Previous Next Title Page Contents

Chapter 9
Advanced Internet

This Chapter explains how to use the LevelOne WBR-1101TX's "Advanced Internet" features.

Overview

For situations where the LevelOne WBR-1101TX is being used to provide shared Internet access, the following advanced features are provided.

This chapter contains details of the configuration and use of each of these features.

Advanced Internet Screen

This screen provides access to the advanced Internet features, and provides a convenient overview and control center. An example screen is shown below.

Figure 43: Advanced Internet Screen

On this screen, you can enable or disable any required feature.

Special Internet Applications

This feature is only required if you wish to use Internet applications which require 2-way communication, multiple connections, or combined TCP/UDP connections.

Examples of such applications are Internet Videoconferencing, Telephony, Games Servers, and other special-purpose Servers.

Generally, you will become aware of the need for this feature when an Internet application is unable to function correctly.

At any time, only one (1) PC can use each Special Application.

Special Applications Screen

This screen can be reached by selecting Special Internet Applications. An example screen is shown below.

Figure 44: Special Applications Screen

Using a Special Application

Configuration data must be obtained from the Service/Application provider.
If an application still cannot function correctly, try using the "DMZ" feature.

Some Special Applications have been defined but not enabled.

Managing Special Application Entries

Enable
  1. Select the entry from the drop-down list
  2. Click "Get Data"
  3. Check the Enable checkbox
  4. Click "Update"
Disable
As above, but uncheck the Enable checkbox.
Disable all
On the Advanced Internet screen, you can Enable or Disable the Special Applications feature.
Delete
  1. Select the entry from the drop-down list
  2. Click "Delete"
Modify (Edit)
  1. Select the entry from the drop-down list
  2. Click "Get Data"
  3. Make any desired changes
  4. Click "Update"
Create a new entry
  1. Click "Clear Form"
  2. Enter the required data, as described below.
  3. Click "Add".

 

Data - Special Applications Screen

This data must be obtained from the service provider.

Select Entry

Name
This drop-down list shows all Special Applications which have been defined.
Get Data
Button
After selecting the desired entry, click this button to view its current settings in the Details section of the screen.
You can then make any changes required. Click the "Update" button to save your changes.

Details

Name
Enter a descriptive name to identify this application entry.
Enable
Use this to Enable or Disable support for this application, as required.
Outgoing
Protocol
The protocol (TCP or UDP) used when you connect to the special application service.
Port Range:
Start
The beginning of the range of port numbers used by the application server, for data you send to it. If the application uses a single port number, enter it in both the "Start" and "Finish" fields.
Port Range:
Finish
The end of the range of port numbers used by the application server, for data you send.
Incoming
Protocol
The protocol (TCP or UDP) used when the application or service sends data to you.
Port Range:
Start
The start of the range of port numbers used by the application server when data is sent to you. If using only one port number, enter it in both the "Start" and "Finish" fields.
Port Range:
Finish
The end of the range of port numbers used by the application server, when data is sent to you.

Buttons

Clear Form
Clears all data, ready for input of a new entry.
Add
Add a new entry to the Special Applications database, using the data shown on screen.
The name shown in the drop-down list is ignored.
Delete
Delete the Special Application entry selected in the drop-down list, regardless of whether its details are shown on screen.
Update
Update the Special Application entry selected in the drop-down list, using the data shown on screen.
List All
List all Special Application entries.
Cancel
Reverse any changes made since the last "submit" operation (i.e. since clicking any other button).

 

URL Filter

The URL Filter provides a means to block access to undesirable Web sites. The blocking action applies to all PCs accessing the Internet via the LevelOne WBR-1101TX.

Operation

The URL Filter feature works by matching the "Filter Strings" (text strings) against the requested URL. For example, by inputting the word "bad" in the URL Filter, any URL containing the letters "bad" in it will be blocked.

