• VPN Wizard

  90
• Configuring IPsec Policies

  92
• 6.2.1 Extended Authentication (XAUTH)

  95
• 6.2.2 Internet over IPSec tunnel

  95
• Configuring VPN clients

  96
• PPTP / L2TP Tunnels

  96
• 6.4.1 PPTP Tunnel Support

  96
• 6.4.2 L2TP Tunnel Support

  98
• 6.4.3 OpenVPN Support

  99
• Chapter 7. SSL VPN

  101
• Groups and Users

  103
• 7.1.1 Users and Passwords

  109
• Using SSL VPN Policies

  110
• 7.2.1 Using Network Resources

  113
• Application Port Forwarding

  114
• SSL VPN Client Configuration

  116
• User Portal

  118
• 7.5.1 Creating Portal Layouts

  119
• Chapter 8. Advanced Configuration Tools

  121
• USB Device Setup

  121
• SMS service

  122
• Authentication Certificates

  124
• Advanced Switch Configuration

  126
• Chapter 9. Administration & Management

  127
• Configuration Access Control

  127
• 9.1.1 Remote Management

  127
• 9.1.2 CLI Access

  128
• SNMP Configuration

  128
• Configuring Time Zone and NTP

  130
• Log Configuration

  131
• 9.4.1 Defining What to Log

  131
• 9.4.2 Sending Logs to E-mail or Syslog

  135
• 9.4.3 Event Log Viewer in GUI

  137
• Backing up and Restoring Configuration Settings

  138
• Upgrading Router Firmware

  139
• Dynamic DNS Setup

  140
• Using Diagnostic Tools

  141
• 9.8.1 Ping

  142
• 9.8.2 Trace Route

  142
• 9.8.3 DNS Lookup

  143
• 9.8.4 Router Options

  143
• Chapter 10. Router Status and Statistics

  144
• 10.1 System Overview

  144
• 10.1.1 Device Status

  144
• 10.1.2 Resource Utilization

  146
• 10.2 Traffic Statistics

  149
• 10.2.1 Wired Port Statistics

  149
• 10.2.2 Wireless Statistics

  150
• 10.3 Active Connections

  151
• 10.3.1 Sessions through the Router

  151
• 10.3.2 Wireless Clients

  153
• 10.3.3 LAN Clients

  153
• 10.3.4 Active VPN Tunnels

  154
• Chapter 11. Trouble Shooting

  156
• 11.1 Internet connection

  156
• 11.2 Date and time

  158
• 11.3 Pinging to Test LAN Connectivity

  158
• 11.3.1 Testing the LAN path from your PC to your router

  158
• 11.3.2 Testing the LAN path from your PC to a remote device

  159
• 11.4 Restoring factory-default configuration settings

  160
• Chapter 12. Credits

  161
• Appendix A. Glossary

  162
• Appendix B. Factory Default Settings

  165
• Appendix C. Standard Services Available for Port Forwarding & Firewall Configuration

  166
• Appendix D. Log Output Reference

  167
• Appendix E. RJ-45 Pin-outs

  221
• Appendix F. Product Statement

  222
• Figure 1: Setup page for LAN TCP/IP settings

  15
• Figure 2: IPv6 LAN and DHCPv6 configuration

  17
• Figure 3: Configuring the Router Advertisement Daemon

  20
• Figure 4: IPv6 Advertisement Prefix settings

  21
• Figure 5: Adding VLAN memberships to the LAN

  22
• Figure 6: Port VLAN list

  23
• Figure 7: Configuring VLAN membership for a port

  24
• Figure 8: DMZ configuration

  25
• Figure 9: UPnP Configuration

  26
• Figure 10: Active Runtime sessions

  27
• Figure 11: Internet Connection Setup Wizard

  28
• Figure 12: Manual WAN configuration

  31
• Figure 13: PPPoE configuration for standard ISPs

  32
• Figure 14: WAN configuration for Japanese Multiple PPPoE (part 1)

  33
• Figure 15: WAN configuration for Multiple PPPoE (part 2)

  34
• Figure 16: Russia L2TP ISP configuration

  35
• Figure 17: IPv6 WAN Setup page

  36
• Figure 18: Connection Status information for both WAN ports

  38
• Figure 19: List of Configured Bandwidth Profiles

  39
• Figure 20: Bandwidth Profile Configuration page

  40
• Figure 21: Traffic Selector Configuration

  41
• Bindings have been defined

  43
• destination network

  44
• Dynamic routing (RIP)

  46
• Figure 25: Static route configuration fields

  49
• Figure 26: WAN3 configuration for 3G internet

  51
• Figure 27: Physical WAN port settings

  52
• Figure 28: Wireless Network Setup Wizards

  54
• Figure 29: List of Available Profiles shows the options available to secure the wireless link