Note that if any component of the URL request contains one of the "Filter Strings", that request will be blocked while the URL Filter is enabled.

URL requests to Web (Internet) Servers include the following components:

All of these components are searched to see if they contain any of the "Filter Strings".

Tips

URL Filter Screen

Figure 45: URL Filter Screen

Data - URL Filter Screen

Site List

Site List
This lists any existing entries. If you have not entered any values, this list will be empty.
Filter String
To add an entry to the list, enter it here, and click the "Add" button.
An entry may be a Domain name (e.g. www.trash.com) or simply a string (e.g. ads/ )
Any URL which contains ANY entry ANYWHERE in the URL will be blocked.
Buttons
Delete/Delete All - Use this buttons to delete the selected entry or all entries, as required. Multiple entries can be selected by holding down the CTRL key while selecting. (On the Macintosh, hold the SHIFT key while selecting.)
Add - Use this to add the current Filter String to the site list.

 

You can use the Internet Access Log, accessed from the Status screen, to see which sites have been blocked by the URL Filter.

 

Virtual Servers

This feature allows you to make Servers on your LAN accessible to Internet users. Normally, Internet users would not be able to access a server on your LAN because:

The "Virtual Server" feature solves these problems and allows Internet users to connect to your servers, as illustrated below.

Figure 46: Virtual Servers

IP Address seen by Internet Users

Note that, in this illustration, both Internet users are connecting to the same IP Address, but using different protocols.

To Internet users, all virtual Servers on your LAN have the same IP Address. This IP Address is allocated by your ISP.

This address should be static, rather than dynamic, to make it easier for Internet users to connect to your Servers. If using a Static IP Address, it is entered on the "WAN" screen.

Types of Virtual Servers

The LevelOne WBR-1101TX supports two (2) types of Virtual Servers:

Note: The TOTAL number of Virtual Servers which can be used at any time is 10.

Virtual Server Screen

The Virtual Servers screen is reached by the Advanced Internet - Virtual Servers link.

Figure 47: Virtual Server Screen.

Data - Virtual Server Screen

WAN IP Address

Current IP Address
This shows the IP Address which Internet users must use to connect to any of your Virtual Servers.
  • To Internet Users, ALL of your Virtual Servers have the same IP Address.
  • This IP Address is allocated by your ISP. It is better to have a fixed IP Address.

Virtual Servers

Type
Select the type of Server you wish to use.
Enable
Check to enable this Server.
LAN IP Address
  • Enter the IP Address of a PC on your LAN.
  • You must install and configure the appropriate Server software on the PC entered here.
  • If using DHCP, the LAN IP Address of a PC may change. To solve this problem, use either of these methods:
    • Assign a fixed IP Address to the Server PC, ensuring that its IP Address is NOT within the address range allocated by the DHCP Server.
    • Reserve an IP Address for the Server PC in the DHCP Server, using the Access Control - PC screen.

 

For each entry, the PC must be running the appropriate Server software.

 

User Defined Virtual Servers

If the type of Server you wish to use is not listed on the Virtual Servers screen, you can define it using this feature.

Select Advanced Internet - User Defined Virtual Servers to see a screen like the example below.

Figure 48: User Defined Virtual Servers

Managing User Defined Virtual Servers

Enable a Server
  1. Select the required entry from the drop-down list
  2. Click "Get Data"
  3. Check the Enable checkbox
  4. Click "Update"
Disable a Server
As above, but uncheck the Enable checkbox.
Disable all Servers
On the Advanced Internet screen, you can Enable or Disable the Virtual Servers feature.
Delete
  1. Select the entry from the drop-down list
  2. Click "Delete"
Modify (Edit)
  1. Select the entry from the drop-down list
  2. Click "Get Data"
  3. Make any desired changes
  4. Click "Update"
Create a new entry
  1. Click "Clear Form"
  2. Enter the required data, as described below.
  3. Click "Add".

 

Data- User Defined Virtual Servers Screen

WAN IP Address

Current IP Address
This shows the IP Address which Internet users must use to connect to any of your Virtual Servers.
  • To Internet Users, ALL your Virtual Servers have the same IP Address.
  • This IP Address is allocated by your ISP. It is better to have a fixed IP Address.

Select Server

Name
This lists any Servers you have defined. Click the "Get Data" button to view the correct data for the selected Server.
Get Data
Button
After selecting the desired entry, click this button to view its current settings in the Details section of the screen.
You can then make any changes required. Click the "Update" button to save your changes.

Details

Name
Enter a descriptive name to identify this Server entry.
Enable
Use this to Enable or Disable support for this Server, as required.
IP Address
The IP Address of the PC on your LAN which is running the Server software.
Protocol
Select the protocol (TCP or UDP) used by the Server.
Internal Port Number
Enter the port number used by the Server to connect to clients.
External Port Number
The port number used by clients when connecting to the Server. This is normally the same as the Internal Port Number.
If it is different, this device will perform a "mapping" or "translation" function, allowing the server to use one port address, while clients use a different port address.

Buttons

Clear Form
Clears all data, ready for input of a new entry.
Add
Add a new entry, using the data shown on screen.
The name shown in the drop-down list is ignored.
Delete
Delete the Virtual Server entry selected in the drop-down list, regardless of whether its details are shown on screen.
Update
Update the Virtual Server entry selected in the drop-down list, using the data shown on screen.
List All
List all User-defined Virtual Servers.
Cancel
Reverse any changes made since the last "submit" operation (i.e. since clicking any other button).

 

From the Internet, ALL Virtual Servers have the IP Address allocated by your ISP, as shown by the "WAN IP Address".

 

Connecting to the Virtual Servers

Once configured, anyone on the Internet can connect to your Virtual Servers. They must use the WAN Port IP Address (the IP Address allocated to this device by your ISP).
e.g.

        http://203.70.212.52
ftp://203.70.212.52

It is more convenient if you are using a Fixed IP Address from your ISP, rather than Dynamic. If using a Fixed IP Address, it is entered on the WAN screen.

DMZ

This feature, if enabled, allows one (1) computer on your LAN to be exposed to all users on the Internet, allowing unrestricted 2-way communication between the "DMZ" PC and other Internet users or Servers.

This allows connection to special-purpose servers which require proprietary client software, or 2-way user connections such as Video-conferencing, which requires both users to run special software.

To allow unrestricted access, the Firewall in this device is disabled, creating a security risk.

You should use this feature only if the "Special Applications" feature is insufficient to allow an application to function correctly. This feature should be turned ON only when needed, and left OFF the rest of the time.

DMZ Screen

Select Advanced Internet from the navigation bar, then DMZ. You will see a screen like the following:

Figure 49: DMZ Screen

Data - DMZ Screen

Enable

Enable DMZ Feature
Use this to Enable or Disable the DMZ feature. The DMZ feature should be disabled when not required.

LAN IP Address

LAN IP Address
Enter the IP Address of the PC on your LAN which will become the "DMZ" PC.
If using DHCP, the LAN IP Address of a PC may change. To solve this problem, you can use either of these methods:
  • Assign a fixed IP Address to the DMZ PC, ensuring that its IP Address is NOT within the address range allocated by the DHCP Server.
  • Reserve an IP Address for the DMZ PC in the DHCP Server, using the Access Control - PC screen.

WAN IP Address

WAN IP Address
This is the IP Address that Internet users must use to connect to the "DMZ" PC.
This IP Address is allocated by your ISP. It is better if you are using a fixed IP Address, so that it never changes. This will make it easier for Internet users to connect to you. If using a Static IP Address, it is entered on the "WAN" screen.

 

To Internet users, the IP Address of the DMZ computer is the IP Address allocated by your ISP, as shown by the "WAN IP Address".



Previous Next Title Page Contents