  56
• Figure 30: Profile configuration to set network security

  57
• Figure 31: RADIUS server (External Authentication) configuration

  59
• Figure 32: Virtual AP configuration

  60
• radio, broadcasting its SSID

  61
• Figure 34: Radio card configuration options

  62
• Figure 35: Advanced Wireless communication settings

  63
• Figure 36: WPS configuration for an AP with WPA/WPA2 profile

  64
• Figure 37: List of Available Firewall Rules

  66
• Figure 38: List of Available Schedules to bind to a firewall rule

  67
• (209.156.200.225) to a private DMZ IP address (10.30.30.30)

  70
• action, schedules, and specify source/destination IP addresses as needed.

  71
• Figure 41: Schedule configuration for the above example.

  75
• Figure 42: List of user defined services.

  77
• Figure 43: Available ALG support on the router

  78
• Figure 44: Passthrough options for VPN tunnels

  79
• Figure 45: List of Available Application Rules showing 4 unique rules

  80
• from being downloaded

  81
• Figure 47: Two trusted domains added to the Approved URLs List

  82
• Figure 48: One keyword added to the block list

  83
• Figure 49: Export Approved URL list

  84
• logs will be captured

  85
• Figure 51: Intrusion Prevention features on the router

  86
• Figure 52: Protecting the router and LAN from internet attacks

  87
• to the Internet

  88
• IPsec gateway

  89
• Figure 55: VPN Wizard launch screen

  90
• Figure 56: IPsec policy configuration

  93
• Figure 57: IPsec policy configuration continued (Auto policy via IKE)

  94
• Figure 58: IPsec policy configuration continued (Auto / Manual Phase 2)

  95
• Figure 59: PPTP tunnel configuration – PPTP Client

  97
• Figure 60: PPTP VPN connection status

  97
• Figure 61: PPTP tunnel configuration – PPTP Server

  98
• Figure 62: L2TP tunnel configuration – L2TP Server

  99
• Figure 63: OpenVPN configuration

  100
• Figure 64: Example of clientless SSL VPN connections to the DSR

  102
• Figure 65: List of groups

  103
• Figure 66: User group configuration

  104
• Figure 67: SSLVPN Settings

  105
• Figure 68: Group login policies options

  106
• Figure 69: Browser policies options

  107
• Figure 70: IP policies options

  108
• Figure 71: Available Users with login status and associated Group

  109
• Figure 72: User configuration options

  110
• Figure 73: List of SSL VPN polices (Global filter)

  111
• Figure 74: SSL VPN policy configuration

  112
• Figure 75: List of configured resources, which are available to assign to SSL VPN policies

  114
• Figure 76: List of Available Applications for SSL Port Forwarding

  116
• Figure 77: SSL VPN client adapter and access configuration

  117
• Figure 78: Configured client routes only apply in split tunnel mode

  118
• an authentication domain

  119
• Figure 80: SSL VPN Portal configuration

  120
• Figure 81: USB Device Detection

  122
• Figure 82: SMS Service – Send SMS

  123
• Figure 83: SMS Service – Receive SMS

  124
• Figure 84: Certificate summary for IPsec and HTTPS management

  125
• Figure 85: Advanced Switch Settings

  126
• Figure 86: User Login policy configuration

  127
• Figure 87: Remote Management from the WAN

  128
• Figure 88: SNMP Users, Traps, and Access Control

  129
• Figure 89: SNMP system information for this router

  130
• Figure 90: Date, Time, and NTP server setup

  131
• Figure 91: Facility settings for Logging

  133
• Figure 92: Log configuration options for traffic through router

  135
• Figure 93: E-mail configuration as a Remote Logging option

  136
• Figure 94: Syslog server configuration for Remote Logging (continued)

  137
• Figure 95: VPN logs displayed in GUI event viewer

  138
• overwritten and a reboot

  139
• Figure 97: Firmware version information and upgrade option

  140
• Figure 98: Dynamic DNS configuration

  141
• Figure 99: Router diagnostics tools available in the GUI

  142
• Figure 100: Sample trace route output

  143
• Figure 101: Device Status display

  145
• Figure 102: Device Status display (continued)

  146
• Figure 103: Resource Utilization statistics

  147
• Figure 104: Resource Utilization data (continued)

  148
• Figure 105: Resource Utilization data (continued)

  149
• Figure 106: Physical port statistics

  150
• Figure 107: AP specific statistics

  151
• Figure 108: List of current Active Firewall Sessions

  152
• Figure 109: List of connected 802.11 clients per AP

  153
• Figure 110: List of LAN hosts

  154
• Figure 111: List of current Active VPN Sessions

  155